This is an automated email from git. It was generated because a ref change was pushed to the "chrony/chrony.git" repository.
The branch, master has been updated via a4bd7f18000214ea4967a6a4d84a4a3e48d88a86 (commit) via 5308e0a25f9efdf01ead0b77e769bbb494661cd0 (commit) via da862158bf57a114314e96799dbe9816e854f871 (commit) via 7b98443a13dcd6dbb169c756e86c2b71c3ccf2d9 (commit) via 4da9f74d24573b56507ea7600c52acc0b0042415 (commit) via e41042e258acf3b83fc843d8fed16342e6b29493 (commit) via 5581466c631b4db631bacf6938edf5d747e5fefe (commit) via e79a6c21164c84d35b699349839a88a7ee13745b (commit) via 666ece122e5c4b75ebc570ae45bccabe8a1c1d0b (commit) via 2c7ab98370933f3b08daf946949f63bbb68b2f66 (commit) via f0f18a02a7d97a3cfb4cd9977f5ec12c6b1f1028 (commit) from c5d8af028581a8cdb68ebdd7a314454cc5eeb8ec (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit a4bd7f18000214ea4967a6a4d84a4a3e48d88a86 Author: Miroslav Lichvar <mlich...@redhat.com> Date: Mon Feb 26 17:23:06 2018 +0100 test: make 119-smoothtime more reliable commit 5308e0a25f9efdf01ead0b77e769bbb494661cd0 Author: Miroslav Lichvar <mlich...@redhat.com> Date: Thu Feb 22 17:30:23 2018 +0100 sources: include maxclockerror in source selection In the source selection algorithm, include extra dispersion due to maxclockerror in the root distance of sources that don't have new samples (the last sample is older than span of all samples) to not prefer unreachable sources with a short distance and small skew over reachable sources for too long, and also to decrease their chances of becoming falsetickers. commit da862158bf57a114314e96799dbe9816e854f871 Author: Miroslav Lichvar <mlich...@redhat.com> Date: Wed Feb 21 12:50:14 2018 +0100 main: open /dev/null as stdin/out/err in daemonization chronyd doesn't normally write anything to stdout or stderr when running as a daemon, but it is a good practice to replace them with descriptors of /dev/null to prevent accidental writes to other files or sockets that would otherwise take their place. commit 7b98443a13dcd6dbb169c756e86c2b71c3ccf2d9 Author: Miroslav Lichvar <mlich...@redhat.com> Date: Wed Feb 21 12:40:53 2018 +0100 logging: don't write fatal messages to invalid descriptor If opening the log file specified with the -l option failed (after closing all descriptors), the error message is written to an invalid descriptor as no log file or syslog is opened yet. Fix the code to track when the output is usable. commit 4da9f74d24573b56507ea7600c52acc0b0042415 Author: Miroslav Lichvar <mlich...@redhat.com> Date: Wed Feb 21 11:10:26 2018 +0100 util: replace assert for missing MD5 with fatal log message Apparently, on some systems the MD5 function is missing with the NSS support (freebl3). Instead of failing an assertion, exit with a log message. commit e41042e258acf3b83fc843d8fed16342e6b29493 Author: Miroslav Lichvar <mlich...@redhat.com> Date: Fri Feb 23 16:33:42 2018 +0100 test: update util unit test commit 5581466c631b4db631bacf6938edf5d747e5fefe Author: Miroslav Lichvar <mlich...@redhat.com> Date: Tue Feb 20 17:35:16 2018 +0100 test: improve and extend ntp_core unit test commit e79a6c21164c84d35b699349839a88a7ee13745b Author: Miroslav Lichvar <mlich...@redhat.com> Date: Fri Feb 23 12:30:20 2018 +0100 sourcestats: limit minimum value of std_dev commit 666ece122e5c4b75ebc570ae45bccabe8a1c1d0b Author: Miroslav Lichvar <mlich...@redhat.com> Date: Fri Feb 23 14:17:07 2018 +0100 ntp: compare receive timestamp when checking for duplicate Compare both receive and transmit timestamps in the NTP test number 1. This prevents a client from dropping a valid response in the interleaved mode if it follows a response in the basic mode and the server did not have a kernel/hardware transmit timestamp, and the random bits of the two timestamps happen to be the same (chance of 1 in 2^(32-precision)). commit 2c7ab98370933f3b08daf946949f63bbb68b2f66 Author: Miroslav Lichvar <mlich...@redhat.com> Date: Tue Feb 20 09:46:08 2018 +0100 ntp: don't send packets with RX/TX timestamp equal to another timestamp Before sending a new packet, check if the receive/transmit timestamp is not equal to the origin timestamp or the previous receive/transmit timestamp in order to prevent the packet from being its own valid response (in the symmetric mode) and invalidate responses to the previous packet. This improves protection against replay attacks in the symmetric mode. commit f0f18a02a7d97a3cfb4cd9977f5ec12c6b1f1028 Author: Miroslav Lichvar <mlich...@redhat.com> Date: Fri Feb 16 17:07:56 2018 +0100 ntp: separate timestamps for restarting symmetric protocol Save the local receive and remote transmit timestamp needed for (re)starting the symmetric protocol when no valid reply was received separately from the timestamps that are used for synchronization of the local clock. This extends the interval in which the local NTP state is (partially) protected against replay attacks in order to complete a measurement in the interleaved symmetric mode from [last valid RX, next TX] to [last TX, next TX], i.e. it should be the same as in the basic mode. ----------------------------------------------------------------------- Summary of changes: logging.c | 30 +++--- logging.h | 2 +- main.c | 9 ++ ntp_core.c | 132 ++++++++++++++++++-------- sources.c | 10 ++ sourcestats.c | 5 +- test/simulation/119-smoothtime | 6 +- test/unit/ntp_core.c | 207 ++++++++++++++++++++++++++++++++++------- test/unit/util.c | 5 + util.c | 31 ++++-- util.h | 4 + 11 files changed, 343 insertions(+), 98 deletions(-) hooks/post-receive -- chrony/chrony.git -- To unsubscribe email chrony-dev-requ...@chrony.tuxfamily.org with "unsubscribe" in the subject. For help email chrony-dev-requ...@chrony.tuxfamily.org with "help" in the subject. Trouble? Email listmas...@chrony.tuxfamily.org.