Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 9 May 1999 22:45:13 -0700 (PDT)
From:      Nick Sayer <nsayer@quack.kfu.com>
To:        bde@zeta.org.au (Bruce Evans)
Cc:        bde@zeta.org.au, nsayer@quack.kfu.com, cvs-all@FreeBSD.org, cvs-committers@FreeBSD.org, nsayer@FreeBSD.org
Subject:   Re: cvs commit: src/sys/kern kern_time.c
Message-ID:  <199905100545.WAA25334@medusa.kfu.com>
In-Reply-To: <199905100537.PAA10793@godzilla.zeta.org.au> from Bruce Evans at "May 10, 1999  3:37: 9 pm"

next in thread | previous in thread | raw e-mail | index | archive | help
> >> Use the standard xntpd options SLEWALWAYS and maybe FORCE_NTPDATE_STEP.
> >
> >Then those should be defined in the xntpd that is supplied by default,
> >otherwise the default configuration of FreeBSD will not keep time
> >correctly when securelevel>0 (without this patch, that is).
> >
> >Can I take it, then, that you are in favor of commiting that and then
> >outlawing settimeofday() when securelevel>0?
> 
> Not in RELENG_3.

So you're in favor of RELENG_3 having broken timekeeping then?
I'm not sure I understand.

> ISTR that someone said that newer versions of xntpd have a runtime switch
> for the slewing behaviour.

Then at the very least it should be documented somewhere that such a version
(in a port, perhaps?) is required for securelevel>0.

But in no way does that excuse leaving broken functionality in
RELENG_3 (which was what was there before). The code that was
there MASQUERADED as a security fix, in that it hand-waved not
allowing negative time steps while not in actual fact preventing
them. That same phony security precaution actually made the
standard configuration break badly when the code was exercised.
Who wins in keeping that around until 4.0-RELEASE?



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199905100545.WAA25334>