MAAS does not use NTP servers specified in DHCPD options

I should also mention that Juju deployment of charms fails when the time on the Juju bootstrap node is too old. This bug had the surprising consequence of not being able to deploy any charms to other MAAS nodes.

I'm retargeting to isc-dhcp, since it looks like dhclient is not honouring the ntp-server option.

I'll try to look at this some more tomorrow.

relavent files are:
  [ntpdate] /etc/dhcp/dhclient-exit-hooks.d/ntpdate
  [ntp] /etc/dhcp/dhclient-exit-hooks.d/ntp
  [ntp] /etc/init.d/ntp /etc/ntp.conf

it certainly looks to me like the stuff is supposed to work

> The culprit seems to be in how ntpdate-debian is programmed. the logic ignores /var/lib/ntpdate/default.dhcp if /etc/default/ntpdate sets NTPDATE_USE_NTP_CONF=yes (the default).

This matches my understanding when I looked at ntpdate-debian with a similar issue, though I haven't tried to verify this for certain.

I wonder what the intention of ntpdate-debian is in this case. Does it do what it does because we don't want NTP to be set from DHCP by default?

Is the reason you're facing this problem because your hardware doesn't have an RTC, or because system doesn't use the RTC at boot time, and is stuck at epoch? Fixing NTP from DHCP should certainly fix the issue, but why isn't the RTC being set correctly at install time and read correctly at boot time? I recently had a case where I fixed this in the kernel, and then the NTP DHCP situation didn't matter.

Julian: I disagree that this is dhclient's fault. The lease file clearly shows the NTP servers were received and the contents of /var/lib/ntpdate/default.dhcp are correctly set to the 3 NTP servers, showing the dhclient exit hook worked too. At this point it is up to the ntpclient to use these servers.

Scott: there is no /etc/ntp.conf file. It is not auto-generated by any script. I would expect the ntp client to honor the DHCP NTP servers if /etc/ntp.conf does not work.

Robie: The ARM device we have uses a capacitor to store the state of the RTC. If the device is without power for a few days the RTC completely resets. We absolutely need NTP working to keep these nodes functioning properly in a MAAS cluster. I too wonder why ntpdate-debian completely ignores the DHCP generated file /var/lib/ntpdate/default.dhcp when /etc/ntp.conf doesn't exist.

If you set NTPDATE_USE_NTP_CONF=no (eg. from a preseed late_command), then does this fix the issue?

Sounds to me that we either need to have MAAS do that, or consult with Debian about the intention of this setting and its interaction with DHCP in the default case to see if it's a bug or it's intentional.

I understand your use case and think that MAAS should support it, but I wonder whether just fixing the DHCP hook will work in all cases, or some other work is required here. My doubt is just that DHCP needs to run much earlier than usual in the cloud-init case, and so I don't know if the hook will always run, and therefore just want to make sure. Scott?

Robie: Yes, changing NTPDATE_USE_NTP_CONF=no makes everything work, at least when I change it after the node is deployed. I am not aware of how to try this with a preeseed late_command. Do you have instructions for me to attempt this? Will this mean all newly-deployed MAAS nodes get this change?

Below is the output from one of the nodes testing NTP_CONF on and off. It shows the script working correctly and using the NTP servers from DHCP when set to =no.
---------------------------------------------
root@sled204n2:~# grep ^NTPDATE_USE_NTP_CONF= /etc/default/ntpdate
NTPDATE_USE_NTP_CONF=yes
root@sled204n2:~# ntpdate-debian
20 Jan 21:37:02 ntpdate[14019]: no server suitable for synchronization found
root@sled204n2:~# date
Thu Jan 20 21:37:05 UTC 2000
root@sled204n2:~# nano /etc/default/ntpdate
root@sled204n2:~# grep ^NTPDATE_USE_NTP_CONF= /etc/default/ntpdate
NTPDATE_USE_NTP_CONF=no
root@sled204n2:~# ntpdate-debian
 3 Dec 19:27:26 ntpdate[14027]: step time server 172.31.23.1 offset 437694593.235280 sec
root@sled204n2:~# date
Tue Dec 3 19:27:31 UTC 2013
root@sled204n2:~#

On Tue, Dec 3, 2013 at 12:35 PM, Brian Rzycki <email address hidden> wrote:
> Robie: Yes, changing NTPDATE_USE_NTP_CONF=no makes everything work, at
> least when I change it after the node is deployed. I am not aware of how
> to try this with a preeseed late_command. Do you have instructions for
> me to attempt this?

I think you need to edit /usr/share/maas/preseeds/generic. Find the
preseed/late_command section.
Then, just before the final true, add another command with &&:

in-target sed -i 's/NTPDATE_USE_NTP_CONF=yes/NTPDATE_USE_NTP_CONF=no/'
/etc/default/ntpdate

BEFORE:
{{def post_scripts}}
# Executes late command and disables PXE.
d-i preseed/late_command string true && \
    in-target sh -c 'f=$1; shift; echo $0 > $f && chmod 0440 $f $*'
'ubuntu ALL=(ALL) NOPASSWD: ALL' /etc/sudoers.d/maas && \
    in-target wget --no-proxy "{{node_disable_pxe_url|escape.shell}}"
--post-data "{{node_disable_pxe_data|escape.shell}}" -O /dev/null && \
    true
{{enddef}}

AFTER:
{{def post_scripts}}
# Executes late command and disables PXE.
d-i preseed/late_command string true && \
    in-target sh -c 'f=$1; shift; echo $0 > $f && chmod 0440 $f $*'
'ubuntu ALL=(ALL) NOPASSWD: ALL' /etc/sudoers.d/maas && \
    in-target wget --no-proxy "{{node_disable_pxe_url|escape.shell}}"
--post-data "{{node_disable_pxe_data|escape.shell}}" -O /dev/null && \
    in-target sed -i
's/NTPDATE_USE_NTP_CONF=yes/NTPDATE_USE_NTP_CONF=no/'
/etc/default/ntpdate && \
    true
{{enddef}}

> Will this mean all newly-deployed MAAS nodes get
> this change?

