openwrtv4/package/network/services
Kevin Darbyshire-Bryant 5acfe55d71 dnsmasq: dnssec time handling uses ntpd hotplug
Change dnsmasq's dnssec time check handling to use time validity
indicated by ntpd rather than maintaining a cross boot/upgrade
/etc/dnsmasq.time timestamp file.  This saves flash device wear.

If ntpd client is configured in uci and you're using dnssec, then
dnsmasq will not check dnssec timestamp validity until ntpd hotplug
indicates sync via a stratum change. The ntpd hotplug leaves a status
flag file to indicate to dnsmasq.init that time is valid and that it
should now start in 'check dnssec timestamp valid' mode.

If ntpd client is not configured and you're using dnssec, then it is
presumed you're using an alternate time sync mechanism and that time is
correct, thus dnsmasq checks dnssec timestamps are valid from 1st start.

Signed-off-by: Kevin Darbyshire-Bryant <kevin@darbyshire-bryant.me.uk>

V2 - stratum & step ntp changes indicate time is valid
V3 - on initial flag file step signal dnsmasq with SIGHUP if running
V4 - only accept step ntp changes. Accepting both stratum & step could
result in unpleasant script race conditions
V5 - Actually only accepting stratum is the correct thing to do after
further testing
V6 - improve handling of non busybox ntpd
if sysntpd not executable
  dnsmasq checks dnssec timestamps
else
  sysntp script disabled - look for timestamp file - allows external mechanism to use hotplug flag file
  sysntp script enabled & uci ntp enabled  - look for timestamp file
  sysntp script enabled & uci ntp disabled - dnsmasq checks dnssec
timestamps
fi
2016-06-24 13:53:39 +02:00
..
authsae packages: prefer http over git for git protocol 2016-06-22 19:32:06 +02:00
dnsmasq dnsmasq: dnssec time handling uses ntpd hotplug 2016-06-24 13:53:39 +02:00
dropbear dropbear: Fix incorrect CONFIG_TARGET_INIT_PATH. 2016-05-24 16:31:17 +02:00
ead treewide: replace nbd@openwrt.org with nbd@nbd.name 2016-06-07 08:58:42 +02:00
hostapd packages: prefer http over git for git protocol 2016-06-22 19:32:06 +02:00
igmpproxy treewide: replace nbd@openwrt.org with nbd@nbd.name 2016-06-07 08:58:42 +02:00
ipset-dns treewide: replace jow@openwrt.org with jo@mein.io 2016-06-07 11:42:52 +02:00
lldpd treewide: replace jow@openwrt.org with jo@mein.io 2016-06-07 11:42:52 +02:00
mdns package/*: update git urls for project repos 2016-06-13 22:51:41 +02:00
odhcpd packages: prefer http over git for git protocol 2016-06-22 19:32:06 +02:00
omcproxy omcproxy: fix PKG_LICENSE string 2015-10-26 09:01:48 +00:00
openvpn openvpn: update to 2.3.11 2016-06-13 22:51:43 +02:00
openvpn-easy-rsa packages: remove uneeded PKG_BUILD_DIR overrides 2015-02-22 01:31:21 +00:00
ppp treewide: replace jow@openwrt.org with jo@mein.io 2016-06-07 11:42:52 +02:00
relayd package/*: update git urls for project repos 2016-06-13 22:51:41 +02:00
samba36 treewide: replace nbd@openwrt.org with nbd@nbd.name 2016-06-07 08:58:42 +02:00
uhttpd uhttpd: update to the latest version, adds some extensions to handler script support 2016-06-16 19:00:16 +02:00