From e9c76aaf4f07f808db58ea80f1f9c6b1fabec093 Mon Sep 17 00:00:00 2001 From: Sascha Wildner Date: Sat, 14 Jul 2007 21:48:16 +0000 Subject: [PATCH] Use .Va for sysctls and tunables. --- lib/libc/gen/getbootfile.3 | 4 ++-- lib/libc/sys/chroot.2 | 10 +++++----- lib/libc/sys/getsockopt.2 | 4 ++-- lib/libc/sys/mount.2 | 4 ++-- lib/libipsec/ipsec_set_policy.3 | 4 ++-- sbin/adjkerntz/adjkerntz.8 | 10 +++++----- sbin/dumpon/dumpon.8 | 4 ++-- sbin/init/init.8 | 4 ++-- sbin/mount_union/mount_union.8 | 4 ++-- sbin/mountd/mountd.8 | 6 ++++-- share/man/man4/faith.4 | 6 +++--- share/man/man4/inet.4 | 19 +++++++++++-------- share/man/man4/ip.4 | 14 +++++++------- share/man/man4/man4.i386/linux.4 | 10 +++++----- share/man/man4/si.4 | 18 ++++++++++++------ share/man/man4/ttcp.4 | 6 +++--- share/man/man7/security.7 | 13 ++++++++++--- share/man/man9/kenv.9 | 4 ++-- share/man/man9/mbuf.9 | 4 ++-- usr.bin/whereis/whereis.1 | 4 ++-- usr.sbin/faithd/faithd.8 | 4 ++-- usr.sbin/ndp/ndp.8 | 4 ++-- usr.sbin/pfctl/pfctl.8 | 6 +++--- usr.sbin/rndcontrol/random.4 | 6 ++++-- usr.sbin/traceroute/traceroute.8 | 4 ++-- 25 files changed, 98 insertions(+), 78 deletions(-) diff --git a/lib/libc/gen/getbootfile.3 b/lib/libc/gen/getbootfile.3 index 5e11927a7b..15c4649784 100644 --- a/lib/libc/gen/getbootfile.3 +++ b/lib/libc/gen/getbootfile.3 @@ -31,7 +31,7 @@ .\" .\" From: @(#)gethostname.3 8.1 (Berkeley) 6/4/93 .\" $FreeBSD: src/lib/libc/gen/getbootfile.3,v 1.6.2.3 2001/12/14 18:33:51 ru Exp $ -.\" $DragonFly: src/lib/libc/gen/getbootfile.3,v 1.4 2006/02/25 11:26:13 swildner Exp $ +.\" $DragonFly: src/lib/libc/gen/getbootfile.3,v 1.5 2007/07/14 21:48:15 swildner Exp $ .\" .Dd September 23, 1994 .Dt GETBOOTFILE 3 @@ -53,7 +53,7 @@ current kernel was loaded, and returns a static pointer to the name. A read/write interface to this information is available via the .Xr sysctl 3 MIB variable -.Dq Li kern.bootfile . +.Va kern.bootfile . .Sh RETURN VALUES If the call succeeds a string giving the pathname is returned. If it fails, a null pointer is returned and an error code is diff --git a/lib/libc/sys/chroot.2 b/lib/libc/sys/chroot.2 index 23abdd71fd..fb48cbeaae 100644 --- a/lib/libc/sys/chroot.2 +++ b/lib/libc/sys/chroot.2 @@ -31,7 +31,7 @@ .\" .\" @(#)chroot.2 8.1 (Berkeley) 6/4/93 .\" $FreeBSD: src/lib/libc/sys/chroot.2,v 1.7.2.8 2002/12/11 14:06:37 ru Exp $ -.\" $DragonFly: src/lib/libc/sys/chroot.2,v 1.2 2003/06/17 04:26:47 dillon Exp $ +.\" $DragonFly: src/lib/libc/sys/chroot.2,v 1.3 2007/07/14 21:48:15 swildner Exp $ .\" .Dd June 4, 1993 .Dt CHROOT 2 @@ -66,14 +66,14 @@ has no effect on the process's current directory. This call is restricted to the super-user. .Pp Depending on the setting of the -.Ql kern.chroot_allow_open_directories +.Va kern.chroot_allow_open_directories sysctl variable, open filedescriptors which reference directories will make the .Fn chroot fail as follows: .Pp If -.Ql kern.chroot_allow_open_directories +.Va kern.chroot_allow_open_directories is set to zero, .Fn chroot will always fail with @@ -81,7 +81,7 @@ will always fail with if there are any directories open. .Pp If -.Ql kern.chroot_allow_open_directories +.Va kern.chroot_allow_open_directories is set to one (the default), .Fn chroot will fail with @@ -92,7 +92,7 @@ process is already subject to a call. .Pp Any other value for -.Ql kern.chroot_allow_open_directories +.Va kern.chroot_allow_open_directories will bypass the check for open directories .Pp Upon successful completion, a value of 0 is returned. Otherwise, diff --git a/lib/libc/sys/getsockopt.2 b/lib/libc/sys/getsockopt.2 index 2cbe3d7023..a5e780b86b 100644 --- a/lib/libc/sys/getsockopt.2 +++ b/lib/libc/sys/getsockopt.2 @@ -31,7 +31,7 @@ .