Blame SOURCES/ntp-4.2.6p4-htmldoc.patch

6d3098
diff -up ntp-4.2.6p5/html/accopt.html.htmldoc ntp-4.2.6p5/html/accopt.html
6d3098
--- ntp-4.2.6p5/html/accopt.html.htmldoc	2009-12-09 08:36:36.000000000 +0100
6d3098
+++ ntp-4.2.6p5/html/accopt.html	2015-02-10 14:55:24.467289637 +0100
6d3098
@@ -94,8 +94,10 @@ time) in log<sub>2</sub> s with default
6d3098
 			
6d3098
 
<tt>restrict address [mask mask] [flag][...]</tt>
6d3098
 
The <tt>address</tt> argument expressed in dotted-quad form is the
6d3098
-	address of a host or network. Alternatively, the <tt>address</tt> argument
6d3098
-	can be a valid host DNS name. The <tt>mask</tt> argument expressed in
6d3098
+	address of a host or network. Alternatively, the <tt>address</tt> argument can be a
6d3098
+	valid host DNS name, but it must be resolvable at the time when <tt>ntpd</tt> is started and
6d3098
+	if it's resolved to multiple addresses, only the first address will be added to the list.
6d3098
+	The <tt>mask</tt> argument expressed in
6d3098
 	dotted-quad form defaults to 255.255.255.255, meaning that the <tt>address</tt> is
6d3098
 	treated as the address of an individual host. A default entry (address 0.0.0.0,
6d3098
 	mask 0.0.0.0) is always included and is always the first entry in the list.
473877
diff -up ntp-4.2.6p5/html/authopt.html.htmldoc ntp-4.2.6p5/html/authopt.html
473877
--- ntp-4.2.6p5/html/authopt.html.htmldoc	2011-07-11 04:18:25.000000000 +0200
473877
+++ ntp-4.2.6p5/html/authopt.html	2013-03-28 18:04:38.581260191 +0100
473877
@@ -364,7 +364,7 @@ UTC

473877
 	are left unspecified, the default names are used as described below. Unless
473877
 	the complete path and name of the file are specified, the location of a file
473877
 	is relative to the keys directory specified in the <tt>keysdir</tt> configuration
473877
-	command or default <tt>/usr/local/etc</tt>. Following are the options.
473877
+	command or default <tt>/etc/ntp/crypto</tt>. Following are the options.
473877
 
473877
 
473877
 
473877
@@ -396,7 +396,7 @@ UTC

473877
 
Specifies the complete path to the MD5 key file containing the keys and key IDs used by <tt>ntpd</tt>, <tt>ntpq</tt> and <tt>ntpdc</tt> when operating with symmetric key cryptography. This is the same operation as the <tt>-k </tt>command line option. Note that the directory path for Autokey media is specified by the <tt>keysdir</tt> command.
473877
 
473877
 
<tt>keysdir path</tt>K
473877
-
This command specifies the default directory path for Autokey cryptographic keys, parameters and certificates. The default is <tt>/usr/local/etc/</tt>. Note that the path for the symmetric keys file is specified by the <tt>keys</tt> command.
473877
+
This command specifies the default directory path for Autokey cryptographic keys, parameters and certificates. The default is <tt>/etc/ntp/crypto</tt>. Note that the path for the symmetric keys file is specified by the <tt>keys</tt> command.
473877
 
473877
 
<tt>requestkey keyid</tt>
473877
 
Specifies the key ID to use with the
473877
diff -up ntp-4.2.6p5/html/keygen.html.htmldoc ntp-4.2.6p5/html/keygen.html
473877
--- ntp-4.2.6p5/html/keygen.html.htmldoc	2011-07-11 04:18:26.000000000 +0200
473877
+++ ntp-4.2.6p5/html/keygen.html	2013-03-28 18:04:38.581260191 +0100
473877
@@ -206,7 +206,6 @@
473877
 

All cryptographically sound key generation schemes must have means to randomize the entropy seed used to initialize the internal pseudo-random number generator used by the OpenSSL library routines. If a site supports <tt>ssh</tt>, it is very likely that means to do this are already available. The entropy seed used by the OpenSSL library is contained in a file, usually called <tt>.rnd</tt>, which must be available when starting the <tt>ntp-keygen</tt> program or <tt>ntpd</tt> daemon.

473877
 
473877
 

The OpenSSL library looks for the file using the path specified by the <tt>RANDFILE</tt> environment variable in the user home directory, whether root or some other user. If the <tt>RANDFILE</tt> environment variable is not present, the library looks for the <tt>.rnd</tt> file in the user home directory. Since both the <tt>ntp-keygen</tt> program and <tt>ntpd</tt> daemon must run as root, the logical place to put this file is in <tt>/.rnd</tt> or <tt>/root/.rnd</tt>. If the file is not available or cannot be written, the program exits with a message to the system log.

