Date: Fri, 26 Dec 2025 09:59:42 -0500 From: Ed Maste <emaste@freebsd.org> To: =?UTF-8?Q?Dag=2DErling_Sm=C3=B8rgrav?= <des@freebsd.org> Cc: src-committers@freebsd.org, dev-commits-src-all@freebsd.org, dev-commits-src-main@freebsd.org Subject: Re: git: cd240957d7ba - main - netinet: Disallow connections to INADDR_ANY Message-ID: <CAPyFy2CzrHzLkgj_V_nT8yrJ2NXqMSg8sUZ%2Bd%2BKLSyKZi9QT0Q@mail.gmail.com> In-Reply-To: <86ecoq7hh3.fsf@ltc.des.dev> References: <202505241814.54OIEgPR025138@gitrepo.freebsd.org> <86ecoq7hh3.fsf@ltc.des.dev>
index | next in thread | previous in thread | raw e-mail
On Fri, 19 Dec 2025 at 08:02, Dag-Erling Smørgrav <des@freebsd.org> wrote: > > Ed Maste <emaste@FreeBSD.org> writes: > > commit cd240957d7ba43d819e9d59c6f6517fe915102c7 > > Author: Ed Maste <emaste@FreeBSD.org> > > AuthorDate: 2024-11-25 14:07:11 +0000 > > Commit: Ed Maste <emaste@FreeBSD.org> > > CommitDate: 2025-05-24 18:13:09 +0000 > > > > netinet: Disallow connections to INADDR_ANY > > > > Previously connect() or sendto() to INADDR_ANY reached some socket bound > > to some host interface address. Although this was intentional it was an > > artifact of a different era, and is not desirable now. > > > > In 417b35a97b76 markj added support to disallow connect() to INADDR_ANY. > > Take the next logical step and disable it by default. > > It is still possible to connect to IN6ADDR_ANY. IMO we should either > allow both or disallow both. Yes, review open in https://reviews.freebsd.org/D54306. I still need to verify that there are no regressions in the test suite though.home | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAPyFy2CzrHzLkgj_V_nT8yrJ2NXqMSg8sUZ%2Bd%2BKLSyKZi9QT0Q>