Raspberry Pi startup: certificate is not yet valid

Gary E. Miller gem at rellim.com
Mon May 9 19:39:38 UTC 2022


Yo Hal!

On Mon, 09 May 2022 00:38:34 -0700
Hal Murray via devel <devel at ntpsec.org> wrote:

> Does anybody know how the initial time gets set on a Raspberry Pi --
> before ntpd gets called?

It depends.  Some use swclock, some use ntpclient, some use an RTC,
some use a GNSS time.

> I have a recently setup system that gets initialized to 2022-04-01
> and is trying  to use a certificate that was created after that.  :)

Fun.

> Should we do something like set the time to the time stamp of the
> drift file? (if it is significantly newer than the current time)

Nope.  Don't get in a fight with the OS.

> Do we have a document that collects interesting things about NTS and 
> certificates?

Nope.

RGDS
GARY
---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
	gem at rellim.com  Tel:+1 541 382 8588

	    Veritas liberabit vos. -- Quid est veritas?
    "If you can't measure it, you can't improve it." - Lord Kelvin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 851 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ntpsec.org/pipermail/devel/attachments/20220509/83c453dd/attachment.bin>


More information about the devel mailing list