| Re: [chrony-users] NTS issue |
[ Thread Index |
Date Index
| More chrony.tuxfamily.org/chrony-users Archives
]
- To: chrony-users@xxxxxxxxxxxxxxxxxxxx
- Subject: Re: [chrony-users] NTS issue
- From: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
- Date: Mon, 2 May 2022 09:35:33 +0200
- Authentication-results: relay.mimecast.com; auth=pass smtp.auth=CUSA124A263 smtp.mailfrom=mlichvar@xxxxxxxxxx
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1651476937; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references; bh=kstNLMhfsX+f0GCCvzdAjpMXzAq+LTL9uO15GEbGMa8=; b=U6nM9iWArXDT+K9p1vOkTG07dGfTpaMNjdI1+fnB389VCzLhysZoubN+sPcPo382rxLxhq sXRIsFUgD+r0KPO9rdu0TSxsVa4cWxavWFpQthphSvED8zNjiP4F38cFPG7ANRaXeeYPMH xkDiYn5uOwQb0Vef9XTkyRbAnPpnDKg=
On Fri, Apr 29, 2022 at 07:00:13PM +0200, Timothy D wrote:
> server nts.netnod.se iburst nts
> server ptbtime1.ptb.de iburst nts
> ntsdumpdir /var/lib/chrony
> Apr 29 18:56:15 repo.x.local systemd[1]: Started NTP client/server.
> Apr 29 18:56:16 repo.x.local chronyd[5507]: Fatal error : Could not
> initialise priority cache : No or insufficient priorities were set.
That looks like chronyd cannot select TLS1.3 or maybe a cipher.
Do you see the same error when you run the following command?
gnutls-cli -p 4460 --alpn=ntske/1 --logfile /dev/stderr \
ptbtime1.ptb.de < /dev/null > /dev/null
Do you see any SELinux errors for chrony, e.g. printed by this
command?
grep AVC.*chrony /var/log/audit/audit.log
Do you have a custom crypto policy configured in
/etc/crypto-policies/?
cat /etc/crypto-policies/back-ends/gnutls.config
should show the current gnutls configuration.
--
Miroslav Lichvar
--
To unsubscribe email chrony-users-request@xxxxxxxxxxxxxxxxxxxx
with "unsubscribe" in the subject.
For help email chrony-users-request@xxxxxxxxxxxxxxxxxxxx
with "help" in the subject.
Trouble? Email listmaster@xxxxxxxxxxxxxxxxxxxx.