xref: /freebsd/contrib/ntp/util/ntp-keygen.html (revision 1f4bcc459a76b7aa664f3fd557684cd0ba6da352)
1<html lang="en">
2<head>
3<title>Ntp-keygen User's Manual</title>
4<meta http-equiv="Content-Type" content="text/html">
5<meta name="description" content="Ntp-keygen User's Manual">
6<meta name="generator" content="makeinfo 4.7">
7<link title="Top" rel="top" href="#Top">
8<link href="http://www.gnu.org/software/texinfo/" rel="generator-home" title="Texinfo Homepage">
9<meta http-equiv="Content-Style-Type" content="text/css">
10<style type="text/css"><!--
11  pre.display { font-family:inherit }
12  pre.format  { font-family:inherit }
13  pre.smalldisplay { font-family:inherit; font-size:smaller }
14  pre.smallformat  { font-family:inherit; font-size:smaller }
15  pre.smallexample { font-size:smaller }
16  pre.smalllisp    { font-size:smaller }
17  span.sc { font-variant:small-caps }
18  span.roman { font-family: serif; font-weight: normal; }
19--></style>
20</head>
21<body>
22<h1 class="settitle">Ntp-keygen User's Manual</h1>
23  <div class="shortcontents">
24<h2>Short Contents</h2>
25<ul>
26<a href="#Top">Top</a>
27<a href="#Top">NTP Key Generation Program User Manual</a>
28</ul>
29</div>
30
31
32
33<div class="node">
34<p><hr>
35<a name="Top"></a>Up:&nbsp;<a rel="up" accesskey="u" href="#dir">(dir)</a>
36<br>
37</div>
38
39<h2 class="unnumbered">Top</h2>
40
41<ul class="menu">
42<li><a accesskey="1" href="#Description">Description</a>
43<li><a accesskey="2" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>: 	Invoking ntp-keygen
44<li><a accesskey="3" href="#Running-the-Program">Running the Program</a>
45<li><a accesskey="4" href="#Random-Seed-File">Random Seed File</a>
46<li><a accesskey="5" href="#Cryptographic-Data-Files">Cryptographic Data Files</a>
47</ul>
48
49<div class="node">
50<p><hr>
51<a name="Top"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#Description">Description</a>,
52Previous:&nbsp;<a rel="previous" accesskey="p" href="#dir">(dir)</a>,
53Up:&nbsp;<a rel="up" accesskey="u" href="#dir">(dir)</a>
54<br>
55</div>
56
57<h2 class="unnumbered">NTP Key Generation Program User Manual</h2>
58
59<p>This document describes the use of the NTP Project's <code>ntp-keygen</code>
60program, that generates cryptographic data files used by the NTPv4
61authentication and identity schemes.
62It can generate message digest keys used in symmetric key cryptography and,
63if the OpenSSL software
64library has been installed, it can generate host keys, sign keys,
65certificates, and identity keys and parameters used by the Autokey
66public key cryptography.
67The message digest keys file is generated in a
68format compatible with NTPv3.
69All other files are in PEM-encoded
70printable ASCII format so they can be embedded as MIME attachments in
71mail to other sites.
72
73  <p>This document applies to version 4.2.8p6 of <code>ntp-keygen</code>.
74
75<div class="node">
76<p><hr>
77<a name="Description"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#Running-the-Program">Running the Program</a>,
78Previous:&nbsp;<a rel="previous" accesskey="p" href="#Top">Top</a>,
79Up:&nbsp;<a rel="up" accesskey="u" href="#Top">Top</a>
80<br>
81</div>
82
83<!-- node-name,  next,  previous,  up -->
84<h3 class="section">Description</h3>
85
86<p>This program generates cryptographic data files used by the NTPv4
87authentication and identity schemes. It can generate message digest
88keys used in symmetric key cryptography and, if the OpenSSL software
89library has been installed, it can generate host keys, sign keys,
90certificates, and identity keys and parameters used by the Autokey
91public key cryptography. The message digest keys file is generated in a
92format compatible with NTPv3. All other files are in PEM-encoded
93printable ASCII format so they can be embedded as MIME attachments in
94mail to other sites.
95
96  <p>When used to generate message digest keys, the program produces a file
97containing ten pseudo-random printable ASCII strings suitable for the
98MD5 message digest algorithm included in the distribution.
99If the
100OpenSSL library is installed, it produces an additional ten hex-encoded
101random bit strings suitable for the SHA1 and other message digest
102algorithms.
103The message digest keys file must be distributed and stored
104using secure means beyond the scope of NTP itself.
105Besides the keys
106used for ordinary NTP associations, additional keys can be defined as
107passwords for the ntpq and ntpdc utility programs.
108
109  <p>The remaining generated files are compatible with other OpenSSL
110applications and other Public Key Infrastructure (PKI) resources.
111Certificates generated by this program are compatible with extant
112industry practice, although some users might find the interpretation of
113X509v3 extension fields somewhat liberal.
114However, the identity keys
115are probably not compatible with anything other than Autokey.
116
117  <p>Some files used by this program are encrypted using a private password.
118The <code>-p</code> option specifies the password for local encrypted files and the
119<code>-q</code> option the password for encrypted files sent to remote sites.
120If no password is specified, the host name returned by the Unix
121<code>gethostname()</code> function, normally the DNS name of the host, is used.
122
123  <p>The <kbd>pw</kbd> option of the <code>crypto</code> configuration command
124specifies the read password for previously encrypted local files.
125This must match the local password used by this program.
126If not specified, the host name is used.
127Thus, if files are generated by this program without password,
128they can be read back by ntpd without password, but only on the same
129host.
130
131  <p>Normally, encrypted files for each host are generated by that host and
132used only by that host, although exceptions exist as noted later on
133this page.
134The symmetric keys file, normally called <code>ntp.keys</code>, is
135usually installed in <code>/etc</code>.
136Other files and links are usually installed
137in <code>/usr/local/etc</code>, which is normally in a shared filesystem in
138NFS-mounted networks and cannot be changed by shared clients.
139The location of the keys directory can be changed by the keysdir
140configuration command in such cases.
141Normally, this is in <code>/etc</code>.
142
143  <p>This program directs commentary and error messages to the standard
144error stream <code>stderr</code> and remote files to the standard output stream
145<code>stdout</code> where they can be piped to other applications or redirected to
146files.
147The names used for generated files and links all begin with the
148string <code>ntpkey</code> and include the file type,
149generating host and filestamp,
150as described in the <a href="#Cryptographic-Data-Files">Cryptographic Data Files</a> section below.
151
152<div class="node">
153<p><hr>
154<a name="Running-the-Program"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#Random-Seed-File">Random Seed File</a>,
155Previous:&nbsp;<a rel="previous" accesskey="p" href="#Description">Description</a>,
156Up:&nbsp;<a rel="up" accesskey="u" href="#Top">Top</a>
157<br>
158</div>
159
160<!-- node-name,  next,  previous,  up -->
161<h3 class="section">Running the Program</h3>
162
163<p>To test and gain experience with Autokey concepts, log in as root and
164change to the keys directory, usually <code>/usr/local/etc</code>.
165When run for the
166first time, or if all files with names beginning <code>ntpkey</code>] have been
167removed, use the <code>ntp-keygen</code> command without arguments to generate a
168default RSA host key and matching RSA-MD5 certificate with expiration
169date one year hence.
170If run again without options, the program uses the
171existing keys and parameters and generates only a new certificate with
172new expiration date one year hence.
173
174  <p>Run the command on as many hosts as necessary.
175Designate one of them as the trusted host (TH) using <code>ntp-keygen</code>
176with the <code>-T</code> option and configure
177it to synchronize from reliable Internet servers.
178Then configure the other hosts to synchronize to the TH directly or indirectly.
179A certificate trail is created when Autokey asks the immediately
180ascendant host towards the TH to sign its certificate, which is then
181provided to the immediately descendant host on request.
182All group hosts should have acyclic certificate trails ending on the TH.
183
184  <p>The host key is used to encrypt the cookie when required and so must be
185RSA type.
186By default, the host key is also the sign key used to encrypt signatures.
187A different sign key can be assigned using the <code>-S</code> option
188and this can be either RSA or DSA type.
189By default, the signature
190message digest type is MD5, but any combination of sign key type and
191message digest type supported by the OpenSSL library can be specified
192using the <code>-c</code> option.
193
194  <p>The rules say cryptographic media should be generated with proventic
195filestamps, which means the host should already be synchronized before
196this program is run.
197This of course creates a chicken-and-egg problem
198when the host is started for the first time.
199Accordingly, the host time
200should be set by some other means, such as eyeball-and-wristwatch, at
201least so that the certificate lifetime is within the current year.
202After that and when the host is synchronized to a proventic source, the
203certificate should be re-generated.
204
205  <p>Additional information on trusted groups and identity schemes is on the
206Autokey Public-Key Authentication page.
207
208<div class="node">
209<p><hr>
210<a name="ntp_002dkeygen-Invocation"></a>
211<br>
212</div>
213
214<h3 class="section">Invoking ntp-keygen</h3>
215
216<p><a name="index-ntp_002dkeygen-1"></a><a name="index-Create-a-NTP-host-key-2"></a>
217
218  <p>This program generates cryptographic data files used by the NTPv4
219authentication and identification schemes.
