diff --git a/utils/apparmor/rule/network.py b/utils/apparmor/rule/network.py
index 6ba76907e..1acec8005 100644
--- a/utils/apparmor/rule/network.py
+++ b/utils/apparmor/rule/network.py
@@ -26,8 +26,8 @@ _ = init_translation()
 
 network_domain_keywords   = [ 'unspec', 'unix', 'inet', 'ax25', 'ipx', 'appletalk', 'netrom', 'bridge', 'atmpvc', 'x25', 'inet6',
                               'rose', 'netbeui', 'security', 'key', 'netlink', 'packet', 'ash', 'econet', 'atmsvc', 'rds', 'sna',
-                              'irda', 'pppox', 'wanpipe', 'llc', 'can', 'tipc', 'bluetooth', 'iucv', 'rxrpc', 'isdn', 'phonet',
-                              'ieee802154', 'caif', 'alg', 'nfc', 'vsock', 'mpls', 'ib', 'kcm', 'smc' ]
+                              'irda', 'pppox', 'wanpipe', 'llc', 'ib', 'mpls', 'can', 'tipc', 'bluetooth', 'iucv', 'rxrpc', 'isdn',
+                              'phonet', 'ieee802154', 'caif', 'alg', 'nfc', 'vsock', 'kcm', 'qipcrtr', 'smc', 'xdp' ]
 
 network_type_keywords     = ['stream', 'dgram', 'seqpacket', 'rdm', 'raw', 'packet']
 network_protocol_keywords = ['tcp', 'udp', 'icmp']
diff --git a/utils/test/test-network.py b/utils/test/test-network.py
index ea27619fc..73a6b9d1f 100644
--- a/utils/test/test-network.py
+++ b/utils/test/test-network.py
@@ -17,9 +17,9 @@ import unittest
 from collections import namedtuple
 from common_test import AATest, setup_all_loops
 
-from apparmor.rule.network import NetworkRule, NetworkRuleset
+from apparmor.rule.network import NetworkRule, NetworkRuleset, network_domain_keywords
 from apparmor.rule import BaseRule
-from apparmor.common import AppArmorException, AppArmorBug
+from apparmor.common import AppArmorException, AppArmorBug, cmd
 from apparmor.logparser import ReadLog
 from apparmor.translations import init_translation
 _ = init_translation()
@@ -27,6 +27,30 @@ _ = init_translation()
 exp = namedtuple('exp', ['audit', 'allow_keyword', 'deny', 'comment',
         'domain', 'all_domains', 'type_or_protocol', 'all_type_or_protocols'])
 
+# --- check if the keyword list is up to date --- #
+
+class NetworkKeywordsTest(AATest):
+    def test_network_keyword_list(self):
+        rc, output = cmd('../../common/list_af_names.sh')
+        self.assertEqual(rc, 0)
+
+        af_names = []
+        af_pairs = output.replace('AF_', '').strip().lower().split(",")
+        for af_pair in af_pairs:
+            af_name = af_pair.lstrip().split(" ")[0]
+            # skip max af name definition
+            if len(af_name) > 0 and af_name != "max":
+                af_names.append(af_name)
+
+        missing_af_names = []
+        for keyword in af_names:
+            if keyword not in network_domain_keywords:
+                # keywords missing in the system are ok (= older kernel), but network_domain_keywords needs to have the full list
+                missing_af_names.append(keyword)
+
+        self.assertEqual(missing_af_names, [], 'Missing af_names in NetworkRule network_domain_keywords. This test is likely running '
+                'on an newer kernel and will require updating the list of network domain keywords in utils/apparmor/rule/network.py')
+
 # --- tests for single NetworkRule --- #
 
 class NetworkTest(AATest):