NTS doesn't work with 1.1.8 shipped with Ubuntu 20.04 LTS

Richard Laager rlaager at wiktel.com
Thu Apr 7 19:10:49 UTC 2022 

For clarity, the upcoming 22.04 LTS release has this fixed, as do the 
currently-supported non-LTS releases. The ntpsec in 18.04 LTS does not 
support NTS at all. So it's only 20.04 that is a problem.

I've been aware this is a problem, but literally nobody has complained 
to me, so I haven't bothered to do anything about it. For work, I 
backport NTPsec myself into our PPA (note: it has other unrelated 
packages!):

https://launchpad.net/~wiktel/+archive/ubuntu/ppa/+packages?field.name_filter=ntpsec&field.status_filter=published&field.series_filter=

I'll try to file an SRU [1] request for the NTS label thing. Since this 
is in universe, it's not going to be a high priority for them. 
Additionally, it's a backwards incompatible change, so that's 
problematic. I think I'll leave the port number thing alone, as that can 
be addressed in the config file, as you noted.

Is anyone here a paying customer? If so, once I file the public bug, you 
could file a case under your support contract, which will motivate them 
a lot more. I am a paying customer, but that might be a bad look for it 
to come from me.

[1] https://wiki.ubuntu.com/StableReleaseUpdates

On 4/7/22 12:39, Hal Murray via devel wrote:
> Ubuntu ships 1.1.8 with 20.04 LTS.  NTS doesn't quite work.
> 
> 1.1.8 was released before the RFC came out.  There were a couple of late
> changes.  The port number we can fix in the config file.  There was an
> incompatable change to the string used to make keys.  There is no easy fix for
> that.
> 
> We could hack our NTS-KE server to also listen on another port and use the old
> string on that port.  Aside from being an ugly hack, it only works for our
> servers.  (and nts.ntp.se which already does something like that)
> 
> Can anybody give me a lesson in Ubuntu release procedures?
> 
> Are they likely to be interested in fixing this?  (so NTS works)
> 
> The fix to 1.1.8 is a simple change to a text literal.  Can they fix their
> copy of the source if we send a patch file?  Would it help if we released a
> patched version of 1.1.8?  ...
> 
> Could we convince them to update to Debian's 1.2.0+xx?  (or our 1.2.0, or
> 1.2.1 our current release)
> 
> ----------
> 
> Long story here:
>    Incompatibility between NTS in ntpsec 1.2.1 and 1.1.8?
>    https://gitlab.com/NTPsec/ntpsec/-/issues/732
> 
> 


-- 
Richard

More information about the devel mailing list