\" .\" @(#)getsockopt.2 8.4 (Berkeley) 5/2/95 .\" $FreeBSD: src/lib/libc/sys/getsockopt.2,v 1.12.2.11 2002/01/09 17:44:15 yar Exp $ -.\" $DragonFly: src/lib/libc/sys/getsockopt.2,v 1.4 2006/05/26 19:39:37 swildner Exp $ +.\" $DragonFly: src/lib/libc/sys/getsockopt.2,v 1.5 2007/07/14 21:48:15 swildner Exp $ .\" .Dd May 2, 1995 .Dt GETSOCKOPT 2 @@ -238,7 +238,7 @@ The system places an absolute maximum on these values, which is accessible through the .Xr sysctl 3 MIB variable -.Dq Li kern.ipc.maxsockbuf . +.Va kern.ipc.maxsockbuf . .Pp .Dv SO_SNDLOWAT is an option to set the minimum count for output operations. diff --git a/lib/libc/sys/mount.2 b/lib/libc/sys/mount.2 index 1237e62681..fcd9208498 100644 --- a/lib/libc/sys/mount.2 +++ b/lib/libc/sys/mount.2 @@ -31,7 +31,7 @@ .\" .\" @(#)mount.2 8.3 (Berkeley) 5/24/95 .\" $FreeBSD: src/lib/libc/sys/mount.2,v 1.20.2.8 2003/01/17 22:02:42 joerg Exp $ -.\" $DragonFly: src/lib/libc/sys/mount.2,v 1.3 2006/02/17 19:35:06 swildner Exp $ +.\" $DragonFly: src/lib/libc/sys/mount.2,v 1.4 2007/07/14 21:48:15 swildner Exp $ .\" .Dd May 24, 1995 .Dt MOUNT 2 @@ -79,7 +79,7 @@ By default only the super-user may call the .Fn mount function. This restriction can be removed by setting the sysctl -.Em vfs.usermount +.Va vfs.usermount to a non-zero value. .Pp The following diff --git a/lib/libipsec/ipsec_set_policy.3 b/lib/libipsec/ipsec_set_policy.3 index 979e9cbaf1..a661e4f557 100644 --- a/lib/libipsec/ipsec_set_policy.3 +++ b/lib/libipsec/ipsec_set_policy.3 @@ -1,6 +1,6 @@ .\" $KAME: ipsec_set_policy.3,v 1.15 2001/08/17 07:21:36 itojun Exp $ .\" $FreeBSD: src/lib/libipsec/ipsec_set_policy.3,v 1.3.2.10 2002/12/29 16:35:36 schweikh Exp $ -.\" $DragonFly: src/lib/libipsec/ipsec_set_policy.3,v 1.2 2003/06/17 04:26:49 dillon Exp $ +.\" $DragonFly: src/lib/libipsec/ipsec_set_policy.3,v 1.3 2007/07/14 21:48:15 swildner Exp $ .\" .\" Copyright (C) 1995, 1996, 1997, 1998, and 1999 WIDE Project. .\" All rights reserved. @@ -191,7 +191,7 @@ means that the kernel should consult the system default policy defined by .Xr sysctl 8 , such as -.Li net.inet.ipsec.esp_trans_deflev . +.Va net.inet.ipsec.esp_trans_deflev . See .Xr ipsec 4 regarding the system default. diff --git a/sbin/adjkerntz/adjkerntz.8 b/sbin/adjkerntz/adjkerntz.8 index 6fe4696f55..1bdcfb4800 100644 --- a/sbin/adjkerntz/adjkerntz.8 +++ b/sbin/adjkerntz/adjkerntz.8 @@ -23,7 +23,7 @@ .\" SUCH DAMAGE. .\" .\" $FreeBSD: src/sbin/adjkerntz/adjkerntz.8,v 1.18.2.5 2002/08/21 18:58:00 trhodes Exp $ -.\" $DragonFly: src/sbin/adjkerntz/adjkerntz.8,v 1.4 2006/02/17 19:33:32 swildner Exp $ +.\" $DragonFly: src/sbin/adjkerntz/adjkerntz.8,v 1.5 2007/07/14 21:48:15 swildner Exp $ .