Diff of /trunk/1.6.x/ccs-patch/README.ccs

TOMOYO

 Subversion リポジトリの参照



/[tomoyo]/trunk/1.6.x/ccs-patch/README.ccs




Diff of /trunk/1.6.x/ccs-patch/README.ccs



 Parent Directory

|  Revision Log



|  Patch














revision 352 by kumaneko,
Tue Aug 14 11:27:50 2007 UTC




revision 512 by kumaneko,
Thu Sep 27 08:52:16 2007 UTC






#

Line 991 
 Fix 2007/08/14


Line 991 
 Fix 2007/08/14












991
       read() or recvmsg() with NULL address because address buffer is NULL.
       read() or recvmsg() with NULL address because address buffer is NULL.

















992
       I moved hooks from sock_recvmsg() to skb_recv_datagram() so that
       I moved hooks from sock_recvmsg() to skb_recv_datagram() so that

















993
       network access control for incoming UDP and RAW packets always work.
       network access control for incoming UDP and RAW packets always work.












994
 
 







995
 
 Fix 2007/08/16







996
 
 







997
 
     @ Return appropriate error code for CheckMountPermission().







998
 
 







999
 
       I was returning -EPERM if something is wrong with CheckMountPermission().







1000
 
       But SELinux determines whether selinuxfs is supported by kernel







1001
 
       based on whether error code is -ENODEV or not.







1002
 
       So I stopped returning -EPERM unconditionally.







1003
 
 







1004
 
 Fix 2007/08/17







1005
 
 







1006
 
     @ Remove initializer directive.







1007
 
 







1008
 
       Use "initialize_domain" instrad of "initializer".







1009
 
 







1010
 
 Fix 2007/08/21







1011
 
 







1012
 
     @ Fix "allow_argv0 ... if if ..." bug.







1013
 
 







1014
 
       It was impossible to use a word "if" to the second argument of







1015
 
       allow_argv0 if condition part is used.







1016
 
 







1017
 
 Fix 2007/08/24







1018
 
 







1019
 
     @ Move /proc/ccs/\*/\* to /proc/ccs/\* .







1020
 
 







1021
 
       Some pathnames for /proc/ccs/ interface were changed.







1022
 
 







1023
 
 Fix 2007/09/05







1024
 
 







1025
 
     @ Drop MSG_PEEK'ed message before skb_free_datagram().







1026
 
 







1027
 
       I need to remove head message from unwanted source







1028
 
       from socket's receive queue so that the caller can pick up







1029
 
       next message from wanted source with MSG_PEEK flags.







1030
 
 







1031
 
 Version 1.5.0 2007/09/20   Usability enhancement release.







1032
 
 







1033
 
 Fix 2007/09/27







1034
 
 







1035
 
     @ Avoid eating memory after quota exceeded.







1036
 
 







1037
 
       Although ACL entries in a domain won't be added if the domain's quota







1038
 
       has exceeded, SaveName() in AddFileACL() is called anyway.







1039
 
       This caused unneeded memory consumption.







1040
 
 







1041
 
       Now, quota checking is done before getting domain_acl_lock lock.







1042
 
       This may exceed quota by one or two entries, but that won't matter.
























Legend:



Removed from v.352
 


changed lines


 
Added in v.512













Back to OSDN">Back to OSDN
ViewVC Help


Powered by ViewVC 1.1.26
 /[tomoyo]/trunk/1.6.x/ccs-patch/README.ccs
-revision 352 by kumaneko,
Tue Aug 14 11:27:50 2007 UTC
+revision 512 by kumaneko,
Thu Sep 27 08:52:16 2007 UTC
 Line 991 
 Fix 2007/08/14
        read() or recvmsg() with NULL address because address buffer is NULL.
        I moved hooks from sock_recvmsg() to skb_recv_datagram() so that
        network access control for incoming UDP and RAW packets always work.
+ Fix 2007/08/16
+     @ Return appropriate error code for CheckMountPermission().
+       I was returning -EPERM if something is wrong with CheckMountPermission().
+       But SELinux determines whether selinuxfs is supported by kernel
+       based on whether error code is -ENODEV or not.
+       So I stopped returning -EPERM unconditionally.
+ Fix 2007/08/17
+     @ Remove initializer directive.
+       Use "initialize_domain" instrad of "initializer".
+ Fix 2007/08/21
+     @ Fix "allow_argv0 ... if if ..." bug.
+       It was impossible to use a word "if" to the second argument of
+       allow_argv0 if condition part is used.
+ Fix 2007/08/24
+     @ Move /proc/ccs/\*/\* to /proc/ccs/\* .
+       Some pathnames for /proc/ccs/ interface were changed.
+ Fix 2007/09/05
+     @ Drop MSG_PEEK'ed message before skb_free_datagram().
+       I need to remove head message from unwanted source
+       from socket's receive queue so that the caller can pick up
+       next message from wanted source with MSG_PEEK flags.
+ Version 1.5.0 2007/09/20   Usability enhancement release.
+ Fix 2007/09/27
+     @ Avoid eating memory after quota exceeded.
+       Although ACL entries in a domain won't be added if the domain's quota
+       has exceeded, SaveName() in AddFileACL() is called anyway.
+       This caused unneeded memory consumption.
+       Now, quota checking is done before getting domain_acl_lock lock.
+       This may exceed quota by one or two entries, but that won't matter.
 Legend:



Removed from v.352
 


changed lines


 
Added in v.512
 Legend:



Removed from v.352
 


changed lines


 
Added in v.512
-Removed from v.352
+Added in v.512
-Back to OSDN">Back to OSDN
+ViewVC Help
 Powered by ViewVC 1.1.26

オープンソース・ソフトウェアの開発とダウンロード

TOMOYO

Subversion リポジトリの参照