Bug 2135568

Summary: Threat model finding: thundering herd warning
Product: Red Hat Enterprise Linux 9 Reporter: Wade Mealing <wmealing>
Component: chronyAssignee: Miroslav Lichvar <mlichvar>
Status: ASSIGNED --- QA Contact: rhel-cs-infra-services-qe <rhel-cs-infra-services-qe>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 9.0Keywords: Triaged
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2231078    
Bug Blocks:    

Comment 1 Miroslav Lichvar 2022-10-24 14:45:30 UTC 
Server keys lost after restart (which invalidates existing cookies) could be an issue for servers with large number of clients. A typical server might be able to handle 500 requests per second, so for the default minpoll of 64 seconds that would be about 32k clients if the requests were spread evenly.

A warning message printed by chronyd if configured as an NTS server without ntsdumpdir would make sense to me.
Comment 2 Miroslav Lichvar 2023-08-10 13:46:20 UTC 
This issue will be fixed by rebase to chrony-4.4 (bug #2231078), which logs a warning message when ntsdumpdir is missing in the config.