220It generates MD5 key files used in symmetric key cryptography.
221In addition, if the OpenSSL software library has been installed,
222it generates keys, certificate and identity files used in public key
223cryptography.
224These files are used for cookie encryption,
225digital signature and challenge/response identification algorithms
226compatible with the Internet standard security infrastructure.
227
228  <p>All files are in PEM-encoded printable ASCII format,
229so they can be embedded as MIME attachments in mail to other sites
230and certificate authorities.
231By default, files are not encrypted.
232
233  <p>When used to generate message digest keys, the program produces a file
234containing ten pseudo-random printable ASCII strings suitable for the
235MD5 message digest algorithm included in the distribution.
236If the OpenSSL library is installed, it produces an additional ten
237hex-encoded random bit strings suitable for the SHA1 and other message
238digest algorithms.
239The message digest keys file must be distributed and stored
240using secure means beyond the scope of NTP itself.
241Besides the keys used for ordinary NTP associations, additional keys
242can be defined as passwords for the
243<code>ntpq(1ntpqmdoc)</code>
244and
245<code>ntpdc(1ntpdcmdoc)</code>
246utility programs.
247
248  <p>The remaining generated files are compatible with other OpenSSL
249applications and other Public Key Infrastructure (PKI) resources.
250Certificates generated by this program are compatible with extant
251industry practice, although some users might find the interpretation of
252X509v3 extension fields somewhat liberal.
253However, the identity keys are probably not compatible with anything
254other than Autokey.
255
256  <p>Some files used by this program are encrypted using a private password.
257The
258<code>-p</code>
259option specifies the password for local encrypted files and the
260<code>-q</code>
261option the password for encrypted files sent to remote sites.
262If no password is specified, the host name returned by the Unix
263<code>gethostname()</code>
264function, normally the DNS name of the host is used.
265
266  <p>The
267<kbd>pw</kbd>
268option of the
269<kbd>crypto</kbd>
270configuration command specifies the read
271password for previously encrypted local files.
272This must match the local password used by this program.
273If not specified, the host name is used.
274Thus, if files are generated by this program without password,
275they can be read back by
276<kbd>ntpd</kbd>
277without password but only on the same host.
278
279  <p>Normally, encrypted files for each host are generated by that host and
280used only by that host, although exceptions exist as noted later on
281this page.
282The symmetric keys file, normally called
283<kbd>ntp.keys</kbd>,
284is usually installed in
285<span class="file">/etc</span>.
286Other files and links are usually installed in
287<span class="file">/usr/local/etc</span>,
288which is normally in a shared filesystem in
289NFS-mounted networks and cannot be changed by shared clients.
290The location of the keys directory can be changed by the
291<kbd>keysdir</kbd>
292configuration command in such cases.
293Normally, this is in
294<span class="file">/etc</span>.
295
296  <p>This program directs commentary and error messages to the standard
297error stream
298<kbd>stderr</kbd>
299and remote files to the standard output stream
300<kbd>stdout</kbd>
301where they can be piped to other applications or redirected to files.
302The names used for generated files and links all begin with the
303string
304<kbd>ntpkey</kbd>
305and include the file type, generating host and filestamp,
306as described in the
307Cryptographic Data Files
308section below.
309
310<h5 class="subsubsection">Running the Program</h5>
311
312<p>To test and gain experience with Autokey concepts, log in as root and
313change to the keys directory, usually
314<span class="file">/usr/local/etc</span>
315When run for the first time, or if all files with names beginning with
316<kbd>ntpkey</kbd>
317have been removed, use the
318<code>ntp-keygen</code>
319command without arguments to generate a
320default RSA host key and matching RSA-MD5 certificate with expiration
321date one year hence.
322If run again without options, the program uses the
323existing keys and parameters and generates only a new certificate with
324new expiration date one year hence.
325
326  <p>Run the command on as many hosts as necessary.
327Designate one of them as the trusted host (TH) using
328<code>ntp-keygen</code>
329with the
330<code>-T</code>
331option and configure it to synchronize from reliable Internet servers.
332Then configure the other hosts to synchronize to the TH directly or
333indirectly.
334A certificate trail is created when Autokey asks the immediately
335ascendant host towards the TH to sign its certificate, which is then
336provided to the immediately descendant host on request.
337All group hosts should have acyclic certificate trails ending on the TH.
338
339  <p>The host key is used to encrypt the cookie when required and so must be
340RSA type.
341By default, the host key is also the sign key used to encrypt
342signatures.
343A different sign key can be assigned using the
344<code>-S</code>
345option and this can be either RSA or DSA type.
346By default, the signature
347message digest type is MD5, but any combination of sign key type and
348message digest type supported by the OpenSSL library can be specified
349using the
350<code>-c</code>
351option.
352The rules say cryptographic media should be generated with proventic
353filestamps, which means the host should already be synchronized before
354this program is run.
355This of course creates a chicken-and-egg problem
356when the host is started for the first time.
357Accordingly, the host time
358should be set by some other means, such as eyeball-and-wristwatch, at
359least so that the certificate lifetime is within the current year.
360After that and when the host is synchronized to a proventic source, the
361certificate should be re-generated.
362
363  <p>Additional information on trusted groups and identity schemes is on the
364Autokey Public-Key Authentication
365page.
366
367  <p>The
368<code>ntpd(1ntpdmdoc)</code>
369configuration command
370<code>crypto</code> <code>pw</code> <kbd>password</kbd>
371specifies the read password for previously encrypted files.
372The daemon expires on the spot if the password is missing
373or incorrect.
374For convenience, if a file has been previously encrypted,
375the default read password is the name of the host running
376the program.
377If the previous write password is specified as the host name,
378these files can be read by that host with no explicit password.
379
380  <p>File names begin with the prefix
381<code>ntpkey_</code>
382and end with the postfix
383<kbd>_hostname.filestamp</kbd>,
384where
385<kbd>hostname</kbd>
386is the owner name, usually the string returned
387by the Unix gethostname() routine, and
388<kbd>filestamp</kbd>
389is the NTP seconds when the file was generated, in decimal digits.
390This both guarantees uniqueness and simplifies maintenance
391procedures, since all files can be quickly removed
392by a
393<code>rm</code> <code>ntpkey*</code>
394command or all files generated
395at a specific time can be removed by a
396<code>rm</code>
397<kbd>*filestamp</kbd>
398command.
399To further reduce the risk of misconfiguration,
400the first two lines of a file contain the file name
401and generation date and time as comments.
402
403  <p>All files are installed by default in the keys directory
404<span class="file">/usr/local/etc</span>,
405which is normally in a shared filesystem
406in NFS-mounted networks.
407The actual location of the keys directory
408and each file can be overridden by configuration commands,
409but this is not recommended.
410Normally, the files for each host are generated by that host
411and used only by that host, although exceptions exist
412as noted later on this page.
413
414  <p>Normally, files containing private values,
415including the host key, sign key and identification parameters,
416are permitted root read/write-only;
417while others containing public values are permitted world readable.
418Alternatively, files containing private values can be encrypted
419and these files permitted world readable,
420which simplifies maintenance in shared file systems.
421Since uniqueness is insured by the hostname and
422file name extensions, the files for a NFS server and
423dependent clients can all be installed in the same shared directory.
424
425  <p>The recommended practice is to keep the file name extensions
426when installing a file and to install a soft link
427from the generic names specified elsewhere on this page
428to the generated files.
429This allows new file generations to be activated simply
430by changing the link.
431If a link is present, ntpd follows it to the file name
432to extract the filestamp.
433If a link is not present,
434<code>ntpd(1ntpdmdoc)</code>
435extracts the filestamp from the file itself.
436This allows clients to verify that the file and generation times
437are always current.
438The
439<code>ntp-keygen</code>
440program uses the same timestamp extension for all files generated
441at one time, so each generation is distinct and can be readily
442recognized in monitoring data.
443
444<h5 class="subsubsection">Running the program</h5>
445
446<p>The safest way to run the
447<code>ntp-keygen</code>
448program is logged in directly as root.
449The recommended procedure is change to the keys directory,
450usually
451<span class="file">/usr/local/etc</span>,
452then run the program.
453When run for the first time,
454or if all
455<code>ntpkey</code>
456files have been removed,
457the program generates a RSA host key file and matching RSA-MD5 certificate file,
458which is all that is necessary in many cases.
459The program also generates soft links from the generic names
460to the respective files.
461If run again, the program uses the same host key file,
462but generates a new certificate file and link.
463
464  <p>The host key is used to encrypt the cookie when required and so must be RSA type.
465By default, the host key is also the sign key used to encrypt signatures.
466When necessary, a different sign key can be specified and this can be
467either RSA or DSA type.
468By default, the message digest type is MD5, but any combination
469of sign key type and message digest type supported by the OpenSSL library
470can be specified, including those using the MD2, MD5, SHA, SHA1, MDC2
471and RIPE160 message digest algorithms.
472However, the scheme specified in the certificate must be compatible
473with the sign key.
474Certificates using any digest algorithm are compatible with RSA sign keys;
475however, only SHA and SHA1 certificates are compatible with DSA sign keys.
476
477  <p>Private/public key files and certificates are compatible with
478other OpenSSL applications and very likely other libraries as well.
