Fedora IPv6 testing and improvements - request for ideas
Pavel Simerda
psimerda at redhat.com
Tue Nov 3 23:30:26 UTC 2015
----- Original Message -----
> From: "Moez Roy" <moez.roy at gmail.com>
> To: "Development discussions related to Fedora" <devel at lists.fedoraproject.org>, "Pavel Simerda"
> <psimerda at redhat.com>
> Cc: "Tore Anderson" <tore at fud.no>, "Tomas Hozza" <thozza at redhat.com>, "Paul Wouters" <pwouters at redhat.com>
> Sent: Tuesday, November 3, 2015 6:50:53 PM
> Subject: Re: Fedora IPv6 testing and improvements - request for ideas
>
> Hi Pavel Simerda,
>
> The IPv6 updates are breaking stuff (and probably increasing the
> attack surface):
Hi Moez,
please could you explain the above statement and back it by specific
data for the tickets below?
> Bug 1231946 - unbound-anchor ignores net.ipv6.conf.all.disable_ipv6=1
> in /etc/sysctl.conf
> https://bugzilla.redhat.com/show_bug.cgi?id=1231946
It seems to suggest there was a regression due to an update
related to IPv6 but:
1) The ticket doesn't suggest a regression.
2) The ticket doesn't talk about any specific update.
3) I am not aware of any recent unbound update motivated by IPv6.
If you still think it is the case, please address the above points
in the bugzilla ticket.
> Bug 1251762 - dnssec-triggerd ignores net.ipv6.conf.all.disable_ipv6=1
> in /etc/sysctl.conf
> https://bugzilla.redhat.com/show_bug.cgi?id=1251762
This looks very similar in nature.
> (maybe other software like avahi also don't remember right now)
>
> You can reproduce this by putting "ipv6.disable=1" in the kernel command
> line.
Thanks! It looks like we need to test a lot of stuff with IPv6 disabled in
the kernel.
Cheers,
Pavel
More information about the devel
mailing list