[ntp:questions] NTP Leap second: crypto_setup: host key file ntpkey_host_siptel not found or corrupt

Harlan Stenn stenn at ntp.org
Tue Apr 7 22:51:24 UTC 2015


ast guy writes:
> I ran the command that you mentioned and here is the output.
> 
> NTP:/etc/ntp/ntp.keys # ls -lL ntpkey_host_siptel
> -rw-r--r-- 1 root root 617 Apr  4 00:21 ntpkey_host_siptel
> NTP:/etc/ntp/ntp.keys #
> 
> Should it be like this?

Yes, so the other two most likelye possibilities are that you are
running the chroot option and this file is not in the chroot tree, or
that the leapseconds file is corrupt.

H

> On Tue, Apr 7, 2015 at 11:26 AM, Harlan Stenn <stenn at ntp.org> wrote:
> 
> > ast guy writes:
> > > Hi,
> > >  Any help with below issue?
> >
> > Are you using chroot options?
> >
> > Also try 'ls -lL ntpkey_host_siptel'.
> >
> > H
> > --
> > > /ag
> > >
> > > On Sat, Apr 4, 2015 at 9:06 AM, ast guy <astguy at gmail.com> wrote:
> > >
> > > > Hi,
> > > >
> > > >  I have successfully tested Leap second test on one server but when I
> > try
> > > > to do the same configuration on another ntp server it reports me that
> > the
> > > > host key file is not found or corrupt.
> > > >
> > > > Can some please suggest what configurations I am missing?
> > > >
> > > > The error when I run ntpd in debug mode.
> > > >
> > > > getnetnum: calling getaddrinfo(127.127.1.0,...)
> > > > getnetnum given 127.127.1.0, got 127.127.1.0 (t_REF/1)
> > > > ntp_syslogmask = 0x0000ffff (=all)
> > > > set info_auth_key to 00000001
> > > > getnetnum: calling getaddrinfo(127.0.0.1,...)
> > > > getnetnum given 127.0.0.1, got 127.0.0.1 (t_UNK/0)
> > > > crypto_setup: OpenSSL version 90801f random seed file /dev/urandom
> > bytes
> > > > read 2048
> > > > addto_syslog: crypto_setup: host key file ntpkey_host_siptel not found
> > or
> > > > corrupt
> > > >
> > > >
> > > > the ntp.conf configurations related to crypto module.
> > > >
> > > >
> > > >
> > > >      64 # Authentication stuff
> > > >      65 #
> > > >      66 #keys /etc/ntp.keys
> > > >      67 # path for keys file
> > > >      68 trustedkey 1
> > > >      69 # define trusted keys
> > > >      70 requestkey 1
> > > >      71
> > > >      72
> > > >      73 keysdir /etc/ntp/ntp.keys
> > > >      74 #keys /etc/ntp
> > > >      75
> > > >      76 crypto randfile /dev/urandom
> > > >      77 crypto pw password
> > > >
> > > >
> > > > Listing of ntp.keys folder.
> > > >
> > > > :/etc/ntp/ntp.keys # ll
> > > > total 56
> > > > -rwxrwxrwx 1 root root 8768 Apr  1 05:44 leap-seconds.3629577600.txt
> > > > -rw-r--r-- 1 root root  543 Apr  4 00:21
> > > > ntpkey_RSA-MD5cert_siptel.3637066871
> > > > -rw-r--r-- 1 root root  617 Apr  4 00:21
> > ntpkey_RSAkey_siptel.3637066871
> > > > lrwxrwxrwx 1 root root   36 Apr  4 00:21 ntpkey_cert_siptel ->
> > > > ntpkey_RSA-MD5cert_siptel.3637066871
> > > > lrwxrwxrwx 1 root root   31 Apr  4 00:21 ntpkey_host_siptel ->
> > > > ntpkey_RSAkey_siptel.3637066871
> > > > lrwxrwxrwx 1 root root   27 Apr  1 05:52 ntpkey_leap ->
> > > > leap-seconds.3629577600.txt
> > > >
> > > >
> > > _______________________________________________
> > > questions mailing list
> > > questions at lists.ntp.org
> > > http://lists.ntp.org/listinfo/questions
> > >
> >
> 
> --089e0103de4ef465ec0513229aad
> Content-Type: text/html; charset=UTF-8
> Content-Transfer-Encoding: quoted-printable
> 
> <div dir=3D"ltr"><div><div>I ran the command that you mentioned and here is=
>  the output.<br><br>NTP:/etc/ntp/ntp.keys # ls -lL ntpkey_host_siptel<br>-r=
> w-r--r-- 1 root root 617 Apr=C2=A0 4 00:21 ntpkey_host_siptel<br>NTP:/etc/n=
> tp/ntp.keys #<br><br></div>Should it be like this?<br><br></div>/ag<br><div=
> ><div><div><br></div></div></div></div><div class=3D"gmail_extra"><br><div =
