selinux: Fix missing calls to netlbl_skbuff_err() At some point I think I messed up and dropped the calls to netlbl_skbuff_err() which are necessary for CIPSO to send error notifications to remote systems. This patch re-introduces the error handling calls into the SELinux code. Signed-off-by: Paul Moore <paul.moore@hp.com> Acked-by: James Morris <jmorris@namei.org>

commit: dfaebe9825ff34983778f287101bc5f3bce00640 [log] [tgz]
author: Paul Moore <paul.moore@hp.com> Fri Oct 10 10:16:31 2008 -0400
committer: Paul Moore <paul.moore@hp.com> Fri Oct 10 10:16:31 2008 -0400
tree: 4dccdcdcecd57fc8bfc083ff30d9e0ecb2e7ecba
parent: 99d854d231ce141850b988bdc7e2e7c78f49b03a [diff] [blame]
diff --git a/security/selinux/include/netlabel.h b/security/selinux/include/netlabel.h
index 487a7d8..d4e3ac8 100644
--- a/security/selinux/include/netlabel.h
+++ b/security/selinux/include/netlabel.h

@@ -39,6 +39,8 @@
 #ifdef CONFIG_NETLABEL
 void selinux_netlbl_cache_invalidate(void);
 
+void selinux_netlbl_err(struct sk_buff *skb, int error, int gateway);
+
 void selinux_netlbl_sk_security_reset(struct sk_security_struct *ssec,
 				      int family);
 
@@ -63,6 +65,13 @@
 	return;
 }
 
+static inline void selinux_netlbl_err(struct sk_buff *skb,
+				      int error,
+				      int gateway)
+{
+	return;
+}
+
 static inline void selinux_netlbl_sk_security_reset(
 					       struct sk_security_struct *ssec,
 					       int family)
commit	dfaebe9825ff34983778f287101bc5f3bce00640	[log] [tgz]
author	Paul Moore <paul.moore@hp.com>	Fri Oct 10 10:16:31 2008 -0400
committer	Paul Moore <paul.moore@hp.com>	Fri Oct 10 10:16:31 2008 -0400
tree	4dccdcdcecd57fc8bfc083ff30d9e0ecb2e7ecba
parent	99d854d231ce141850b988bdc7e2e7c78f49b03a [diff] [blame]