IETF Logo Mail Archive

Re: [Ntp] Timescales

Magnus Danielson <magnus@rubidium.se> Wed, 09 December 2020 14:48 UTC

Return-Path: <magnus@rubidium.se>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 55C7A3A0D93 for <ntp@ietfa.amsl.com>; Wed, 9 Dec 2020 06:48:30 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, NICE_REPLY_A=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=rubidium.se
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iTCCGgm2Om1Y for <ntp@ietfa.amsl.com>; Wed, 9 Dec 2020 06:48:27 -0800 (PST)
Received: from ste-pvt-msa2.bahnhof.se (ste-pvt-msa2.bahnhof.se [213.80.101.71]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8BE333A0D8E for <ntp@ietf.org>; Wed, 9 Dec 2020 06:48:26 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by ste-pvt-msa2.bahnhof.se (Postfix) with ESMTP id 7D47E3F6AC for <ntp@ietf.org>; Wed, 9 Dec 2020 15:47:58 +0100 (CET)
Authentication-Results: ste-pvt-msa2.bahnhof.se; dkim=pass (2048-bit key; unprotected) header.d=rubidium.se header.i=@rubidium.se header.b=G6vghMcc; dkim-atps=neutral
X-Virus-Scanned: Debian amavisd-new at bahnhof.se
Authentication-Results: ste-ftg-msa2.bahnhof.se (amavisd-new); dkim=pass (2048-bit key) header.d=rubidium.se
Received: from ste-pvt-msa2.bahnhof.se ([127.0.0.1]) by localhost (ste-ftg-msa2.bahnhof.se [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AZsKXJOyBAdl for <ntp@ietf.org>; Wed, 9 Dec 2020 15:47:57 +0100 (CET)
Received: by ste-pvt-msa2.bahnhof.se (Postfix) with ESMTPA id 05F753F5A3 for <ntp@ietf.org>; Wed, 9 Dec 2020 15:47:55 +0100 (CET)
Received: from machine.local (unknown [192.168.0.15]) by magda-gw (Postfix) with ESMTPSA id 565E99A0520; Wed, 9 Dec 2020 15:48:20 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=rubidium.se; s=rubidium; t=1607525300; bh=+tpyw5BjvF6pd8BVv7KPqz2dl5wrfGHLfSSChAAH+44=; h=Cc:Subject:To:References:From:Date:In-Reply-To:From; b=G6vghMccgQyeZAXmTVZGs6FUf+BYYAaWEygc0GzkJ0inevEDaZ8KJTKS+YJt/Q5DX O8k2+dzgmm0gX5gRCuh8wE2dPbTp2U9c9yiqTPKtmgyUFBrzGcjCD+6ZTWSAROkZ3A 9+4zsvqhGEUPorUl1I64eAIhGej+J4bjaP/FrrVaH9hkNiMxkanF/wlokEp7knI9ve Q/sBz7kNEQunamsleSG7+AUNWd417Q8OTeb3455GztdUu9IxRx3gXH6di4xZK0VKpZ si8H5ZBMR4YFrzskwVyH+tvgjK4YNnerzusYs9q15OTm7KbHm3Ysl0cI4qIKHMtNfP 8UZSJ92pdkH/w==
Cc: magnus@rubidium.se
To: ntp@ietf.org
References: <20201209101830.7CB0240605C@ip-64-139-1-69.sjc.megapath.net> <058712d2-d031-65a6-d816-0b28c56cf87b@rubidium.se> <f9a0f3b5-230b-0e8b-04e6-7a26e3d1dd83@thalesgroup.com>
From: Magnus Danielson <magnus@rubidium.se>
Message-ID: <fedba216-c451-c8cc-f044-5d20004197c8@rubidium.se>
Date: Wed, 09 Dec 2020 15:48:19 +0100
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.13; rv:78.0) Gecko/20100101 Thunderbird/78.5.1
MIME-Version: 1.0
In-Reply-To: <f9a0f3b5-230b-0e8b-04e6-7a26e3d1dd83@thalesgroup.com>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/7hqk1j32GaGp9E3ElcHJkcMY6ew>
Subject: Re: [Ntp] Timescales
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 09 Dec 2020 14:48:30 -0000

Emmanuel,

On 2020-12-09 15:02, FUSTE Emmanuel wrote:
> Le 09/12/2020 à 14:06, Magnus Danielson a écrit :
>> No, that goes against the experience, and let me tell you it's bitter
>> experience. You need to transport it, and leapsecond file updates is
>> just a very big challenge to coordinate over a very diverse set of
>> machines while we have an increase need for proper TAI and UTC replicas
>> in clients. Remember that many uses of NTP is in wide range of
>> infrastructures with great challenges in updates, etc. Some is in very
>> locked down systems which may for all practical purposes be seen as
>> private networks having very little or no connection to Internet, or may
>> even be completely air-gaped. For such production environments even
>> getting an upgrade every 2 years can be challenging. Much of the issues
>> we have in other context is that machines do not get upgrades at all and
>> may be in excess of 5 years from last upgrade. While I try to fight to
>> have upgrades becoming natural for all systems, that fight will not be
>> over and done with in any reasonable time, so depending on it will be
>> moot. Some vendors tend to import code, but cripple configuration
>> freedom, and their upgrade rate is low to very low in the same type of
>> time-frame as system upgrades. Similarly will depending on detailed
>> configuration, we need to move away from source, intermediary node and
>> client configuration to be a major factor, as things is confusing and
>> not very helpful. The bringing the needed info over the protocol, albeit
>> out of the way for the core time-stamp processing, is what works and
>> what will survive.
>>
>> Trying to rule out the transport of leap-second information from the bit
>> protocol is the crazy idea, it is just going to create more of the same
>> problems we face today, in fact, we could just put NTP into pension and
>> let PTP take over in that case.
>>
>> So, to conclude my standing: Yes, you can move the core time mechanism
>> over to some variant of TAI, that is going to make core processing
>> easier and more robust, less corner cases in the core processing. No,
>> you can not move the leap-second information out of the core protocol,
>> in fact the opposite, you need to make it a mandatory field and
>> processing, but you can now let that remaining processing beyond
>> distribution become a client side issue as the core time over to
>> whatever the client need.
>>
>> So, the crazy idea is in my mind thinking one can avoid the issue in the
>> core protocol, which will not be going well and already with the current
>> state of things can be a bit of a challenge. Just address the problem
>> proper once and for all, and learn from the good experience of other
>> systems.
> So what do you think about this ?
> What we need is some new NTP messages for leap / Time-scale 
> conversion/correction tables "like" the GPS almanach and navigation tables.
> A client could then built/rebuild/update local tables by chunk by doing 
> a request with his serial/timestamp of it known data without external 
> intervention and at a rate different from the NTP measuring messages.
> It could be done securely with data signing and in band signing key 
> rollover.
> It is quite challenging and a lot of work for v5 but could be defined as 
> an NTPv5 extension and core part of future v6.
> For v5 without extension, we rely on out of band update of the data as 
> "critical" systems do today anyways for the leap.
> But it is perhaps too radical.

Already in NTPv4 there is a mechanism as documented in RFC 5906
sub-clause 10.6 and some scattered comments around. As a minimum level
we should retain that after liberating it from the Autokey context. It
has the draw-back of depending on the leap-second history, as typical
with NTP time-stamps.

I see no reason to wait another major revision for it, if you choose
methods, it's fairly straight-forward and not a lot of code, the needed
corner cases can be described and well understood. What you propose is
to take a step back, not a step forward.

Cheers,
Magnus

v2.23.0 | Report a Bug | By Email