On 17/05/16(Tue) 09:26, Theo de Raadt wrote:
> > Does it need the ifdef? It's standard ipv6 api..
>
> It is risk, all gigantic risk.
>
> Anyone who enables that will (not..) discover that their pf rulesets
> are wrong.
I don't understand, could you explain which risk you're talking about?
It seems to me that setting this option is a no-op on OpenBSD:
IPV6_V6ONLY int *
Get or set whether only IPv6 connections can be made to this
socket. For wildcard sockets, this can restrict connections to
IPv6 only. With OpenBSD IPv6 sockets are always IPv6-only, so
the socket option is read-only (not modifiable).
