| [chrony-dev] [GIT] chrony/chrony.git branch master updated. 4.0-pre1-37-g7092238 |
[ Thread Index |
Date Index
| More chrony.tuxfamily.org/chrony-dev Archives
]
This is an automated email from git. It was generated because a ref
change was pushed to the "chrony/chrony.git" repository.
The branch, master has been updated
via 709223826f00c71fe775981b853439561d7694d4 (commit)
via eace93f2afcb07ac8763f906de2ead6a49d20864 (commit)
via 2775846db79a763b778e9dc9e5c30c6207e27f2a (commit)
via 4aff08e95dbf849c328423a9cb3e3fefe2f16e52 (commit)
via 958d66f8a7aa10d77636aab39a3f222b168079cd (commit)
via 85fa29c43d97b51e433263257a231c7aaac061d2 (commit)
via 0344b9a9c92ff98e1574dfee016f3d69ffc1ac3f (commit)
via 04f632977371b9e9d6a69ddeeee69fa502d0b063 (commit)
via d690faeb19f9c56b6fc633970ef196ae70b70a1e (commit)
via 0b2e77ae647b35ec5897354f6f8e903c6f56712d (commit)
from 2a4fd0a5c61335b4f831868a6a2b40c89253dab7 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit 709223826f00c71fe775981b853439561d7694d4
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date: Thu Apr 16 17:26:25 2020 +0200
doc: update documentation for recent NTS changes
commit eace93f2afcb07ac8763f906de2ead6a49d20864
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date: Thu Apr 16 16:08:43 2020 +0200
nts: allow disabling certificate time checks
Add "nocerttimecheck" directive to specify the number of clock updates
that need to be made before the time validation of certificates is
enabled. This makes NTS usable on machines that don't have a RTC.
commit 2775846db79a763b778e9dc9e5c30c6207e27f2a
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date: Thu Apr 16 12:06:55 2020 +0200
nts: provide time function to gnutls
Use the internal time instead of system time for validation checks in
gnutls.
commit 4aff08e95dbf849c328423a9cb3e3fefe2f16e52
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date: Wed Apr 15 15:41:22 2020 +0200
nts: add server support for NTP server negotiation
Add ntsntpserver directive to specify the hostname of the NTP server
provided in NTS-KE response to clients.
commit 958d66f8a7aa10d77636aab39a3f222b168079cd
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date: Wed Apr 15 11:52:49 2020 +0200
cmdmon: reload NTS server keys on rekey command
When ntsrotate is set to 0, allow the keys to be reloaded with the rekey
command of chronyc.
commit 85fa29c43d97b51e433263257a231c7aaac061d2
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date: Wed Apr 15 11:43:59 2020 +0200
nts: enable external management of server keys
If ntsrotate is set to 0, don't generate new server keys and don't save
them to ntsdumpdir. This allows the keys to be managed externally and
shared with other servers.
commit 0344b9a9c92ff98e1574dfee016f3d69ffc1ac3f
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date: Wed Apr 15 10:48:29 2020 +0200
nts: generate cookies from second newest key
Generate one server key in advance to give it time to be distributed to
other servers before it is actually used.
commit 04f632977371b9e9d6a69ddeeee69fa502d0b063
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date: Wed Apr 15 10:44:20 2020 +0200
nts: encode key ID in cookie in network order
This allows the server cookie to be decoded on different platforms.
commit d690faeb19f9c56b6fc633970ef196ae70b70a1e
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date: Wed Apr 15 10:12:55 2020 +0200
cmdmon: save NTS cookies and server keys on dump command
Extend the dump command to save also the server NTS keys and client NTS
cookies. Remove the warning for unset dumpdir.
commit 0b2e77ae647b35ec5897354f6f8e903c6f56712d
Author: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
Date: Wed Apr 15 16:26:43 2020 +0200
ntp: update auth-specific address sooner
When replacing an NTP source, update the NTS address before the NTP
address to save cookies with the old NTP address instead of the newly
resolved address (which may immediately change to an address provided by
NTS-KE).
-----------------------------------------------------------------------
Summary of changes:
client.c | 4 +--
cmdmon.c | 4 +++
conf.c | 27 +++++++++++++++-
conf.h | 2 ++
doc/chrony.conf.adoc | 82 +++++++++++++++++++++++++++++++++++++++++++----
doc/chronyc.adoc | 11 +++++--
ntp_auth.c | 14 ++++++++
ntp_auth.h | 3 ++
ntp_core.c | 16 +++++++--
ntp_core.h | 2 ++
ntp_sources.c | 14 +++++++-
ntp_sources.h | 2 ++
nts_ke_server.c | 69 +++++++++++++++++++++++++++------------
nts_ke_server.h | 6 ++++
nts_ke_session.c | 45 +++++++++++++++++++++++++-
nts_ntp_client.c | 8 +++++
nts_ntp_client.h | 2 ++
sources.c | 1 -
stubs.c | 20 ++++++++++++
test/simulation/139-nts | 8 ++---
test/unit/nts_ke_client.c | 3 ++
21 files changed, 300 insertions(+), 43 deletions(-)
hooks/post-receive
--
chrony/chrony.git
--
To unsubscribe email chrony-dev-request@xxxxxxxxxxxxxxxxxxxx with "unsubscribe" in the subject.
For help email chrony-dev-request@xxxxxxxxxxxxxxxxxxxx with "help" in the subject.
Trouble? Email listmaster@xxxxxxxxxxxxxxxxxxxx.