blob: f50b864429b0edd824decd74bd1484f44ca68a44 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
|
## SECTION=networking
# chrony configuration
menuconfig CHRONY
tristate
prompt "chrony "
select LIBC_M
select LIBCAP
select LIBSECCOMP if CHRONY_SECCOMP
select NETTLE if CHRONY_USE_NETTLE
help
This will install the Chrony NTPD Daemon (chronyd)
Chrony is a pair of programs which are used to maintain
the accuracy of the system clock on a computer. The two
programs are called chronyd and chronyc .
Chronyd is a background (daemon) program, which can be
started at boot time, Chronyc provides a user interface
to chronyd for monitoring its performance and configuring
various settings.
See https://chrony.tuxfamily.org/ for details.
if CHRONY
config CHRONY_USE_NETTLE
bool
prompt "Use nettle crypto library"
help
Use nettle crypto library for stronger keys than MD5 in
NTP authentication.
config CHRONY_SECCOMP
bool
default y
prompt "Enable seccomp sandboxing"
help
Enables seccomp sandboxing to reduce the attack surface.
config CHRONY_ADVANCED_COMMAND
bool
prompt "Enable advanced monitoring command"
help
This allows getting advanced NTP time synchronization
status monitoring from the service.
comment "install options ---"
config CHRONY_INSTALL_CHRONY_COMMAND
bool
prompt "Install chrony command helper"
help
Install a command helper in /usr/bin/chrony_command,
which extracts the command access key from
/etc/chrony/chrony.keys and uses it to run
one given command. Note: The user needs access to
the chrony.keys file.
config CHRONY_INSTALL_CHRONY_STAT
bool
prompt "Install chrony statistics helper"
help
Install a convenience wrapper in /usr/bin/chrony_stat,
which gives a short overview for your configured time sources.
Usage /usr/bin/chrony_stat [ --full | --bool | --skew | --short-skew | --help ]
--full or no argument: show server name and verbose status
--bool show server name and
a) true, if timesource is currently synced
b) false otherwise
--skew show servername and
a) estimated error, if timesource is currently synced
b) false otherwise
--short-skew show estimated error, if timesource is currently synced
suppress all other servers
config CHRONY_INSTALL_CONFIG
bool
default y
prompt "Install chrony config files"
help
Install /etc/chrony/chrony.conf and /etc/chrony/chony.keys.
if CHRONY_INSTALL_CONFIG
config CHRONY_DEFAULT_ACCESS_KEY
string
prompt "setup default access key for chronyc"
default "undefined"
help
This will install a default access key with the
given content to the chrony.keys file. This is
used by /etc/init.d/chrony to access status
data, etc.
config CHRONY_DEFAULT_NTP_SERVER
string
prompt "setup default ntp peer"
default "10.1.1.2"
help
This will set the ntp server for simple
configurations.
endif
config CHRONY_STARTSCRIPT
bool
default y
depends on INITMETHOD_BBINIT
prompt "install /etc/init.d/chrony"
config CHRONY_SYSTEMD_UNIT
bool
default y
depends on INITMETHOD_SYSTEMD
prompt "install systemd unit files"
endif
|
