This is an automated email from git. It was generated because a ref
change was pushed to the "chrony/chrony.git" repository.
The branch, master has been updated
via 9b98247d9c7f249c3ca79c8149e4158a981f2c6a (commit)
via eedabb3d272dcaf5deb9ede02c59f7c81c1e903f (commit)
via 66dc2b6d6b36a9714fad4a5a77ce65dbf8d52bec (commit)
via bcdbbbd694ba4ca1408c6c0d6f4dbf622d5f235b (commit)
via 7b07e47c086d3ec5fbe3c56ddee8751b497f4358 (commit)
via a608496fafb22f27fed8175cb04d265de51df9b3 (commit)
via c687224a11addaf40c05f6d38ba0c80f6c36560a (commit)
via a6f2a613f36bcc142c2fe78e5e5a5c08b1d63c79 (commit)
via cfa39af345de13a73dfadbb5bdf832bc0fb4ce6f (commit)
via 8bab35c122566a06a2397c1b2c6907a48665f46e (commit)
via b20ef4cd7f83905f37d6e77ab217ed1e0a9aa04d (commit)
via b8b751a9323b920a79085d1398af4df76dcc23a8 (commit)
via 4a390841eb6dbcf5f826e7a14b9e3c84ecdcb577 (commit)
from f506f4403388760e88c0e5ae962b89081ea776d9 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit 9b98247d9c7f249c3ca79c8149e4158a981f2c6a
Author: Miroslav Lichvar <mlich...@redhat.com>
Date: Thu Mar 26 15:30:28 2020 +0100
nts: zero cookie placeholder
Zero the body of the cookie placeholder in client requests as
recommended by the latest NTS draft.
commit eedabb3d272dcaf5deb9ede02c59f7c81c1e903f
Author: Miroslav Lichvar <mlich...@redhat.com>
Date: Thu Mar 26 15:18:08 2020 +0100
nts: disable TLS version 1.2
Require TLS version 1.3 or later as specified in the latest NTS draft.
commit 66dc2b6d6b36a9714fad4a5a77ce65dbf8d52bec
Author: Miroslav Lichvar <mlich...@redhat.com>
Date: Wed Mar 25 17:01:27 2020 +0100
nts: rework NTS-KE retry interval
Make the NTS-KE retry interval exponentially increasing, using a factor
provided by the NKE session. Use shorter intervals when the server is
refusing TCP connections or the connection is closed or timing out
before the TLS handshake.
commit bcdbbbd694ba4ca1408c6c0d6f4dbf622d5f235b
Author: Miroslav Lichvar <mlich...@redhat.com>
Date: Mon Mar 23 15:39:58 2020 +0100
nts: include server address in client NTS-KE log messages
commit 7b07e47c086d3ec5fbe3c56ddee8751b497f4358
Author: Miroslav Lichvar <mlich...@redhat.com>
Date: Mon Mar 23 15:34:08 2020 +0100
nts: fix address in server NTS-KE log messages
The server session instances are reused for different clients. Separate
the server name from the label used in log messages and set it on each
start of the session.
commit a608496fafb22f27fed8175cb04d265de51df9b3
Author: Miroslav Lichvar <mlich...@redhat.com>
Date: Thu Mar 26 11:51:17 2020 +0100
ntp: fix log message for replaced source
When a source was replaced and the new source had the same slot as the
old source, a wrong message was logged. Fix the condition to distinguish
correctly between changed address and port.
