I have a few questions on your comments. The ones for which I do not have
questions, I will modify as suggested.
> > diff -puN include/net/xfrm.h~lsm-xfrm-nethooks include/net/xfrm.h
>> --- linux-2.6.13-rc4-xfrm/include/net/xfrm.h~lsm-xfrm-nethooks
2005-08-01 16:11:22.000000000 -0400
>> +++ linux-2.6.13-rc4-xfrm-root/include/net/xfrm.h 2005-08-01
16:11:22.000000000 -0400
>> @@ -510,6 +514,27 @@ xfrm_selector_match(struct xfrm_selector
>> return 0;
>> }
>>
>> +/* If neither has a context --> match
>> + Otherwise, both must have a context and the sids, doi, alg must
match */
>> +static inline int xfrm_sec_ctx_match(struct xfrm_sec_ctx *s1, struct
xfrm_sec_ctx *s2)
>> +{
>> + return ((!s1 && !s2) ||
>> + (s1 && s2 &&
>> + (s1->ctx_sid == s2->ctx_sid) &&
>> + (s1->ctx_doi == s2->ctx_doi) &&
>> + (s1->ctx_alg == s2->ctx_alg)));
>> +}
> Would it be possible to make this conditional on
CONFIG_SECURITY_NETWORK?
This is specific to CONFIG_SECURITY_NETWORK_XFRM as contexts will only be
used in that case. I will make it conditional on that instead, if that's
OK.
Regards,
Trent.
------------------------------------------------------------
Trent Jaeger
IBM T.J. Watson Research Center
19 Skyline Drive, Hawthorne, NY 10532
(914) 784-7225, FAX (914) 784-7225
-
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to [EMAIL PROTECTED]
More majordomo info at http://vger.kernel.org/majordomo-info.html