\" .Dd April 4, 1996 .Dt ADJKERNTZ 8 @@ -62,7 +62,7 @@ If that file does not exist, it means that the CMOS clock keeps UTC time. The .Nm utility passes this state to the -.Pa machdep.wall_cmos_clock +.Va machdep.wall_cmos_clock kernel variable. .Pp Adjustments may be needed at system startup and shutdown, and @@ -88,7 +88,7 @@ and sets the kernel clock to the corresponding UTC time. The .Nm utility also stores the local time zone offset into the -.Pa machdep.adjkerntz +.Va machdep.adjkerntz kernel variable, for use by subsequent invocations of .Em "'adjkerntz -a'" and by local time file systems. @@ -110,7 +110,7 @@ Then exits. .It Fl a Op Fl s This form is used to update the local time CMOS clock and kernel -.Pa machdep.adjkerntz +.Va machdep.adjkerntz variable when time zone changes occur, e.g., when entering or leaving daylight savings time. The @@ -120,7 +120,7 @@ the previously stored time zone offset, and the changed time zone rule to calculate a new time zone offset. It stores the new offset into the -.Pa machdep.adjkerntz +.Va machdep.adjkerntz kernel variable, and updates the wall CMOS clock to the new local time. If .Em "'adjkerntz -a'" diff --git a/sbin/dumpon/dumpon.8 b/sbin/dumpon/dumpon.8 index f7830e3f4a..735f2bbc77 100644 --- a/sbin/dumpon/dumpon.8 +++ b/sbin/dumpon/dumpon.8 @@ -31,7 +31,7 @@ .\" .\" From: @(#)swapon.8 8.1 (Berkeley) 6/5/93 .\" $FreeBSD: src/sbin/dumpon/dumpon.8,v 1.11.2.12 2003/01/26 03:12:04 keramida Exp $ -.\" $DragonFly: src/sbin/dumpon/dumpon.8,v 1.4 2006/02/17 19:33:32 swildner Exp $ +.\" $DragonFly: src/sbin/dumpon/dumpon.8,v 1.5 2007/07/14 21:48:15 swildner Exp $ .\" .Dd May 12, 1995 .Dt DUMPON 8 @@ -90,7 +90,7 @@ The utility operates by setting the .Xr sysctl 3 MIB variable -.Dq kern.dumpdev +.Va kern.dumpdev to the device number of the designated .Ar special_file or to diff --git a/sbin/init/init.8 b/sbin/init/init.8 index c8419fe1ca..c520643bcd 100644 --- a/sbin/init/init.8 +++ b/sbin/init/init.8 @@ -34,7 +34,7 @@ .\" .\" @(#)init.8 8.3 (Berkeley) 4/18/94 .\" $FreeBSD: src/sbin/init/init.8,v 1.22.2.11 2003/05/03 22:19:20 keramida Exp $ -.\" $DragonFly: src/sbin/init/init.8,v 1.4 2006/04/17 18:01:37 swildner Exp $ +.\" $DragonFly: src/sbin/init/init.8,v 1.5 2007/07/14 21:48:15 swildner Exp $ .\" .Dd April 18, 1994 .Dt INIT 8 @@ -152,7 +152,7 @@ it can be set before going multi-user, e.g., by the startup script using .Xr sysctl 8 to set the -.Dq kern.securelevel +.Va kern.securelevel variable to the required security level. .Pp In multi-user operation, diff --git a/sbin/mount_union/mount_union.8 b/sbin/mount_union/mount_union.8 index 5092e553a8..c00e0df201 100644 --- a/sbin/mount_union/mount_union.8 +++ b/sbin/mount_union/mount_union.8 @@ -34,7 +34,7 @@ .\" .\" @(#)mount_union.8 8.6 (Berkeley) 3/27/94 .\" $FreeBSD: src/sbin/mount_union/mount_union.8,v 1.6.2.2 2001/12/20 16:46:05 ru Exp $ -.\" $DragonFly: src/sbin/mount_union/mount_union.8,v 1.5 2006/02/17 19:33:33 swildner Exp $ +.\" $DragonFly: src/sbin/mount_union/mount_union.8,v 1.6 2007/07/14 21:48:16 swildner Exp $ .\" .Dd March 27, 1994 .Dt MOUNT_UNION 8 @@ -94,7 +94,7 @@ To enforce filesystem security, the user mounting the filesystem must be superuser or else have write permission on the mounted-on directory. In addition, the -.Em vfs.usermount +.Va vfs.usermount .Xr sysctl 3 variable must be set to 1 to permit file system mounting by ordinary users. .Pp diff --git a/sbin/mountd/mountd.8 b/sbin/mountd/mountd.8 index f8e32d056e..a5ab165f99 100644 --- a/sbin/mountd/mountd.8 +++ b/sbin/mountd/mountd.8 @@ -31,7 +31,7 @@ .\" .\" @(#)mountd.8 8.4 (Berkeley) 4/28/95 .\" $FreeBSD: src/sbin/mountd/mountd.8,v 1.16.2.2 2000/12/08 14:04:02 ru Exp $ -.