From owner-cvs-all  Wed May 30 18:28:33 2001
Delivered-To: cvs-all@freebsd.org
Received: from obsecurity.dyndns.org (adsl-63-207-60-66.dsl.lsan03.pacbell.net [63.207.60.66])
	by hub.freebsd.org (Postfix) with ESMTP
	id 38F3F37B422; Wed, 30 May 2001 18:28:23 -0700 (PDT)
	(envelope-from kris@obsecurity.org)
Received: by obsecurity.dyndns.org (Postfix, from userid 1000)
	id C8419678A3; Wed, 30 May 2001 18:28:22 -0700 (PDT)
Date: Wed, 30 May 2001 18:28:22 -0700
From: Kris Kennaway <kris@obsecurity.org>
To: Eric Melville <eric@FreeBSD.org>
Cc: Dima Dorfman <dima@unixfreak.org>, cvs-committers@FreeBSD.org,
	cvs-all@FreeBSD.org
Subject: Re: cvs commit: src/lib/libc/gen setproctitle.3 syslog.3 src/lib/libc/stdio printf.3
Message-ID: <20010530182822.A79068@xor.obsecurity.org>
References: <200105252042.f4PKgfu84635@freefall.freebsd.org> <20010526004601.2109A3E2F@bazooka.unixfreak.org> <20010530172131.A60056@FreeBSD.org>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-md5;
	protocol="application/pgp-signature"; boundary="mYCpIKhGyMATD0i+"
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <20010530172131.A60056@FreeBSD.org>; from eric@FreeBSD.org on Wed, May 30, 2001 at 05:21:31PM -0700
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
List-ID: <cvs-all.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo?subject=subscribe%20cvs-all>
List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20cvs-all>
X-Loop: FreeBSD.ORG


--mYCpIKhGyMATD0i+
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Wed, May 30, 2001 at 05:21:31PM -0700, Eric Melville wrote:
> > >   Approved by:	murray
> > >   Obtained from:	OpenBSD
> >=20
> >     Related PR:		26286
> >=20
> > This commit doesn't close it, but you may want to read the discussion
> > anyway.
>=20
> I like the idea of a full man page for these sorts of things. Perhaps
> strings.9, secure.9, or something like that?

I'd also welcome this.  I also want better manpage documentation about
things like how to use strncpy() properly, whether to use
array[FOO_MAX] or array[FOO_MAX+1] for proper bounding of buffers
passed to library (e.g. POSIX) functions, etc.  These should include
code snippets so people can easily get the right idea instead of
having to infer from verbal descriptions.  Some of this stuff best
goes in the individual function manpages, but the second class
includes examples of a general implementation used by a number of
functions.

OpenBSD have made a good start at improving the code examples and
documentation in their function manpages.  We also have some stuff on
http://www.freebsd.org/security which could be improved upon.

Kris

--mYCpIKhGyMATD0i+
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (FreeBSD)
Comment: For info see http://www.gnupg.org

iD8DBQE7FZ41Wry0BWjoQKURAo6EAKClDhqtq8X3MnEjoO4tB5ZpaeRvlgCglBtD
04EKDZpP1oM4+U4PlGrr4co=
=MN4q
-----END PGP SIGNATURE-----

--mYCpIKhGyMATD0i+--

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message