libaes_siv/wscript | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

 [patch] avoid installation of "runtests" from libaes_siv test suite

Fixes NTPsec/ntpsec#761

include/ntpd.h | 1 1 + 0 - 0 !
ntpd/ntp_util.c | 27 19 + 8 - 0 !
ntpd/ntpd.c | 10 5 + 5 - 0 !
3 files changed, 25 insertions(+), 13 deletions(-)

 [patch] write pidfile in parent

systemd expects the PID file to be written by the parent process, not the
child.  Fixing this eliminates an error message:
    Can't open PID file /run/ntpd.pid (yet?) after start:
    Operation not permitted

ntpd/nts_cookie.c | 3 3 + 0 - 0 !
1 file changed, 3 insertions(+)

 fix cookie crash
 This is a minimal fix for an NTS cookie crash.
Bug: https://gitlab.com/NTPsec/ntpsec/-/issues/794
Bug-Debian: https://bugs.debian.org/1038422

etc/ntp-wait.service | 4 2 + 2 - 0 !
etc/ntplogtemp.timer | 2 1 + 1 - 0 !
etc/ntpviz-daily.service | 2 1 + 1 - 0 !
etc/ntpviz-daily.timer | 2 1 + 1 - 0 !
etc/ntpviz-weekly.service | 2 1 + 1 - 0 !
etc/ntpviz-weekly.timer | 2 1 + 1 - 0 !
6 files changed, 7 insertions(+), 7 deletions(-)

 systemd: rename service
 We name the service ntpsec.service to match the package name.

etc/ntpd.service | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 systemd: alias ntpsec
 Add an alias of ntpd.service, which is the upstream name.

etc/ntpd.service | 3 2 + 1 - 0 !
1 file changed, 2 insertions(+), 1 deletion(-)

 systemd: use wrapper
 We use a wrapper script for various reasons.  See the script for details.

etc/ntp-wait.service | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 systemd: fix ntp-wait.service paths
 - ntpwait is installed to /usr/sbin.
 - ntpd.service is called ntpsec.service in this package

etc/ntpviz-daily.service | 5 3 + 2 - 0 !
etc/ntpviz-weekly.service | 5 3 + 2 - 0 !
2 files changed, 6 insertions(+), 4 deletions(-)

 systemd: configure ntpviz
 - Configure ntpviz to match the cron.d jobs
 - ntpd.service is called ntpsec.service in this package

docs/includes/ntpwait-body.adoc | 5 0 + 5 - 0 !
1 file changed, 5 deletions(-)

 remove old bug note
 The ntpwait documentation has a BUGS section with a note about Python < 3.3.
 This is not applicable on Debian, as we have newer versions of Python.

docs/refclock.adoc | 9 5 + 4 - 0 !
1 file changed, 5 insertions(+), 4 deletions(-)

 document disabled refclocks
 The Debian package disables refclocks which were already deprecated when the
 package was initially created.
 
 Also, the modem refclock is disabled. It "requires a Hayes-compatible 1200bps
 modem, hardware now 20 years obsolete".
 
 gpsd is a tough call.  It's not deprecated upstream, and it still can work.
 However, upstream recommends the use of SHM, as does every example HOWTO I
 found with a quick search.  Furthermore, it is buggy:
   https://lists.ntpsec.org/pipermail/devel/2016-October/002392.html
 Also, it "makes all sorts of non-standard assumptions about how gpsd is
 configured.  A configuration that is contorted and non-obvious":
   https://lists.ntpsec.org/pipermail/devel/2016-October/002392.html
 Most importantly, it is an attractive nuisance.  If someone is told that the
 best practice is to use "gpsd", they might logically think they should use the
 gpsd driver.

 See the configure step in debian/rules, which specifies the list of refclocks.

docs/NTS-QuickStart.adoc | 2 1 + 1 - 0 !
docs/includes/ntpkeygen-body.adoc | 2 1 + 1 - 0 !
2 files changed, 2 insertions(+), 2 deletions(-)

 use ntpsec as the user
 This is the user used in the ntpsec packaging, to stay out of the namespace
 of the ntp package.