479Certificates or certificate requests derived from them should be compatible
480with extant industry practice, although some users might find
481the interpretation of X509v3 extension fields somewhat liberal.
482However, the identification parameter files, although encoded
483as the other files, are probably not compatible with anything other than Autokey.
484
485  <p>Running the program as other than root and using the Unix
486<code>su</code>
487command
488to assume root may not work properly, since by default the OpenSSL library
489looks for the random seed file
490<code>.rnd</code>
491in the user home directory.
492However, there should be only one
493<code>.rnd</code>,
494most conveniently
495in the root directory, so it is convenient to define the
496<code>$RANDFILE</code>
497environment variable used by the OpenSSL library as the path to
498<code>/.rnd</code>.
499
500  <p>Installing the keys as root might not work in NFS-mounted
501shared file systems, as NFS clients may not be able to write
502to the shared keys directory, even as root.
503In this case, NFS clients can specify the files in another
504directory such as
505<span class="file">/etc</span>
506using the
507<code>keysdir</code>
508command.
509There is no need for one client to read the keys and certificates
510of other clients or servers, as these data are obtained automatically
511by the Autokey protocol.
512
513  <p>Ordinarily, cryptographic files are generated by the host that uses them,
514but it is possible for a trusted agent (TA) to generate these files
515for other hosts; however, in such cases files should always be encrypted.
516The subject name and trusted name default to the hostname
517of the host generating the files, but can be changed by command line options.
518It is convenient to designate the owner name and trusted name
519as the subject and issuer fields, respectively, of the certificate.
520The owner name is also used for the host and sign key files,
521while the trusted name is used for the identity files.
522
523  <p>All files are installed by default in the keys directory
524<span class="file">/usr/local/etc</span>,
525which is normally in a shared filesystem
526in NFS-mounted networks.
527The actual location of the keys directory
528and each file can be overridden by configuration commands,
529but this is not recommended.
530Normally, the files for each host are generated by that host
531and used only by that host, although exceptions exist
532as noted later on this page.
533
534  <p>Normally, files containing private values,
535including the host key, sign key and identification parameters,
536are permitted root read/write-only;
537while others containing public values are permitted world readable.
538Alternatively, files containing private values can be encrypted
539and these files permitted world readable,
540which simplifies maintenance in shared file systems.
541Since uniqueness is insured by the hostname and
542file name extensions, the files for a NFS server and
543dependent clients can all be installed in the same shared directory.
544
545  <p>The recommended practice is to keep the file name extensions
546when installing a file and to install a soft link
547from the generic names specified elsewhere on this page
548to the generated files.
549This allows new file generations to be activated simply
550by changing the link.
551If a link is present, ntpd follows it to the file name
552to extract the filestamp.
553If a link is not present,
554<code>ntpd(1ntpdmdoc)</code>
555extracts the filestamp from the file itself.
556This allows clients to verify that the file and generation times
557are always current.
558The
559<code>ntp-keygen</code>
560program uses the same timestamp extension for all files generated
561at one time, so each generation is distinct and can be readily
562recognized in monitoring data.
563
564<h5 class="subsubsection">Running the program</h5>
565
566<p>The safest way to run the
567<code>ntp-keygen</code>
568program is logged in directly as root.
569The recommended procedure is change to the keys directory,
570usually
571<span class="file">/usr/local/etc</span>,
572then run the program.
573When run for the first time,
574or if all
575<code>ntpkey</code>
576files have been removed,
577the program generates a RSA host key file and matching RSA-MD5 certificate file,
578which is all that is necessary in many cases.
579The program also generates soft links from the generic names
580to the respective files.
581If run again, the program uses the same host key file,
582but generates a new certificate file and link.
583
584  <p>The host key is used to encrypt the cookie when required and so must be RSA type.
585By default, the host key is also the sign key used to encrypt signatures.
586When necessary, a different sign key can be specified and this can be
587either RSA or DSA type.
588By default, the message digest type is MD5, but any combination
589of sign key type and message digest type supported by the OpenSSL library
590can be specified, including those using the MD2, MD5, SHA, SHA1, MDC2
591and RIPE160 message digest algorithms.
592However, the scheme specified in the certificate must be compatible
593with the sign key.
594Certificates using any digest algorithm are compatible with RSA sign keys;
595however, only SHA and SHA1 certificates are compatible with DSA sign keys.
596
597  <p>Private/public key files and certificates are compatible with
598other OpenSSL applications and very likely other libraries as well.
599Certificates or certificate requests derived from them should be compatible
600with extant industry practice, although some users might find
601the interpretation of X509v3 extension fields somewhat liberal.
602However, the identification parameter files, although encoded
603as the other files, are probably not compatible with anything other than Autokey.
604
605  <p>Running the program as other than root and using the Unix
606<code>su</code>
607command
608to assume root may not work properly, since by default the OpenSSL library
609looks for the random seed file
610<code>.rnd</code>
611in the user home directory.
612However, there should be only one
613<code>.rnd</code>,
614most conveniently
615in the root directory, so it is convenient to define the
616<code>$RANDFILE</code>
617environment variable used by the OpenSSL library as the path to
618<code>/.rnd</code>.
619
620  <p>Installing the keys as root might not work in NFS-mounted
621shared file systems, as NFS clients may not be able to write
622to the shared keys directory, even as root.
623In this case, NFS clients can specify the files in another
624directory such as
625<span class="file">/etc</span>
626using the
627<code>keysdir</code>
628command.
629There is no need for one client to read the keys and certificates
630of other clients or servers, as these data are obtained automatically
631by the Autokey protocol.
632
633  <p>Ordinarily, cryptographic files are generated by the host that uses them,
634but it is possible for a trusted agent (TA) to generate these files
635for other hosts; however, in such cases files should always be encrypted.
636The subject name and trusted name default to the hostname
637of the host generating the files, but can be changed by command line options.
638It is convenient to designate the owner name and trusted name
639as the subject and issuer fields, respectively, of the certificate.
640The owner name is also used for the host and sign key files,
641while the trusted name is used for the identity files.
642seconds.
643seconds.
644
645  <p>s Trusted Hosts and Groups
646Each cryptographic configuration involves selection of a signature scheme
647and identification scheme, called a cryptotype,
648as explained in the
649<a href="#Authentication-Options">Authentication Options</a>
650section of
651<code>ntp.conf(5)</code>.
652The default cryptotype uses RSA encryption, MD5 message digest
653and TC identification.
654First, configure a NTP subnet including one or more low-stratum
655trusted hosts from which all other hosts derive synchronization
656directly or indirectly.
657Trusted hosts have trusted certificates;
658all other hosts have nontrusted certificates.
659These hosts will automatically and dynamically build authoritative
660certificate trails to one or more trusted hosts.
661A trusted group is the set of all hosts that have, directly or indirectly,
662a certificate trail ending at a trusted host.
663The trail is defined by static configuration file entries
664or dynamic means described on the
665<a href="#Automatic-NTP-Configuration-Options">Automatic NTP Configuration Options</a>
666section of
667<code>ntp.conf(5)</code>.
668
669  <p>On each trusted host as root, change to the keys directory.
670To insure a fresh fileset, remove all
671<code>ntpkey</code>
672files.
673Then run
674<code>ntp-keygen</code>
675<code>-T</code>
676to generate keys and a trusted certificate.
677On all other hosts do the same, but leave off the
678<code>-T</code>
679flag to generate keys and nontrusted certificates.
680When complete, start the NTP daemons beginning at the lowest stratum
681and working up the tree.
682It may take some time for Autokey to instantiate the certificate trails
683throughout the subnet, but setting up the environment is completely automatic.
684
685  <p>If it is necessary to use a different sign key or different digest/signature
686scheme than the default, run
687<code>ntp-keygen</code>
688with the
689<code>-S</code> <kbd>type</kbd>
690option, where
691<kbd>type</kbd>
692is either
693<code>RSA</code>
694or
695<code>DSA</code>.
696The most often need to do this is when a DSA-signed certificate is used.
697If it is necessary to use a different certificate scheme than the default,
698run
699<code>ntp-keygen</code>
700with the
701<code>-c</code> <kbd>scheme</kbd>
702option and selected
703<kbd>scheme</kbd>
704as needed.
705f
706<code>ntp-keygen</code>
707is run again without these options, it generates a new certificate
708using the same scheme and sign key.
709
710  <p>After setting up the environment it is advisable to update certificates
711from time to time, if only to extend the validity interval.
712Simply run
713<code>ntp-keygen</code>
714with the same flags as before to generate new certificates
715using existing keys.
716However, if the host or sign key is changed,
717<code>ntpd(1ntpdmdoc)</code>
718should be restarted.
719When
720<code>ntpd(1ntpdmdoc)</code>
721is restarted, it loads any new files and restarts the protocol.
722Other dependent hosts will continue as usual until signatures are refreshed,
723at which time the protocol is restarted.
724
725<h5 class="subsubsection">Identity Schemes</h5>
726
727<p>As mentioned on the Autonomous Authentication page,
728the default TC identity scheme is vulnerable to a middleman attack.
729However, there are more secure identity schemes available,
730including PC, IFF, GQ and MV described on the
731"Identification Schemes"
732page
733(maybe available at
734<code>http://www.eecis.udel.edu/%7emills/keygen.html</code>).