473877
-

On systems that provide /dev/urandom, the randomness device is used instead and the file specified by the <tt>randfile</tt> subcommand or the <tt>RANDFILE</tt> environment variable is ignored.

473877
 
473877
 

Cryptographic Data Files

473877
 
473877
diff -up ntp-4.2.6p5/html/ntpd.html.htmldoc ntp-4.2.6p5/html/ntpd.html
473877
--- ntp-4.2.6p5/html/ntpd.html.htmldoc	2011-07-11 04:18:26.000000000 +0200
6d3098
+++ ntp-4.2.6p5/html/ntpd.html	2015-02-23 12:11:24.719093119 +0100
6d3098
@@ -35,11 +35,11 @@
6d3098
 		<tt>ntpd [ -46aAbdDgLnNqx ] [ -c conffile ] [ -f driftfile ] [ -i jaildir ] [ -I iface ] [ -k keyfile ] [ -l logfile ] [ -p pidfile ] [ -P priority ] [ -r broadcastdelay ] [ -s statsdir ] [ -t key ] [ -u user[:group] ] [ -U interface_update_interval ] [ -v variable ] [ -V variable ]</tt>
6d3098
 		

Description

6d3098
 		

The <tt>ntpd</tt> program is an operating system daemon that synchronises the system clock with remote NTP time servers or local reference clocks. It is a complete implementation of the Network Time Protocol (NTP) version 4, but also retains compatibility with version 3, as defined by RFC-1305, and version 1 and 2, as defined by RFC-1059 and RFC-1119, respectively. The program can operate in any of several modes, as described on the Association Management page, and with both symmetric key and public key cryptography, as described on the Authentication Options page.

6d3098
-		

The <tt>ntpd</tt> program ordinarily requires a configuration file as desccribe on the Configuration Commands and Options collection above. However a client can discover remote servers and configure them automatically. This makes it possible to deploy a fleet of workstations without specifying configuration details specific to the local environment. Further details are on the Automatic Server Discovery page.

6d3098
+		

The <tt>ntpd</tt> program ordinarily requires a configuration file as described on the Configuration Commands and Options collection above. However a client can discover remote servers and configure them automatically. This makes it possible to deploy a fleet of workstations without specifying configuration details specific to the local environment. Further details are on the Automatic Server Discovery page.

6d3098
 		

Once the NTP software distribution has been compiled and installed and the configuration file constructed, the next step is to verify correct operation and fix any bugs that may result. Usually, the command line that starts the daemon is included in the system startup file, so it is executed only at system boot time; however, the daemon can be stopped and restarted from root at any time. Once started, the daemon will begin sending and receiving messages, as specified in the configuration file.

6d3098
 		

Setting the Time and Frequency

6d3098
 		

The <tt>ntpd</tt> program operates by exchanging messages with one or more servers at designated intervals ranging from about one minute to about 17 minutes. When started, the program requires several exchanges while the algorithms accumulate and groom the data before setting the clock. The initial delay to set the clock can be reduced using options on the Server Options page.

6d3098
-		

Most compters today incorporate a time-of-year (TOY) chip to maintain the time during periods when the power is off. When the machine is booted, the chip is used to initialize the operating system time. In case there is no TOY chip or the TOY time is more than 1000 s from the server time, <tt>ntpd</tt> assumes something must be terribly wrong and exits with a panic message to the system operator. With the <tt>-g</tt> option the clock will be initially set to the server time regardless of the chip time. However, once the clock has been set, an error greater than 1000 s will cause <tt>ntpd</tt> to exit anyway.

6d3098
+		

Most computers today incorporate a time-of-year (TOY) chip to maintain the time during periods when the power is off. When the machine is booted, the chip is used to initialize the operating system time. In case there is no TOY chip or the TOY time is more than 1000 s from the server time, <tt>ntpd</tt> assumes something must be terribly wrong and exits with a panic message to the system operator. With the <tt>-g</tt> option the clock will be initially set to the server time regardless of the chip time. However, once the clock has been set, an error greater than 1000 s will cause <tt>ntpd</tt> to exit anyway.

6d3098
 		

Under ordinary conditions, <tt>ntpd</tt> slews the clock so that the time is effectively continuous and never runs backwards. If due to extreme network congestion an error spike exceeds the step threshold, by default 128 ms, the spike is discarded. However, if the error persists for more than the stepout threshold, by default 900 s, the system clock is stepped to the correct value. In practice the need for a step has is extremely rare and almost always the result of a hardware failure. With the <tt>-x</tt> option the step threshold is increased to 600 s. Other options are available using the <tt>tinker</tt> command on the Miscellaneous Options page.

