2088 |
@ Transit to new domain before do_execve() succeeds. |
@ Transit to new domain before do_execve() succeeds. |
2089 |
|
|
2090 |
Permission checks for interpreters and environment variables are |
Permission checks for interpreters and environment variables are |
2091 |
done using new domain. In order to be allow ccs-queryd to reach the new |
done using new domain. In order to allow ccs-queryd to reach the new |
2092 |
domain via global PID, I reverted "Don't transit to new domain until |
domain via global PID, I reverted "Don't transit to new domain until |
2093 |
do_execve() succeeds." made on 2008/10/07. |
do_execve() succeeds." made on 2008/10/07. |
2094 |
|
|
2281 |
|
|
2282 |
Fix 2009/12/15 |
Fix 2009/12/15 |
2283 |
|
|
|
@ Don't check DAC permission if disabled mode. |
|
|
|
|
|
I was checking DAC permissions regarding directory entry modification |
|
|
operations (e.g. mkdir()) even if mode=disabled . It is a waste of CPU |
|
|
resource to check DAC permissions when MAC permissions are not checked. |
|
|
Thus, I modified to skip DAC permission checks if mode=disabled . |
|
|
|
|
2284 |
@ Allow deleting "quota_exceeded" and "transition_failed" entries. |
@ Allow deleting "quota_exceeded" and "transition_failed" entries. |
2285 |
|
|
2286 |
To notify users of "this domain has too many entries to hold" and "some |
To notify users of "this domain has too many entries to hold" and "some |
2298 |
between TOMOYO 1.7.0 and 1.7.1 , I made a mistake which made TOMOYO to |
between TOMOYO 1.7.0 and 1.7.1 , I made a mistake which made TOMOYO to |
2299 |
check allow_read permission of the programs specified by execute_handler |
check allow_read permission of the programs specified by execute_handler |
2300 |
and denied_execute_handler keywords. |
and denied_execute_handler keywords. |
2301 |
|
|
2302 |
|
@ Don't check DAC permission if disabled mode. |
2303 |
|
|
2304 |
|
I was checking DAC permissions regarding directory entry modification |
2305 |
|
operations (e.g. mkdir()) even if mode=disabled . It is a waste of CPU |
2306 |
|
resource to check DAC permissions when MAC permissions are not checked. |
2307 |
|
Thus, I modified to skip DAC permission checks if mode=disabled . |
2308 |
|
|
2309 |
|
Fix 2009/12/19 |
2310 |
|
|
2311 |
|
@ Fix memory leak in ccs_environ(). |
2312 |
|
|
2313 |
|
When I fixed a bug that a permission like |
2314 |
|
|
2315 |
|
allow_env PATH if exec.envp["PATH"]="/" |
2316 |
|
|
2317 |
|
was not working (2009/11/02), I allocated two buffers but only one buffer |
2318 |
|
was released. |
2319 |
|
|
2320 |
|
This bug will trigger OOM killer if environment variable checking is |
2321 |
|
enabled. |
2322 |
|
|
2323 |
|
Fix 2010/01/17 |
2324 |
|
|
2325 |
|
@ Use current domain's name for execute_handler audit log. |
2326 |
|
|
2327 |
|
Since 1.6.7 , /proc/ccs/grant_log was by error using next domain's name |
2328 |
|
when auditing current domain's "execute_handler" line. |