735These schemes are based on a TA, one or more trusted hosts
736and some number of nontrusted hosts.
737Trusted hosts prove identity using values provided by the TA,
738while the remaining hosts prove identity using values provided
739by a trusted host and certificate trails that end on that host.
740The name of a trusted host is also the name of its sugroup
741and also the subject and issuer name on its trusted certificate.
742The TA is not necessarily a trusted host in this sense, but often is.
743
744  <p>In some schemes there are separate keys for servers and clients.
745A server can also be a client of another server,
746but a client can never be a server for another client.
747In general, trusted hosts and nontrusted hosts that operate
748as both server and client have parameter files that contain
749both server and client keys.
750Hosts that operate
751only as clients have key files that contain only client keys.
752
753  <p>The PC scheme supports only one trusted host in the group.
754On trusted host alice run
755<code>ntp-keygen</code>
756<code>-P</code>
757<code>-p</code> <kbd>password</kbd>
758to generate the host key file
759<span class="file">ntpkey_RSAkey_</span><kbd>alice.filestamp</kbd>
760and trusted private certificate file
761<span class="file">ntpkey_RSA-MD5_cert_</span><kbd>alice.filestamp</kbd>.
762Copy both files to all group hosts;
763they replace the files which would be generated in other schemes.
764On each host bob install a soft link from the generic name
765<span class="file">ntpkey_host_</span><kbd>bob</kbd>
766to the host key file and soft link
767<span class="file">ntpkey_cert_</span><kbd>bob</kbd>
768to the private certificate file.
769Note the generic links are on bob, but point to files generated
770by trusted host alice.
771In this scheme it is not possible to refresh
772either the keys or certificates without copying them
773to all other hosts in the group.
774
775  <p>For the IFF scheme proceed as in the TC scheme to generate keys
776and certificates for all group hosts, then for every trusted host in the group,
777generate the IFF parameter file.
778On trusted host alice run
779<code>ntp-keygen</code>
780<code>-T</code>
781<code>-I</code>
782<code>-p</code> <kbd>password</kbd>
783to produce her parameter file
784<span class="file">ntpkey_IFFpar_</span><kbd>alice.filestamp</kbd>,
785which includes both server and client keys.
786Copy this file to all group hosts that operate as both servers
787and clients and install a soft link from the generic
788<span class="file">ntpkey_iff_</span><kbd>alice</kbd>
789to this file.
790If there are no hosts restricted to operate only as clients,
791there is nothing further to do.
792As the IFF scheme is independent
793of keys and certificates, these files can be refreshed as needed.
794
795  <p>If a rogue client has the parameter file, it could masquerade
796as a legitimate server and present a middleman threat.
797To eliminate this threat, the client keys can be extracted
798from the parameter file and distributed to all restricted clients.
799After generating the parameter file, on alice run
800<code>ntp-keygen</code>
801<code>-e</code>
802and pipe the output to a file or mail program.
803Copy or mail this file to all restricted clients.
804On these clients install a soft link from the generic
805<span class="file">ntpkey_iff_</span><kbd>alice</kbd>
806to this file.
807To further protect the integrity of the keys,
808each file can be encrypted with a secret password.
809
810  <p>For the GQ scheme proceed as in the TC scheme to generate keys
811and certificates for all group hosts, then for every trusted host
812in the group, generate the IFF parameter file.
813On trusted host alice run
814<code>ntp-keygen</code>
815<code>-T</code>
816<code>-G</code>
817<code>-p</code> <kbd>password</kbd>
818to produce her parameter file
819<span class="file">ntpkey_GQpar_</span><kbd>alice.filestamp</kbd>,
820which includes both server and client keys.
821Copy this file to all group hosts and install a soft link
822from the generic
823<span class="file">ntpkey_gq_</span><kbd>alice</kbd>
824to this file.
825In addition, on each host bob install a soft link
826from generic
827<span class="file">ntpkey_gq_</span><kbd>bob</kbd>
828to this file.
829As the GQ scheme updates the GQ parameters file and certificate
830at the same time, keys and certificates can be regenerated as needed.
831
832  <p>For the MV scheme, proceed as in the TC scheme to generate keys
833and certificates for all group hosts.
834For illustration assume trish is the TA, alice one of several trusted hosts
835and bob one of her clients.
836On TA trish run
837<code>ntp-keygen</code>
838<code>-V</code> <kbd>n</kbd>
839<code>-p</code> <kbd>password</kbd>,
840where
841<kbd>n</kbd>
842is the number of revokable keys (typically 5) to produce
843the parameter file
844<span class="file">ntpkeys_MVpar_</span><kbd>trish.filestamp</kbd>
845and client key files
846<span class="file">ntpkeys_MVkeyd_</span><kbd>trish.filestamp</kbd>
847where
848<kbd>d</kbd>
849is the key number (0 &lt;
850<kbd>d</kbd>
851&lt;
852<kbd>n</kbd>).
853Copy the parameter file to alice and install a soft link
854from the generic
855<span class="file">ntpkey_mv_</span><kbd>alice</kbd>
856to this file.
857Copy one of the client key files to alice for later distribution
858to her clients.
859It doesn't matter which client key file goes to alice,
860since they all work the same way.
861Alice copies the client key file to all of her cliens.
862On client bob install a soft link from generic
863<span class="file">ntpkey_mvkey_</span><kbd>bob</kbd>
864to the client key file.
865As the MV scheme is independent of keys and certificates,
866these files can be refreshed as needed.
867
868<h5 class="subsubsection">Command Line Options</h5>
869
870     <dl>
871<dt><code>-c</code> <kbd>scheme</kbd><dd>Select certificate message digest/signature encryption scheme.
872The
873<kbd>scheme</kbd>
874can be one of the following:
875. Cm RSA-MD2 , RSA-MD5 , RSA-SHA , RSA-SHA1 , RSA-MDC2 , RSA-RIPEMD160 , DSA-SHA ,
876or
877<code>DSA-SHA1</code>.
878Note that RSA schemes must be used with a RSA sign key and DSA
879schemes must be used with a DSA sign key.
880The default without this option is
881<code>RSA-MD5</code>.
882<br><dt><code>-d</code><dd>Enable debugging.
883This option displays the cryptographic data produced in eye-friendly billboards.
884<br><dt><code>-e</code><dd>Write the IFF client keys to the standard output.
885This is intended for automatic key distribution by mail.
886<br><dt><code>-G</code><dd>Generate parameters and keys for the GQ identification scheme,
887obsoleting any that may exist.
888<br><dt><code>-g</code><dd>Generate keys for the GQ identification scheme
889using the existing GQ parameters.
890If the GQ parameters do not yet exist, create them first.
891<br><dt><code>-H</code><dd>Generate new host keys, obsoleting any that may exist.
892<br><dt><code>-I</code><dd>Generate parameters for the IFF identification scheme,
893obsoleting any that may exist.
894<br><dt><code>-i</code> <kbd>name</kbd><dd>Set the suject name to
895<kbd>name</kbd>.
896This is used as the subject field in certificates
897and in the file name for host and sign keys.
898<br><dt><code>-M</code><dd>Generate MD5 keys, obsoleting any that may exist.
899<br><dt><code>-P</code><dd>Generate a private certificate.
900By default, the program generates public certificates.
901<br><dt><code>-p</code> <kbd>password</kbd><dd>Encrypt generated files containing private data with
902<kbd>password</kbd>
903and the DES-CBC algorithm.
904<br><dt><code>-q</code><dd>Set the password for reading files to password.
905<br><dt><code>-S</code> <code>[RSA | DSA]</code><dd>Generate a new sign key of the designated type,
906obsoleting any that may exist.
907By default, the program uses the host key as the sign key.
908<br><dt><code>-s</code> <kbd>name</kbd><dd>Set the issuer name to
909<kbd>name</kbd>.
910This is used for the issuer field in certificates
911and in the file name for identity files.
912<br><dt><code>-T</code><dd>Generate a trusted certificate.
913By default, the program generates a non-trusted certificate.
914<br><dt><code>-V</code> <kbd>nkeys</kbd><dd>Generate parameters and keys for the Mu-Varadharajan (MV) identification scheme.
915</dl>
916
917<h5 class="subsubsection">Random Seed File</h5>
918
919<p>All cryptographically sound key generation schemes must have means
920to randomize the entropy seed used to initialize
921the internal pseudo-random number generator used
922by the library routines.
923The OpenSSL library uses a designated random seed file for this purpose.
924The file must be available when starting the NTP daemon and
925<code>ntp-keygen</code>
926program.
927If a site supports OpenSSL or its companion OpenSSH,
928it is very likely that means to do this are already available.
929
930  <p>It is important to understand that entropy must be evolved
931for each generation, for otherwise the random number sequence
932would be predictable.
933Various means dependent on external events, such as keystroke intervals,
934can be used to do this and some systems have built-in entropy sources.
935Suitable means are described in the OpenSSL software documentation,
936but are outside the scope of this page.
937
938  <p>The entropy seed used by the OpenSSL library is contained in a file,
939usually called
940<code>.rnd</code>,
941which must be available when starting the NTP daemon
942or the
943<code>ntp-keygen</code>
944program.
945The NTP daemon will first look for the file
946using the path specified by the
947<code>randfile</code>
948subcommand of the
949<code>crypto</code>
950configuration command.
