Re: git: cd240957d7ba - main - netinet: Disallow connections to INADDR_ANY

In reply to: Dag-Erling_Smørgrav : "Re: git: cd240957d7ba - main - netinet: Disallow connections to INADDR_ANY"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: Ed Maste <emaste_at_freebsd.org>
Date: Fri, 26 Dec 2025 14:59:42 UTC

On Fri, 19 Dec 2025 at 08:02, Dag-Erling Smørgrav <des@freebsd.org> wrote:
>
> Ed Maste <emaste@FreeBSD.org> writes:
> > commit cd240957d7ba43d819e9d59c6f6517fe915102c7
> > Author:     Ed Maste <emaste@FreeBSD.org>
> > AuthorDate: 2024-11-25 14:07:11 +0000
> > Commit:     Ed Maste <emaste@FreeBSD.org>
> > CommitDate: 2025-05-24 18:13:09 +0000
> >
> >     netinet: Disallow connections to INADDR_ANY
> >
> >     Previously connect() or sendto() to INADDR_ANY reached some socket bound
> >     to some host interface address. Although this was intentional it was an
> >     artifact of a different era, and is not desirable now.
> >
> >     In 417b35a97b76 markj added support to disallow connect() to INADDR_ANY.
> >     Take the next logical step and disable it by default.
>
> It is still possible to connect to IN6ADDR_ANY.  IMO we should either
> allow both or disallow both.

Yes, review open in https://reviews.freebsd.org/D54306. I still need
to verify that there are no regressions in the test suite though.