On 1 February 2018 at 19:03, Stefan Hajnoczi <stefa...@redhat.com> wrote:
> On Tue, Jan 30, 2018 at 10:31:54PM +0100, Michael Kerrisk (man-pages) wrote:
>> Hi Stefan,
>>
>> Ping on the below please, since it either blocks the man-pages release
>> I'd current
Hi Stefan,
Ping on the below please, since it either blocks the man-pages release
I'd currently like to make, or I must remove the vsock.7 page for this
release.
Thanks,
Michael
On 26 January 2018 at 22:47, Michael Kerrisk (man-pages)
<mtk.manpa...@gmail.com> wrote:
> Stefan,
>
Unable to perform operation on an unconnected socket.
> +.TP
> +.B ENOPROTOOPT
> +Invalid socket option in
> +.B setsockopt (2)
> +or
> +.B getsockopt (2).
> +.TP
> +.B EPROTONOSUPPORT
> +Invalid socket protocol number. Protocol should always be 0.
> +.TP
> +.B ESOCKT
es:
>
> https://github.com/avikivity/seastar/commits/aio
>
> Changes since V1:
> - handle the NULL ->poll case in vfs_poll
> - dropped the file argument to the ->poll_mask socket operation
> - replace the ->pre_poll socket operation with ->get_poll_hea
Hello Mahesh,
On 12/28/2017 01:45 AM, Mahesh Bandewar (महेश बंडेवार) wrote:
> On Wed, Dec 27, 2017 at 12:23 PM, Michael Kerrisk (man-pages)
> <mtk.manpa...@gmail.com> wrote:
>> Hello Mahesh,
>>
>> On 27 December 2017 at 18:09, Mahesh Bandewar (महेश बंडेवार)
}
> + return 0;
> +}
> +#endif /* CONFIG_SYSCTL */
> diff --git a/kernel/sysctl.c b/kernel/sysctl.c
> index 557d46728577..759b6c286806 100644
> --- a/kernel/sysctl.c
> +++ b/kernel/sysctl.c
> @@ -1217,6 +1217,11 @@ static struct ctl_table kern_table[] = {
> .extra2 = ,
> },
> #endif
> + {
> + .procname = "controlled_userns_caps_whitelist",
> + .mode = 0644,
> + .proc_handler = proc_douserns_caps_whitelist,
> + },
> { }
> };
>
>
--
Michael Kerrisk
Linux man-pages maintainer; http://www.kernel.org/doc/man-pages/
Linux/UNIX System Programming Training: http://man7.org/training/
atches in this series.
>>
>> Mahesh Bandewar (2):
>> capability: introduce sysctl for controlled user-ns capability whitelist
>> userns: control capabilities of some user namespaces
>>
>> Documentation/sysctl/kernel.txt | 21 +
>> include/linux/ca
d. This includes:
>> +the
>> +.B MSG_OOB
>> +flag that is not implemented for
>> +.BR sendmsg (2)
>> +and
>> +.B MSG_PEEK
>> +for
>> +.BR recvmsg (2).
>> +.TP
>> +.B EADDRINUSE
>> +Unable to bind to a port that is already in use.
perform operation on an unconnected socket.
> +.TP
> +.B ENOPROTOOPT
> +Invalid socket option in
> +.BR setsockopt (2)
> +or
> +.BR getsockopt (2).
> +.TP
> +.B EPROTONOSUPPORT
> +Invalid socket protocol number. Protocol should always be 0.
> +.TP
> +.B ESOCKTNOSUPPORT
> +Unsupported socket type in
> +.BR socket (2).
> +Only
> +.B SOCK_STREAM
> +and
> +.B SOCK_DGRAM
> +are valid.
> +.SH VERSIONS
> +Support for VMware (VMCI) has been available since Linux 3.9. KVM (virtio)
> is
> +supported since Linux 4.8. Hyper-V is supported since 4.14.