Fixes: 9468fd4aa680 ("ntp: allow changing port of source")
commit c687224a11addaf40c05f6d38ba0c80f6c36560a
Author: Miroslav Lichvar <mlich...@redhat.com>
Date: Wed Mar 25 09:12:35 2020 +0100
reference: improve check for close leap second
Improve the check to work with the actual timestamp of the leap second
instead of the closest midnight and don't turn it off on the leap
timeout. Also allow sample times to be checked in addition to the system
time and NTP time to avoid accumulation of samples mixing pre-leap and
post-leap timestamps (causing error of +/-0.5 or +/-1.0 seconds).
commit a6f2a613f36bcc142c2fe78e5e5a5c08b1d63c79
Author: Miroslav Lichvar <mlich...@redhat.com>
Date: Tue Mar 24 15:46:34 2020 +0100
socket: remove obsolete comment
commit cfa39af345de13a73dfadbb5bdf832bc0fb4ce6f
Author: Miroslav Lichvar <mlich...@redhat.com>
Date: Tue Mar 24 15:29:21 2020 +0100
socket: fix severity check in debug logging
Don't waste time formatting the debug message in log_message() when
debug output is disabled.
Fixes: 86a3ef9ed192 ("socket: add new socket support")
commit 8bab35c122566a06a2397c1b2c6907a48665f46e
Author: Miroslav Lichvar <mlich...@redhat.com>
Date: Tue Mar 24 15:26:35 2020 +0100
socket: increase maximum number of received messages
The buffers are no longer on stack. Increase their number for better
performance on heavily loaded servers.
commit b20ef4cd7f83905f37d6e77ab217ed1e0a9aa04d
Author: Miroslav Lichvar <mlich...@redhat.com>
Date: Tue Mar 24 15:22:31 2020 +0100
socket: simplify receiving messages
Don't require the caller to provide a SCK_Message (on stack). Modify the
SCK_ReceiveMessage*() functions to return a pointer to static buffers,
as the message buffer which SCK_Message points to already is.
commit b8b751a9323b920a79085d1398af4df76dcc23a8
Author: Miroslav Lichvar <mlich...@redhat.com>
Date: Mon Mar 23 11:34:02 2020 +0100
socket: enable port sharing on Linux
On Linux, enable the SO_REUSEPORT option on sockets bound to a port in
order to support load balancing with multiple chronyd instances
(configured to not adjust the system clock).
The IP_FREEBIND option already allowed different instances to bind to
the same address and port, but only one was actually receiving packets.
As the instances don't share their state, sharing the NTP port doesn't
work well with the interleaved mode, symmetric mode, and rate limiting.
Sharing the NTS-KE port will not work until the server keys can be
derived from a shared key.
commit 4a390841eb6dbcf5f826e7a14b9e3c84ecdcb577
Author: Miroslav Lichvar <mlich...@redhat.com>
Date: Thu Mar 19 17:03:25 2020 +0100
doc: fix typo in smoothtime description
-----------------------------------------------------------------------
Summary of changes:
cmdmon.c | 27 +++++++++---------
doc/chrony.conf.adoc | 2 +-
ntp_io.c | 9 ++----
ntp_sources.c | 2 +-
nts_ke.h | 4 +++
nts_ke_client.c | 16 ++++++++++-
nts_ke_client.h | 3 ++
nts_ke_server.c | 16 ++++++-----
nts_ke_session.c | 68 ++++++++++++++++++++++++++++++++--------------
nts_ke_session.h | 10 +++++--
nts_ntp_client.c | 42 ++++++++++++++++++++++------
privops.c | 14 +++++-----
reference.c | 30 ++++++++++++--------
reference.h | 6 ++--
socket.c | 51 ++++++++++++++++++++++++----------
socket.h | 14 ++++------
sources.c | 4 +--
sys_linux.c | 3 ++
test/unit/nts_ke_server.c | 2 +-
test/unit/nts_ke_session.c | 6 ++--
test/unit/nts_ntp_client.c | 2 +-
21 files changed, 217 insertions(+), 114 deletions(-)
hooks/post-receive
--
chrony/chrony.git
--
To unsubscribe email chrony-dev-requ...@chrony.tuxfamily.org with "unsubscribe"
in the subject.
For help email chrony-dev-requ...@chrony.tuxfamily.org with "help" in the
subject.
Trouble? Email listmas...@chrony.tuxfamily.org.