\" $DragonFly: src/sbin/mountd/mountd.8,v 1.2 2003/06/17 04:27:34 dillon Exp $ +.\" $DragonFly: src/sbin/mountd/mountd.8,v 1.3 2007/07/14 21:48:16 swildner Exp $ .\" .Dd April 28, 1995 .Dt MOUNTD 8 @@ -75,7 +75,9 @@ requests to be logged. Allow non-root mount requests to be served. This should only be specified if there are clients such as PC's, that require it. -It will automatically clear the vfs.nfs.nfs_privport sysctl flag, which +It will automatically clear the +.Va vfs.nfs.nfs_privport +sysctl flag, which controls if the kernel will accept NFS requests from reserved ports only. .It Fl r Allow mount RPCs requests for regular files to be served. diff --git a/share/man/man4/faith.4 b/share/man/man4/faith.4 index 8cccb9abb5..4f43bee472 100644 --- a/share/man/man4/faith.4 +++ b/share/man/man4/faith.4 @@ -28,7 +28,7 @@ .\" SUCH DAMAGE. .\" .\" $FreeBSD: src/share/man/man4/faith.4,v 1.6.2.4 2002/08/28 04:44:23 brooks Exp $ -.\" $DragonFly: src/share/man/man4/faith.4,v 1.2 2003/06/17 04:36:59 dillon Exp $ +.\" $DragonFly: src/share/man/man4/faith.4,v 1.3 2007/07/14 21:48:15 swildner Exp $ .\" .Dd April 10, 1999 .Dt FAITH 4 @@ -105,12 +105,12 @@ interface. To avoid possible misuse, .Xr sysctl 8 variable -.Li net.inet6.ip6.keepfaith +.Va net.inet6.ip6.keepfaith must be set to .Li 1 prior to the use of the interface. When -.Li net.inet6.ip6.keepfaith +.Va net.inet6.ip6.keepfaith is .Li 0 , no packet will be captured by diff --git a/share/man/man4/inet.4 b/share/man/man4/inet.4 index f783e41831..117c327050 100644 --- a/share/man/man4/inet.4 +++ b/share/man/man4/inet.4 @@ -31,7 +31,7 @@ .\" .\" From: @(#)inet.4 8.1 (Berkeley) 6/5/93 .\" $FreeBSD: src/share/man/man4/inet.4,v 1.11.2.6 2001/12/17 11:30:12 ru Exp $ -.\" $DragonFly: src/share/man/man4/inet.4,v 1.4 2006/05/26 19:39:39 swildner Exp $ +.\" $DragonFly: src/share/man/man4/inet.4,v 1.5 2007/07/14 21:48:15 swildner Exp $ .\" .Dd February 14, 1995 .Dt INET 4 @@ -164,9 +164,10 @@ When the last reference to an IP route is dropped, the route is examined to determine if it was created by cloning such a route. If this is the case, the .Dv RTF_PROTO3 -flag is turned on, and the expiration timer is initialized to go off -in net.inet.ip.rtexpire seconds. If such a route is re-referenced, -the flag and expiration timer are reset. +flag is turned on, and the expiration timer is initialized to go off in +.Va net.inet.ip.rtexpire +seconds. +If such a route is re-referenced, the flag and expiration timer are reset. .It A kernel timeout runs once every ten minutes, or sooner if there are soon-to-expire routes in the kernel routing table, and deletes the @@ -174,14 +175,16 @@ expired routes. .El .Pp A dynamic process is in place to modify the value of -net.inet.ip.rtexpire if the number of cached routes grows too large. +.Va net.inet.ip.rtexpire +if the number of cached routes grows too large. If after an expiration run there are still more than -net.inet.ip.rtmaxcache unreferenced routes remaining, the rtexpire +.Va net.inet.ip.rtmaxcache +unreferenced routes remaining, the rtexpire value is multiplied by \(34, and any routes which have longer expiration times have those times adjusted. This process is damped somewhat by specification of a minimum rtexpire value -(net.inet.ip.rtminexpire), and by restricting the reduction to once in -a ten-minute period. +.Va ( net.inet.ip.rtminexpire ) , +and by restricting the reduction to once in a ten-minute period. .Pp If some external process deletes the original route from which a protocol-cloned route was generated, the ``child route'' is deleted. diff --git a/share/man/man4/ip.4 b/share/man/man4/ip.4 index 8d7cc85b31..57f4f1f452 100644 --- a/share/man/man4/ip.4 +++ b/share/man/man4/ip.4 @@ -31,7 +31,7 @@ .