aboutsummaryrefslogtreecommitdiff
path: root/net/chrony/files/chrony.conf
Commit message (Collapse)AuthorAge
* chrony: improve configurationMiroslav Lichvar2020-10-30
| | | | | | | | | | | | | | | | | | | Extend configuration of NTP sources in UCI: - Add nts option to enable NTS - Add disabled option to allow inactive sources Add nts section to UCI with: - rtccheck option to disable certificate time checks on systems that don't have an RTC to avoid the chicken-and-egg problem (it is less secure, but still should be better than no NTS at all) - systemcerts option to disable system certificates - trustedcerts option to specify path to trusted certificates Save NTS keys and cookies by default to avoid unnecessary NTS-KE sessions when restarted or switching back to an already used NTS source. Also, save the drift to stabilize the clock after chronyd restart. Signed-off-by: Miroslav Lichvar <mlichvar0@gmail.com>
* chrony: improve hotplug scriptMiroslav Lichvar2020-10-30
| | | | | | | | | | | | | - Use the chronyc onoffline command to update state of all sources per current routing configuration - Don't ignore the "ifupdate" action - Add NTP servers from DHCP for the interface that went up instead of the wan4+wan6 interfaces - Save the servers to files loaded by the sourcedir directive to not lose them when chronyd is restarted, and remove them when the interface goes down Signed-off-by: Miroslav Lichvar <mlichvar0@gmail.com>
* chrony: rework loading of configurationMiroslav Lichvar2020-10-30
| | | | | | | | | Instead of loading /etc/chrony/chrony.conf from the file generated from the chrony UCI configuration, use the confdir directive in the main config to load the generated file. This should make it obvious that chrony is configured in UCI and it can also be easily disabled. Signed-off-by: Miroslav Lichvar <mlichvar0@gmail.com>
* chrony: set rtcsync config optionMetafly2017-02-10
| | | | | | | | | Else the system will always stay in UNSYNC state. Even if there is no real RTC. See chrony minimal config: http://chrony.tuxfamily.org/faq.html#_what_is_the_minimum_recommended_configuration_for_an_ntp_client Signed-off-by: Stefan Sydow <st@metafly.info>
* chrony: update to 2.2Miroslav Lichvar2015-10-20
| | | | | | | Support for authentication with command key was replaced with communication over Unix domain socket. Signed-off-by: Miroslav Lichvar <mlichvar0@gmail.com>
* chrony: import from oldpackagesMiroslav Lichvar2015-10-13
Signed-off-by: Miroslav Lichvar <mlichvar0@gmail.com>
Powered by cgit, Themed by Ted Yin.