--- trunk/1.6.x/ccs-patch/README.ccs	2008/06/22 03:31:36	1319
+++ trunk/1.6.x/ccs-patch/README.ccs	2008/08/21 06:59:21	1471
@@ -1469,11 +1469,6 @@
       To allow users specify locale specific files to globally readable files,
       I relaxed checking in update_globally_readable_entry().
 
-    @ Move ALLOW_ENFORCE_GRACE=enabled checking to write_answer().
-
-      To allow users use ccs-notifyd without turning ALLOW_ENFORCE_GRACE on,
-      I moved it from ccs_check_supervisor() to write_answer().
-
 Fix 2008/06/11
 
     @ Remove ALLOW_ENFORCE_GRACE parameter.
@@ -1501,4 +1496,50 @@
       which causes /proc/ccs/grant_log contain whitespace characters
       if execute handler's pathname contains whitespace characters.
 
-Version 1.6.2 2008/??/??   Usability enhancement release.
+Fix 2008/06/25
+
+    @ Return 0 when ccs_may_umount() succeeds.
+
+      I forgot to clear error value in ccs_may_umount() when the requested
+      directory didn't match "deny_unmount" keyword. As a result, any umount()
+      request with RESTRICT_UNMOUNT=enforcing returned -EPERM error.
+
+Version 1.6.2 2008/06/25   Usability enhancement release.
+
+Fix 2008/07/01
+
+    @ Fix "Compilation failure" with 2.4.20 kernel.
+
+      RedHat Linux 9's 2.4.20 kernel backported O(1) scheduler patch,
+      resulting compilation error at ccs_load_policy().
+      I added defined(TASK_DEAD) check.
+
+Fix 2008/07/08
+
+    @ Don't check permissions if vfsmount is NULL.
+
+      Some filesystems (e.g. unionfs) pass NULL vfsmount.
+      I changed fs/tomoyo_file.c not to try to calculate pathnames
+      if vfsmount is NULL.
+
+Version 1.6.3 2008/07/15   Bug fix release.
+
+Fix 2008/08/21
+
+    @ Add workaround for gcc 4.3's bug.
+
+      In some environments, fs/tomoyo_network.c could not be compiled
+      because of gcc 4.3's bug.
+      I modified save_ipv6_address() to use "integer literal" value
+      instead for "static const u8" variable.
+
+    @ Change prototypes of some functions.
+
+      To support 2.6.27 kernels, I replaced "struct nameidata" with
+      "struct path" for some functions.
+
+    @ Detect distributor specific patches automatically.
+
+      Since kernels with AppArmor patch applied is increasing,
+      I introduced a mechanism which determines whether specific patches
+      are applied or not, based on "#define" directives in the patches.