syzbot


WARNING in do_open_execat

Status: upstream: reported C repro on 2023/09/16 02:14
Bug presence: origin:lts-only
Labels: missing-backport
[Documentation on labels]
Reported-by: syzbot+966287e895af04ec4106@syzkaller.appspotmail.com
First crash: 714d, last: 63d
Fix bisection: the issue occurs on the latest tested release (bisect log)
Crash: WARNING in do_open_execat (log)
Repro: C syz .config
  
Bug presence (2)
Date Name Commit Repro Result
2025/06/28 linux-6.1.y (ToT) 7e69c33e4858 C [report] WARNING in do_open_execat
2025/06/28 upstream (ToT) 0fd39af24e37 C Didn't crash
Similar bugs (5)
Kernel Title Rank 🛈 Repro Cause bisect Fix bisect Count Last Reported Patched Status
linux-5.15 WARNING in do_open_execat (2) missing-backport origin:upstream -1 C done 14 1d04h 687d 0/3 upstream: reported C repro on 2023/10/13 04:40
upstream WARNING in do_open_execat (3) squashfs -1 C 5 162d 242d 0/29 upstream: reported C repro on 2024/12/31 06:22
upstream WARNING in do_open_execat (2) ntfs3 -1 C 18 496d 508d 0/29 auto-obsoleted due to no activity on 2024/06/30 18:49
linux-5.15 WARNING in do_open_execat -1 1 894d 894d 0/3 auto-obsoleted due to no activity on 2023/07/18 02:48
upstream WARNING in do_open_execat ntfs3 -1 C error done 12 583d 743d 25/29 fixed on 2024/03/20 11:33
Fix bisection attempts (5)
Created Duration User Patch Repo Result
2025/07/27 06:50 1h43m fix candidate upstream OK (0) job log
2024/03/20 20:34 1h43m fix candidate upstream OK (0) job log
2024/03/02 02:02 1h54m bisect fix linux-6.1.y OK (0) job log log
2024/01/09 08:55 1h37m bisect fix linux-6.1.y OK (0) job log log
2023/10/21 15:34 1h34m bisect fix linux-6.1.y OK (0) job log log

Sample crash report:
loop0: detected capacity change from 0 to 4096
ntfs: volume version 3.1.
process 'syz-executor274' launched './file1' with NULL argv: empty string added
------------[ cut here ]------------
WARNING: CPU: 0 PID: 4247 at fs/exec.c:936 do_open_execat+0x628/0x730 fs/exec.c:936
Modules linked in:
CPU: 0 PID: 4247 Comm: syz-executor274 Not tainted 6.1.141-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
RIP: 0010:do_open_execat+0x628/0x730 fs/exec.c:936
Code: 00 48 83 c4 08 49 bd 00 00 00 00 00 fc ff df e9 e8 fc ff ff e8 59 0e 9f ff 49 c7 c6 e6 ff ff ff e9 b4 fc ff ff e8 48 0e 9f ff <0f> 0b e9 b9 fc ff ff e8 dc c8 2d 08 44 89 e1 80 e1 07 fe c1 38 c1
RSP: 0018:ffffc900039c7c40 EFLAGS: 00010293
RAX: ffffffff81e1c828 RBX: ffff88807e2bfb80 RCX: ffff88802cb60000
RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000000000008fff
RBP: ffffc900039c7d10 R08: dffffc0000000000 R09: ffffc900039c7aa0
R10: fffff52000738f56 R11: 1ffff92000738f54 R12: ffff888075a376a0
R13: dffffc0000000000 R14: 00000000000001ff R15: ffff8880237b6600
FS:  0000555583400380(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fffcaea9000 CR3: 0000000072646000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 bprm_execve+0x55c/0x18a0 fs/exec.c:1849
 do_execveat_common+0x51b/0x6c0 fs/exec.c:1979
 do_execve fs/exec.c:2053 [inline]
 __do_sys_execve fs/exec.c:2129 [inline]
 __se_sys_execve fs/exec.c:2124 [inline]
 __x64_sys_execve+0x8e/0xa0 fs/exec.c:2124
 do_syscall_x64 arch/x86/entry/common.c:51 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:81
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7f145ee9caf9
Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fffcaea8a88 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
RAX: ffffffffffffffda RBX: 0031656c69662f2e RCX: 00007f145ee9caf9
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000040
RBP: 00007f145eee505e R08: 000000000001ee3b R09: 0000000000000000
R10: 00007fffcaea8950 R11: 0000000000000246 R12: 00007f145eee5068
R13: 00007fffcaea8c68 R14: 0000000000000001 R15: 0000000000000001
 </TASK>

Crashes (15):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/06/20 03:55 linux-6.1.y 58485ff1a74f ed3e87f7 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-6-1-kasan WARNING in do_open_execat
2025/01/21 08:48 linux-6.1.y f4f677285b38 6e87cfa2 .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-6-1-kasan-arm64 WARNING in do_open_execat
2025/01/13 06:38 linux-6.1.y c63962be84ef 6dbc6a9b .config console log report syz / log C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-6-1-kasan-arm64 WARNING in do_open_execat
2024/03/04 09:38 linux-6.1.y a3eb3a74aa8c 25905f5d .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-6-1-kasan-arm64 WARNING in do_open_execat
2024/01/22 01:24 linux-6.1.y 8fd7f4462453 9bd8dcda .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-6-1-kasan-arm64 WARNING in do_open_execat
2023/12/10 08:55 linux-6.1.y 6c6a6c7e211c 28b24332 .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-6-1-kasan-arm64 WARNING in do_open_execat
2023/09/16 02:28 linux-6.1.y 09045dae0d90 0b6a67ac .config console log report syz C [disk image] [vmlinux] [kernel image] [mounted in repro] ci2-linux-6-1-kasan-arm64 WARNING in do_open_execat
2024/04/11 22:47 linux-6.1.y bf1e3b1cb1e0 95ed9ece .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in do_open_execat
2024/04/11 22:17 linux-6.1.y bf1e3b1cb1e0 95ed9ece .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in do_open_execat
2023/11/18 21:15 linux-6.1.y fb2635ac69ab cb976f63 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan WARNING in do_open_execat
2025/01/31 14:31 linux-6.1.y 75cefdf153f5 4c6ac32f .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 WARNING in do_open_execat
2025/01/23 13:38 linux-6.1.y f4f677285b38 a44b0418 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 WARNING in do_open_execat
2025/01/13 05:47 linux-6.1.y c63962be84ef 6dbc6a9b .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 WARNING in do_open_execat
2023/11/16 11:55 linux-6.1.y fb2635ac69ab cb976f63 .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 WARNING in do_open_execat
2023/09/16 02:12 linux-6.1.y 09045dae0d90 0b6a67ac .config console log report info [disk image] [vmlinux] [kernel image] ci2-linux-6-1-kasan-arm64 WARNING in do_open_execat
* Struck through repros no longer work on HEAD.