6d3098
 		

The issues should be carefully considered before using these options. The maximum slew rate possible is limited to 500 parts-per-million (PPM) by the Unix kernel. As a result, the clock can take 2000 s for each second the clock is outside the acceptable range. During this interval the clock will not be consistent with any other network clock and the system cannot be used for distributed applications that require correctly synchronized network time.

6d3098
 		

The frequency file, usually called <tt>ntp.drift</tt>, contains the latest estimate of clock frequency. If this file does not exist when <tt>ntpd</tt> is started, it enters a special mode designed to measure the particular frequency directly. The measurement takes 15 minutes, after which the frequency is set and <tt>ntpd</tt> resumes normal mode where the time and frequency are continuously adjusted. The frequency file is updated at intervals of an hour or more depending on the measured clock stability.

6d3098
@@ -70,7 +70,7 @@
6d3098
 			tally the leap warning bits of surviving servers and reference clocks.
6d3098
 			When a majority of the survivors show warning, a leap is programmed
6d3098
 			at the end of the current month. During the month and day of insertion,
6d3098
-			they operate as above. In this way the leap is is propagated at all
6d3098
+			they operate as above. In this way the leap is propagated at all
6d3098
 			dependent servers and clients.

6d3098
 	

Additional Features

6d3098
 		

A new experimental feature called interleaved modes can be used in NTP

473877
@@ -143,26 +143,8 @@
473877
 			
Specify a user, and optionally a group, to switch to. This option is only available if the OS supports running the server without full root privileges. Currently, this option is supported under NetBSD (configure with <tt>--enable-clockctl</tt>) and Linux (configure with --<tt>enable-linuxcaps</tt>).
473877
 			
<tt>-U interface update interval</tt>
473877
 			
Number of seconds to wait between interface list scans to pick up new and delete network interface. Set to 0 to disable dynamic interface list updating. The default is to scan every 5 minutes.
473877
-			
<tt>-v variable</tt>
473877
-			
<tt>-V variable</tt>
473877
-			
Add a system variable listed by default.
473877
 			
<tt>-x</tt>
473877
 			
Normally, the time is slewed if the offset is less than the step threshold, which is 128 ms by default, and stepped if above the threshold. This option sets the threshold to 600 s, which is well within the accuracy window to set the clock manually. Note: Since the slew rate of typical Unix kernels is limited to 0.5 ms/s, each second of adjustment requires an amortization interval of 2000 s. Thus, an adjustment as much as 600 s will take almost 14 days to complete. This option can be used with the <tt>-g</tt> and <tt>-q</tt> options. See the <tt>tinker</tt> command for other options. Note: The kernel time discipline is disabled with this option.
473877
-			
<tt>--pccfreq frequency</tt>
473877
-			
Substitute processor cycle counter for QueryPerformanceCounter unconditionally
473877
-				using the given frequency (in Hz). <tt>--pccfreq</tt> can be used on systems
473877
-				which do not use the PCC to implement QueryPerformanceCounter
473877
-				and have a fixed PCC frequency. The frequency specified must
473877
-				be accurate within 0.5 percent. <tt>--usepcc</tt> is equivalent on many systems and should
473877
-				be tried first, as it does not require determining the frequency
473877
-				of the processor cycle counter. For x86-compatible processors, the PCC is
473877
-				also referred to as <tt>RDTSC</tt>, which is the assembly-language instruction to retrieve
473877
-				the current value.  (Windows only)
473877
-			
<tt>--usepcc</tt>
473877
-			
Substitute processor cycle counter for QueryPerformanceCounter if they
473877
-				appear equivalent. This option should be used only if the PCC
473877
-				frequency is fixed. Power-saving functionality on many laptops varies the
473877
-			PCC frequency. (Windows only)
473877
 	
473877
 		

The Configuration File

473877
 		

Ordinarily, <tt>ntpd</tt> reads the <tt>ntp.conf</tt> configuration file at startup in order to determine the synchronization sources and operating modes. It is also possible to specify a working, although limited, configuration entirely on the command line, obviating the need for a configuration file. This may be particularly useful when the local host is to be configured as a broadcast client, with servers determined by listening to broadcasts at run time.

