From nobody Fri Jun 20 16:17:49 2025
X-Original-To: net@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4bP2gz1Jwqz5yF21
	for <net@mlmmj.nyi.freebsd.org>; Fri, 20 Jun 2025 16:17:51 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256
	 client-signature RSA-PSS (4096 bits) client-digest SHA256)
	(Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK))
	by mx1.freebsd.org (Postfix) with ESMTPS id 4bP2gy6llnz3V9K
	for <net@FreeBSD.org>; Fri, 20 Jun 2025 16:17:50 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim;
	t=1750436270;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:mime-version:mime-version:content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references;
	bh=YDxQwoiWSPZQf4jk/oZde1r5pm2aVkMaUWUoPKTy+uU=;
	b=kMoEsCHGXwc2FVflshLQtTfmDKoSovaIiO2YcFhZixRhzFDpt4hO4ejBhTUdKJQujOaaGJ
	CHW1WLKQuaxNzG9GNW2fUwamqNvwaL0K8J0Nm2GJpGymoNImZ5VMZQf4D6XYtVRzXU5iUR
	8Z1JLhgIPFVZpmCAS7osFWYbulwpP3rA3n8CyO5uHrvKZveCFEI5xnpA8v4EcL5t+uMElb
	lbKnoJjVL+gustBdUkfERG5UQd3Sed1uWiBTOgy5yxW7VmY3YW5EMw9ltG+mk6xfjLyRTp
	T6aPf7OeAOfj5ILbFjGV1eU47yfqXbXc0uztqGKPM+NQcfmiXQjtOYfrHiEB3Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org;
	s=dkim; t=1750436270;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:mime-version:mime-version:content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references;
	bh=YDxQwoiWSPZQf4jk/oZde1r5pm2aVkMaUWUoPKTy+uU=;
	b=S/p/WQJEmDptpEtaNXaeRYaOaB2dENCq3Rd/RlBEcqcPxmyEbIQNPHFU6SznH5UYJQkKam
	fOEfixEubnz1d5MoJk4aXOizKiCq3dBXx67qBlYj5/KdMtEHp1Gm0nU1+ogMwDVgSKHO1j
	a0SfdEg+VcNzNqUZ/HUvq5mzSwveIR+qpGECCYho608DF26QGsZHi3oI+Yxnq2CgHtLM1P
	FsqQ+4Gvfah3ZRtkdLq01UvD47zmLw+wrXBB7pGyp+rtem2z1dTfEk7YrnfmuMIeiLDHov
	lxCf7IMlscFoRRy0tiUPr0rckw9AjACHlvDzlYY2dqT/+7OQXnNYyClJZRkyoA==
ARC-Authentication-Results: i=1;
	mx1.freebsd.org;
	none
ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1750436270; a=rsa-sha256; cv=none;
	b=oafJRfu+/3Axv8OHAmE2Nt7d9UDdmuPpUyLfHTg12xN6nYj6xND5Fx2dS6fZKloX1y2c6g
	M6MZkC21c4iJ7yvoS+HcuNm+RZxA+29ma6UTe4JQ8DbDrMk6QL5Qbs0/8I3y5/Sjs+XzFK
	tdybjvO98L5kfT4mv7v/pXtvf/jeMQ+9NqIX8ee44YJvD7oDD0Q8HujCzU1Jiq3otoM/d5
	l/NVPZOTr4LHSInUJphqezlS5n+oc7KIs8R0/m0mlxFgmuIb5vSRuFKjABnwnHbV6/XhYW
	3/sJZ81XzgptMmqUXlCZ6MHKryOzlALeg0Bwt/I24DQXPdU7h6uXdoXTHcSHag==
Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(Client did not present a certificate)
	by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4bP2gy65sKzsgD
	for <net@FreeBSD.org>; Fri, 20 Jun 2025 16:17:50 +0000 (UTC)
	(envelope-from bugzilla-noreply@freebsd.org)
Received: from kenobi.freebsd.org ([127.0.1.5])
	by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 55KGHocT036683
	for <net@FreeBSD.org>; Fri, 20 Jun 2025 16:17:50 GMT
	(envelope-from bugzilla-noreply@freebsd.org)
Received: (from bugzilla@localhost)
	by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 55KGHoaJ036681
	for net@FreeBSD.org; Fri, 20 Jun 2025 16:17:50 GMT
	(envelope-from bugzilla-noreply@freebsd.org)
X-Authentication-Warning: kenobi.freebsd.org: bugzilla set sender to bugzilla-noreply@freebsd.org using -f
From: bugzilla-noreply@freebsd.org
To: net@FreeBSD.org
Subject: [Bug 245103] IPv6: update v6 temporary address lifetime according to
 rfc4941bis
Date: Fri, 20 Jun 2025 16:17:49 +0000
X-Bugzilla-Reason: AssignedTo
X-Bugzilla-Type: changed
X-Bugzilla-Watch-Reason: None
X-Bugzilla-Product: Base System
X-Bugzilla-Component: standards
X-Bugzilla-Version: CURRENT
X-Bugzilla-Keywords: ipv6, needs-qa, standards
X-Bugzilla-Severity: Affects Many People
X-Bugzilla-Who: commit-hook@FreeBSD.org
X-Bugzilla-Status: Open
X-Bugzilla-Resolution: 
X-Bugzilla-Priority: ---
X-Bugzilla-Assigned-To: net@FreeBSD.org
X-Bugzilla-Flags: 
X-Bugzilla-Changed-Fields: 
Message-ID: <bug-245103-7501-x5p4PyK8E4@https.bugs.freebsd.org/bugzilla/>
In-Reply-To: <bug-245103-7501@https.bugs.freebsd.org/bugzilla/>
References: <bug-245103-7501@https.bugs.freebsd.org/bugzilla/>
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="UTF-8"
X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/
Auto-Submitted: auto-generated
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-net
List-Help: <mailto:freebsd-net+help@freebsd.org>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Subscribe: <mailto:freebsd-net+subscribe@freebsd.org>
List-Unsubscribe: <mailto:freebsd-net+unsubscribe@freebsd.org>
Sender: owner-freebsd-net@FreeBSD.org
MIME-Version: 1.0