> +.SH SEE ALSO
> +.BR socket (2),
> +.BR bind (2),
> +.BR connect (2),
> +.BR listen (2),
> +.BR send (2),
> +.BR recv (2),
> +.BR capabilities (7)
Cheers,
Michael
--
Michael Kerrisk
Linux man-pages maintainer; http://www.kernel.org/doc/man-pages/
Linux/UNIX System Programming Training: http://man7.org/training/
.\" commit 3b885787ea4112eaa80945999ea0901bf742707f
Indicates that an unsigned 32-bit value ancillary message (cmsg)
should be attached to received skbs indicating
-the number of packets dropped by the socket between
-the last received packet and this received packet.
+the number of packets dropped by the socket since its creation.
.TP
.B SO_SNDBUF
Sets or gets the maximum socket send buffer in bytes.
--
Michael Kerrisk
Linux man-pages maintainer; http://www.kernel.org/doc/man-pages/
Linux/UNIX System Programming Training: http://man7.org/training/
)
> Indicates that an unsigned 32-bit value ancillary message
> (cmsg) should be attached to
> received skbs indicating the number of packets dropped by the
> socket since its
> creation.
Thanks for the report. See also my reply to Petr in jus
omments in the example code in the
> manpage, how about also including a brief comment to the effect that
> using 8192 bytes will avoid message truncation problems on platforms
> with a large PAGE_SIZE?
>
> /* avoid msg truncation on > 4096 byte PAGE_SIZE platforms */
>
>
Using an
> 8k buffer
> as implied in netlink.h prevents problems with any page size.
>
> Lets change the example so others don't propagate the problem further.
>
> Signed-off-by David Wilder <dwil...@us.ibm.com>
Thanks, David. Patch applied.
Cheers,
Michael
--
Micha
On 04/19/2017 10:13 PM, Eric Dumazet wrote:
> On Wed, 2017-04-19 at 20:48 +0200, Michael Kerrisk (man-pages) wrote:
>> Hi Eric,
>>
>> [reodering for clarity]
>>
>>>> On 02/19/2017 09:55 PM, Michael Kerrisk (man-pages) wrote:
>>>>> [CC += Eri
Hi Eric,
[reodering for clarity]
>> On 02/19/2017 09:55 PM, Michael Kerrisk (man-pages) wrote:
>>> [CC += Eric, so that he might review]
>>>
>>> Hello Francois,
>>>
>>> On 02/18/2017 05:06 AM, Francois Saint-Jacques wrote:
>>>> Th
Ping Eric!
Would you have a chance to review the proposed text below, please.
Thanks,
Michael
On 02/19/2017 09:55 PM, Michael Kerrisk (man-pages) wrote:
> [CC += Eric, so that he might review]
>
> Hello Francois,
>
> On 02/18/2017 05:06 AM, Francois Saint-Jacques wrote:
>&g
oll.h| 14 +++-
> include/uapi/asm-generic/socket.h |2 +
> net/core/dev.c | 16 ++--
> net/core/sock.c | 22 ++
> net/ipv4/tcp_ipv4.c|1
> 18 files changed, 183 insertions(
All in all, we will have far less networking subsystems to
> cross compared to normal netns solutions.
>
> Some more information also in the first patch, which adds a
> Documentation.
>
> Bye,
> Hannes
>
--
Michael Kerrisk Linux man-pages maintainer;
http://www.kernel.org/doc/man-pages/
Author of "The Linux Programming Interface", http://blog.man7.org/
net/core/skbuff.c | 327 --
> net/core/sock.c | 29 ++
> net/ipv4/ip_output.c | 34 +-
> net/ipv4/raw.c| 27 +-
> net/ipv4/tcp.c
associated with a particular CPU, the typical use
case is to employ one listening process per RX queue, with
the incoming flow being handled by a listener on the same
CPU that is handling the RX queue. This provides optimal
NUMA behavior and ke
On 26 July 2016 at 18:52, Kees Cook <keesc...@chromium.org> wrote:
> On Tue, Jul 26, 2016 at 8:06 AM, Eric W. Biederman
> <ebied...@xmission.com> wrote:
>> "Michael Kerrisk (man-pages)" <mtk.manpa...@gmail.com> writes:
>>
>>> Hello Eric,
Hello Eric,
I realized I had a question after the last mail.
