[pve-devel] applied: [PATCH access-control 1/2] authkey: use variable instead of hard coded grace period value

Signed-off-by: Thomas Lamprecht --- PVE/AccessControl.pm | 9 + 1 file changed, 5 insertions(+), 4 deletions(-) diff --git a/PVE/AccessControl.pm b/PVE/AccessControl.pm index ae8eaae..78e5cc5 100644 --- a/PVE/AccessControl.pm +++ b/PVE/AccessControl.pm @@ -48,6 +48,7 @@ my $pve_auth_key_

[pve-devel] applied: [PATCH access-control 2/2] partially fix #2825: authkey: rotate if it was generated in the future

Can happen if the RTC is in the future during installation and first boot, when during key generation the clock is in the future and then, after the key was already generated, jumps back in time. Allow a fuzz of $auth_graceperiod, which is currently 5 minutes, as that fuzz allows some minor, not r