> Could you split up the traffic across dozens or hundreds of IPv6 source addresses?

Yes

> I can see how this significantly increases complexity for tracking

Not really. You just track at some prefix level. In general, the ISP will hand out a /64 per consumer so that's what you can track. From there, you can build more complex and more precise grouping rules for tracking.

If you assign a subnet to a host, or allow the host to claim multiple addresses via ND from the link subnet, then you can use as many addresses as you want. You could give every process on your machine its own IPv6 address for example.

The biggest tracking hurdle is to figure out if the ISP that handed out the block of addresses is handing out /64s, /56s, or /48s. The network provided to you is functionally the same as the IP address assigned to you with IPv4.

In theory I could rent an IPv4 /29 (of which 6 addresses are usable) for like 20 euros a month from my home ISP to cause the same confusion but I doubt it'd confuse trackers to use those.

yes - this is also part of the privacy extensions spec: https://datatracker.ietf.org/doc/html/rfc4941

IIRC you could still track because all those mutiple IPv6 addresses will have the same prefix.

Yes, but realistically the guy who is tracking you tracks the first 64 bits of the address, which identify the network.

It is quite easy todo 100 lines of Python, you can even send ip packets with faked source adress.