951If not specified in this way, or when starting the
952<code>ntp-keygen</code>
953program,
954the OpenSSL library will look for the file using the path specified
955by the
956.Ev RANDFILE
957environment variable in the user home directory,
958whether root or some other user.
959If the
960.Ev RANDFILE
961environment variable is not present,
962the library will look for the
963<code>.rnd</code>
964file in the user home directory.
965If the file is not available or cannot be written,
966the daemon exits with a message to the system log and the program
967exits with a suitable error message.
968
969<h5 class="subsubsection">Cryptographic Data Files</h5>
970
971<p>All other file formats begin with two lines.
972The first contains the file name, including the generated host name
973and filestamp.
974The second contains the datestamp in conventional Unix date format.
975Lines beginning with # are considered comments and ignored by the
976<code>ntp-keygen</code>
977program and
978<code>ntpd(1ntpdmdoc)</code>
979daemon.
980Cryptographic values are encoded first using ASN.1 rules,
981then encrypted if necessary, and finally written PEM-encoded
982printable ASCII format preceded and followed by MIME content identifier lines.
983
984  <p>The format of the symmetric keys file is somewhat different
985than the other files in the interest of backward compatibility.
986Since DES-CBC is deprecated in NTPv4, the only key format of interest
987is MD5 alphanumeric strings.
988Following hte heard the keys are
989entered one per line in the format
990<pre class="example">     <kbd>keyno</kbd> <kbd>type</kbd> <kbd>key</kbd>
991</pre>
992  <p>where
993<kbd>keyno</kbd>
994is a positive integer in the range 1-65,535,
995<kbd>type</kbd>
996is the string MD5 defining the key format and
997<kbd>key</kbd>
998is the key itself,
999which is a printable ASCII string 16 characters or less in length.
1000Each character is chosen from the 93 printable characters
1001in the range 0x21 through 0x7f excluding space and the
1002#
1003character.
1004
1005  <p>Note that the keys used by the
1006<code>ntpq(1ntpqmdoc)</code>
1007and
1008<code>ntpdc(1ntpdcmdoc)</code>
1009programs
1010are checked against passwords requested by the programs
1011and entered by hand, so it is generally appropriate to specify these keys
1012in human readable ASCII format.
1013
1014  <p>The
1015<code>ntp-keygen</code>
1016program generates a MD5 symmetric keys file
1017<span class="file">ntpkey_MD5key_</span><kbd>hostname.filestamp</kbd>.
1018Since the file contains private shared keys,
1019it should be visible only to root and distributed by secure means
1020to other subnet hosts.
1021The NTP daemon loads the file
1022<span class="file">ntp.keys</span>,
1023so
1024<code>ntp-keygen</code>
1025installs a soft link from this name to the generated file.
1026Subsequently, similar soft links must be installed by manual
1027or automated means on the other subnet hosts.
1028While this file is not used with the Autokey Version 2 protocol,
1029it is needed to authenticate some remote configuration commands
1030used by the
1031<code>ntpq(1ntpqmdoc)</code>
1032and
1033<code>ntpdc(1ntpdcmdoc)</code>
1034utilities.
1035
1036  <p>This section was generated by <strong>AutoGen</strong>,
1037using the <code>agtexi-cmd</code> template and the option descriptions for the <code>ntp-keygen</code> program.
1038This software is released under the NTP license, &lt;http://ntp.org/license&gt;.
1039
1040<ul class="menu">
1041<li><a accesskey="1" href="#ntp_002dkeygen-usage">ntp-keygen usage</a>:                   ntp-keygen help/usage (<span class="option">--help</span>)
1042<li><a accesskey="2" href="#ntp_002dkeygen-imbits">ntp-keygen imbits</a>:                  imbits option (-b)
1043<li><a accesskey="3" href="#ntp_002dkeygen-certificate">ntp-keygen certificate</a>:             certificate option (-c)
1044<li><a accesskey="4" href="#ntp_002dkeygen-cipher">ntp-keygen cipher</a>:                  cipher option (-C)
1045<li><a accesskey="5" href="#ntp_002dkeygen-id_002dkey">ntp-keygen id-key</a>:                  id-key option (-e)
1046<li><a accesskey="6" href="#ntp_002dkeygen-gq_002dparams">ntp-keygen gq-params</a>:               gq-params option (-G)
1047<li><a accesskey="7" href="#ntp_002dkeygen-host_002dkey">ntp-keygen host-key</a>:                host-key option (-H)
1048<li><a accesskey="8" href="#ntp_002dkeygen-iffkey">ntp-keygen iffkey</a>:                  iffkey option (-I)
1049<li><a accesskey="9" href="#ntp_002dkeygen-ident">ntp-keygen ident</a>:                   ident option (-i)
1050<li><a href="#ntp_002dkeygen-lifetime">ntp-keygen lifetime</a>:                lifetime option (-l)
1051<li><a href="#ntp_002dkeygen-md5key">ntp-keygen md5key</a>:                  md5key option (-M)
1052<li><a href="#ntp_002dkeygen-modulus">ntp-keygen modulus</a>:                 modulus option (-m)
1053<li><a href="#ntp_002dkeygen-pvt_002dcert">ntp-keygen pvt-cert</a>:                pvt-cert option (-P)
1054<li><a href="#ntp_002dkeygen-password">ntp-keygen password</a>:                password option (-p)
1055<li><a href="#ntp_002dkeygen-export_002dpasswd">ntp-keygen export-passwd</a>:           export-passwd option (-q)
1056<li><a href="#ntp_002dkeygen-sign_002dkey">ntp-keygen sign-key</a>:                sign-key option (-S)
1057<li><a href="#ntp_002dkeygen-subject_002dname">ntp-keygen subject-name</a>:            subject-name option (-s)
1058<li><a href="#ntp_002dkeygen-trusted_002dcert">ntp-keygen trusted-cert</a>:            trusted-cert option (-T)
1059<li><a href="#ntp_002dkeygen-mv_002dparams">ntp-keygen mv-params</a>:               mv-params option (-V)
1060<li><a href="#ntp_002dkeygen-mv_002dkeys">ntp-keygen mv-keys</a>:                 mv-keys option (-v)
1061<li><a href="#ntp_002dkeygen-config">ntp-keygen config</a>:                  presetting/configuring ntp-keygen
1062<li><a href="#ntp_002dkeygen-exit-status">ntp-keygen exit status</a>:             exit status
1063<li><a href="#ntp_002dkeygen-Usage">ntp-keygen Usage</a>:                   Usage
1064<li><a href="#ntp_002dkeygen-Notes">ntp-keygen Notes</a>:                   Notes
1065<li><a href="#ntp_002dkeygen-Bugs">ntp-keygen Bugs</a>:                    Bugs
1066</ul>
1067
1068<div class="node">
1069<p><hr>
1070<a name="ntp_002dkeygen-usage"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-imbits">ntp-keygen imbits</a>,
1071Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1072<br>
1073</div>
1074
1075<h4 class="subsection">ntp-keygen help/usage (<span class="option">--help</span>)</h4>
1076
1077<p><a name="index-ntp_002dkeygen-help-3"></a>
1078This is the automatically generated usage text for ntp-keygen.
1079
1080  <p>The text printed is the same whether selected with the <code>help</code> option
1081(<span class="option">--help</span>) or the <code>more-help</code> option (<span class="option">--more-help</span>).  <code>more-help</code> will print
1082the usage text by passing it through a pager program.
1083<code>more-help</code> is disabled on platforms without a working
1084<code>fork(2)</code> function.  The <code>PAGER</code> environment variable is
1085used to select the program, defaulting to <span class="file">more</span>.  Both will exit
1086with a status code of 0.
1087
1088<pre class="example">ntp-keygen (ntp) - Create a NTP host key - Ver. 4.2.8p5
1089Usage:  ntp-keygen [ -&lt;flag&gt; [&lt;val&gt;] | --&lt;name&gt;[{=| }&lt;val&gt;] ]...
1090  Flg Arg Option-Name    Description
1091   -b Num imbits         identity modulus bits
1092                                - it must be in the range:
1093                                  256 to 2048
1094   -c Str certificate    certificate scheme
1095   -C Str cipher         privatekey cipher
1096   -d no  debug-level    Increase debug verbosity level
1097                                - may appear multiple times
1098   -D Num set-debug-level Set the debug verbosity level
1099                                - may appear multiple times
1100   -e no  id-key         Write IFF or GQ identity keys
1101   -G no  gq-params      Generate GQ parameters and keys
1102   -H no  host-key       generate RSA host key
1103   -I no  iffkey         generate IFF parameters
1104   -i Str ident          set Autokey group name
1105   -l Num lifetime       set certificate lifetime
1106   -M no  md5key         generate MD5 keys
1107   -m Num modulus        modulus
1108                                - it must be in the range:
1109                                  256 to 2048
1110   -P no  pvt-cert       generate PC private certificate
1111   -p Str password       local private password
1112   -q Str export-passwd  export IFF or GQ group keys with password
1113   -S Str sign-key       generate sign key (RSA or DSA)
1114   -s Str subject-name   set host and optionally group name
1115   -T no  trusted-cert   trusted certificate (TC scheme)
1116   -V Num mv-params      generate &lt;num&gt; MV parameters
1117   -v Num mv-keys        update &lt;num&gt; MV keys
1118      opt version        output version information and exit
1119   -? no  help           display extended usage information and exit
1120   -! no  more-help      extended usage information passed thru pager
1121   -&gt; opt save-opts      save the option state to a config file
1122   -&lt; Str load-opts      load options from a config file
1123                                - disabled as '--no-load-opts'
1124                                - may appear multiple times
1125
1126Options are specified by doubled hyphens and their name or by a single
1127hyphen and the flag character.
