chrony-1.27-0.5.pre1.git1ca844.fc18.x86_64 running as root: chronyc> reselect 501 Not authorised I have not modified key file and conf file from defaults and can't spot any problem with them. FYI I've installed since beta if that matters.
The communication between chronyc and chronyd is done over UDP, so it needs to be authorized before issuing commands such as reselect. To authorize, you need to use the authhash and password commands. Alternatively, you can use the chrony-helper wrapper, which will do that automatically. /usr/libexec/chrony-helper command reselect
I have to disagree here. According to docs /etc/chrony.keys is used for authentication. "commandkey 1" is present in configuration. So in a default installation chronyc should be able to command chronyd if it is run by root or any other user having read access to /etc/chrony.keys Am I misinterpreting something? In any case it makes sense after a standard installation of chrony to be able to control it with chronyc. I can't understand what is the reason for this to not work out of the box. But my request is to have chronyc authenticate with daemon out of the box after installation. Actually I have it configured by firstboot so the bug can be there instead.
The documentation says you need to use the password command: http://chrony.tuxfamily.org/manual.html#Security-with-chronyc Yes, chronyc could parse chrony.conf and the key file if it's run under root, but it doesn't do that (yet). I think that would be a feature request. Is that what you meant?
I didn't think this is a feature request until you pointed that out. :) so be it. Changed issue summary to reflect that. Thanks.
In upstream git chronyc now supports automatic authentication with new -a option. Instead of having to specify the password, one can now run "chronyc -a reselect" directly.
chrony-1.28-0.1.pre1.fc19 has been submitted as an update for Fedora 19. https://admin.fedoraproject.org/updates/chrony-1.28-0.1.pre1.fc19
chrony-1.28-0.1.pre1.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report.
chrony-1.28-1.fc18 has been submitted as an update for Fedora 18. https://admin.fedoraproject.org/updates/chrony-1.28-1.fc18
chrony-1.28-1.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report.