--- trunk/1.6.x/ccs-patch/README.ccs	2008/12/09 01:31:13	1927
+++ trunk/1.6.x/ccs-patch/README.ccs	2009/01/05 05:56:56	2037
@@ -1758,7 +1758,7 @@
       will allow opening /etc/fstab for reading only if /etc/fstab is a regular
       file and it's permission is 0644, and
 
-        allow_write /dev/null if path1.type=char path1.major=1 path1.minor=3
+        allow_write /dev/null if path1.type=char path1.dev_major=1 path1.dev_minor=3
 
       will allow opening /dev/null for writing only if /dev/null is a character
       device file with major=1 and minor=3 attributes.
@@ -1774,3 +1774,36 @@
         echo Dynamic: 1048576 > /proc/ccs/meminfo
 
       This quota is not applied to temporary memory used for permission checks.
+
+Fix 2008/12/09
+
+    @ Fix ccs_can_save_audit_log() checks.
+
+      Due to incorrect statement "if (ccs_can_save_audit_log() < 0)"
+      while ccs_can_save_audit_log() is boolean, MAX_GRANT_LOG and
+      MAX_REJECT_LOG were not working.
+
+      This bug will trigger OOM killer if /usr/sbin/ccs-auditd is not working.
+
+Fix 2008/12/24
+
+    @ Add "ccs_" prefix.
+
+      To be able to tell whether a symbol is TOMOYO Linux related or not,
+      I added "ccs_" prefix as much as possible.
+
+    @ Fix ccs_check_flags() error message.
+
+      I meant to print SYAORAN-ERROR: message when error == -EPERM,
+      but I was printing it when error == 0 since 1.6.0 .
+
+Fix 2009/01/05
+
+    @ Use kmap_atomic()/kunmap_atomic() for reading "struct linux_binprm".
+
+      As remove_arg_zero() uses kmap_atomic(KM_USER0), I modified to use
+      kmap_atomic(KM_USER0) rather than kmap().
+
+    @ Relocate definitions and functions.
+
+      To reduce exposed symbols, I relocated some definitions and functions.