NEWS revision 1.1.1.3
1 --- 2 NTP 4.2.8- 3 4 Important Changes 5 6 * Internal NTP Era counters 7 8 The internal counters that track which "era" (range of years) we are in 9 rolls over every 136 years'. The current "era" started at the stroke of 10 midnight on 1 Jan 1900, and ends just before the stroke of midnight on 11 1 Jan 2036. 12 In the past, we have used the "midpoint" of the range to decide which 13 era we were in. Given the longevity of some products, it became clear 14 that it would be more functional to "look back" less, and "look forward" 15 more. We now compile a timestamp into the ntpd executable and when we 16 get a timestamp we us the "built-on" to tell us what era we are in. 17 This check "looks back" 10 years, and "looks forward" 126 years. 18 19 So if you have a system that ... 20 21 * ntpdc responses disabled by default 22 23 Dave Hart writes: 24 25 For a long time, ntpq and its mostly text-based mode 6 (control) 26 protocol have been preferred over ntpdc and its mode 7 (private 27 request) protocol for runtime queries and configuration. There has 28 been a goal of deprecating ntpdc, previously held back by numerous 29 capabilities exposed by ntpdc with no ntpq equivalent. I have been 30 adding commands to ntpq to cover these cases, and I believe I've 31 covered them all, though I've not compared command-by-command 32 recently. 33 34 As I've said previously, the binary mode 7 protocol involves a lot of 35 hand-rolled structure layout and byte-swapping code in both ntpd and 36 ntpdc which is hard to get right. As ntpd grows and changes, the 37 changes are difficult to expose via ntpdc while maintaining forward 38 and backward compatibility between ntpdc and ntpd. In contrast, 39 ntpq's text-based, label=value approach involves more code reuse and 40 allows compatible changes without extra work in most cases. 41 42 Mode 7 has always been defined as vendor/implementation-specific while 43 mode 6 is described in RFC 1305 and intended to be open to interop 44 with other implementations. There is an early draft of an updated 45 mode 6 description that likely will join the other NTPv4 RFCs 46 eventually. (http://tools.ietf.org/html/draft-odonoghue-ntpv4-control-01) 47 48 For these reasons, ntpd 4.2.7p230 by default disables processing of 49 ntpdc queries, reducing ntpd's attack surface and functionally 50 deprecating ntpdc. If you are in the habit of using ntpdc for certain 51 operations, please try the ntpq equivalent. If there's no equivalent, 52 please open a bug report at http://bugs.ntp.org./ 53 54 --- 55 NTP 4.2.6p5 (Harlan Stenn <stenn (a] ntp.org>, 2011/12/24) 56 57 Focus: Bug fixes 58 59 Severity: Medium 60 61 This is a recommended upgrade. 62 63 This release updates sys_rootdisp and sys_jitter calculations to match the 64 RFC specification, fixes a potential IPv6 address matching error for the 65 "nic" and "interface" configuration directives, suppresses the creation of 66 extraneous ephemeral associations for certain broadcastclient and 67 multicastclient configurations, cleans up some ntpq display issues, and 68 includes improvements to orphan mode, minor bugs fixes and code clean-ups. 69 70 New features / changes in this release: 71 72 ntpd 73 74 * Updated "nic" and "interface" IPv6 address handling to prevent 75 mismatches with localhost [::1] and wildcard [::] which resulted from 76 using the address/prefix format (e.g. fe80::/64) 77 * Fix orphan mode stratum incorrectly counting to infinity 78 * Orphan parent selection metric updated to includes missing ntohl() 79 * Non-printable stratum 16 refid no longer sent to ntp 80 * Duplicate ephemeral associations suppressed for broadcastclient and 81 multicastclient without broadcastdelay 82 * Exclude undetermined sys_refid from use in loopback TEST12 83 * Exclude MODE_SERVER responses from KoD rate limiting 84 * Include root delay in clock_update() sys_rootdisp calculations 85 * get_systime() updated to exclude sys_residual offset (which only 86 affected bits "below" sys_tick, the precision threshold) 87 * sys.peer jitter weighting corrected in sys_jitter calculation 88 89 ntpq 90 91 * -n option extended to include the billboard "server" column 92 * IPv6 addresses in the local column truncated to prevent overruns 93 94 --- 95 NTP 4.2.6p4 (Harlan Stenn <stenn (a] ntp.org>, 2011/09/22) 96 97 Focus: Bug fixes and portability improvements 98 99 Severity: Medium 100 101 This is a recommended upgrade. 