NTPsec on OpenSwitch
Srivatsan, Srinivasan
srinivasan.srivatsan at hpe.com
Thu Dec 24 00:16:42 UTC 2015
Thanks Mark and Eric for helping us out.
Mark,
For the Yocto Recipe changes using NTPsec:
The initial review I posted has been abandoned, I am still working on some changes for install the ntpd service. But let me create a new request with all the changes and my findings.
For the technical questions:
I am creating a markdown describing the overall architecture and interaction with NTPsec. That would be a good reference for us to exchange technical aspects.
Eric,
Can you point us to the different ways we can interact with the daemon after the daemon has loaded and provide additional configuration to the daemon, as in add/delete/authentication-enable certain ntp client configuration without restarting the daemon. Also if there is a way to check the daemon status instead of using polling ?
Regards
Srinivasan
On 12/23/15, 3:25 PM, "Nohguchi, Kei" <kei.nohguchi at hpe.com> wrote:
>Thank you, Mark,
>
>This will be another great gift for us! :)
>
>Srini has spend decent amount of time to make ntpsec in our yocto layer and it's public as in our gerrit review board.
>
>https://review.openswitch.net/#/c/2905/
>
>If you haven't done that work, this will be the starting point to make it upstreamed into yocto/oe.
>
>Thank you for your collaboration and support!
>
>Cheers and have a happy holidays and new year!
>
>Kei
>
>On Dec 23, 2015, at 3:17 PM, "Rajagopal, Rahul" <rahulr at hpe.com>
> wrote:
>
>> Hi Mark,
>>
>> Thanks for the quick turnaround time!
>> Good to know that you are a fellow HPE employee. Really appreciate the proactive nature in helping the team here!
>>
>> I am adding Sagar and Kei from my team just so the team working on NTP is in the loop.
>>
>> Srini, Sagar, can you work with Eric and close on the issues that you were facing.
>>
>> Thanks,
>> Rahul
>>
>> From: Mark Atwood [mailto:fallenpegasus at gmail.com]
>> Sent: Wednesday, December 23, 2015 3:12 PM
>> To: Srivatsan, Srinivasan; devel at ntpsec.org; Eric Steven Raymond; Atwood, Mark; Rajagopal, Rahul
>> Subject: Re: NTPsec on OpenSwitch
>>
>> Hello Srinivasan and Rahul,
>>
>> I the PM for the NTPsec project, and I'm also a fellow HPE employee. I've been working with you guys on your open source governance setup. You can contact me about any currently non-public work about OpenSwitch at <mark.atwood at hpe.com>.
>>
>> We have not yet integrated NTPsec with Yocto, but would be willing to do so.
>>
>> The NTPsec configuration files and control methods are presently substantially similar to those of the NTF NTP Classic implementation.
>>
>> As to your other technical questions, I refer you to our tech lead, Eric Raymond.
>>
>> We are extremely willing to work with the OpenSwitch project to make this integration work.
>>
>> ..m
>>
>>
>>
>> On Wed, Dec 23, 2015 at 1:16 PM Srivatsan, Srinivasan <srinivasan.srivatsan at hpe.com> wrote:
>> Hi NTPsec team,
>>
>> I am Srinivasan and working with the OpenSwitch team at HPE. We are planning to use NTPsec as part of OpenSwitch. For the initial release we are planning to support only NTP client. I have some questions based off that.
>>
>> * Would you know if someone has integrated NTPsec into the yocto project with a bitbake recipe (.bb file). If its there then I could use that as reference for my integration with OpenSwitch because it uses Yocto/Bitbake framework.
>> * Based on what we want to support in the initial release, the interaction with the daemon would include the following: For each of these scenarios, what is the best way to print/configure the info? Can I make a socket/api call to get this info OR is it through a command OR is it through a .conf file change and restarting the daemon?
>> * Daemon is up and we need to print the current ntp status info,
>> * Daemon is up and we need to print the NTP associations info,
>> * Daemon is up, but we need to allow runtime configuration for different NTP servers, along with “prefer” and “version” setting for that NTP server. Can we update the Daemon to pick up this new configuration or do we have to write to the .conf file and then restart the daemon ?
>> * Daemon is up, the user would provide the key-number and md5 clientpassword. We want to use this configuration for the specific server instead of using autokey. Can a restart of the Daemon be avoided when setting authentication with the ntp client.
>> * Based on the online material in your website, I have a few questions about the NTPsec support
>> * Does the Daemon support configuring of Broadcast, Multicast or Manycasting clients.
>> * Does the Daemon support Ipv6 Configuration ? If so does Daemon support mixed Ipv4 and Ipv6 NTP server configuration ?
>>
>> Thanks for supporting NTPsec, looking forward for your response.
>>
>> Regards
>> Srinivasan
>>
>>
>>
>> _______________________________________________
>> devel mailing list
>> devel at ntpsec.org
>> http://lists.ntpsec.org/mailman/listinfo/devel
>
More information about the devel
mailing list