docs/NTS-QuickStart.adoc | 2 1 + 1 - 0 !
docs/includes/ntp-conf-body.adoc | 6 3 + 3 - 0 !
docs/includes/ntp.keys-body.adoc | 2 1 + 1 - 0 !
docs/includes/ntpd-body.adoc | 10 5 + 5 - 0 !
docs/includes/ntpkeygen-body.adoc | 2 1 + 1 - 0 !
docs/ntpsec.adoc | 8 4 + 4 - 0 !
docs/quick.adoc | 4 2 + 2 - 0 !
include/ntp_config.h | 2 1 + 1 - 0 !
include/nts.h | 4 2 + 2 - 0 !
ntpclients/ntpleapfetch | 2 1 + 1 - 0 !
ntpclients/ntpq.py | 8 4 + 4 - 0 !
ntpd/ntp_config.c | 2 1 + 1 - 0 !
ntpd/ntp_sandbox.c | 2 1 + 1 - 0 !
pylib/packet.py | 2 1 + 1 - 0 !
tests/pylib/test_packet.py | 4 2 + 2 - 0 !
15 files changed, 30 insertions(+), 30 deletions(-)

 use /etc/ntpsec
 This is the path used in the ntpsec packaging, to stay out of the namespace
 of the ntp package.

docs/includes/ntpviz-body.adoc | 4 4 + 0 - 0 !
1 file changed, 4 insertions(+)

 use /etc/ntpviz for header and footer
 This provides conffiles in a reasonable location for the administrator to
 customize the header and footer for ntpviz.

etc/ntploggps.service | 4 2 + 2 - 0 !
etc/ntplogtemp.service | 4 2 + 2 - 0 !
ntpclients/ntploggps-man.adoc | 2 1 + 1 - 0 !
ntpclients/ntplogtemp-man.adoc | 2 1 + 1 - 0 !
wscript | 4 2 + 2 - 0 !
5 files changed, 8 insertions(+), 8 deletions(-)

 use sbin for ntploggps and ntplogtemp
 We install ntploggps and ntplogtemp to /usr/sbin, so the man pages should be
 in section 8, not section 1.

docs/NTS-QuickStart.adoc | 5 2 + 3 - 0 !
docs/includes/nts-commands.adoc | 4 2 + 2 - 0 !
include/nts.h | 2 1 + 1 - 0 !
3 files changed, 5 insertions(+), 6 deletions(-)

 use /var/lib/ntpsec for cookies
 This is the path used in the ntpsec packaging, to stay out of the namespace
 of the ntp package.

docs/includes/ntpd-body.adoc | 2 1 + 1 - 0 !
docs/quick.adoc | 4 2 + 2 - 0 !
2 files changed, 3 insertions(+), 3 deletions(-)

 use /var/lib/ntpsec for driftfile
 This is the path used in the ntpsec packaging, to stay out of the namespace
 of the ntp package.

docs/quick.adoc | 2 1 + 1 - 0 !
etc/ntploggps.service | 2 1 + 1 - 0 !
etc/ntplogtemp.service | 2 1 + 1 - 0 !
3 files changed, 3 insertions(+), 3 deletions(-)

 use /var/log/ntpsec for stats
 This is the path used in the ntpsec packaging, to avoid conflicting with the
 ntp package, which uses /var/log/ntpstats.

docs/includes/ntpd-body.adoc | 2 1 + 1 - 0 !
ntpd/ntp_util.c | 2 1 + 1 - 0 !
2 files changed, 2 insertions(+), 2 deletions(-)

 set statsdir by default
 This avoids the need to explicitly set "statsdir" in /etc/ntpsec/ntp.conf.
 .
 This is a change from the ntp ("NTP Classic") package, which requires the
 statsdir to be explicitly set for logging to happen.  However, that is only
 happening because /var/NTP does not normally exist, so it is a bit of an
 accidental feature.

pylib/ntpc.py | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 use private dir for libntpc
 libntpc.so is only used by the Python library.  In NTPsec 1.2.0 (when it
 first appeared), upstream is installing to LIBDIR/ntp.  However, the code
 looks for it in PYTHONDIR and the system library search paths (e.g.
 /usr/lib and /usr/lib/<triplet>).  The proposed (but not yet committed) fix
 for this is to move it LIBDIR.  I have chosen to bring in that patch (since
 it looks like that will be accepted) so the library is installed to LIBDIR
 (which I am setting to /usr/lib/<triplet> in debian/rules) and then use the
 python3-ntp.install file to move it to LIBDIR/ntp.  This patch is then
 necessary to search that location.  Keeping it a private library in
 LIBDIR/ntp avoids the need for full Debian library packaging.  This can be
 revisited once upstream clarifies whether this is intended to be a public
 or private shared library.

ntpd/nts.c | 4 0 + 4 - 0 !
1 file changed, 4 deletions(-)

 disable libssl version check
 This sort of check should not be necessary, as dpkg-shlibdeps should
 calculate a proper dependency.

attic/ntpdate | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 ntpdate: disable json
 Stop passing -j to ntpdig so we get human-readable output instead of JSON.