dhcpcd-discuss

Home Other Lists Thread Index Date Index Search
Thread Prev Thread Next Date Prev Date Next Thread Index Date Index

Re: [Feature Request] Extended SLAAC option: Multiple options, per prefix, preferred lifetime, inform6, temporary addresses

Roy Marples

Sat Aug 26 14:15:45 2017
On 25/08/17 16:10, Roy Marples wrote:

Add support for Privacy Extensions "temporary addresses" (RFC 4941
<https://tools.ietf.org/html/rfc4941> [1], obsoleted RFC 3041)
Preferrable for outgoing connections. In contrast to stable private
addresses (RFC 7217 <https://tools.ietf.org/html/rfc7217> [2]) for
incoming connections.
This should allow to get rid of /etc/interfaces completely, no more
"iface eth0 inet6 auto" with "privext 2" needed for privacy extensions
and no more hardware-address based addresses.
I assume this can be heavily discussed, as sysctl
<https://www.kernel.org/doc/Documentation/networking/ip-sysctl.txt> [3]
plays another rule in this topic
(/proc/sys/net/ipv6/conf/<interface>/use_tempaddr).

Or is there another way to *only* have stable private and temporary
addresses assigned via SLAAC? No hardware-based addresses anymore.

Example:
## Default to additional temporary addresses for GUA
slaac temporary 2000::/3
## ULA is handled by dhcp, no SLAAC

interface eth0
   ## Temporary addresses for GUA
   slaac temporary 2000::/3
   ## Stable private addresses for services on GUA, preferred as the very
last for outgoing connections (that's what the temporary address is for)
   slaac stableprivate 2000::/3 PLFT=0 inform6
   ## ULA is handled by dhcp, no SLAAC

[1] https://tools.ietf.org/html/rfc4941
[2] https://tools.ietf.org/html/rfc7217
[3] https://www.kernel.org/doc/Documentation/networking/ip-sysctl.txt
[4] Linux: ipv6_create_tempaddr()


Temporary addresses should already work.
But I've not tested this in a long time, so could be broken.
I'll look into this tonight.


This was broken in dhcpcd-7!
I've pushed some patches to fix this, here is sample output with use_tempaddr=2 

wlp6s0: soliciting an IPv6 router
wlp6s0: sending Router Solicitation
wlp6s0: Router Advertisement from fe80::1
wlp6s0: adding address fd73:7808:1015:0:34a8:16c7:ed4c:7542/64
wlp6s0: pltime 120 seconds, vltime 180 seconds
wlp6s0: adding temporary address fd73:7808:1015:0:5494:bab6:8a56:f7e0/64
wlp6s0: pltime 120 seconds, vltime 180 seconds
wlp6s0: adding route to fd73:7808:1015::/64
wlp6s0: adding default route via fe80::1
wlp6s0: waiting for Router Advertisement DAD to complete

Looks broken in dhcpcd-6 branch as well, but I've not tested nor fixed it.

Maybe you could try a the latest master in git to verify?

Roy
Follow-Ups:
Re: [Feature Request] Extended SLAAC option: Multiple options, per prefix, preferred lifetime, inform6, temporary addressesM. Buecher
References:
[Feature Request] Extended SLAAC option: Multiple options, per prefix, preferred lifetime, inform6, temporary addressesM. Buecher
Re: [Feature Request] Extended SLAAC option: Multiple options, per prefix, preferred lifetime, inform6, temporary addressesRoy Marples
Archive administrator: postmaster@marples.name