1128
1129
1130The following option preset mechanisms are supported:
1131 - reading file $HOME/.ntprc
1132 - reading file ./.ntprc
1133 - examining environment variables named NTP_KEYGEN_*
1134
1135Please send bug reports to:  &lt;http://bugs.ntp.org, bugs@ntp.org&gt;
1136</pre>
1137  <div class="node">
1138<p><hr>
1139<a name="ntp_002dkeygen-imbits"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-certificate">ntp-keygen certificate</a>,
1140Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-usage">ntp-keygen usage</a>,
1141Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1142<br>
1143</div>
1144
1145<h4 class="subsection">imbits option (-b)</h4>
1146
1147<p><a name="index-ntp_002dkeygen_002dimbits-4"></a>
1148This is the &ldquo;identity modulus bits&rdquo; option.
1149This option takes a number argument <span class="file">imbits</span>.
1150
1151<p class="noindent">This option has some usage constraints.  It:
1152     <ul>
1153<li>must be compiled in by defining <code>AUTOKEY</code> during the compilation.
1154</ul>
1155
1156  <p>The number of bits in the identity modulus.  The default is 256.
1157<div class="node">
1158<p><hr>
1159<a name="ntp_002dkeygen-certificate"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-cipher">ntp-keygen cipher</a>,
1160Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-imbits">ntp-keygen imbits</a>,
1161Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1162<br>
1163</div>
1164
1165<h4 class="subsection">certificate option (-c)</h4>
1166
1167<p><a name="index-ntp_002dkeygen_002dcertificate-5"></a>
1168This is the &ldquo;certificate scheme&rdquo; option.
1169This option takes a string argument <span class="file">scheme</span>.
1170
1171<p class="noindent">This option has some usage constraints.  It:
1172     <ul>
1173<li>must be compiled in by defining <code>AUTOKEY</code> during the compilation.
1174</ul>
1175
1176  <p>scheme is one of
1177RSA-MD2, RSA-MD5, RSA-SHA, RSA-SHA1, RSA-MDC2, RSA-RIPEMD160,
1178DSA-SHA, or DSA-SHA1.
1179
1180  <p>Select the certificate message digest/signature encryption scheme.
1181Note that RSA schemes must be used with a RSA sign key and DSA
1182schemes must be used with a DSA sign key.  The default without
1183this option is RSA-MD5.
1184<div class="node">
1185<p><hr>
1186<a name="ntp_002dkeygen-cipher"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-id_002dkey">ntp-keygen id-key</a>,
1187Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-certificate">ntp-keygen certificate</a>,
1188Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1189<br>
1190</div>
1191
1192<h4 class="subsection">cipher option (-C)</h4>
1193
1194<p><a name="index-ntp_002dkeygen_002dcipher-6"></a>
1195This is the &ldquo;privatekey cipher&rdquo; option.
1196This option takes a string argument <span class="file">cipher</span>.
1197
1198<p class="noindent">This option has some usage constraints.  It:
1199     <ul>
1200<li>must be compiled in by defining <code>AUTOKEY</code> during the compilation.
1201</ul>
1202
1203  <p>Select the cipher which is used to encrypt the files containing
1204private keys.  The default is three-key triple DES in CBC mode,
1205equivalent to "<code>-C des-ede3-cbc".  The openssl tool lists ciphers
1206available in "openssl -h" output.
1207</code><div class="node">
1208<p><hr>
1209<a name="ntp_002dkeygen-id_002dkey"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-gq_002dparams">ntp-keygen gq-params</a>,
1210Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-cipher">ntp-keygen cipher</a>,
1211Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1212<br>
1213</div>
1214
1215<h4 class="subsection">id-key option (-e)</h4>
1216
1217<p><a name="index-ntp_002dkeygen_002did_002dkey-7"></a>
1218This is the &ldquo;write iff or gq identity keys&rdquo; option.
1219
1220<p class="noindent">This option has some usage constraints.  It:
1221     <ul>
1222<li>must be compiled in by defining <code>AUTOKEY</code> during the compilation.
1223</ul>
1224
1225  <p>Write the IFF or GQ client keys to the standard output.  This is
1226intended for automatic key distribution by mail.
1227<div class="node">
1228<p><hr>
1229<a name="ntp_002dkeygen-gq_002dparams"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-host_002dkey">ntp-keygen host-key</a>,
1230Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-id_002dkey">ntp-keygen id-key</a>,
1231Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1232<br>
1233</div>
1234
1235<h4 class="subsection">gq-params option (-G)</h4>
1236
1237<p><a name="index-ntp_002dkeygen_002dgq_002dparams-8"></a>
1238This is the &ldquo;generate gq parameters and keys&rdquo; option.
1239
1240<p class="noindent">This option has some usage constraints.  It:
1241     <ul>
1242<li>must be compiled in by defining <code>AUTOKEY</code> during the compilation.
1243</ul>
1244
1245  <p>Generate parameters and keys for the GQ identification scheme,
1246obsoleting any that may exist.
1247<div class="node">
1248<p><hr>
1249<a name="ntp_002dkeygen-host_002dkey"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-iffkey">ntp-keygen iffkey</a>,
1250Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-gq_002dparams">ntp-keygen gq-params</a>,
1251Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1252<br>
1253</div>
1254
1255<h4 class="subsection">host-key option (-H)</h4>
1256
1257<p><a name="index-ntp_002dkeygen_002dhost_002dkey-9"></a>
1258This is the &ldquo;generate rsa host key&rdquo; option.
1259
1260<p class="noindent">This option has some usage constraints.  It:
1261     <ul>
1262<li>must be compiled in by defining <code>AUTOKEY</code> during the compilation.
1263</ul>
1264
1265  <p>Generate new host keys, obsoleting any that may exist.
1266<div class="node">
1267<p><hr>
1268<a name="ntp_002dkeygen-iffkey"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-ident">ntp-keygen ident</a>,
1269Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-host_002dkey">ntp-keygen host-key</a>,
1270Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1271<br>
1272</div>
1273
1274<h4 class="subsection">iffkey option (-I)</h4>
1275
1276<p><a name="index-ntp_002dkeygen_002diffkey-10"></a>
1277This is the &ldquo;generate iff parameters&rdquo; option.
1278
1279<p class="noindent">This option has some usage constraints.  It:
1280     <ul>
1281<li>must be compiled in by defining <code>AUTOKEY</code> during the compilation.
1282</ul>
1283
1284  <p>Generate parameters for the IFF identification scheme, obsoleting
1285any that may exist.
1286<div class="node">
1287<p><hr>
1288<a name="ntp_002dkeygen-ident"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-lifetime">ntp-keygen lifetime</a>,
1289Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-iffkey">ntp-keygen iffkey</a>,
1290Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1291<br>
1292</div>
1293
1294<h4 class="subsection">ident option (-i)</h4>
1295
1296<p><a name="index-ntp_002dkeygen_002dident-11"></a>
1297This is the &ldquo;set autokey group name&rdquo; option.
1298This option takes a string argument <span class="file">group</span>.
1299
1300<p class="noindent">This option has some usage constraints.  It:
1301     <ul>
1302<li>must be compiled in by defining <code>AUTOKEY</code> during the compilation.
1303</ul>
1304
1305  <p>Set the optional Autokey group name to name.  This is used in
1306the file name of IFF, GQ, and MV client parameters files.  In
1307that role, the default is the host name if this option is not
1308provided.  The group name, if specified using <code>-i/--ident</code> or
1309using <code>-s/--subject-name</code> following an '<code>}' character,
1310is also a part of the self-signed host certificate's subject and
1311issuer names in the form host
1312  <p>'crypto ident' or 'server ident' configuration in
1313ntpd's configuration file.
1314</code><div class="node">
1315<p><hr>
1316<a name="ntp_002dkeygen-lifetime"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-md5key">ntp-keygen md5key</a>,
1317Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-ident">ntp-keygen ident</a>,
1318Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1319<br>
1320</div>
1321
1322<h4 class="subsection">lifetime option (-l)</h4>
1323
1324<p><a name="index-ntp_002dkeygen_002dlifetime-12"></a>
1325This is the ``set certificate lifetime'' option.
1326This option takes a number argument <span class="file">lifetime</span>.
1327
1328<p class="noindent">This option has some usage constraints.  It:
1329     <ul>
1330<li>must be compiled in by defining <code>AUTOKEY</code> during the compilation.
1331</ul>
1332
1333  <p>Set the certificate expiration to lifetime days from now.
1334<div class="node">
1335<p><hr>
1336<a name="ntp_002dkeygen-md5key"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-modulus">ntp-keygen modulus</a>,
1337Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-lifetime">ntp-keygen lifetime</a>,
1338Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1339<br>
1340</div>
1341
1342<h4 class="subsection">md5key option (-M)</h4>
1343
1344<p><a name="index-ntp_002dkeygen_002dmd5key-13"></a>
1345This is the ``generate md5 keys'' option.
