--- trunk/1.8.x/ccs-patch/README.ccs	2011/06/06 12:33:50	5089
+++ trunk/1.8.x/ccs-patch/README.ccs	2011/07/07 11:58:12	5235
@@ -2864,9 +2864,49 @@
       exception policy and profiles, which are all independent of other
       namespaces.
 
-    @ Remove CONFIG_TOMOYO_BUILTIN_INITIALIZERS option.
+    @ Remove CONFIG_CCSECURITY_BUILTIN_INITIALIZERS option.
 
       From now on, exception policy and manager need to be able to handle
       policy namespace (which is a <$namespace> prefix added to each line).
-      Thus, space-separated list for CONFIG_TOMOYO_BUILTIN_INITIALIZERS is
+      Thus, space-separated list for CONFIG_CCSECURITY_BUILTIN_INITIALIZERS is
       no longer suitable for handling policy namespace.
+
+Fix 2011/06/10
+
+    @ Allow specifying trigger for activation.
+
+      To be able to use TOMOYO under systemd environments where init= parameter
+      is used, I changed to allow overriding the trigger for calling external
+      policy loader and activating MAC via kernel command line options.
+
+Fix 2011/06/14
+
+    @ Remove unused "struct inode *" parameter from ccs-patch-\*.diff .
+
+      To follow changes I made on 2011/04/20, I removed "struct inode *" from
+      ccs_mknod_permission(), ccs_mkdir_permission(), ccs_rmdir_permission(),
+      ccs_unlink_permission(), ccs_symlink_permission(), ccs_link_permission(),
+      ccs_rename_permission() that are called from fs/namei.c
+      net/unix/af_unix.c include/linux/security.c security/security.c .
+      If you have your own ccs-patch-*.diff , please update accordingly.
+
+Version 1.8.2   2011/06/20   Usability enhancement release.
+
+Fix 2011/07/07
+
+    @ Remove /proc/ccs/.domain_status interface.
+
+      Writing to /proc/ccs/.domain_status can be emulated by
+
+        ( echo "select " $domainname; echo "use_profile " $profile ) |
+        /usr/sbin/ccs-loadpolicy -d
+
+      and reading from /proc/ccs/.domain_status can be emulated by
+
+        grep -A 1 '^<' /proc/ccs/domain_policy |
+        awk ' { if ( domainname == "" ) { if ( substr($1, 1, 1) == "<" )
+        domainname = $0; } else if ( $1 == "use_profile" ) {
+        print $2 " " domainname; domainname = ""; } } ; '
+
+      . Since this interface is used by only /usr/sbin/ccs-setprofile ,
+      remove this interface by updating /usr/sbin/ccs-setprofile .