Package: openafs-client Version: 1.8.2-1 Severity: grave Control: clone -1 -2 Control: reassign -2 openafs-fileserver
The Rx RPC stack requires a connection identifier for each new connection a system initiates. In 2014 support to generate the initial identifier randomly was added to the core Rx implementation (instead of relying on the security layer to do so), but code that attempted to use the current system time as part of a not-very-random initialization was not removed at that time. When the unix epoch time is later than 0x60000000, that stale initialization interacts with a bug in code designed to avoid signed integer overflow when incrementing the global conneciton ID counter, resulting in the connection ID of 0x80000002 being used for all connections, leading to connection failure due to the collision. This renders all clients and servers started after 14 Jan 2021 08:25:36 UTC unusable.
