Next release of GrapheneOS will finally have a fix for IPv6 privacy addresses to prevent them being used to track users not only across connections to the same network but across networks.
Future devices won't have this particular kind of issue anymore due to upstream fixes.
Conversation
All of the blatant issues with Wi-Fi anonymity should be resolved now. Hardware/firmware on the supported devices has done things properly for a while but there were higher-level anonymity issues. Of course, it would be a good idea to go over everything from the bottom up again.
1
1
12
It won't be possible to provide the same kind of Wi-Fi anonymity on other hardware unless it goes out of the way to minimize leaked information and randomize sequence numbers, etc. in the same way.
Should be possible to properly do this on most modern Snapdragon devices though.
1
1
11
This IPv6 address issue was particularly bad because it was exposed beyond the local network.
Linux kernel started doing things better as of Linux 5.8 but older LTS branches manage to make privacy addresses into an anti-privacy feature enabling tracking.
1
11
This Tweet was deleted by the Tweet author. Learn more
The versions marked longterm at kernel.org are what's most suitable for production devices. They get 6 years of support now.
Ideally, devices would get migrated to newer longterm support (LTS) branches and could switch over after most regressions are fixed.
It will be a requirement for devices to get more than around 4 years of support. Devices either need to start shipping with a newer LTS (enabling 5 years of support) or migrate to newer LTS branches with all the pain involved in porting and fixing all the inevitable regressions.
1