]> err.no Git - linux-2.6/commit
NetLabel: add tag verification when adding new CIPSOv4 DOI definitions
authorPaul Moore <paul.moore@hp.com>
Fri, 17 Nov 2006 22:38:48 +0000 (17:38 -0500)
committerDavid S. Miller <davem@sunset.davemloft.net>
Sun, 3 Dec 2006 05:24:09 +0000 (21:24 -0800)
commit6ce61a7c2678800cfe59a5f4a41ce8f785b9d355
treeab15a8da36aba770616b43b536efb881d9b48988
parent05e00cbf5036929355020dab4837b637203a0742
NetLabel: add tag verification when adding new CIPSOv4 DOI definitions

Currently the CIPSOv4 engine does not do any sort of checking when a new DOI
definition is added.  The tags are still verified but only as a side effect of
normal NetLabel operation (packet processing, socket labeling, etc.) which
would cause application errors due to the faulty configuration.  This patch
adds tag checking when new DOI definition are added allowing us to catch these
configuration problems when they happen.

Signed-off-by: Paul Moore <paul.moore@hp.com>
Signed-off-by: James Morris <jmorris@namei.org>
net/ipv4/cipso_ipv4.c