Yup.

On Tuesday 03 Dec 2013 15:31:02 you wrote:
> Julian: I disagree that this is dhclient's fault. The lease file clearly
> shows the NTP servers were received and the contents of
> /var/lib/ntpdate/default.dhcp are correctly set to the 3 NTP servers,
> showing the dhclient exit hook worked too. At this point it is up to
> the ntpclient to use these servers.

Agreed, I forgot to update my comment after targeting to other projects.

I have filed a bug in Debian seeking clarification: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=731352

I think the issue is down to ntp's packaging, or possibly MAAS' (need of) configuration of ntp's packaging, and isc-dhcp is doing the right thing here.

Robie: I have verified updating /usr/share/maas/preseeds/generic works. I re-deployed a new node and saw that the time is correct. Thank you for the workaround.

I would still like to see what Debian's recommendation is on the upstream bug, whenever they decide to examine it.

I've just found http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=617965 and https://bugs.launchpad.net/ubuntu/+source/ntp/+bug/427775. This might be a duplicate of that issue.

Setting to Medium priority as a workaround is available.

Debian is considering making NTP available by default in http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=731594.

I'm also concerned that though changing NTPDATE_USE_NTP_CONF to default to "no" if /etc/ntp.conf doesn't exist seems to be right solution right now, it may have a negative impact to non-MAAS users, and so this needs to be considered carefully.

So it seems like we're still figuring out what the right solution should be. Some discussion in Ubuntu at: https://lists.ubuntu.com/archives/ubuntu-devel/2013-December/037895.html

Given that there's a workaround, I think we should probably wait to see what Debian wants to do with ntp by default before we tackle this. If this takes too long, then I suppose we could patch the behaviour above, or even send that to Debian.

So I just ran face first into this bug. Unless I'm missing something,
I don't think ntp being installed by default helps at all. MAAS and
Juju (for the MAAS provisioner) both depend on servers having an
accurate clock early in the boot process; ntpdate achieves this
because it's willing to jump time; ntp is not (for valid reasons).

And, even if I'm wrong about that, we still need a fix for trusty and
precise. Could we not just fix/reverse the logic in ntpdate-debian so
that it prefers dhcp provided NTP servers if one is found? Or at the
very least have it fallback to dhcp provided NTP if it can't find an
ntp.conf?

@James Troup: actually, NTP *can* jump time on start up via the -g parameter. See http://www.eecis.udel.edu/~mills/ntp/html/ntpd.html.

Hello,

Since there is no consensus on the definitive solution , I am proposing a simple fix for prefers dhcp provided NTP servers if one is found as also @elmo pointed here.

Please review the test-case and description for further details.

Thanks Jorge.

The way I imagined a fix going that might also be acceptable to Debian would be to treat NTPDATE_USE_NTP_CONF as no if ntp.conf doesn't exist, even if it says yes. Would this work for you?

Then I imagine addition of something like (untested):

if [ ! -f /etc/ntp.conf ]; then
    NTPDATE_USE_NTP_CONF=no
fi

and then no other changes. I think this would cause the DHCP setting to be used in our failure case, and it shouldn't cause unexpected an behaviour change since it doesn't make sense to request to use ntp.conf if it doesn't exist.

How does this sound to you? I'm not saying it's definitely the right way. I'm just not sure, so I'd like to propose it as an alternative.

What I think we're missing is a list of use cases, and without that I don't think it's possible to definitely state the right thing to do. I'm just trying to think of the most unobtrusive fix that would be acceptable to all and that minimises the risk of breaking some unknown use case.

Debian did say that they'd consider patches, so I think we should definitely first try to get their review (if that doesn't take too long) to avoid sending Ubuntu down a path that diverges from Debian.

One catch with my approach is that setting NTPDATE_USE_NTP_CONF=yes might mean "use /var/lib/ntp/ntp.conf.dhcp", and that would break. But maybe this file won't exist or is not useful if /etc/ntp.conf doesn't exist?

Oh, one more thing. I get the impression the failure you're experiencing, which is the case that you do have a working RTC, is a slightly different issue with the same symptom. curtin should set the RTC, and so on boot into the installed system you should already have a good enough clock. I think this would be a separate bug in curtin to set the RTC, and then this fix would only really be a workaround for you.

If I'm right about this, then using d-i rather than fast path should work in your case (I'm not sure if that's acceptable to you as a workaround or not though).

There has been no movment on the Debian bug report in about 6 months, and they appear to view ntpdate as legacy. SO I think we're faced with a decision:

1) Use ntpd -g instead, i.e. stop installing the ntpdate command and use the ntp package instead and fix startup options for NTP to include "-g" in preseed

2) Use the proposed preseed change by Dann.

I feel #2 is better because if Debian is going to remove ntpdate at a later stage, they will include "-g" for ntpd by default, at which time we can simply remove our fix again. If we use #1 we might break things once Debian goes this route.

On Wed, Mar 18, 2015 at 02:45:28PM -0000, Maarten wrote:
> There has been no movment on the Debian bug report in about 6
> months...

Well, nobody has proposed anything to Debian in that time either.

I'm still in favour of my comment #21, which I think Debian might
accept. Assuming that this will fix the issue for everyone, but nobody
has confirmed this.

Unsubscribing ubuntu-sponsors since there is nothing to upload at this point. Please re-add if/when there is.