sys/netinet6: switch net.inet6.ip6.use_stableaddr to on by default

This change switches to using RFC 7217 algorithm as the default to
generate SLAAC addresses for IPv6 interfaces configured with
accept_rtadv.

Reviewed by:		pouria, glebius, zlei
Approved by:		zlei
Relnotes:		yes
Differential Revision:	https://reviews.freebsd.org/D55138
This commit is contained in:
Guido Falsi
2026-02-09 21:27:15 +01:00
parent e912723afb
commit a2eb0894b7
2 changed files with 10 additions and 1 deletions
+9
View File
@@ -27,6 +27,15 @@ NOTE TO PEOPLE WHO THINK THAT FreeBSD 16.x IS SLOW:
world, or to merely disable the most expensive debugging functionality
at runtime, run "ln -s 'abort:false,junk:false' /etc/malloc.conf".)
20260129:
The "net.inet6.ip6.use_stableaddr" sysctl is now on by default.
This changes the default algorithm to choose IPv6 SLAAC autogenerated
addresses from embedding the interface hardware address to using
SHA256-HMAC hash as described in RFC 7217 to derive an opaque but
stable Address. If you are using autoconfigured IPv6 addresses at
reboot they will be different after this change, but constant
thereafter, please update your DNS records if any.
20260106:
Zstd has moved to the new "zstd" package. If you have set-minimal
installed, this package will be installed automatically, otherwise
+1 -1
View File
@@ -95,7 +95,7 @@ VNET_DEFINE(int, nd6_defifindex);
#define V_nd6_defifp VNET(nd6_defifp)
VNET_DEFINE(int, ip6_use_tempaddr) = 0;
VNET_DEFINE(bool, ip6_use_stableaddr) = 0;
VNET_DEFINE(bool, ip6_use_stableaddr) = 1;
VNET_DEFINE(int, ip6_desync_factor);
VNET_DEFINE(uint32_t, ip6_temp_max_desync_factor) = TEMP_MAX_DESYNC_FACTOR_BASE;