On 07/21/2016 06:39 PM, Eric W. Biederman wrote:
This patchset addresses two use cases:
- Implement a sane upper bound on the number of namespaces.
- Provide a way for sandboxes to limit the attack surface from
namespaces.
Can
Hello Eric,
On 07/21/2016 06:39 PM, Eric W. Biederman wrote:
This patchset addresses two use cases:
- Implement a sane upper bound on the number of namespaces.
- Provide a way for sandboxes to limit the attack surface from
namespaces.
The maximum sane case I can imagine is if every process
Hi Andrey,
On 06/10/2016 10:28 PM, Andrey Vagin wrote:
> Cc: Kir Kolyshkin <k...@openvz.org>
> Cc: Michael Kerrisk <mtk.manpa...@gmail.com>
> Cc: Herbert Xu <herb...@gondor.apana.org.au>
> Cc: Patrick McHardy <ka...@trash.net>
> Cc: Christophe Ricard <
n
> the same group, data from the remaining sources will still be delivered.
> To stop receiving data from all sources at once, use
> -.BR IP_LEAVE_GROUP .
> +.BR IP_DROP_MEMBERSHIP .
> .IP
> Argument is an
> .I ip_mreq_source
>
--
Michael Kerrisk
Linux man-pages maintainer; http://www.kernel.org/doc/man-pages/
Linux/UNIX System Programming Training: http://man7.org/training/
On 03/01/2016 11:10 AM, Vincent Bernat wrote:
> ❦ 1 mars 2016 11:03 +0100, "Michael Kerrisk (man-pages)"
> <mtk.manpa...@gmail.com> :
>
>> Once the SO_LOCK_FILTER option has been enabled,
>> attempts by an unpr
t; SO_DETACH_BPF
> SO_LOCK_FILTER
>
> Signed-off-by: Craig Gallek <kr...@google.com>
> ---
> v2 changes:
> - Content suggestions from Michael Kerrisk <mtk.manpa...@gmail.com>:
> * Clarify socket filter return value semantics
> * Clarify wording of m
ilable in Linux 2.2.
s/in/since/
> +.BR SO_DETACH_BPF
> +is available in Linux 3.19.
s/in/since/
> +.TP
> .BR SO_DOMAIN " (since Linux 2.6.32)"
> Retrieves the socket domain as an integer, returning a value such as
> .BR AF_INET6 .
> @@ -991,17 +1070,6 @@ where onl
/* call to routing system */
> +#define SIOCRTMSG0x890D /* unused */
>
> /* Socket configuration controls. */
> #define SIOCGIFNAME 0x8910 /* get iface name */
>
--
Michael Kerrisk
Linux man-pages maintainer; htt
/ 100);
> + (timeout_ts\->tv_sec * 1000 + timeout_ts\->tv_nsec / 100);
> pthread_sigmask(SIG_SETMASK, , );
> ready = poll(, nfds, timeout);
> pthread_sigmask(SIG_SETMASK, , NULL);
--
Michael Kerrisk
Linux man-pages maintainer; http://www.ker
ECCOMP_MODE_FILTER)
> + return -EINVAL;
> +
> + prog = bpf_prog_get(fd);
> + if (IS_ERR(prog)) {
> + ret = PTR_ERR(prog);
> + goto out;
> + }
> +
> + for (cur = child->seccomp.filter; cur; cur = cur->prev) {
> +
c int __init register_sk_filter_ops(void)
> {
> bpf_register_prog_type(_filter_type);
> bpf_register_prog_type(_cls_type);
> bpf_register_prog_type(_act_type);
> + bpf_register_prog_type(_type);
>
> return 0;
> }
> --
> 2.1.4
>
CAP_SYS_ADMIN) != 0)
> + return -EACCES;
> +
> /*
> * Make sure we cannot change seccomp or nnp state via TSYNC
> * while another thread is in the middle of calling exec.
