| Summary: | hardened-sources-4.7.3 time() function causing odd crypto failures | ||
|---|---|---|---|
| Product: | Gentoo Linux | Reporter: | Steve Arnold <nerdboy> |
| Component: | Hardened | Assignee: | The Gentoo Linux Hardened Team <hardened> |
| Status: | RESOLVED OBSOLETE | ||
| Severity: | critical | ||
| Priority: | Normal | ||
| Version: | unspecified | ||
| Hardware: | AMD64 | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Package list: | Runtime testing required: | --- | |
Running 4.7.3 hardened-sources amd64/Intel corei7 causes ssl/ssh failures such as "Verify return code: 9 (certificate is not yet valid)" and others that can be traced to the above function returning "0" although clock_gettime() works just fine. This problem did not occur on older kernels, also not with the same version of gentoo-sources or with hardened-sources-4.8.15. Stephanie made a test program that shows the problem, 'T=0' on the build server: --- #include <time.h> #include <stdio.h> int main(int argc, char **argv) { time_t t; time(&t); printf("T=%ld\n", t); } ---