Re: [syzbot] [jfs?] KASAN: slab-use-after-free Read in lbmIODone

Next message: Pasha Tatashin: "Re: [PATCH v5 3/4] liveupdate: add LIVEUPDATE_SESSION_GET_NAME ioctl"
Previous message: Tabrez Ahmed: "[PATCH v3 3/3] hwmon: (ads7871) Use DMA-safe buffer for SPI writes"
In reply to: syzbot: "Re: [syzbot] [jfs?] KASAN: slab-use-after-free Read in lbmIODone"
Next in thread: syzbot: "Re: [syzbot] [jfs?] KASAN: slab-use-after-free Read in lbmIODone"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Edward Adam Davis

Date: Fri Apr 17 2026 - 23:56:42 EST

#syz test: upstream master

diff --git a/fs/jfs/jfs_logmgr.c b/fs/jfs/jfs_logmgr.c
index 5f31c12f4607..69b9d161b783 100644
--- a/fs/jfs/jfs_logmgr.c
+++ b/fs/jfs/jfs_logmgr.c
@@ -1984,7 +1984,7 @@ static int lbmRead(struct jfs_log * log, int pn, struct lbuf ** bpp)
submit_bio(bio);
}

- wait_event(bp->l_ioevent, (bp->l_flag == lbmDONE));
+ wait_event(bp->l_ioevent, (bp->l_flag & lbmDONE));

return 0;
}