\" .\" @(#)ip.4 8.2 (Berkeley) 11/30/93 .\" $FreeBSD: src/share/man/man4/ip.4,v 1.13.2.9 2002/05/02 02:40:26 silby Exp $ -.\" $DragonFly: src/share/man/man4/ip.4,v 1.4 2007/04/04 06:13:25 dillon Exp $ +.\" $DragonFly: src/share/man/man4/ip.4,v 1.5 2007/07/14 21:48:15 swildner Exp $ .\" .Dd March 3, 2001 .Dt IP 4 @@ -178,18 +178,18 @@ use the default range of values, normally through .Dv IPPORT_USERRESERVED . This is adjustable through the sysctl setting: -.Sy net.inet.ip.portrange.first +.Va net.inet.ip.portrange.first and -.Sy net.inet.ip.portrange.last . +.Va net.inet.ip.portrange.last . .It Dv IP_PORTRANGE_HIGH use a high range of values, normally .Dv IPPORT_HIFIRSTAUTO and .Dv IPPORT_HILASTAUTO . This is adjustable through the sysctl setting: -.Sy net.inet.ip.portrange.hifirst +.Va net.inet.ip.portrange.hifirst and -.Sy net.inet.ip.portrange.hilast . +.Va net.inet.ip.portrange.hilast . .It Dv IP_PORTRANGE_LOW use a low range of ports, which are normally restricted to privileged processes on @@ -200,9 +200,9 @@ down to .Li IPPORT_RESERVEDSTART in descending order. This is adjustable through the sysctl setting: -.Sy net.inet.ip.portrange.lowfirst +.Va net.inet.ip.portrange.lowfirst and -.Sy net.inet.ip.portrange.lowlast . +.Va net.inet.ip.portrange.lowlast . .El .Ss "Multicast Options" .Tn IP diff --git a/share/man/man4/man4.i386/linux.4 b/share/man/man4/man4.i386/linux.4 index 270d296db8..9c76f4ce26 100644 --- a/share/man/man4/man4.i386/linux.4 +++ b/share/man/man4/man4.i386/linux.4 @@ -22,7 +22,7 @@ .\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF .\" SUCH DAMAGE. .\" -.\" $DragonFly: src/share/man/man4/man4.i386/linux.4,v 1.1 2003/09/17 23:08:13 hmp Exp $ +.\" $DragonFly: src/share/man/man4/man4.i386/linux.4,v 1.2 2007/07/14 21:48:15 swildner Exp $ .\" $FreeBSD: src/share/man/man4/man4.i386/linux.4,v 1.6 2002/12/12 17:25:57 ru Exp $ .Dd September 17, 2003 .Dt LINUX 4 i386 @@ -61,12 +61,12 @@ a true (albeit limited) ABI implementation is provided. The following .Xr sysctl 8 tunable variables are available: -.Bl -tag -width compat.linux.oss_version -.It compat.linux.osname +.Bl -tag -width ".Va compat.linux.oss_version" +.It Va compat.linux.osname Linux kernel operating system name. -.It compat.linux.osrelease +.It Va compat.linux.osrelease Linux kernel operating system release. -.It compat.linux.oss_version +.It Va compat.linux.oss_version Linux Open Sound System version. .El .Pp diff --git a/share/man/man4/si.4 b/share/man/man4/si.4 index 87968b2314..e175ccc78d 100644 --- a/share/man/man4/si.4 +++ b/share/man/man4/si.4 @@ -1,5 +1,5 @@ .\" $FreeBSD: src/share/man/man4/si.4,v 1.20.2.5 2001/08/17 13:08:39 ru Exp $ -.\" $DragonFly: src/share/man/man4/si.4,v 1.3 2004/03/11 12:28:55 hmp Exp $ +.