[OpenWrt-Devel] [PATCH v2] base-files: init/sysfixtime - exclude dnsmasq.time
bittorf at bluebottle.com
Wed Sep 23 07:37:11 EDT 2015
* Kevin Darbyshire-Bryant <kevin at darbyshire-bryant.me.uk> [23.09.2015 12:21]:
> signature timestamps. If the system time is not actually 'internet
> time' (within a tolerance of which I'm unclear) and dnsmasq is using
> 'dnssec-check-unsigned' then ALL dns resolution will fail (everything is
> considered BOGUS) - arguably a fail safe in that it just stops! This
> become really problematic when trying to resolve name to ip addresses of
> ntp servers ;-)
good point. so it makes sense to startup dnsmasq without dnssec strict
checks and reconfigure it when NTP was successful?
it would be really helpful if ntp can mark (with a file) somehow, that
time is 'good'. At least the returncode indicates that:
root at box:~ /usr/sbin/ntpd -q -n -p 1.openwrt.pool.ntp.org
root at box:~ echo $?
(it is e.g. 143 when it fails)
so if first timesetting is done, it has to trigger dnsmasq...
openwrt-devel mailing list
openwrt-devel at lists.openwrt.org
More information about the openwrt-devel