> @@ -875,6 +982,8 @@ static long do_s
>> + /*
>> +* Installing a seccomp filter requires that the task has
>> +* CAP_SYS_ADMIN in its namespace or be running with no_new_privs.
>> +* This avoids scenarios where unprivileged tasks can affect the
>> +* behavior of privi
Stephen Hemminger wrote:
On Fri, 14 Dec 2007 09:48:32 +0100
Michael Kerrisk [EMAIL PROTECTED] wrote:
Hello Linux networking folk,
I received the patch below for the tcp.7 man page. Would anybody here be
prepared to review the new material / double check the details?
Cheers,
Michael
modprobe (8),
+or if your kernel is built with module autoloading support
+.RI ( CONFIG_KMOD )
+and the algorithm has been compiled as a module, it will be autoloaded.
.TP
.B TCP_CORK
If set, don't send out partial frames.
--
Michael Kerrisk
Maintainer of the Linux man-pages project
http
the line unsubscribe linux-man in
the body of a message to [EMAIL PROTECTED]
More majordomo info at http://vger.kernel.org/majordomo-info.html
--
Michael Kerrisk
maintainer of Linux man pages Sections 2, 3, 4, 5, and 7
Want to help with man page maintenance? Grab the latest tarball at
http
IPV6_V6ONLY
IPV6_RECVPKTINFO
IPV6_2292PKTINFO
Can anyone help with documenting any of these please?
Cheers,
Michael
--
Michael Kerrisk
maintainer of Linux man pages Sections 2, 3, 4, 5, and 7
Want to help with man page maintenance? Grab the latest tarball at
http://www.kernel.org/pub/linux/docs
It really looks like time for major overhaul of that (and related) man-pages
is needed...
Yes. Andi Kleen did a good job of putting some pages together in
the 2.2 timeframe, but no-one else carried on the work since then,
and there is much that sould be updated in the *.7 networking
pages.
On 9/28/07, Stephen Hemminger [EMAIL PROTECTED] wrote:
On Thu, 27 Sep 2007 13:53:34 -0700 (PDT)
David Miller [EMAIL PROTECTED] wrote:
From: Stephen Hemminger [EMAIL PROTECTED]
Date: Mon, 24 Sep 2007 15:34:35 -0700
The bug http://bugzilla.kernel.org/show_bug.cgi?id=5731
describes an
(2), send(2),
sendto(2), sendmsg(2)); timeouts have no effect for
select(2), poll(2), epoll_wait(2), etc.
The change will be in man-pages-2.65.
Thanks for your note.
Cheers,
Michael
--
Michael Kerrisk
maintainer of Linux man pages Sections 2, 3, 4, 5, and 7
on NETLINK_KOBJECT_UEVENT needed.
FIXME NLM_F_ATOMIC is not used any more?
FIXME Explain more about nlmsg_seq and nlmsg_pid.
==
man7/udp.7
FIXME document UDP_ENCAP (new in kernel 2.5.67)
--
Michael Kerrisk
maintainer of Linux man pages Sections 2, 3, 4, 5, and 7
Want to help
diff -rU3 man-pages-2.43-a/man7/ip.7 man-pages-2.43-b/man7/ip.7
--- man-pages-2.43-a/man7/ip.7 2006-09-26 09:54:29.0 -0400
+++ man-pages-2.43-b/man7/ip.7 2007-03-27 15:46:18.0 -0400
--
Michael Kerrisk
maintainer of Linux man pages Sections 2, 3, 4, 5, and 7
see a problem with this change in the docs?
Cheers,
Michael
--
Michael Kerrisk
maintainer of Linux man pages Sections 2, 3, 4, 5, and 7
Want to help with man page maintenance? Grab the latest
tarball at ftp://ftp.win.tue.nl/pub/linux-local/manpages/
and grep the source files for 'FIXME
44 matches
Mail list logo