\" $DragonFly: src/share/man/man4/si.4,v 1.4 2007/07/14 21:48:15 swildner Exp $ .Dd September 16, 1995 .Os .Dt SI 4 @@ -60,11 +60,14 @@ The si device driver also responds to the utility for configuring drain-on-close timeouts. .Pp The driver also defines 3 sysctl variables that can be manipulated: -machdep.si_debug sets the debug level for the whole driver. +.Va machdep.si_debug +sets the debug level for the whole driver. It depends -on the driver being compiled with SI_DEBUG. machdep.si_pollrate +on the driver being compiled with SI_DEBUG. +.Va machdep.si_pollrate sets how often per second the driver polls for lost interrupts. -machdep.si_realpoll sets whether or not the card will treat the +.Va machdep.si_realpoll +sets whether or not the card will treat the poll intervals as if they were interrupts. .Pp An open on a /dev device node controlled by the si driver obeys the same @@ -157,8 +160,11 @@ The interrupt tuning rate is not believed to be optimal at this time for maximum efficiency. .Pp Polled mode (a feature of standard Specialix drivers) is not implemented, -but it can be approximated by turning on machdep.si_realpoll. The poll -frequency is set by machdep.si_pollrate (in units of 1/100th of a second). +but it can be approximated by turning on +.Va machdep.si_realpoll. +The poll frequency is set by +.Va machdep.si_pollrate +(in units of 1/100th of a second). .Pp The driver does not yet support baud rates higher than 115,200 on SX modules. diff --git a/share/man/man4/ttcp.4 b/share/man/man4/ttcp.4 index 9b3af72641..11331c490d 100644 --- a/share/man/man4/ttcp.4 +++ b/share/man/man4/ttcp.4 @@ -26,7 +26,7 @@ .\" SUCH DAMAGE. .\" .\" $FreeBSD: src/share/man/man4/ttcp.4,v 1.8.2.6 2001/12/17 11:30:12 ru Exp $ -.\" $DragonFly: src/share/man/man4/ttcp.4,v 1.2 2003/06/17 04:36:59 dillon Exp $ +.\" $DragonFly: src/share/man/man4/ttcp.4,v 1.3 2007/07/14 21:48:15 swildner Exp $ .\" .Dd January 18, 1995 .Dt TTCP 4 @@ -75,7 +75,7 @@ recognize old, duplicate packets, which in turn reduces the amount of time the .Tn TCP protocol must maintain state after a connection closes. The -.Dq Li net.inet.tcp.rfc1644 +.Va net.inet.tcp.rfc1644 MIB variable can be used to disable .Tn T/TCP negotiation at run time; however, the protocol has been designed to @@ -204,7 +204,7 @@ immediately closed. The .Tn T/TCP extensions require the -.Dq Li net.inet.tcp.rfc1644 +.Va net.inet.tcp.rfc1644 MIB variable to be true in order for the appropriate .Tn TCP options to be sent. See diff --git a/share/man/man7/security.7 b/share/man/man7/security.7 index 54f55e2efa..3646dc6cdc 100644 --- a/share/man/man7/security.7 +++ b/share/man/man7/security.7 @@ -3,7 +3,7 @@ .\" the source tree. .\" .\" $FreeBSD: src/share/man/man7/security.7,v 1.13.2.11 2002/04/13 02:04:44 keramida Exp $ -.\" $DragonFly: src/share/man/man7/security.7,v 1.8 2007/02/19 11:10:11 swildner Exp $ +.\" $DragonFly: src/share/man/man7/security.7,v 1.9 2007/07/14 21:48:16 swildner Exp $ .\" .Dd September 18, 1999 .Dt SECURITY 7 @@ -346,7 +346,9 @@ An enterprising intruder can use a KLD module to install his own bpf device or other sniffing device on a running kernel. To avoid these problems you have to run the kernel at a higher secure level, at least securelevel 1. The securelevel -can be set with a sysctl on the kern.securelevel variable. Once you have +can be set with a sysctl on the +.Va kern.securelevel +variable. Once you have set the securelevel to 1, write access to raw devices will be denied and special chflags flags, such as .Sq schg , @@ -602,7 +604,12 @@ exist with