OpenNTPD

From Wikipedia, the free encyclopedia
Jump to: navigation, search
OpenNTPD
OpenNTPD.jpg
"Saving the world again... on time"
Developer(s) The OpenBSD Project
Stable release
6.0p1 / 30 May 2016; 9 months ago (2016-05-30)
Repository openbsd.su/src/usr.sbin/ntpd/
Development status Active
Written in C
Operating system BSD, Linux, Solaris and OS X[1]
Standard(s) RFC 1305, RFC 5905
Type Time synchronization
License ISC
Website www.openntpd.org
As of May 2016

OpenNTPD is a Unix system daemon implementing the Network Time Protocol to synchronize the local clock of a computer system with remote NTP servers. It is also able to act as an NTP server to NTP-compatible clients.

OpenNTPD is primarily developed by Henning Brauer as part of the OpenBSD project. Its design goals include being secure (non-exploitable), easy to configure, and accurate enough for most purposes. Its portable version, like that of OpenSSH,[2] is developed as a child project which adds the portability code to the OpenBSD version and releases it separately. The portable version is developed by Brent Cook.[3] The most recent portable version was released in 2016. The project developers receive some funding from the OpenBSD Foundation.

History[edit]

The development of OpenNTPD was motivated by a combination of issues with current NTP daemons: difficult configuration, complicated and difficult to audit code, and unsuitable licensing.[4] OpenNTPD was designed to solve these problems and make time synchronization accessible to a wider userbase. After a period of development, OpenNTPD first appeared in OpenBSD 3.6.[5] Its first release was announced on 2 November 2004.[6]

Goals[edit]

OpenNTPD is an attempt by the OpenBSD team to produce an NTP daemon implementation that is secure, simple to audit, trivial to set up and administer, reasonably accurate, and light on system resources. As such, the design goals for OpenNTPD are: security, ease of use, and performance.[7] Security in OpenNTPD is achieved by robust validity check in the network input path, use of bounded buffer operations via strlcpy, and privilege separation to mitigate the effects of possible security bugs exploiting the daemon through privilege escalation. In order to simplify the use of NTP, OpenNTPD implements a smaller set of functionalities than those available in other NTP daemons, such as that provided by the Network Time Protocol Project. The objective is to provide enough features to satisfy typical usage at the risk of unsuitability for esoteric or niche requirements. OpenNTPD is configured through the configuration file, ntpd.conf.[8] A minimal number of options are offered: IP address or hostname on which OpenNTPD should listen, a timedelta sensor device to be used, and the set of servers from which the time will be synchronized. The accuracy of OpenNTPD is best-effort; the daemon attempts to be as accurate as possible but no specific accuracy is guaranteed.

Example[edit]

OpenNTPD gradually adjusts the system clock, as seen here in the output of OpenNTPD running on a Linux system:

$ grep ntpd /var/log/daemon.log | grep adjusting
Aug  4 03:32:20 nikolai ntpd[4784]: adjusting local clock by -1.162333s
Aug  4 03:36:08 nikolai ntpd[4784]: adjusting local clock by -1.023899s
Aug  4 03:40:02 nikolai ntpd[4784]: adjusting local clock by -0.902637s
Aug  4 03:43:43 nikolai ntpd[4784]: adjusting local clock by -0.789431s
Aug  4 03:47:35 nikolai ntpd[4784]: adjusting local clock by -0.679320s
Aug  4 03:50:45 nikolai ntpd[4784]: adjusting local clock by -0.605858s
Aug  4 03:53:31 nikolai ntpd[4784]: adjusting local clock by -0.529821s

Criticism[edit]

OpenNTPD has been criticized as being less accurate than the NTP daemon produced by Internet Software Consortium (ISC).[9] Internally, OpenNTPD does not maintain millisecond accuracy and can vary 50-200ms from "real" time because it omits a variety of algorithms that increase accuracy in favour of code simplicity. The OpenNTPD project acknowledged the criticism, but stated that the lack of microsecond precision was a design tradeoff that benefited simplicity and security.[9] The OpenNTPD design goals state the project's intent is to "[r]each a reasonable accuracy" without sacrificing "secure design for getting that last nanosecond or obscure edge case."[10]

In September 2004, shortly after the release of OpenNTPD 3.6, ISC NTP contributor Brad Knowles published an article entitled OpenNTPd Considered Harmful[11] criticizing various aspects of OpenNTPD's implementation of the NTP protocol, as well as the split development model that the project employs, which is also used in the development of OpenSSH and OpenBGPD. In December 2004, Darren Tucker, the principal developer on the portable branch of OpenNTPD, wrote a detailed response to Knowles, acknowledging some issues as valid, rejecting several others as unwarranted, and considering yet others as misleading.[12] Among the more serious issues raised by Knowles was that OpenNTPD servers claimed to be stratum 1 servers. The issue had however already been fixed by the time of Tucker's response. In March 2005, Knowles acknowledged Tucker's response, and stated that he was "going to do everything [he could] to work with [Tucker] to get any remaining issues resolved".[13] Additionally, the OpenBSD networking FAQ was expanded with a response to Knowles' initial criticism.[14]

OpenNTPD (and the OpenBSD kernel) ignore leap seconds[15] so neither should be used as a time-source for other clients, but only as end clients.[16]

References[edit]

  1. ^ "OpenNTPD Portable Release". OpenBSD. Retrieved 3 April 2016. 
  2. ^ "openssh/openssh-portable". GitHub. Retrieved 13 May 2016. 
  3. ^ "openntpd-portable/openntpd-portable". GitHub. Retrieved 13 May 2016. 
  4. ^ The OpenNTPD Project. "OpenNTPD Goals". The OpenNTPD Project. Retrieved 3 April 2016. 
  5. ^ The OpenBSD Project (1 November 2004). "OpenBSD 3.6". The OpenBSD Project. Retrieved 3 April 2016. 
  6. ^ Brauer, Henning (2 November 2004). "OpenNTPD 3.6 released". openbsd-announce (Mailing list). MARC. Retrieved 7 June 2014. 
  7. ^ Brauer, Henning (September 2004). "Page 3: OpenNTPD – Design Goals". The OpenBSD Project. Retrieved 16 September 2006. 
  8. ^ ntpd.conf(5) – OpenBSD File Formats Manual. 26 May 2006. Retrieved 16 September 2006.
  9. ^ a b The OpenBSD Project (21 August 2006). "FAQ 6.12.1: 'But OpenNTPD isn't as accurate as the ntp.org daemon!'". The OpenBSD Project. Retrieved 16 September 2006. 
  10. ^ OpenNTPD authors (2004), "Goals", OpenNTPD, OpenNTPD project .
  11. ^ Knowles, Brad (22 September 2004). "OpenNTPd Considered Harmful". Considered Harmful. Archived from the original on 4 March 2005. Retrieved 16 September 2006. 
  12. ^ Tucker, Darren (12 December 2004). "Response to OpenNTPd Considered Harmful". Advogato: Blog for dtucker. Retrieved 16 September 2006. 
  13. ^ Knowles, Brad (12 March 2005). "Update: OpenNTPd...". Considered Harmful. Archived from the original on 19 March 2005. Retrieved 16 September 2006. 
  14. ^ The OpenBSD Project (21 August 2006). "FAQ: 6.12.2: 'Someone has claimed that OpenNTPD is 'harmful'!'". The OpenBSD Project. Retrieved 16 September 2006. 
  15. ^ http://undeadly.org/cgi?action=article&sid=20150628132834
  16. ^ https://community.ntppool.org/t/leap-second-2017-status/59/8

External links[edit]