BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm BTRFS info (device loop4): turning on sync discard BTRFS info (device loop4): using free space tree BTRFS info (device loop4): enabling ssd optimizations ===================================================== BUG: KMSAN: uninit-value in htree_insert fs/btrfs/delayed-ref.c:281 [inline] BUG: KMSAN: uninit-value in add_delayed_ref_head+0x362/0xca0 fs/btrfs/delayed-ref.c:785 htree_insert fs/btrfs/delayed-ref.c:281 [inline] add_delayed_ref_head+0x362/0xca0 fs/btrfs/delayed-ref.c:785 btrfs_add_delayed_tree_ref+0x1028/0x1c40 fs/btrfs/delayed-ref.c:935 btrfs_inc_extent_ref fs/btrfs/extent-tree.c:1395 [inline] __btrfs_mod_ref+0xfc5/0x1530 fs/btrfs/extent-tree.c:2435 btrfs_inc_ref+0x4b/0x60 fs/btrfs/extent-tree.c:2450 btrfs_copy_root+0xa74/0xf70 create_pending_snapshot+0x12c0/0x3af0 fs/btrfs/transaction.c:1762 create_pending_snapshots+0x258/0x3b0 fs/btrfs/transaction.c:1888 btrfs_commit_transaction+0x1ee9/0x64a0 fs/btrfs/transaction.c:2358 create_snapshot+0x92d/0xe80 fs/btrfs/ioctl.c:846 btrfs_mksubvol+0xa27/0xbb0 fs/btrfs/ioctl.c:996 btrfs_mksnapshot+0x11f/0x180 fs/btrfs/ioctl.c:1042 __btrfs_ioctl_snap_create+0x53e/0x860 fs/btrfs/ioctl.c:1295 btrfs_ioctl_snap_create+0x214/0x2d0 fs/btrfs/ioctl.c:1322 btrfs_ioctl+0x4aa/0x1290 btrfs_compat_ioctl+0x65/0x70 fs/btrfs/ioctl.c:4711 __do_compat_sys_ioctl fs/ioctl.c:968 [inline] __se_compat_sys_ioctl+0x78f/0xfd0 fs/ioctl.c:910 __ia32_compat_sys_ioctl+0x93/0xd0 fs/ioctl.c:910 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline] __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178 do_fast_syscall_32+0x37/0x80 arch/x86/entry/common.c:203 do_SYSENTER_32+0x1f/0x30 arch/x86/entry/common.c:246 entry_SYSENTER_compat_after_hwframe+0x70/0x82 Uninit was stored to memory at: init_delayed_ref_head fs/btrfs/delayed-ref.c:732 [inline] btrfs_add_delayed_tree_ref+0x1579/0x1c40 fs/btrfs/delayed-ref.c:923 btrfs_inc_extent_ref fs/btrfs/extent-tree.c:1395 [inline] __btrfs_mod_ref+0xfc5/0x1530 fs/btrfs/extent-tree.c:2435 btrfs_inc_ref+0x4b/0x60 fs/btrfs/extent-tree.c:2450 btrfs_copy_root+0xa74/0xf70 create_pending_snapshot+0x12c0/0x3af0 fs/btrfs/transaction.c:1762 create_pending_snapshots+0x258/0x3b0 fs/btrfs/transaction.c:1888 btrfs_commit_transaction+0x1ee9/0x64a0 fs/btrfs/transaction.c:2358 create_snapshot+0x92d/0xe80 fs/btrfs/ioctl.c:846 btrfs_mksubvol+0xa27/0xbb0 fs/btrfs/ioctl.c:996 btrfs_mksnapshot+0x11f/0x180 fs/btrfs/ioctl.c:1042 __btrfs_ioctl_snap_create+0x53e/0x860 fs/btrfs/ioctl.c:1295 btrfs_ioctl_snap_create+0x214/0x2d0 fs/btrfs/ioctl.c:1322 btrfs_ioctl+0x4aa/0x1290 btrfs_compat_ioctl+0x65/0x70 fs/btrfs/ioctl.c:4711 __do_compat_sys_ioctl fs/ioctl.c:968 [inline] __se_compat_sys_ioctl+0x78f/0xfd0 fs/ioctl.c:910 __ia32_compat_sys_ioctl+0x93/0xd0 fs/ioctl.c:910 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline] __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178 do_fast_syscall_32+0x37/0x80 arch/x86/entry/common.c:203 do_SYSENTER_32+0x1f/0x30 arch/x86/entry/common.c:246 