the internal chargen port. A competent sysadmin will turn off all of these inetd-internal test services. .Pp Spoofed packet attacks may also be used to overload the kernel route cache. -Refer to the net.inet.ip.rtexpire, rtminexpire, and rtmaxcache sysctl +Refer to the +.Va net.inet.ip.rtexpire , +.Va net.inet.ip.rtminexpire , +and +.Va net.inet.ip.rtmaxcache +sysctl parameters. A spoofed packet attack that uses a random source IP will cause the kernel to generate a temporary cached route in the route table, viewable with diff --git a/share/man/man9/kenv.9 b/share/man/man9/kenv.9 index 2229fdbf80..f8c875a768 100644 --- a/share/man/man9/kenv.9 +++ b/share/man/man9/kenv.9 @@ -28,7 +28,7 @@ .\" OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF .\" SUCH DAMAGE. .\" -.\" $DragonFly: src/share/man/man9/kenv.9,v 1.6 2007/03/01 12:37:19 swildner Exp $ +.\" $DragonFly: src/share/man/man9/kenv.9,v 1.7 2007/07/14 21:48:15 swildner Exp $ .\" .Dd January 16, 2007 .Dt KENV 9 @@ -191,7 +191,7 @@ This manual page was written by .An Thomas E. Spanjaard . .Sh BUGS The -.Fa kern.environment +.Va kern.environment sysctl OID currently only reports information about the static kernel environment, not the dynamic one. .Pp diff --git a/share/man/man9/mbuf.9 b/share/man/man9/mbuf.9 index f0b4dba935..567aefbf2b 100644 --- a/share/man/man9/mbuf.9 +++ b/share/man/man9/mbuf.9 @@ -23,7 +23,7 @@ .\" SUCH DAMAGE. .\" .\" $FreeBSD: src/share/man/man9/mbuf.9,v 1.27.2.1 2003/05/28 13:53:18 yar Exp $ -.\" $DragonFly: src/share/man/man9/mbuf.9,v 1.6 2007/02/11 00:13:18 swildner Exp $ +.\" $DragonFly: src/share/man/man9/mbuf.9,v 1.7 2007/07/14 21:48:15 swildner Exp $ .\" .Dd October 17, 2000 .Dt MBUF 9 @@ -251,7 +251,7 @@ is set to .Dv MB_WAIT , a failed allocation will result in the caller being put to sleep for a designated -kern.ipc.mbuf_wait +.Va kern.ipc.mbuf_wait .Xr ( sysctl 8 tunable) number of ticks. diff --git a/usr.bin/whereis/whereis.1 b/usr.bin/whereis/whereis.1 index 94e90d264c..5e319961d7 100644 --- a/usr.bin/whereis/whereis.1 +++ b/usr.bin/whereis/whereis.1 @@ -34,7 +34,7 @@ .\" @(#)whereis.1 8.2 (Berkeley) 12/30/93 .\" .\" $FreeBSD: src/usr.bin/whereis/whereis.1,v 1.21 2002/11/26 17:33:36 ru Exp $ -.\" $DragonFly: src/usr.bin/whereis/whereis.1,v 1.5 2006/07/01 19:34:43 swildner Exp $ +.\" $DragonFly: src/usr.bin/whereis/whereis.1,v 1.6 2007/07/14 21:48:16 swildner Exp $ .\" .Dd July 1, 2006 .Dt WHEREIS 1 @@ -68,7 +68,7 @@ from a source code control system. The default path searched is the string returned by the .Xr sysctl 8 utility for the -.Dq user.cs_path +.Va user.cs_path string, with .Pa /usr/libexec , .Pa /usr/games diff --git a/usr.sbin/faithd/faithd.8 b/usr.sbin/faithd/faithd.8 index 1376f3953b..e9c098945e 100644 --- a/usr.sbin/faithd/faithd.8 +++ b/usr.sbin/faithd/faithd.8 @@ -28,7 +28,7 @@ .\" SUCH DAMAGE. .\" .\" $FreeBSD: src/usr.sbin/faithd/faithd.8,v 1.2.2.12 2003/03/12 22:08:14 trhodes Exp $ -.\" $DragonFly: src/usr.sbin/faithd/faithd.8,v 1.5 2006/03/26 22:56:58 swildner Exp $ +.\" $DragonFly: src/usr.sbin/faithd/faithd.8,v 1.6 2007/07/14 21:48:16 swildner Exp $ .\" .Dd May 17, 1998 .Dt FAITHD 8 @@ -87,7 +87,7 @@ command. Also, .Xr sysctl 8 should be used to configure -.Dv net.inet6.ip6.keepfaith +.Va net.inet6.ip6.keepfaith to .Dv 1 . .Pp diff --git a/usr.sbin/ndp/ndp.8 b/usr.sbin/ndp/ndp.8 index 3b1628da4b..f4e856e38d 100644 --- a/usr.sbin/ndp/ndp.8 +++ b/usr.sbin/ndp/ndp.8 @@ -1,5 +1,5 @@ .