[chrony-dev] [GIT] chrony/chrony.git branch master updated. 4.0-pre1-37-g7092238

[ Thread Index | Date Index | More chrony.tuxfamily.org/chrony-dev Archives ]


This is an automated email from git. It was generated because a ref
change was pushed to the "chrony/chrony.git" repository.

The branch, master has been updated
       via  709223826f00c71fe775981b853439561d7694d4 (commit)
       via  eace93f2afcb07ac8763f906de2ead6a49d20864 (commit)
       via  2775846db79a763b778e9dc9e5c30c6207e27f2a (commit)
       via  4aff08e95dbf849c328423a9cb3e3fefe2f16e52 (commit)
       via  958d66f8a7aa10d77636aab39a3f222b168079cd (commit)
       via  85fa29c43d97b51e433263257a231c7aaac061d2 (commit)
       via  0344b9a9c92ff98e1574dfee016f3d69ffc1ac3f (commit)
       via  04f632977371b9e9d6a69ddeeee69fa502d0b063 (commit)
       via  d690faeb19f9c56b6fc633970ef196ae70b70a1e (commit)
       via  0b2e77ae647b35ec5897354f6f8e903c6f56712d (commit)
      from  2a4fd0a5c61335b4f831868a6a2b40c89253dab7 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit 709223826f00c71fe775981b853439561d7694d4
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date:   Thu Apr 16 17:26:25 2020 +0200

    doc: update documentation for recent NTS changes

commit eace93f2afcb07ac8763f906de2ead6a49d20864
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date:   Thu Apr 16 16:08:43 2020 +0200

    nts: allow disabling certificate time checks
    
    Add "nocerttimecheck" directive to specify the number of clock updates
    that need to be made before the time validation of certificates is
    enabled. This makes NTS usable on machines that don't have a RTC.

commit 2775846db79a763b778e9dc9e5c30c6207e27f2a
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date:   Thu Apr 16 12:06:55 2020 +0200

    nts: provide time function to gnutls
    
    Use the internal time instead of system time for validation checks in
    gnutls.

commit 4aff08e95dbf849c328423a9cb3e3fefe2f16e52
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date:   Wed Apr 15 15:41:22 2020 +0200

    nts: add server support for NTP server negotiation
    
    Add ntsntpserver directive to specify the hostname of the NTP server
    provided in NTS-KE response to clients.

commit 958d66f8a7aa10d77636aab39a3f222b168079cd
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date:   Wed Apr 15 11:52:49 2020 +0200

    cmdmon: reload NTS server keys on rekey command
    
    When ntsrotate is set to 0, allow the keys to be reloaded with the rekey
    command of chronyc.

commit 85fa29c43d97b51e433263257a231c7aaac061d2
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date:   Wed Apr 15 11:43:59 2020 +0200

    nts: enable external management of server keys
    
    If ntsrotate is set to 0, don't generate new server keys and don't save
    them to ntsdumpdir. This allows the keys to be managed externally and
    shared with other servers.

commit 0344b9a9c92ff98e1574dfee016f3d69ffc1ac3f
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date:   Wed Apr 15 10:48:29 2020 +0200

    nts: generate cookies from second newest key
    
    Generate one server key in advance to give it time to be distributed to
    other servers before it is actually used.

commit 04f632977371b9e9d6a69ddeeee69fa502d0b063
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date:   Wed Apr 15 10:44:20 2020 +0200

    nts: encode key ID in cookie in network order
    
    This allows the server cookie to be decoded on different platforms.

commit d690faeb19f9c56b6fc633970ef196ae70b70a1e
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date:   Wed Apr 15 10:12:55 2020 +0200

    cmdmon: save NTS cookies and server keys on dump command
    
    Extend the dump command to save also the server NTS keys and client NTS
    cookies. Remove the warning for unset dumpdir.

commit 0b2e77ae647b35ec5897354f6f8e903c6f56712d
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date:   Wed Apr 15 16:26:43 2020 +0200

    ntp: update auth-specific address sooner
    
    When replacing an NTP source, update the NTS address before the NTP
    address to save cookies with the old NTP address instead of the newly
    resolved address (which may immediately change to an address provided by
    NTS-KE).

-----------------------------------------------------------------------

Summary of changes:
 client.c                  |  4 +--
 cmdmon.c                  |  4 +++
 conf.c                    | 27 +++++++++++++++-
 conf.h                    |  2 ++
 doc/chrony.conf.adoc      | 82 +++++++++++++++++++++++++++++++++++++++++++----
 doc/chronyc.adoc          | 11 +++++--
 ntp_auth.c                | 14 ++++++++
 ntp_auth.h                |  3 ++
 ntp_core.c                | 16 +++++++--
 ntp_core.h                |  2 ++
 ntp_sources.c             | 14 +++++++-
 ntp_sources.h             |  2 ++
 nts_ke_server.c           | 69 +++++++++++++++++++++++++++------------
 nts_ke_server.h           |  6 ++++
 nts_ke_session.c          | 45 +++++++++++++++++++++++++-
 nts_ntp_client.c          |  8 +++++
 nts_ntp_client.h          |  2 ++
 sources.c                 |  1 -
 stubs.c                   | 20 ++++++++++++
 test/simulation/139-nts   |  8 ++---
 test/unit/nts_ke_client.c |  3 ++
 21 files changed, 300 insertions(+), 43 deletions(-)


hooks/post-receive
-- 
chrony/chrony.git

-- 
To unsubscribe email chrony-dev-request@xxxxxxxxxxxxxxxxxxxx with "unsubscribe" in the subject.
For help email chrony-dev-request@xxxxxxxxxxxxxxxxxxxx with "help" in the subject.
Trouble?  Email listmaster@xxxxxxxxxxxxxxxxxxxx.


Mail converted by MHonArc 2.6.19+ http://listengine.tuxfamily.org/