Re: [PATCH v3 05/15] Apparmor: Use simple_start_creating() / simple_done_creating()

Next message: Ping-Ke Shih: "RE: [PATCH 00/13] wifi: drop redundant USB device references"
Previous message: Shengjiu Wang: "[PATCH v4 3/3] ASoC: fsl_xcvr: add bitcount and timestamp controls"
Next in thread: NeilBrown: "Re: [PATCH v3 05/15] Apparmor: Use simple_start_creating() / simple_done_creating()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Christian Brauner

Date: Fri Mar 06 2026 - 04:44:11 EST

On Wed, Feb 25, 2026 at 09:16:50AM +1100, NeilBrown wrote:
> From: NeilBrown <neil@xxxxxxxxxx>
>
> Instead of explicitly locking the parent and performing a look up in
> apparmor, use simple_start_creating(), and then simple_done_creating()
> to unlock and drop the dentry.
>
> This removes the need to check for an existing entry (as
> simple_start_creating() acts like an exclusive create and can return
> -EEXIST), simplifies error paths, and keeps dir locking code
> centralised.
>
> Reviewed-by: Jeff Layton <jlayton@xxxxxxxxxx>
> Signed-off-by: NeilBrown <neil@xxxxxxxxxx>
> ---

Fwiw, I think this fixes a reference count leak:

The old aafs_create returned dentries with refcount=2 (one from
lookup_noperm, one from dget in __aafs_setup_d_inode). The cleanup path
aafs_remove puts one reference leaving one reference that didn't get
cleaned up.

After your changes this is now correct as simple_done_creating() puts
the lookup reference.