Re: Default value of net.ipv6.bindv6only should revert to 0

To: debian-devel@lists.debian.org
Subject: Re: Default value of net.ipv6.bindv6only should revert to 0
From: Hendrik Sattler <post@hendrik-sattler.de>
Date: Tue, 13 Apr 2010 09:07:39 +0200
Message-id: <[🔎] 20100413090739.p0jr7lt2as40gcsc@v1539.ncsrv.de>
In-reply-to: <[🔎] 87hbnf52hp.fsf@windlord.stanford.edu>
References: <[🔎] 87r5msss71.fsf@molech.giraffy.jp> <[🔎] 20100412195303.GA18573@angband.pl> <[🔎] 87sk70748z.fsf@windlord.stanford.edu> <[🔎] 201004130724.18975.post@hendrik-sattler.de> <[🔎] 87hbnf52hp.fsf@windlord.stanford.edu>

Zitat von Russ Allbery <rra@debian.org>:

Hendrik Sattler <post@hendrik-sattler.de> writes:

It's a trade-off with a different goal in mind. So what. Both settings
of bindv6only are if you cannot assume standard behaviour. Maybe we
should patch this option _out_ of the linux kernel to get rid of the
assumption that the default may be changed.


It's not an assumption.  It's reality that one has to write code against,
because different platforms do different things.  Even if you could remove
the option from the Linux kernel (retroactively, changing time to remove
all the systems that already exist), that doesn't change the fact that
Solaris and BSD behave differently.


But that was not the reason why the default was changed for _linux_ in Debian.
Since when do we need to adapt non-standard Solaris and BSD behaviour?

Read about IPV6_ADDRFORM in ipv6(7). Use it. Change back to the default
and forget about this discussion how hard it is to convert addresses to
AF_INET style, so ACLs do match. Enjoy life :)


This doesn't have much to do anything to do with the conversation that
we're having, though.  Once you're modifying the application, there's a
bunch of things that you can do to address this problem in different ways.
The question that we're debating is what the default should be for
applications that are not expressing an explicit preference.


You forgot to cite yourself! This was an answer to your "BTW" question.

It was proposed to fix programs that may not work with bindv6only=1.This is correct. But it was also noted that the change was done tohave less problems with some other applications (ACLs, etc.). If youneed AF_INET addresses to make e.g. your ACLs to work correctly, theabove socket option _is_ a solution. An easy solution. You need topatch those programs then? So what! That's exactly what you requestfrom others.

What again was the list of "reasons" to change the default value ofbindv6lonly from 0 to 1? I have not seen any good reasons so far.

HS

Reply to:

Follow-Ups:
- Re: Default value of net.ipv6.bindv6only should revert to 0
  - From: Russ Allbery <rra@debian.org>

References:
- Default value of net.ipv6.bindv6only should revert to 0
  - From: Kazuo Oishi <oishi@giraffy.jp>
- Re: Default value of net.ipv6.bindv6only should revert to 0
  - From: Adam Borowski <kilobyte@angband.pl>
- Re: Default value of net.ipv6.bindv6only should revert to 0
  - From: Russ Allbery <rra@debian.org>
- Re: Default value of net.ipv6.bindv6only should revert to 0
  - From: Hendrik Sattler <post@hendrik-sattler.de>
- Re: Default value of net.ipv6.bindv6only should revert to 0
  - From: Russ Allbery <rra@debian.org>

Prev by Date: Re: Default value of net.ipv6.bindv6only should revert to 0
Next by Date: Re: document meaning of transition?
Previous by thread: Re: Default value of net.ipv6.bindv6only should revert to 0
Next by thread: Re: Default value of net.ipv6.bindv6only should revert to 0
Index(es):
- Date
- Thread