1346Generate MD5 keys, obsoleting any that may exist.
1347<div class="node">
1348<p><hr>
1349<a name="ntp_002dkeygen-modulus"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-pvt_002dcert">ntp-keygen pvt-cert</a>,
1350Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-md5key">ntp-keygen md5key</a>,
1351Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1352<br>
1353</div>
1354
1355<h4 class="subsection">modulus option (-m)</h4>
1356
1357<p><a name="index-ntp_002dkeygen_002dmodulus-14"></a>
1358This is the ``modulus'' option.
1359This option takes a number argument <span class="file">modulus</span>.
1360
1361<p class="noindent">This option has some usage constraints.  It:
1362     <ul>
1363<li>must be compiled in by defining <code>AUTOKEY</code> during the compilation.
1364</ul>
1365
1366  <p>The number of bits in the prime modulus.  The default is 512.
1367<div class="node">
1368<p><hr>
1369<a name="ntp_002dkeygen-pvt_002dcert"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-password">ntp-keygen password</a>,
1370Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-modulus">ntp-keygen modulus</a>,
1371Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1372<br>
1373</div>
1374
1375<h4 class="subsection">pvt-cert option (-P)</h4>
1376
1377<p><a name="index-ntp_002dkeygen_002dpvt_002dcert-15"></a>
1378This is the ``generate pc private certificate'' option.
1379
1380<p class="noindent">This option has some usage constraints.  It:
1381     <ul>
1382<li>must be compiled in by defining <code>AUTOKEY</code> during the compilation.
1383</ul>
1384
1385  <p>Generate a private certificate.  By default, the program generates
1386public certificates.
1387<div class="node">
1388<p><hr>
1389<a name="ntp_002dkeygen-password"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-export_002dpasswd">ntp-keygen export-passwd</a>,
1390Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-pvt_002dcert">ntp-keygen pvt-cert</a>,
1391Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1392<br>
1393</div>
1394
1395<h4 class="subsection">password option (-p)</h4>
1396
1397<p><a name="index-ntp_002dkeygen_002dpassword-16"></a>
1398This is the ``local private password'' option.
1399This option takes a string argument <span class="file">passwd</span>.
1400
1401<p class="noindent">This option has some usage constraints.  It:
1402     <ul>
1403<li>must be compiled in by defining <code>AUTOKEY</code> during the compilation.
1404</ul>
1405
1406  <p>Local files containing private data are encrypted with the
1407DES-CBC algorithm and the specified password.  The same password
1408must be specified to the local ntpd via the "crypto pw password"
1409configuration command.  The default password is the local
1410hostname.
1411<div class="node">
1412<p><hr>
1413<a name="ntp_002dkeygen-export_002dpasswd"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-sign_002dkey">ntp-keygen sign-key</a>,
1414Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-password">ntp-keygen password</a>,
1415Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1416<br>
1417</div>
1418
1419<h4 class="subsection">export-passwd option (-q)</h4>
1420
1421<p><a name="index-ntp_002dkeygen_002dexport_002dpasswd-17"></a>
1422This is the ``export iff or gq group keys with password'' option.
1423This option takes a string argument <span class="file">passwd</span>.
1424
1425<p class="noindent">This option has some usage constraints.  It:
1426     <ul>
1427<li>must be compiled in by defining <code>AUTOKEY</code> during the compilation.
1428</ul>
1429
1430  <p>Export IFF or GQ identity group keys to the standard output,
1431encrypted with the DES-CBC algorithm and the specified password.
1432The same password must be specified to the remote ntpd via the
1433"crypto pw password" configuration command.  See also the option
1434--id-key (-e) for unencrypted exports.
1435<div class="node">
1436<p><hr>
1437<a name="ntp_002dkeygen-sign_002dkey"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-subject_002dname">ntp-keygen subject-name</a>,
1438Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-export_002dpasswd">ntp-keygen export-passwd</a>,
1439Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1440<br>
1441</div>
1442
1443<h4 class="subsection">sign-key option (-S)</h4>
1444
1445<p><a name="index-ntp_002dkeygen_002dsign_002dkey-18"></a>
1446This is the ``generate sign key (rsa or dsa)'' option.
1447This option takes a string argument <span class="file">sign</span>.
1448
1449<p class="noindent">This option has some usage constraints.  It:
1450     <ul>
1451<li>must be compiled in by defining <code>AUTOKEY</code> during the compilation.
1452</ul>
1453
1454  <p>Generate a new sign key of the designated type, obsoleting any
1455that may exist.  By default, the program uses the host key as the
1456sign key.
1457<div class="node">
1458<p><hr>
1459<a name="ntp_002dkeygen-subject_002dname"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-trusted_002dcert">ntp-keygen trusted-cert</a>,
1460Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-sign_002dkey">ntp-keygen sign-key</a>,
1461Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1462<br>
1463</div>
1464
1465<h4 class="subsection">subject-name option (-s)</h4>
1466
1467<p><a name="index-ntp_002dkeygen_002dsubject_002dname-19"></a>
1468This is the ``set host and optionally group name'' option.
1469This option takes a string argument <span class="file">host@group</span>.
1470
1471<p class="noindent">This option has some usage constraints.  It:
1472     <ul>
1473<li>must be compiled in by defining <code>AUTOKEY</code> during the compilation.
1474</ul>
1475
1476  <p>Set the Autokey host name, and optionally, group name specified
1477following an '<code>}' character.  The host name is used in the file
1478name of generated host and signing certificates, without the
1479group name.  The host name, and if provided, group name are used
1480in host
1481  <p>fields.  Specifying '-s
1482  <p>leaving the host name unchanged while appending
1483  <p>subject and issuer fields, as with -i group.  The group name, or
1484if not provided, the host name are also used in the file names
1485of IFF, GQ, and MV client parameter files.
1486</code><div class="node">
1487<p><hr>
1488<a name="ntp_002dkeygen-trusted_002dcert"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-mv_002dparams">ntp-keygen mv-params</a>,
1489Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-subject_002dname">ntp-keygen subject-name</a>,
1490Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1491<br>
1492</div>
1493
1494<h4 class="subsection">trusted-cert option (-T)</h4>
1495
1496<p><a name="index-ntp_002dkeygen_002dtrusted_002dcert-20"></a>
1497This is the ``trusted certificate (tc scheme)'' option.
1498
1499<p class="noindent">This option has some usage constraints.  It:
1500     <ul>
1501<li>must be compiled in by defining <code>AUTOKEY</code> during the compilation.
1502</ul>
1503
1504  <p>Generate a trusted certificate.  By default, the program generates
1505a non-trusted certificate.
1506<div class="node">
1507<p><hr>
1508<a name="ntp_002dkeygen-mv_002dparams"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-mv_002dkeys">ntp-keygen mv-keys</a>,
1509Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-trusted_002dcert">ntp-keygen trusted-cert</a>,
1510Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1511<br>
1512</div>
1513
1514<h4 class="subsection">mv-params option (-V)</h4>
1515
1516<p><a name="index-ntp_002dkeygen_002dmv_002dparams-21"></a>
1517This is the ``generate &lt;num&gt; mv parameters'' option.
1518This option takes a number argument <span class="file">num</span>.
1519
1520<p class="noindent">This option has some usage constraints.  It:
1521     <ul>
1522<li>must be compiled in by defining <code>AUTOKEY</code> during the compilation.
1523</ul>
1524
1525  <p>Generate parameters and keys for the Mu-Varadharajan (MV)
1526identification scheme.
1527<div class="node">
1528<p><hr>
1529<a name="ntp_002dkeygen-mv_002dkeys"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-config">ntp-keygen config</a>,
1530Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-mv_002dparams">ntp-keygen mv-params</a>,
1531Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1532<br>
1533</div>
1534
1535<h4 class="subsection">mv-keys option (-v)</h4>
1536
1537<p><a name="index-ntp_002dkeygen_002dmv_002dkeys-22"></a>
1538This is the ``update &lt;num&gt; mv keys'' option.
1539This option takes a number argument <span class="file">num</span>.
1540
1541<p class="noindent">This option has some usage constraints.  It:
1542     <ul>
1543<li>must be compiled in by defining <code>AUTOKEY</code> during the compilation.
1544</ul>
1545
1546  <p>This option has no <span class="samp">doc</span> documentation.
1547
1548<div class="node">
1549<p><hr>
1550<a name="ntp_002dkeygen-config"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-exit-status">ntp-keygen exit status</a>,
1551Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-mv_002dkeys">ntp-keygen mv-keys</a>,
1552Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1553<br>
1554</div>
1555
1556<h4 class="subsection">presetting/configuring ntp-keygen</h4>
1557
1558<p>Any option that is not marked as <i>not presettable</i> may be preset by
1559loading values from configuration ("rc" or "ini") files, and values from environment variables named <code>NTP-KEYGEN</code> and <code>NTP-KEYGEN_&lt;OPTION_NAME&gt;</code>.  <code>&lt;OPTION_NAME&gt;</code> must be one of
1560the options listed above in upper case and segmented with underscores.
1561The <code>NTP-KEYGEN</code> variable will be tokenized and parsed like
1562the command line.  The remaining variables are tested for existence and their
1563values are treated like option arguments.
