aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorEd Maste <emaste@FreeBSD.org>2023-04-24 19:41:45 +0000
committerEd Maste <emaste@FreeBSD.org>2023-05-01 12:15:08 +0000
commit5c4e8a6310973f22eb76835f1b0d5ba5dd9df2f7 (patch)
tree9f4fb2148335c020728a8a07494ec42b3e1faca3
parent878716d2ccbf68946152728119f5320a46009d44 (diff)
downloadsrc-5c4e8a6310973f22eb76835f1b0d5ba5dd9df2f7.tar.gz
src-5c4e8a6310973f22eb76835f1b0d5ba5dd9df2f7.zip
ipv6: disable RFC 4620 nodeinfo by default
RFC 4620 is an experimental RFC that can be used to request information about a host, including: - the fully-qualified or single-component name - some set of the Responder's IPv6 unicast addresses - some set of the Responder's IPv4 unicast addresses This is not something that should be made available by default. PR: 257709 Submitted by: ruben@verweg.com Reviewed by: melifaro Relnotes: Yes Sponsored by: The FreeBSD Foundation Differential Revision: https://reviews.freebsd.org/D39778 (cherry picked from commit b73183d1a243d486e3889bd71800e94812f5fa17)
Diffstat
-rw-r--r--sys/netinet6/in6_proto.c3
1 files changed, 1 insertions, 2 deletions
diff --git a/sys/netinet6/in6_proto.c b/sys/netinet6/in6_proto.c
index fb4f76dd698c..07ce80b6ea68 100644
--- a/sys/netinet6/in6_proto.c
+++ b/sys/netinet6/in6_proto.c
@@ -413,8 +413,7 @@ VNET_DEFINE(int, icmp6_rediraccept) = 1;/* accept and process redirects */
VNET_DEFINE(int, icmp6_redirtimeout) = 10 * 60; /* 10 minutes */
VNET_DEFINE(int, icmp6errppslim) = 100; /* 100pps */
/* control how to respond to NI queries */
-VNET_DEFINE(int, icmp6_nodeinfo) =
- (ICMP6_NODEINFO_FQDNOK|ICMP6_NODEINFO_NODEADDROK);
+VNET_DEFINE(int, icmp6_nodeinfo) = 0;
VNET_DEFINE(int, icmp6_nodeinfo_oldmcprefix) = 1;
/*
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-18 17:39:20 +0000