\" $FreeBSD: src/usr.sbin/ndp/ndp.8,v 1.1.2.8 2003/08/12 16:27:57 ume Exp $ -.\" $DragonFly: src/usr.sbin/ndp/ndp.8,v 1.4 2006/03/01 08:08:45 swildner Exp $ +.\" $DragonFly: src/usr.sbin/ndp/ndp.8,v 1.5 2007/07/14 21:48:16 swildner Exp $ .\" $KAME: ndp.8,v 1.15 2001/02/08 07:17:03 itojun Exp $ .\" .\" Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project. @@ -144,7 +144,7 @@ received on the .Ar interface . Note that the kernel does not accept Router Advertisement messages unless the -.Li net.inet6.ip6.accept_rtadv +.Va net.inet6.ip6.accept_rtadv variable is non-0, even if the flag is on. This flag is set to 1 by default. .El diff --git a/usr.sbin/pfctl/pfctl.8 b/usr.sbin/pfctl/pfctl.8 index a725045266..c371f81c64 100644 --- a/usr.sbin/pfctl/pfctl.8 +++ b/usr.sbin/pfctl/pfctl.8 @@ -1,5 +1,5 @@ .\" $OpenBSD: pfctl.8,v 1.110 2004/03/20 09:31:42 david Exp $ -.\" $DragonFly: src/usr.sbin/pfctl/pfctl.8,v 1.2 2005/08/05 16:08:28 swildner Exp $ +.\" $DragonFly: src/usr.sbin/pfctl/pfctl.8,v 1.3 2007/07/14 21:48:16 swildner Exp $ .\" .\" Copyright (c) 2001 Kjell Wooding. All rights reserved. .\" @@ -87,9 +87,9 @@ The packet filter does not itself forward packets between interfaces. Forwarding can be enabled by setting the .Xr sysctl 8 variables -.Em net.inet.ip.forwarding +.Va net.inet.ip.forwarding and/or -.Em net.inet6.ip6.forwarding , +.Va net.inet6.ip6.forwarding , to 1. Set them permanently in .Xr sysctl.conf 5 . diff --git a/usr.sbin/rndcontrol/random.4 b/usr.sbin/rndcontrol/random.4 index 15e54491ac..b1c5a9cda2 100644 --- a/usr.sbin/rndcontrol/random.4 +++ b/usr.sbin/rndcontrol/random.4 @@ -37,7 +37,7 @@ .\" OF THE POSSIBILITY OF SUCH DAMAGE. .\" .\" $FreeBSD: src/usr.sbin/rndcontrol/random.4,v 1.9.2.2 2001/11/24 16:14:18 dd Exp $ -.\" $DragonFly: src/usr.sbin/rndcontrol/random.4,v 1.9 2007/06/29 19:34:41 swildner Exp $ +.\" $DragonFly: src/usr.sbin/rndcontrol/random.4,v 1.10 2007/07/14 21:48:16 swildner Exp $ .\" .Dd October 21, 1995 .Dt RANDOM 4 i386 @@ -103,7 +103,9 @@ is good enough). Root may write entropy to .Pa /dev/random to seed the random number generator only if the securelevel is less then -or equal to zero and the kern.seedenable sysctl is non-zero. A certain +or equal to zero and the +.Va kern.seedenable +sysctl is non-zero. A certain degree of entropy is added by RC scripts during the boot sequence. .Sh ACKNOWLEDGEMENTS The current algorithms are implemented by diff --git a/usr.sbin/traceroute/traceroute.8 b/usr.sbin/traceroute/traceroute.8 index fb09df2d22..cfa4458e7f 100644 --- a/usr.sbin/traceroute/traceroute.8 +++ b/usr.sbin/traceroute/traceroute.8 @@ -33,7 +33,7 @@ .\" .\" @(#)traceroute.8 8.1 (Berkeley) 6/6/93 .\" -.\" $DragonFly: src/usr.sbin/traceroute/traceroute.8,v 1.4 2007/05/23 06:38:22 hasso Exp $ +.\" $DragonFly: src/usr.sbin/traceroute/traceroute.8,v 1.5 2007/07/14 21:48:16 swildner Exp $ .Dd May 22, 2007 .Dt TRACEROUTE 8 .Os @@ -107,7 +107,7 @@ This is useful for checking for asymmetric routing. Set the max time-to-live (max number of hops) used in outgoing probe packets. The default is the value of the system's -.Cm net.inet.ip.ttl +.Va net.inet.ip.ttl MIB variable, which defaults to 64. .It Fl M If found, show the MPLS Label and the Experimental (EXP) bit for the hop. -- 2.41.0