102 103 This release includes build infrastructure updates, code 104 clean-ups, minor bug fixes, fixes for a number of minor 105 ref-clock issues, and documentation revisions. 106 107 Portability improvements affect AIX, HP-UX, Linux, OS X and 64-bit time_t. 108 109 New features / changes in this release: 110 111 Build system 112 113 * Fix checking for struct rtattr 114 * Update config.guess and config.sub for AIX 115 * Upgrade required version of autogen and libopts for building 116 from our source code repository 117 118 ntpd 119 120 * Back-ported several fixes for Coverity warnings from ntp-dev 121 * Fix a rare boundary condition in UNLINK_EXPR_SLIST() 122 * Allow "logconfig =allall" configuration directive 123 * Bind tentative IPv6 addresses on Linux 124 * Correct WWVB/Spectracom driver to timestamp CR instead of LF 125 * Improved tally bit handling to prevent incorrect ntpq peer status reports 126 * Exclude the Undisciplined Local Clock and ACTS drivers from the initial 127 candidate list unless they are designated a "prefer peer" 128 * Prevent the consideration of Undisciplined Local Clock or ACTS drivers for 129 selection during the 'tos orphanwait' period 130 * Prefer an Orphan Mode Parent over the Undisciplined Local Clock or ACTS 131 drivers 132 * Improved support of the Parse Refclock trusttime flag in Meinberg mode 133 * Back-port utility routines from ntp-dev: mprintf(), emalloc_zero() 134 * Added the NTPD_TICKADJ_PPM environment variable for specifying baseline 135 clock slew on Microsoft Windows 136 * Code cleanup in libntpq 137 138 ntpdc 139 140 * Fix timerstats reporting 141 142 ntpdate 143 144 * Reduce time required to set clock 145 * Allow a timeout greater than 2 seconds 146 147 sntp 148 149 * Backward incompatible command-line option change: 150 -l/--filelog changed -l/--logfile (to be consistent with ntpd) 151 152 Documentation 153 154 * Update html2man. Fix some tags in the .html files 155 * Distribute ntp-wait.html 156 157 --- 158 NTP 4.2.6p3 (Harlan Stenn <stenn (a] ntp.org>, 2011/01/03) 159 160 Focus: Bug fixes and portability improvements 161 162 Severity: Medium 163 164 This is a recommended upgrade. 165 166 This release includes build infrastructure updates, code 167 clean-ups, minor bug fixes, fixes for a number of minor 168 ref-clock issues, and documentation revisions. 169 170 Portability improvements in this release affect AIX, Atari FreeMiNT, 171 FreeBSD4, Linux and Microsoft Windows. 172 173 New features / changes in this release: 174 175 Build system 176 * Use lsb_release to get information about Linux distributions. 177 * 'test' is in /usr/bin (instead of /bin) on some systems. 178 * Basic sanity checks for the ChangeLog file. 179 * Source certain build files with ./filename for systems without . in PATH. 180 * IRIX portability fix. 181 * Use a single copy of the "libopts" code. 182 * autogen/libopts upgrade. 183 * configure.ac m4 quoting cleanup. 184 185 ntpd 186 * Do not bind to IN6_IFF_ANYCAST addresses. 187 * Log the reason for exiting under Windows. 188 * Multicast fixes for Windows. 189 * Interpolation fixes for Windows. 190 * IPv4 and IPv6 Multicast fixes. 191 * Manycast solicitation fixes and general repairs. 192 * JJY refclock cleanup. 193 * NMEA refclock improvements. 194 * Oncore debug message cleanup. 195 * Palisade refclock now builds under Linux. 196 * Give RAWDCF more baud rates. 197 * Support Truetime Satellite clocks under Windows. 198 * Support Arbiter 1093C Satellite clocks under Windows. 199 * Make sure that the "filegen" configuration command defaults to "enable". 200 * Range-check the status codes (plus other cleanup) in the RIPE-NCC driver. 201 * Prohibit 'includefile' directive in remote configuration command. 202 * Fix 'nic' interface bindings. 203 * Fix the way we link with openssl if openssl is installed in the base 204 system. 205 206 ntp-keygen 207 * Fix -V coredump. 