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D245103

--- Comment #23 from commit-hook@FreeBSD.org ---
A commit in branch main references this bug:

URL:
https://cgit.FreeBSD.org/src/commit/?id=3D41399ce61bcc56711cba3fed1ab5b4e72=
c937576

commit 41399ce61bcc56711cba3fed1ab5b4e72c937576
Author:     Marek Zarychta <zarychtam@plan-b.pwste.edu.pl>
AuthorDate: 2025-05-17 06:56:20 +0000
Commit:     Dag-Erling Sm=C3=B8rgrav <des@FreeBSD.org>
CommitDate: 2025-06-20 16:16:21 +0000

    inet6: RFC 8981 SLAAC Temporary Address Extensions

    Deprecate the use of MD5 as the algorithm for generating temporary
    interface identifiers (IIDs) for IPv6 addresses, improving cryptographic
    robustness.

    Introduce per-address randomized IIDs, ensuring that each temporary
    address uses a distinct interface identifier to enhance privacy and
    avoid correlation across addresses.

    Update the IID generation logic to respect the Reserved IPv6 Interface
    Identifiers list.

    Enhance sysctl_ip6_temppltime() so that ip6_temp_max_desync_factor is
    dynamically recalculated whenever ip6_temp_preferred_lifetime is updated
    via sysctl. This ensures that MAX_DESYNC_FACTOR remains approximately
    1/32 of the preferred lifetime plus 10 minutes. DESYNC_FACTOR is also
    regenerated after each update.

    Timers related to temporary address regeneration were updated to match
    the design recommendations in RFC 8981.

    A new read-only sysctl variable net.inet6.ip6.temp_max_desync_factor
    is introduced to expose the computed value of MAX_DESYNC_FACTOR to
    userland for observability and debugging.

    Input validation to reject temppltime values too small or too large is
    included.

    This all brings the temporary address lifetime handling closer to the
    intended design in RFC 8981 and improves robustness against
    misconfiguration.

    PR:             245103
    MFC after:      1 month
    Differential Revision:  https://reviews.freebsd.org/D50108

 sys/netinet6/in6_proto.c |  8 ++++++--
 sys/netinet6/ip6_input.c | 10 +++++++++-
 sys/netinet6/nd6.h       |  4 +++-
 sys/netinet6/nd6_rtr.c   |  3 ++-
 4 files changed, 20 insertions(+), 5 deletions(-)

--=20
You are receiving this mail because:
You are the assignee for the bug.=