608508 – hardened-sources-4.7.3 time() function causing odd crypto failures

Bug 608508 - hardened-sources-4.7.3 time() function causing odd crypto failures

Summary: hardened-sources-4.7.3 time() function causing odd crypto failures

Status:	RESOLVED OBSOLETE

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	Hardened (show other bugs)
Hardware:	AMD64 Linux

Importance:	Normal critical (vote)
Assignee:	The Gentoo Linux Hardened Team

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2017-02-07 03:01 UTC by Steve Arnold
Modified:	2018-10-11 23:26 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Steve Arnold archtester

2017-02-07 03:01:20 UTC

Running 4.7.3 hardened-sources amd64/Intel corei7 causes ssl/ssh failures such as "Verify return code: 9 (certificate is not yet valid)" and others that can be traced to the above function returning "0" although clock_gettime() works just fine.  This problem did not occur on older kernels, also not with the same version of gentoo-sources or with hardened-sources-4.8.15.

Stephanie made a test program that shows the problem, 'T=0' on the build server:

---
#include <time.h>
#include <stdio.h>

int main(int argc, char **argv)
{
  time_t t;
  time(&t);
  printf("T=%ld\n", t);
}
---