208 * OpenSSL version display cleanup. 209 210 ntpdc 211 * Many counters should be treated as unsigned. 212 213 ntpdate 214 * Do not ignore replies with equal receive and transmit timestamps. 215 216 ntpq 217 * libntpq warning cleanup. 218 219 ntpsnmpd 220 * Correct SNMP type for "precision" and "resolution". 221 * Update the MIB from the draft version to RFC-5907. 222 223 sntp 224 * Display timezone offset when showing time for sntp in the local 225 timezone. 226 * Pay proper attention to RATE KoD packets. 227 * Fix a miscalculation of the offset. 228 * Properly parse empty lines in the key file. 229 * Logging cleanup. 230 * Use tv_usec correctly in set_time(). 231 * Documentation cleanup. 232 233 --- 234 NTP 4.2.6p2 (Harlan Stenn <stenn (a] ntp.org>, 2010/07/08) 235 236 Focus: Bug fixes and portability improvements 237 238 Severity: Medium 239 240 This is a recommended upgrade. 241 242 This release includes build infrastructure updates, code 243 clean-ups, minor bug fixes, fixes for a number of minor 244 ref-clock issues, improved KOD handling, OpenSSL related 245 updates and documentation revisions. 246 247 Portability improvements in this release affect Irix, Linux, 248 Mac OS, Microsoft Windows, OpenBSD and QNX6 249 250 New features / changes in this release: 251 252 ntpd 253 * Range syntax for the trustedkey configuration directive 254 * Unified IPv4 and IPv6 restrict lists 255 256 ntpdate 257 * Rate limiting and KOD handling 258 259 ntpsnmpd 260 * default connection to net-snmpd via a unix-domain socket 261 * command-line 'socket name' option 262 263 ntpq / ntpdc 264 * support for the "passwd ..." syntax 265 * key-type specific password prompts 266 267 sntp 268 * MD5 authentication of an ntpd 269 * Broadcast and crypto 270 * OpenSSL support 271 272 --- 273 NTP 4.2.6p1 (Harlan Stenn <stenn (a] ntp.org>, 2010/04/09) 274 275 Focus: Bug fixes, portability fixes, and documentation improvements 276 277 Severity: Medium 278 279 This is a recommended upgrade. 280 281 --- 282 NTP 4.2.6 (Harlan Stenn <stenn (a] ntp.org>, 2009/12/08) 283 284 Focus: enhancements and bug fixes. 285 286 --- 287 NTP 4.2.4p8 (Harlan Stenn <stenn (a] ntp.org>, 2009/12/08) 288 289 Focus: Security Fixes 290 291 Severity: HIGH 292 293 This release fixes the following high-severity vulnerability: 294 295 * [Sec 1331] DoS with mode 7 packets - CVE-2009-3563. 296 297 See http://support.ntp.org/security for more information. 298 299 NTP mode 7 (MODE_PRIVATE) is used by the ntpdc query and control utility. 300 In contrast, ntpq uses NTP mode 6 (MODE_CONTROL), while routine NTP time 301 transfers use modes 1 through 5. Upon receipt of an incorrect mode 7 302 request or a mode 7 error response from an address which is not listed 303 in a "restrict ... noquery" or "restrict ... ignore" statement, ntpd will 304 reply with a mode 7 error response (and log a message). In this case: 305 306 * If an attacker spoofs the source address of ntpd host A in a 307 mode 7 response packet sent to ntpd host B, both A and B will 308 continuously send each other error responses, for as long as 309 those packets get through. 310 311 * If an attacker spoofs an address of ntpd host A in a mode 7 312 response packet sent to ntpd host A, A will respond to itself 313 endlessly, consuming CPU and logging excessively. 314 315 Credit for finding this vulnerability goes to Robin Park and Dmitri 316 Vinokurov of Alcatel-Lucent. 317 318 THIS IS A STRONGLY RECOMMENDED UPGRADE. 319 320 --- 321 ntpd now syncs to refclocks right away. 322 323 Backward-Incompatible changes: 324 325 ntpd no longer accepts '-v name' or '-V name' to define internal variables. 326 Use '--var name' or '--dvar name' instead. (Bug 817) 327 328 --- 329 NTP 4.2.4p7 (Harlan Stenn <stenn (a] ntp.org>, 2009/05/04) 330 331 Focus: Security and Bug Fixes 332 333 Severity: HIGH 334 335 This release fixes the following high-severity vulnerability: 336 337 * [Sec 1151] Remote exploit if autokey is enabled. CVE-2009-1252 338 339 See http://support.ntp.org/security for more information. 