On Thu, 10 Feb 2022 21:07:11 +0530, Ritesh Harjani wrote:
> jbd2_journal_wait_updates() is called with j_state_lock held. But if
> there is a commit in progress, then this transaction might get committed
> and freed via jbd2_journal_commit_transaction() ->
> jbd2_journal_free_transaction(), when we release j_state_lock.
> So check for journal->j_running_transaction everytime we release and
> acquire j_state_lock to avoid use-after-free issue.
>
> [...]
Applied, thanks!
[1/1] jbd2: Fix use-after-free of transaction_t race
commit: cc16eecae687912238ee6efbff71ad31e2bc414e
Best regards,
--
Theodore Ts'o <tytso@xxxxxxx>
