[PATCH 05/13] selinux: Use simple_start_creating() / simple_done_creating()
NeilBrown
neilb at ownmail.net
Sat Feb 21 22:28:41 UTC 2026
On Sat, 21 Feb 2026, Paul Moore wrote:
> On Wed, Feb 4, 2026 at 12:08 AM NeilBrown <neilb at ownmail.net> wrote:
> >
> > From: NeilBrown <neil at brown.name>
> >
> > Instead of explicitly locking the parent and performing a lookup in
> > selinux, use simple_start_creating(), and then use
> > simple_done_creating() to unlock.
> >
> > This extends the region that the directory is locked for, and also
> > performs a lookup.
> > The lock extension is of no real consequence.
> > The lookup uses simple_lookup() and so always succeeds. Thus when
> > d_make_persistent() is called the dentry will already be hashed.
> > d_make_persistent() handles this case.
> >
> > Signed-off-by: NeilBrown <neil at brown.name>
> > ---
> > security/selinux/selinuxfs.c | 15 +++++++--------
> > 1 file changed, 7 insertions(+), 8 deletions(-)
>
> Unless I'm missing something, there is no reason why I couldn't take
> just this patch into the SELinux tree once the merge window closes,
> yes?
Yes - but ...
Once this series lands (hopefully soon - I will resend after -rc1 is
out) I have another batch which depends on the new start_creating etc
API being used everywhere. So for Christian to be able to apply that,
he will need to pull in this patch from the SELinux tree.
So if you could apply just this patch to some branch and merge that
branch with your other work however works best for you, and make the
branch available, then I think Christian will be happy to merge that
with whatever vfs branch he includes my work in, and all should be good.
Thanks
NeilBrown
>
> --
> paul-moore.com
>
More information about the Linux-security-module-archive
mailing list