BTRFS info (device loop1): force zlib compression, level 3 BTRFS info (device loop1): using free space tree BTRFS info (device loop1): enabling ssd optimizations BTRFS info (device loop1): auto enabling async discard ===================================================== BUG: KMSAN: uninit-value in htree_insert fs/btrfs/delayed-ref.c:320 [inline] BUG: KMSAN: uninit-value in add_delayed_ref_head+0x467/0xfb0 fs/btrfs/delayed-ref.c:828 htree_insert fs/btrfs/delayed-ref.c:320 [inline] add_delayed_ref_head+0x467/0xfb0 fs/btrfs/delayed-ref.c:828 btrfs_add_delayed_tree_ref+0xfcd/0x1e00 fs/btrfs/delayed-ref.c:978 btrfs_inc_extent_ref+0x236/0x3e0 fs/btrfs/extent-tree.c:1396 __btrfs_mod_ref+0x139f/0x17e0 fs/btrfs/extent-tree.c:2459 btrfs_inc_ref+0xc2/0xe0 fs/btrfs/extent-tree.c:2474 btrfs_copy_root+0xd98/0x1440 create_pending_snapshot+0x20af/0x4fb0 fs/btrfs/transaction.c:1768 create_pending_snapshots+0x256/0x3d0 fs/btrfs/transaction.c:1894 btrfs_commit_transaction+0x23e3/0x6d80 fs/btrfs/transaction.c:2351 create_snapshot+0xb6f/0x1110 fs/btrfs/ioctl.c:844 btrfs_mksubvol+0x1025/0x11b0 fs/btrfs/ioctl.c:994 btrfs_mksnapshot+0x276/0x320 fs/btrfs/ioctl.c:1040 __btrfs_ioctl_snap_create+0x79a/0xad0 fs/btrfs/ioctl.c:1293 btrfs_ioctl_snap_create_v2+0x47f/0xa20 fs/btrfs/ioctl.c:1380 btrfs_ioctl+0x16ad/0x1a80 btrfs_compat_ioctl+0xf8/0x110 fs/btrfs/ioctl.c:4701 __do_compat_sys_ioctl fs/ioctl.c:968 [inline] __se_compat_sys_ioctl+0xa1d/0x1120 fs/ioctl.c:910 __ia32_compat_sys_ioctl+0xdd/0x120 fs/ioctl.c:910 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline] __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178 do_fast_syscall_32+0x37/0x80 arch/x86/entry/common.c:203 do_SYSENTER_32+0x1f/0x30 arch/x86/entry/common.c:246 entry_SYSENTER_compat_after_hwframe+0x70/0x82 Uninit was stored to memory at: init_delayed_ref_head fs/btrfs/delayed-ref.c:775 [inline] btrfs_add_delayed_tree_ref+0x1714/0x1e00 fs/btrfs/delayed-ref.c:966 btrfs_inc_extent_ref+0x236/0x3e0 fs/btrfs/extent-tree.c:1396 __btrfs_mod_ref+0x139f/0x17e0 fs/btrfs/extent-tree.c:2459 btrfs_inc_ref+0xc2/0xe0 fs/btrfs/extent-tree.c:2474 btrfs_copy_root+0xd98/0x1440 create_pending_snapshot+0x20af/0x4fb0 fs/btrfs/transaction.c:1768 create_pending_snapshots+0x256/0x3d0 fs/btrfs/transaction.c:1894 btrfs_commit_transaction+0x23e3/0x6d80 fs/btrfs/transaction.c:2351 create_snapshot+0xb6f/0x1110 fs/btrfs/ioctl.c:844 btrfs_mksubvol+0x1025/0x11b0 fs/btrfs/ioctl.c:994 btrfs_mksnapshot+0x276/0x320 fs/btrfs/ioctl.c:1040 __btrfs_ioctl_snap_create+0x79a/0xad0 fs/btrfs/ioctl.c:1293 btrfs_ioctl_snap_create_v2+0x47f/0xa20 fs/btrfs/ioctl.c:1380 btrfs_ioctl+0x16ad/0x1a80 btrfs_compat_ioctl+0xf8/0x110 fs/btrfs/ioctl.c:4701 __do_compat_sys_ioctl fs/ioctl.c:968 [inline] __se_compat_sys_ioctl+0xa1d/0x1120 fs/ioctl.c:910 __ia32_compat_sys_ioctl+0xdd/0x120 fs/ioctl.c:910 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline] __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178 do_fast_syscall_32+0x37/0x80 arch/x86/entry/common.c:203 do_SYSENTER_32+0x1f/0x30 arch/x86/entry/common.c:246 