ipv6 stable-privacy with 1:1 redundancy
Our device is in a chassis with cards having 1:1 redundancy. Till now we only support eui64 ipv6 address so they get the same RA derived IP (they share same MAC but only Active brings up its network interface). However, I have trouble in getting them to same stable-privacy address. From code and documentation seems the stable-id in nmconnection is hashed along with /var/lib/NetworkManager/secret_key. This secret_key seems to be normally generated using machine-id. However, the two devices do not share the same machine-id (and can't be same for redundancy protocols to work). So this causes them to get a different stable-privacy address.
For the moment only solution seems to be to sync secret_key between the two devices once generated.
Could we have an enhancement, may be a config variable that lets us use just the stable-id and not hash it with secret_key? Or may be something that lets us specify secret_key itself in config file.