Update documentation and remove unused ioctl.h header.

README

@@ -160,8 +160,8 @@ esac
     exactly as I have outlined above.  If you have not entirely followed my
     directions, the script will of course require modifications.
 
-4o) If you encounter problems, I suggest running both ndhc in the foreground
+4o) If you encounter problems, I suggest running ndhc in the foreground and
-    and examining the printed output.
+    examining the printed output.
 
 
 BEHAVIOR NOTES
@@ -185,11 +185,10 @@ part of the official standard, so any implemention that may exist will be
 system-dependent.
 
 2) ndhc configures network interfaces and routes.  Interface and route
-configuration is entirely non-portable, usually requiring calls to the
+configuration is entirely non-portable.
-catch-all ioctl(), or even more unusual mechanisms like netlink sockets.
 
-3) ndhc uses netlink sockets extensively for both fetching data and hardware
+3) ndhc uses netlink sockets extensively for fetching data, setting data,
-link state change notification events.
+and hardware link state change notification events.
 
 4) ndhc uses the Berkeley Packet Filter / Linux Packet Filter interfaces to
 drop unwanted packets in kernelspace.  This functionality is available on
@@ -200,6 +199,9 @@ most modern unix systems, but it is not standard.
 6) Numerous socket options are used, and the AF_PACKET socket family is used
 for raw sockets and ARP.  These are largely Linux-specific, too.
 
+7) ndhc can optionally use seccomp-filter to allow only a set of whitelisted
+syscalls.  This functionality is Linux-specific.
+
 HISTORY
 -------
 

ndhc/ifset.c

@@ -35,7 +35,6 @@
 #include <sys/socket.h>
 #include <sys/un.h>
 #include <sys/types.h>
-#include <sys/ioctl.h>
 #include <netinet/in.h>
 #include <arpa/inet.h>
 #include <net/route.h>