entry_SYSENTER_compat_after_hwframe+0x70/0x82 Uninit was stored to memory at: btrfs_init_generic_ref fs/btrfs/delayed-ref.h:281 [inline] __btrfs_mod_ref+0xd4a/0x1530 fs/btrfs/extent-tree.c:2430 btrfs_inc_ref+0x4b/0x60 fs/btrfs/extent-tree.c:2450 btrfs_copy_root+0xa74/0xf70 create_pending_snapshot+0x12c0/0x3af0 fs/btrfs/transaction.c:1762 create_pending_snapshots+0x258/0x3b0 fs/btrfs/transaction.c:1888 btrfs_commit_transaction+0x1ee9/0x64a0 fs/btrfs/transaction.c:2358 create_snapshot+0x92d/0xe80 fs/btrfs/ioctl.c:846 btrfs_mksubvol+0xa27/0xbb0 fs/btrfs/ioctl.c:996 btrfs_mksnapshot+0x11f/0x180 fs/btrfs/ioctl.c:1042 __btrfs_ioctl_snap_create+0x53e/0x860 fs/btrfs/ioctl.c:1295 btrfs_ioctl_snap_create+0x214/0x2d0 fs/btrfs/ioctl.c:1322 btrfs_ioctl+0x4aa/0x1290 btrfs_compat_ioctl+0x65/0x70 fs/btrfs/ioctl.c:4711 __do_compat_sys_ioctl fs/ioctl.c:968 [inline] __se_compat_sys_ioctl+0x78f/0xfd0 fs/ioctl.c:910 __ia32_compat_sys_ioctl+0x93/0xd0 fs/ioctl.c:910 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline] __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178 do_fast_syscall_32+0x37/0x80 arch/x86/entry/common.c:203 do_SYSENTER_32+0x1f/0x30 arch/x86/entry/common.c:246 entry_SYSENTER_compat_after_hwframe+0x70/0x82 Uninit was created at: __alloc_pages+0x9a4/0xe00 mm/page_alloc.c:4791 alloc_pages+0xd01/0x1040 folio_alloc+0x42/0x120 mm/mempolicy.c:2289 filemap_alloc_folio+0xa5/0x430 mm/filemap.c:976 __filemap_get_folio+0x908/0x13a0 mm/filemap.c:1965 pagecache_get_page+0x4e/0x200 mm/folio-compat.c:99 find_or_create_page include/linux/pagemap.h:635 [inline] alloc_extent_buffer+0x725/0x3130 fs/btrfs/extent_io.c:3888 btrfs_find_create_tree_block+0x46/0x60 fs/btrfs/disk-io.c:835 btrfs_init_new_buffer fs/btrfs/extent-tree.c:4776 [inline] btrfs_alloc_tree_block+0x344/0x1d20 fs/btrfs/extent-tree.c:4895 btrfs_copy_root+0x40b/0xf70 fs/btrfs/ctree.c:327 create_pending_snapshot+0x12c0/0x3af0 fs/btrfs/transaction.c:1762 create_pending_snapshots+0x258/0x3b0 fs/btrfs/transaction.c:1888 btrfs_commit_transaction+0x1ee9/0x64a0 fs/btrfs/transaction.c:2358 create_snapshot+0x92d/0xe80 fs/btrfs/ioctl.c:846 btrfs_mksubvol+0xa27/0xbb0 fs/btrfs/ioctl.c:996 btrfs_mksnapshot+0x11f/0x180 fs/btrfs/ioctl.c:1042 __btrfs_ioctl_snap_create+0x53e/0x860 fs/btrfs/ioctl.c:1295 btrfs_ioctl_snap_create+0x214/0x2d0 fs/btrfs/ioctl.c:1322 btrfs_ioctl+0x4aa/0x1290 btrfs_compat_ioctl+0x65/0x70 fs/btrfs/ioctl.c:4711 __do_compat_sys_ioctl fs/ioctl.c:968 [inline] __se_compat_sys_ioctl+0x78f/0xfd0 fs/ioctl.c:910 __ia32_compat_sys_ioctl+0x93/0xd0 fs/ioctl.c:910 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline] __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178 do_fast_syscall_32+0x37/0x80 arch/x86/entry/common.c:203 do_SYSENTER_32+0x1f/0x30 arch/x86/entry/common.c:246 entry_SYSENTER_compat_after_hwframe+0x70/0x82 CPU: 1 PID: 5562 Comm: syz-executor.4 Not tainted 6.4.0-rc6-syzkaller-g7cccf3be6dcb #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023 =====================================================