From 70fa1dbea7842fee26c0ac5f738a8cca79de3e36 Mon Sep 17 00:00:00 2001
From: bol-van <none@none.none>
Date: Fri, 8 Mar 2024 13:50:19 +0300
Subject: [PATCH] do not use PF_DIVERT for openbsd

---
 nfq/darkmagic.c | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/nfq/darkmagic.c b/nfq/darkmagic.c
index 6db6e14..db1fa74 100644
--- a/nfq/darkmagic.c
+++ b/nfq/darkmagic.c
@@ -911,13 +911,15 @@ int rawsend_socket_divert(sa_family_t family)
 	// we either have to go to the link layer (its hard, possible problems arise, compat testing, ...) or use some HACKING
 	// from my point of view disabling direct ability to send ip frames is not security. its SHIT
 
-	int fd,err;
+	int fd;
 	
+#ifdef __FreeBSD__
 	// freebsd14+ way
+	// don't want to use ifdefs with os version to make binaries compatible with all versions
 	fd = socket(PF_DIVERT, SOCK_RAW, 0);
-	err=errno;
-	if (fd==-1 && (err==EPROTONOSUPPORT || err==EAFNOSUPPORT || err==EPFNOSUPPORT))
-		// legacy way
+	if (fd==-1 && (errno==EPROTONOSUPPORT || errno==EAFNOSUPPORT || errno==EPFNOSUPPORT))
+#endif
+		// freebsd13- or openbsd way
 		fd = socket(family, SOCK_RAW, IPPROTO_DIVERT);
 	if (fd!=-1 && !set_socket_buffers(fd,4096,RAW_SNDBUF))
 	{