| 2088 |
@ Transit to new domain before do_execve() succeeds. |
@ Transit to new domain before do_execve() succeeds. |
| 2089 |
|
|
| 2090 |
Permission checks for interpreters and environment variables are |
Permission checks for interpreters and environment variables are |
| 2091 |
done using new domain. In order to be allow ccs-queryd to reach the new |
done using new domain. In order to allow ccs-queryd to reach the new |
| 2092 |
domain via global PID, I reverted "Don't transit to new domain until |
domain via global PID, I reverted "Don't transit to new domain until |
| 2093 |
do_execve() succeeds." made on 2008/10/07. |
do_execve() succeeds." made on 2008/10/07. |
| 2094 |
|
|
| 2281 |
|
|
| 2282 |
Fix 2009/12/15 |
Fix 2009/12/15 |
| 2283 |
|
|
|
@ Don't check DAC permission if disabled mode. |
|
|
|
|
|
I was checking DAC permissions regarding directory entry modification |
|
|
operations (e.g. mkdir()) even if mode=disabled . It is a waste of CPU |
|
|
resource to check DAC permissions when MAC permissions are not checked. |
|
|
Thus, I modified to skip DAC permission checks if mode=disabled . |
|
|
|
|
| 2284 |
@ Allow deleting "quota_exceeded" and "transition_failed" entries. |
@ Allow deleting "quota_exceeded" and "transition_failed" entries. |
| 2285 |
|
|
| 2286 |
To notify users of "this domain has too many entries to hold" and "some |
To notify users of "this domain has too many entries to hold" and "some |
| 2298 |
between TOMOYO 1.7.0 and 1.7.1 , I made a mistake which made TOMOYO to |
between TOMOYO 1.7.0 and 1.7.1 , I made a mistake which made TOMOYO to |
| 2299 |
check allow_read permission of the programs specified by execute_handler |
check allow_read permission of the programs specified by execute_handler |
| 2300 |
and denied_execute_handler keywords. |
and denied_execute_handler keywords. |
| 2301 |
|
|
| 2302 |
|
@ Don't check DAC permission if disabled mode. |
| 2303 |
|
|
| 2304 |
|
I was checking DAC permissions regarding directory entry modification |
| 2305 |
|
operations (e.g. mkdir()) even if mode=disabled . It is a waste of CPU |
| 2306 |
|
resource to check DAC permissions when MAC permissions are not checked. |
| 2307 |
|
Thus, I modified to skip DAC permission checks if mode=disabled . |
| 2308 |
|
|
| 2309 |
|
Fix 2009/12/19 |
| 2310 |
|
|
| 2311 |
|
@ Fix memory leak in ccs_environ(). |
| 2312 |
|
|
| 2313 |
|
When I fixed a bug that a permission like |
| 2314 |
|
|
| 2315 |
|
allow_env PATH if exec.envp["PATH"]="/" |
| 2316 |
|
|
| 2317 |
|
was not working (2009/11/02), I allocated two buffers but only one buffer |
| 2318 |
|
was released. |
| 2319 |
|
|
| 2320 |
|
This bug will trigger OOM killer if environment variable checking is |
| 2321 |
|
enabled. |
| 2322 |
|
|
| 2323 |
|
Fix 2010/01/17 |
| 2324 |
|
|
| 2325 |
|
@ Use current domain's name for execute_handler audit log. |
| 2326 |
|
|
| 2327 |
|
Since 1.6.7 , /proc/ccs/grant_log was by error using next domain's name |
| 2328 |
|
when auditing current domain's "execute_handler" line. |
TOMOYO
Parent Directory
Revision Log
Patch