entry_SYSENTER_compat_after_hwframe+0x70/0x82 Uninit was stored to memory at: btrfs_init_generic_ref fs/btrfs/delayed-ref.h:260 [inline] __btrfs_mod_ref+0x1122/0x17e0 fs/btrfs/extent-tree.c:2454 btrfs_inc_ref+0xc2/0xe0 fs/btrfs/extent-tree.c:2474 btrfs_copy_root+0xd98/0x1440 create_pending_snapshot+0x20af/0x4fb0 fs/btrfs/transaction.c:1768 create_pending_snapshots+0x256/0x3d0 fs/btrfs/transaction.c:1894 btrfs_commit_transaction+0x23e3/0x6d80 fs/btrfs/transaction.c:2351 create_snapshot+0xb6f/0x1110 fs/btrfs/ioctl.c:844 btrfs_mksubvol+0x1025/0x11b0 fs/btrfs/ioctl.c:994 btrfs_mksnapshot+0x276/0x320 fs/btrfs/ioctl.c:1040 __btrfs_ioctl_snap_create+0x79a/0xad0 fs/btrfs/ioctl.c:1293 btrfs_ioctl_snap_create_v2+0x47f/0xa20 fs/btrfs/ioctl.c:1380 btrfs_ioctl+0x16ad/0x1a80 btrfs_compat_ioctl+0xf8/0x110 fs/btrfs/ioctl.c:4701 __do_compat_sys_ioctl fs/ioctl.c:968 [inline] __se_compat_sys_ioctl+0xa1d/0x1120 fs/ioctl.c:910 __ia32_compat_sys_ioctl+0xdd/0x120 fs/ioctl.c:910 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline] __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178 do_fast_syscall_32+0x37/0x80 arch/x86/entry/common.c:203 do_SYSENTER_32+0x1f/0x30 arch/x86/entry/common.c:246 entry_SYSENTER_compat_after_hwframe+0x70/0x82 Uninit was created at: __alloc_pages+0x926/0x10a0 mm/page_alloc.c:5572 alloc_pages+0xb4b/0xec0 folio_alloc+0x7f/0x180 mm/mempolicy.c:2297 filemap_alloc_folio+0xf0/0x510 mm/filemap.c:972 __filemap_get_folio+0xf35/0x1a50 mm/filemap.c:1966 pagecache_get_page+0xc2/0x310 mm/folio-compat.c:98 find_or_create_page include/linux/pagemap.h:612 [inline] alloc_extent_buffer+0x7ea/0x3470 fs/btrfs/extent_io.c:4500 btrfs_find_create_tree_block+0xb6/0xd0 fs/btrfs/disk-io.c:1002 btrfs_init_new_buffer fs/btrfs/extent-tree.c:4873 [inline] btrfs_alloc_tree_block+0x579/0x24e0 fs/btrfs/extent-tree.c:4992 btrfs_copy_root+0x5cc/0x1440 fs/btrfs/ctree.c:327 create_pending_snapshot+0x20af/0x4fb0 fs/btrfs/transaction.c:1768 create_pending_snapshots+0x256/0x3d0 fs/btrfs/transaction.c:1894 btrfs_commit_transaction+0x23e3/0x6d80 fs/btrfs/transaction.c:2351 create_snapshot+0xb6f/0x1110 fs/btrfs/ioctl.c:844 btrfs_mksubvol+0x1025/0x11b0 fs/btrfs/ioctl.c:994 btrfs_mksnapshot+0x276/0x320 fs/btrfs/ioctl.c:1040 __btrfs_ioctl_snap_create+0x79a/0xad0 fs/btrfs/ioctl.c:1293 btrfs_ioctl_snap_create_v2+0x47f/0xa20 fs/btrfs/ioctl.c:1380 btrfs_ioctl+0x16ad/0x1a80 btrfs_compat_ioctl+0xf8/0x110 fs/btrfs/ioctl.c:4701 __do_compat_sys_ioctl fs/ioctl.c:968 [inline] __se_compat_sys_ioctl+0xa1d/0x1120 fs/ioctl.c:910 __ia32_compat_sys_ioctl+0xdd/0x120 fs/ioctl.c:910 do_syscall_32_irqs_on arch/x86/entry/common.c:112 [inline] __do_fast_syscall_32+0xa2/0x100 arch/x86/entry/common.c:178 do_fast_syscall_32+0x37/0x80 arch/x86/entry/common.c:203 do_SYSENTER_32+0x1f/0x30 arch/x86/entry/common.c:246 entry_SYSENTER_compat_after_hwframe+0x70/0x82 CPU: 1 PID: 6263 Comm: syz-executor.1 Not tainted 6.2.0-rc8-syzkaller-80999-g31b504f219a9 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/21/2023 =====================================================