> class=3D"gmail_quote">On Tue, Apr 7, 2015 at 11:26 AM, Harlan Stenn <span d=
> ir=3D"ltr"><<a href=3D"mailto:stenn at ntp.org" target=3D"_blank">stenn at ntp=
> .org</a>></span> wrote:<br><blockquote class=3D"gmail_quote" style=3D"ma=
> rgin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><span class=3D=
> "">ast guy writes:<br>
> > Hi,<br>
> >=C2=A0 Any help with below issue?<br>
> <br>
> </span>Are you using chroot options?<br>
> <br>
> Also try 'ls -lL ntpkey_host_siptel'.<br>
> <br>
> H<br>
> --<br>
> <div><div class=3D"h5">> /ag<br>
> ><br>
> > On Sat, Apr 4, 2015 at 9:06 AM, ast guy <<a href=3D"mailto:astguy at g=
> mail.com">astguy at gmail.com</a>> wrote:<br>
> ><br>
> > > Hi,<br>
> > ><br>
> > >=C2=A0 I have successfully tested Leap second test on one server b=
> ut when I try<br>
> > > to do the same configuration on another ntp server it reports me =
> that the<br>
> > > host key file is not found or corrupt.<br>
> > ><br>
> > > Can some please suggest what configurations I am missing?<br>
> > ><br>
> > > The error when I run ntpd in debug mode.<br>
> > ><br>
> > > getnetnum: calling getaddrinfo(127.127.1.0,...)<br>
> > > getnetnum given 127.127.1.0, got 127.127.1.0 (t_REF/1)<br>
> > > ntp_syslogmask =3D 0x0000ffff (=3Dall)<br>
> > > set info_auth_key to 00000001<br>
> > > getnetnum: calling getaddrinfo(127.0.0.1,...)<br>
> > > getnetnum given 127.0.0.1, got 127.0.0.1 (t_UNK/0)<br>
> > > crypto_setup: OpenSSL version 90801f random seed file /dev/urando=
> m bytes<br>
> > > read 2048<br>
> > > addto_syslog: crypto_setup: host key file ntpkey_host_siptel not =
> found or<br>
> > > corrupt<br>
> > ><br>
> > ><br>
> > > the ntp.conf configurations related to crypto module.<br>
> > ><br>
> > ><br>
> > ><br>
> > >=C2=A0 =C2=A0 =C2=A0 64 # Authentication stuff<br>
> > >=C2=A0 =C2=A0 =C2=A0 65 #<br>
> > >=C2=A0 =C2=A0 =C2=A0 66 #keys /etc/ntp.keys<br>
> > >=C2=A0 =C2=A0 =C2=A0 67 # path for keys file<br>
> > >=C2=A0 =C2=A0 =C2=A0 68 trustedkey 1<br>
> > >=C2=A0 =C2=A0 =C2=A0 69 # define trusted keys<br>
> > >=C2=A0 =C2=A0 =C2=A0 70 requestkey 1<br>
> > >=C2=A0 =C2=A0 =C2=A0 71<br>
> > >=C2=A0 =C2=A0 =C2=A0 72<br>
> > >=C2=A0 =C2=A0 =C2=A0 73 keysdir /etc/ntp/ntp.keys<br>
> > >=C2=A0 =C2=A0 =C2=A0 74 #keys /etc/ntp<br>
> > >=C2=A0 =C2=A0 =C2=A0 75<br>
> > >=C2=A0 =C2=A0 =C2=A0 76 crypto randfile /dev/urandom<br>
> > >=C2=A0 =C2=A0 =C2=A0 77 crypto pw password<br>
> > ><br>
> > ><br>
> > > Listing of ntp.keys folder.<br>
> > ><br>
> > > :/etc/ntp/ntp.keys # ll<br>
> > > total 56<br>
> > > -rwxrwxrwx 1 root root 8768 Apr=C2=A0 1 05:44 leap-seconds.362957=
> 7600.txt<br>
> > > -rw-r--r-- 1 root root=C2=A0 543 Apr=C2=A0 4 00:21<br>
> > > ntpkey_RSA-MD5cert_siptel.3637066871<br>
> > > -rw-r--r-- 1 root root=C2=A0 617 Apr=C2=A0 4 00:21 ntpkey_RSAkey_=
> siptel.3637066871<br>
> > > lrwxrwxrwx 1 root root=C2=A0 =C2=A036 Apr=C2=A0 4 00:21 ntpkey_ce=
> rt_siptel -><br>
> > > ntpkey_RSA-MD5cert_siptel.3637066871<br>
> > > lrwxrwxrwx 1 root root=C2=A0 =C2=A031 Apr=C2=A0 4 00:21 ntpkey_ho=
> st_siptel -><br>
> > > ntpkey_RSAkey_siptel.3637066871<br>
> > > lrwxrwxrwx 1 root root=C2=A0 =C2=A027 Apr=C2=A0 1 05:52 ntpkey_le=
> ap -><br>
> > > leap-seconds.3629577600.txt<br>
> > ><br>
> > ><br>
> </div></div>> _______________________________________________<br>
> > questions mailing list<br>
> > <a href=3D"mailto:questions at lists.ntp.org">questions at lists.ntp.org</a>=
> <br>
> > <a href=3D"http://lists.ntp.org/listinfo/questions" target=3D"_blank">=
> http://lists.ntp.org/listinfo/questions</a><br>
> ><br>
> </blockquote></div><br></div>
> 
> --089e0103de4ef465ec0513229aad--
> 


More information about the questions mailing list