maas-devel team mailing list archive

Thread
Date

Re: Clock skew and OAuth

To: Gavin Panella <gavin.panella@xxxxxxxxxxxxx>
From: Robie Basak <robie.basak@xxxxxxxxxxxxx>
Date: Mon, 20 Aug 2012 16:41:06 +0100
Cc: maas-devel@xxxxxxxxxxxxxxxxxxx, Scott Moser <scott.moser@xxxxxxxxxxxxx>
In-reply-to: <CALL7chkmXBjqj2UY9CZb6iwzmO4TaosOKPQ_yQbi9Anf+gFAPQ@mail.gmail.com>

On Mon, Aug 20, 2012 at 04:32:43PM +0100, Gavin Panella wrote:
> On 7 August 2012 09:26, Robie Basak <robie.basak@xxxxxxxxxxxxx> wrote:
> ...
> > Rather than using a new mechanism, why not use the kernel command line
> > which we must always have anyway?
> 
> I'm convinced :) Can you file a bug about it, linking back to this conversation?

Scott pointed out a flaw in this to me offline. I had assumed that the
clock is only wrong by being in the past, and this solution will not
address the problem of the clock being wrong by being in the future.

But AIUI now, this is problem on machines which have previously been
running on other OSes with the hardware clock set to local time rather
than UTC.

This may completely wipe out my proposal, since we can only safely move
the time towards the future with this plan, and not towards the past.

Robie

Attachment: signature.asc
Description: Digital signature

Follow ups

Re: Clock skew and OAuth
From: Gavin Panella, 2012-08-20

References

Clock skew and OAuth
From: Julian Edwards, 2012-06-27
Re: Clock skew and OAuth
From: Jeroen Vermeulen, 2012-06-27
Re: Clock skew and OAuth
From: Julian Edwards, 2012-06-27
Re: Clock skew and OAuth
From: Scott Moser, 2012-06-27
Re: Clock skew and OAuth
From: Robie Basak, 2012-08-06
Re: Clock skew and OAuth
From: Gavin Panella, 2012-08-07
Re: Clock skew and OAuth
From: Robie Basak, 2012-08-07
Re: Clock skew and OAuth
From: Gavin Panella, 2012-08-20