Base Debian package selection installs ntp

Question

Base Debian package selection installs ntp

mika opened this issue 4 years ago · 6 comments

If systemd-timesyncd, chrony or any other implementation is used (or supposed to be used), executing the jkirk.base ansible module removes those because it installs ntp (without checking if anything else is already used/supposed to be used), which then removes e.g. systemd-timesyncd on Debian/bullseye.

Answer 1 · 2021-11-07T02:46:17.000Z

What about setting a variable base_ntp_client to let us choose which ntp package should be installed? Just created the PR #11. Please have look. Thx!

Answer 2 · 2021-11-07T03:10:47.000Z

Or: we could try to detect the most common ntp packages (i.e. ntp, chrony + systemd-timesyncd), keep the one installed and only else install the given one.

Answer 3 · 2021-11-12T08:22:27.000Z

I just reviewed #11, thanks for working on that!

Regarding:

Or: we could try to detect the most common ntp packages (i.e. ntp, chrony + systemd-timesyncd), keep the one installed and only else install the given one.

I think it makes sense to use a global default, and for the systems that are supposed to ship something else, we should adjust the configuration accordingly. But too much dynamic behavior might not be worth the trouble, at least yet? :)

Answer 4 · 2021-11-16T11:13:26.000Z

Thx for the review! Full ACK on "too much dynamic behavior might not be worth the trouble, at least yet? :)" 😉

Just another note (to self): As this is (currently) not supported by this role, we should document how to use non-default / local time servers.

For systemd-timesyncd it is /etc/systemd/timesyncd.conf:

[Time]
NTP=ntp1.example.com ntp2.example.com ntp3.example.com ntp4.example.com

For ntp it is /etc/ntp.conf:

pool time.example.com iburst

or

server time.example.com iburst

We use iburst by default. I think it is still ok. From ntp.conf(5):

iburst: When the server is unreachable, send a burst of six packets instead of the usual one. The packet spacing is normally 2 s; [...]

We should use server instead of pool if no round-robin DNS is involved, though.

Answer 5 · 2021-11-16T12:00:20.000Z

After some digging I think we should favor chrony over ntp (from Choosing Between NTP Daemons):

Chrony should be preferred for all systems except for the systems that are managed or monitored by tools that do not support chrony, or the systems that have a hardware reference clock which cannot be used with chrony.

The list in Differences Between ntpd and chronyd is too long to quote.

Answer 6 · 2021-11-29T17:43:09.000Z

Another good Comparison of NTP implementations.