473877
@@ -214,14 +196,14 @@
473877
 			
473877
 			
473877
 				statistics path
473877
-				<tt>/var/NTP</tt>
473877
+				<tt>/var/log/ntpstats/</tt>
473877
 				<tt>-s</tt>
473877
 				<tt>statsdir</tt>
473877
 			
473877
 			
473877
 				keys path
473877
-				<tt>/usr/local/etc</tt>
473877
-				<tt>-k</tt>
473877
+				<tt>/etc/ntp/crypto</tt>
473877
+				<tt>none</tt>
473877
 				<tt>keysdir</tt>
473877
 			
473877
 		
473877
diff -up ntp-4.2.6p5/html/ntpdate.html.htmldoc ntp-4.2.6p5/html/ntpdate.html
473877
--- ntp-4.2.6p5/html/ntpdate.html.htmldoc	2013-03-28 18:04:38.556260210 +0100
473877
+++ ntp-4.2.6p5/html/ntpdate.html	2013-03-28 18:04:38.582260190 +0100
473877
@@ -43,7 +43,7 @@
473877
 			
<tt>-e authdelay</tt>
473877
 			
Specify the processing delay to perform an authentication function as the value authdelay, in seconds and fraction (see <tt>ntpd</tt> for details). This number is usually small enough to be negligible for most purposes, though specifying a value may improve timekeeping on very slow CPU's.
473877
 			
<tt>-k keyfile</tt>
473877
-			
Specify the path for the authentication key file as the string keyfile. The default is <tt>/etc/ntp.keys</tt>. This file should be in the format described in <tt>ntpd</tt>.
473877
+			
Specify the path for the authentication key file as the string keyfile. The default is <tt>/etc/ntp/keys</tt>. This file should be in the format described in <tt>ntpd</tt>.
473877
 			
<tt>-o version</tt>
473877
 			
Specify the NTP version for outgoing packets as the integer version, which can be 1 or 2. The default is 4. This allows <tt>ntpdate</tt> to be used with older NTP versions.
473877
 			
<tt>-p samples</tt>
473877
@@ -66,7 +66,7 @@
473877
 		

Diagnostics

473877
 		<tt>ntpdate</tt>'s exit status is zero if it finds a server and updates the clock, and nonzero otherwise.
473877
 		

Files

473877
-		<tt>/etc/ntp.keys</tt> - encryption keys used by <tt>ntpdate</tt>.
473877
+		<tt>/etc/ntp/keys</tt> - encryption keys used by <tt>ntpdate</tt>.
473877
 		

Bugs

473877
 		The slew adjustment is actually 50% larger than the measured offset, since this (it is argued) will tend to keep a badly drifting clock more accurate. This is probably not a good idea and may cause a troubling hunt for some values of the kernel variables <tt>tick</tt> and <tt>tickadj</tt>. 
473877
 		
473877
diff -up ntp-4.2.6p5/html/ntptime.html.htmldoc ntp-4.2.6p5/html/ntptime.html
473877
--- ntp-4.2.6p5/html/ntptime.html.htmldoc	2009-12-09 08:36:36.000000000 +0100
473877
+++ ntp-4.2.6p5/html/ntptime.html	2013-03-28 18:13:56.921842773 +0100
473877
@@ -17,7 +17,7 @@
473877
 		
473877
 		
473877
 		

Synopsis

473877
-		<tt>ntptime [ -chr ] [ -e est_error ] [ -f frequency ] [ -m max_error ] [ -o offset ] [ -s status ] [ -t time_constant]</tt>
473877
+		<tt>ntptime [ -MNchr ] [ -e est_error ] [ -f frequency ] [ -m max_error ] [ -o offset ] [ -s status ] [ -t time_constant] [ -T tai_offset ]</tt>
473877
 		

Description

473877
 		

This program is useful only with special kernels described in the A Kernel Model for Precision Timekeeping page. It reads and displays time-related kernel variables using the <tt>ntp_gettime()</tt> system call. A similar display can be obtained using the <tt>ntpdc</tt> program and <tt>kerninfo</tt> command.

473877
 		

Options

473877
@@ -40,9 +40,15 @@
473877
 			
Specify clock status. Better know what you are doing.
473877
 			
<tt>-t time_constant</tt>
473877
 			
Specify time constant, an integer in the range 0-10.
473877
+			
<tt>-M</tt>
473877
+			
Switch to microsecond mode.
473877
+			
<tt>-N</tt>
473877
+			
Switch to nanosecond mode.
473877
+			
<tt>-T tai_offset</tt>
473877
+			
Set TAI offset.
473877
 		
473877
 		
473877
 		<script type="text/javascript" language="javascript" src="scripts/footer.txt"></script>
473877
 	</body>
473877
 
473877
-</html>
473877
\ No newline at end of file
473877
+</html>