340 341 If autokey is enabled (if ntp.conf contains a "crypto pw whatever" 342 line) then a carefully crafted packet sent to the machine will cause 343 a buffer overflow and possible execution of injected code, running 344 with the privileges of the ntpd process (often root). 345 346 Credit for finding this vulnerability goes to Chris Ries of CMU. 347 348 This release fixes the following low-severity vulnerabilities: 349 350 * [Sec 1144] limited (two byte) buffer overflow in ntpq. CVE-2009-0159 351 Credit for finding this vulnerability goes to Geoff Keating of Apple. 352 353 * [Sec 1149] use SO_EXCLUSIVEADDRUSE on Windows 354 Credit for finding this issue goes to Dave Hart. 355 356 This release fixes a number of bugs and adds some improvements: 357 358 * Improved logging 359 * Fix many compiler warnings 360 * Many fixes and improvements for Windows 361 * Adds support for AIX 6.1 362 * Resolves some issues under MacOS X and Solaris 363 364 THIS IS A STRONGLY RECOMMENDED UPGRADE. 365 366 --- 367 NTP 4.2.4p6 (Harlan Stenn <stenn (a] ntp.org>, 2009/01/07) 368 369 Focus: Security Fix 370 371 Severity: Low 372 373 This release fixes oCERT.org's CVE-2009-0021, a vulnerability affecting 374 the OpenSSL library relating to the incorrect checking of the return 375 value of EVP_VerifyFinal function. 376 377 Credit for finding this issue goes to the Google Security Team for 378 finding the original issue with OpenSSL, and to ocert.org for finding 379 the problem in NTP and telling us about it. 380 381 This is a recommended upgrade. 382 --- 383 NTP 4.2.4p5 (Harlan Stenn <stenn (a] ntp.org>, 2008/08/17) 384 385 Focus: Minor Bugfixes 386 387 This release fixes a number of Windows-specific ntpd bugs and 388 platform-independent ntpdate bugs. A logging bugfix has been applied 389 to the ONCORE driver. 390 391 The "dynamic" keyword and is now obsolete and deferred binding to local 392 interfaces is the new default. The minimum time restriction for the 393 interface update interval has been dropped. 394 395 A number of minor build system and documentation fixes are included. 396 397 This is a recommended upgrade for Windows. 398 399 --- 400 NTP 4.2.4p4 (Harlan Stenn <stenn (a] ntp.org>, 2007/09/10) 401 402 Focus: Minor Bugfixes 403 404 This release updates certain copyright information, fixes several display 405 bugs in ntpdc, avoids SIGIO interrupting malloc(), cleans up file descriptor 406 shutdown in the parse refclock driver, removes some lint from the code, 407 stops accessing certain buffers immediately after they were freed, fixes 408 a problem with non-command-line specification of -6, and allows the loopback 409 interface to share addresses with other interfaces. 410 411 --- 412 NTP 4.2.4p3 (Harlan Stenn <stenn (a] ntp.org>, 2007/06/29) 413 414 Focus: Minor Bugfixes 415 416 This release fixes a bug in Windows that made it difficult to 417 terminate ntpd under windows. 418 This is a recommended upgrade for Windows. 419 420 --- 421 NTP 4.2.4p2 (Harlan Stenn <stenn (a] ntp.org>, 2007/06/19) 422 423 Focus: Minor Bugfixes 424 425 This release fixes a multicast mode authentication problem, 426 an error in NTP packet handling on Windows that could lead to 427 ntpd crashing, and several other minor bugs. Handling of 428 multicast interfaces and logging configuration were improved. 429 The required versions of autogen and libopts were incremented. 430 This is a recommended upgrade for Windows and multicast users. 431 432 --- 433 NTP 4.2.4 (Harlan Stenn <stenn (a] ntp.org>, 2006/12/31) 434 435 Focus: enhancements and bug fixes. 436 437 Dynamic interface rescanning was added to simplify the use of ntpd in 438 conjunction with DHCP. GNU AutoGen is used for its command-line options 439 processing. Separate PPS devices are supported for PARSE refclocks, MD5 440 signatures are now provided for the release files. Drivers have been 441 added for some new ref-clocks and have been removed for some older 442 ref-clocks. This release also includes other improvements, documentation 443 and bug fixes. 444 445 K&R C is no longer supported as of NTP-4.2.4. We are now aiming for ANSI 446 C support. 447 448 --- 449 NTP 4.2.0 (Harlan Stenn <stenn (a] ntp.org>, 2003/10/15) 450 451 Focus: enhancements and bug fixes. 452
Indexes created Mon Apr 20 00:23:12 UTC 2026