Testing Linux and Open Source for Y2K

Stephen Hurrell asks: "I'm interested in getting feedback about how people and/or sites running Linux with all the usual applications like apache, samba, perl, php, jdk's, postgresql, oracle, X, etc. are handling the Y2K problem. Particularly how they are Y2K testing and communicating results in order to ease management's open source concerns. What do you do and what did you find? There may be a silver lining in Linux that in fact most applications may be using UNIX time structures and that the open source community may be able to respond quicker than Brand M for patches and fixes. Hopefully this may result in increased trust and usage of open source products. What do you think?"

Interesting question...

[selectap]

I was looking up some documentation on Apache's site last night and I think I did see a Y2K statement out of the corner of my eye. I was wondering about Y2K myself, especially since I just set up Redhat 6.1 as my primary workstation at work (in a Windows enviornment) I suppose that with Open source and so many eyeballs looking at the code daily, I'm sure that all of the Y2K bugs have been taken care of. For the major vendors, a quick visit to their web site should clarify what versions are compliant (for instance, Redhat claims 5.2 and above are compliant). As for the other non-commercial smaller scale projects, I don't know...

A little late?

[Anonymous Bastard]

Dude, it's December 18th, 1999. That means we have about two weeks until the clock rolls over. If you're still doing Y2K testing, please post the company/industry you are working for so we will know what we *can't* count on come 11:59 PM.

Too late for Y2K worries

[kdz]

It's a little late to worry about Y2K. But you can be the first on your block to to worry about the Y2038 bug...

Re:Too late for Y2K worries

[nowindowz]

mentions it's Y2K38 compliant I think you mean Y2.038K compliany

Red Hat paid for independent testing

[Booker]

If you want to point to outside certification, take a look at http://www.redhat.com/legal/y2k_statement.html

In it, they say:

We are pleased to disclose that the core system components of Red Hat Linux, versions 5.2 and 6.0, on Intel architecture have been independently certified as Year 2000 compliant.

and they define "core" as:

1.Commands

after
at
hwclock
convdate
crontab
date
ftpshut
ls
rdate
sleep
touch
usradd
hwclock
telnet
ftp

2.Daemons

httpd
ftpd
telnetd
inted
atd
crond

3.libc

strptime
asctime
gmtime
mktime
int time_t
struct tm

Not exactly the entire distribution... but at least most of the time-related functions...
----

Re:Too late for Y2K worries

[the_tsi]

Maybe he means Y2K+38?

-Chris

Heh

[FascDot Killed My Pr]

About 2 years ago I asked about Y2k and Linux on linux-newbie. Here's a rough paraphrase of how someone responded:

Me: Is Linux Y2k?
Random l-n Person: Linux is based on UNIX which uses time_t and is good for 40 more years.
Me: Yes, I know that, but what about the apps?
RLNP: Apps should use time_t.
Me: Yes, "should". Do they? Furthermore, what about stored dates?
RLNP: If a programmer has not used time_t or has stored a date incorrectly, they are stupid.
Me: Yes, I know that. That's what we want to test. AAAAAAaaagghghghghghghghghhhhhhh
---

Unix Time?

[lunatik17]

I know for sure that the Operating System itself is Y2K compliant. Linux is based on Unix time, which means it counts up the seconds from Jan 1, 1970 and converts it into the standard format when needed. On a 32-bit architechture, it won't roll over until some time in 2038. Wouldn't this apply to the entire infrastructure?

A Little Late, Aren't You?

[InitZero]

Note: This will be an off-topic rant about Y2K insanity. Please ignore the contents of this post.

To be asking the question 'uh, what about that Y2K thing?' just 13 or so days from The Day, seems silly. If you haven't testing and retested by now, your best bet is to bend over and kiss your buttocks goodbye.

At my company, we have been doing testing and fixes for years. Since November, every change must be approved through the corporate headquarters. (The changes must be approved by the C*Os and their lawyers, not actually by people who know anything about computers.)

I had a perl CGI script that I needed to update. We have put a new system online and it used to be called "TEST" on the daily reports. Now that it was in production it was to be called "R5" for Release Five...

Original code snippit...
$R5Name="TEST" ;

Updated code snippit...
$R5Name="R5" ;

To make that change required three pages of paperwork describing the change, a test plan to make sure this change worked and a backout plan should this fail. It took a week and a half to get the change approved.

Somewhere between your 'uh, Y2K?' at T-minus 13 and counting and my piles of paperwork, there's probably a Happy Place.

To somewhat answer your question, you should test your Open Source systems in the same fashion you should have tested your closed source systems. Just because something is GPL doesn't mean that it somehow magically will work on January 1, 2000.

Further, just because someone else says that an application or operating system is Y2K compliant doesn't mean it has been checked or that it will work. If you haven't tested the system yourself, assume that it won't work. Heck, I have systems that I have checked myself extensively and I wouldn't bet my job on it let alone my life.

Conclusion: Stop wasting your time asking Slashdot if your systems are compliant and start doing some testing.

InitZero

"It doesn't matter...

[Royster]

whether the programs are compliant, because the humans using them are not!"

A quote from the Perl Y2K Statement [perlmongers.org].