On Sun, Mar 12, 2017 at 10:59 PM, Drew White <drew.qu...@gmail.com> wrote: > Question: Why does it not work properly then?
Answer: Must be because of something you changed on your system. It *does* appear to work properly by default, confirmed by not seeing the NTP traffic you describe on two Qubes machines, one of which is literally a perfectly unmodified default install of 3.2 I have just for testing things. > Thus, it kept running /usr/sbin/ntpdate pool.ntp.org > > Until I changed that, it was futile. Feel free to send patches to allow users to easily specify an ntp server(s). >> >> > The "ClockVM" does not seem to be operating the way I would have >> >> > thought a "ClockVM" would. >> >> >> >> Only the ClockVM to uses NTP at all, and it sends the time back to >> >> dom0. The rest of the VMs get their time set by dom0 via >> >> qubes.SetDateTime service. >> > >> > So the ClockVM ONLY interacts with Dom0. Fair enough. Then it would be a >> > good addition to allow it to update each Guest. >> >> No. That would be a bad design for several reasons. Dom0 already does >> this periodically. This is better than what I assume you suggest >> (ClockVM directly invoking qubes.setDateTime in each guest) because >> the service invocations are implicitly rate-limited and contents >> filtered by dom0. It is also not desired for the ClockVM VM to even >> know which other VMs exist, let alone know which ones are running and >> need their clock set. > > I was more thinking the ClockVM (CVM) gets the time, then Dom0 gets the time, > then Dom0 updates everything, it would all be via Dom0, but the CVM gets the > time initially, and if it has a difference in the NTP compared to the time > set in the CVM it then proceeds to update each guests time without calling an > external NTP server, and keeps it all inside the Guest regime. Exactly. >From my quick reading of the source and observations of my systems, that appears to be exactly how it is implemented right now. Note also that this is not what you initially described in your first email. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to qubes-users@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/CABQWM_Ar6OEp2_Ar0fxW265mjVBEYmdM5_hC%2B5u7hH%2Bt3bXRww%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