1564
1565<p class="noindent"><code>libopts</code> will search in 2 places for configuration files:
1566     <ul>
1567<li>$HOME
1568<li>$PWD
1569</ul>
1570  The environment variables <code>HOME</code>, and <code>PWD</code>
1571are expanded and replaced when <span class="file">ntp-keygen</span> runs.
1572For any of these that are plain files, they are simply processed.
1573For any that are directories, then a file named <span class="file">.ntprc</span> is searched for
1574within that directory and processed.
1575
1576  <p>Configuration files may be in a wide variety of formats.
1577The basic format is an option name followed by a value (argument) on the
1578same line.  Values may be separated from the option name with a colon,
1579equal sign or simply white space.  Values may be continued across multiple
1580lines by escaping the newline with a backslash.
1581
1582  <p>Multiple programs may also share the same initialization file.
1583Common options are collected at the top, followed by program specific
1584segments.  The segments are separated by lines like:
1585<pre class="example">    [NTP-KEYGEN]
1586</pre>
1587  <p class="noindent">or by
1588<pre class="example">    &lt;?program ntp-keygen&gt;
1589</pre>
1590  <p class="noindent">Do not mix these styles within one configuration file.
1591
1592  <p>Compound values and carefully constructed string values may also be
1593specified using XML syntax:
1594<pre class="example">    &lt;option-name&gt;
1595       &lt;sub-opt&gt;...&amp;lt;...&amp;gt;...&lt;/sub-opt&gt;
1596    &lt;/option-name&gt;
1597</pre>
1598  <p class="noindent">yielding an <code>option-name.sub-opt</code> string value of
1599<pre class="example">    "...&lt;...&gt;..."
1600</pre>
1601  <p><code>AutoOpts</code> does not track suboptions.  You simply note that it is a
1602hierarchicly valued option.  <code>AutoOpts</code> does provide a means for searching
1603the associated name/value pair list (see: optionFindValue).
1604
1605  <p>The command line options relating to configuration and/or usage help are:
1606
1607<h5 class="subsubheading">version (-)</h5>
1608
1609<p>Print the program version to standard out, optionally with licensing
1610information, then exit 0.  The optional argument specifies how much licensing
1611detail to provide.  The default is to print just the version.  The licensing infomation may be selected with an option argument.
1612Only the first letter of the argument is examined:
1613
1614     <dl>
1615<dt><span class="samp">version</span><dd>Only print the version.  This is the default.
1616<br><dt><span class="samp">copyright</span><dd>Name the copyright usage licensing terms.
1617<br><dt><span class="samp">verbose</span><dd>Print the full copyright usage licensing terms.
1618</dl>
1619
1620<div class="node">
1621<p><hr>
1622<a name="ntp_002dkeygen-exit-status"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-Usage">ntp-keygen Usage</a>,
1623Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-config">ntp-keygen config</a>,
1624Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1625<br>
1626</div>
1627
1628<h4 class="subsection">ntp-keygen exit status</h4>
1629
1630<p>One of the following exit values will be returned:
1631     <dl>
1632<dt><span class="samp">0 (EXIT_SUCCESS)</span><dd>Successful program execution.
1633<br><dt><span class="samp">1 (EXIT_FAILURE)</span><dd>The operation failed or the command syntax was not valid.
1634<br><dt><span class="samp">66 (EX_NOINPUT)</span><dd>A specified configuration file could not be loaded.
1635<br><dt><span class="samp">70 (EX_SOFTWARE)</span><dd>libopts had an internal operational error.  Please report
1636it to autogen-users@lists.sourceforge.net.  Thank you.
1637</dl>
1638  <div class="node">
1639<p><hr>
1640<a name="ntp_002dkeygen-Usage"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-Notes">ntp-keygen Notes</a>,
1641Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-exit-status">ntp-keygen exit status</a>,
1642Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1643<br>
1644</div>
1645
1646<h4 class="subsection">ntp-keygen Usage</h4>
1647
1648<div class="node">
1649<p><hr>
1650<a name="ntp_002dkeygen-Notes"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#ntp_002dkeygen-Bugs">ntp-keygen Bugs</a>,
1651Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-Usage">ntp-keygen Usage</a>,
1652Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1653<br>
1654</div>
1655
1656<h4 class="subsection">ntp-keygen Notes</h4>
1657
1658<div class="node">
1659<p><hr>
1660<a name="ntp_002dkeygen-Bugs"></a>Previous:&nbsp;<a rel="previous" accesskey="p" href="#ntp_002dkeygen-Notes">ntp-keygen Notes</a>,
1661Up:&nbsp;<a rel="up" accesskey="u" href="#ntp_002dkeygen-Invocation">ntp-keygen Invocation</a>
1662<br>
1663</div>
1664
1665<h4 class="subsection">ntp-keygen Bugs</h4>
1666
1667<div class="node">
1668<p><hr>
1669<a name="Random-Seed-File"></a>Next:&nbsp;<a rel="next" accesskey="n" href="#Cryptographic-Data-Files">Cryptographic Data Files</a>,
1670Previous:&nbsp;<a rel="previous" accesskey="p" href="#Running-the-Program">Running the Program</a>,
1671Up:&nbsp;<a rel="up" accesskey="u" href="#Top">Top</a>
1672<br>
1673</div>
1674
1675<!-- node-name,  next,  previous,  up -->
1676<h3 class="section">Random Seed File</h3>
1677
1678<p>All cryptographically sound key generation schemes must have means to
1679randomize the entropy seed used to initialize the internal
1680pseudo-random number generator used by the OpenSSL library routines.
1681If a site supports ssh, it is very likely that means to do this are
1682already available.
1683The entropy seed used by the OpenSSL library is contained in a file,
1684usually called <code>.rnd</code>, which must be available when
1685starting the <code>ntp-keygen</code> program or <code>ntpd</code> daemon.
1686
1687  <p>The OpenSSL library looks for the file using the path specified by the
1688<code>RANDFILE</code> environment variable in the user home directory, whether root
1689or some other user.
1690If the <code>RANDFILE</code> environment variable is not
1691present, the library looks for the <code>.rnd</code> file in the user home
1692directory.
1693Since both the <code>ntp-keygen</code> program and <code>ntpd</code> daemon must run
1694as root, the logical place to put this file is in <code>/.rnd</code> or
1695<code>/root/.rnd</code>.
1696If the file is not available or cannot be written, the program exits
1697with a message to the system log.
1698
1699<div class="node">
1700<p><hr>
1701<a name="Cryptographic-Data-Files"></a>Previous:&nbsp;<a rel="previous" accesskey="p" href="#Random-Seed-File">Random Seed File</a>,
1702Up:&nbsp;<a rel="up" accesskey="u" href="#Top">Top</a>
1703<br>
1704</div>
1705
1706<!-- node-name,  next,  previous,  up -->
1707<h3 class="section">Cryptographic Data Files</h3>
1708
1709<p>File and link names are in the <code>form ntpkey_key_name.fstamp</code>,
1710where <code>key</code> is the key or parameter type,
1711<code>name</code> is the host or group name and
1712<code>fstamp</code> is the filestamp (NTP seconds) when the file was created).
1713By convention, key names in generated file names include both upper and
1714lower case characters, while key names in generated link names include
1715only lower case characters. The filestamp is not used in generated link
1716names.
1717
1718  <p>The key name is a string defining the cryptographic key type.
1719Key types include public/private keys host and sign, certificate cert
1720and several challenge/response key types.
1721By convention, client files used for
1722challenges have a par subtype, as in the IFF challenge IFFpar, while
1723server files for responses have a key subtype, as in the GQ response
1724GQkey.
1725
1726  <p>All files begin with two nonencrypted lines. The first line contains
1727the file name in the format <code>ntpkey_key_host.fstamp</code>.
1728The second line contains the datestamp in conventional Unix date format.
1729Lines beginning with <code>#</code> are ignored.
1730
1731  <p>The remainder of the file contains cryptographic data encoded first
1732using ASN.1 rules, then encrypted using the DES-CBC algorithm with
1733given password and finally written in PEM-encoded printable ASCII text
1734preceded and followed by MIME content identifier lines.
1735
1736  <p>The format of the symmetric keys file, ordinarily named <code>ntp.keys</code>,
1737is somewhat different than the other files in the interest of backward
1738compatibility.
1739Ordinarily, the file is generated by this program, but
1740it can be constructed and edited using an ordinary text editor.
1741
1742<pre class="example">    # ntpkey_MD5key_hms.local.3564038757
1743    # Sun Dec  9 02:45:57 2012
1744
1745     1 MD5 "]!ghT%O;3)WJ,/Nc:&gt;I  # MD5 key
1746     2 MD5 lu+H^tF46BKR-6~pV_5  # MD5 key
1747     3 MD5 :lnoVsE%Yz*avh%EtNC  # MD5 key
1748     4 MD5 |fdZrf0sF~^V  # MD5 key
1749     5 MD5 IyAG&gt;O"y"LmCRS!*bHC  # MD5 key
1750     6 MD5 "&gt;e\A  # MD5 key
1751     7 MD5 c9x=M'CfLxax9v)PV-si  # MD5 key
1752     8 MD5 E|=jvFVov?Bn|Ev=&amp;aK\  # MD5 key
1753     9 MD5 T!c4UT&amp;`(m$+m+B6,`Q0  # MD5 key
1754    10 MD5 JVF/1=)=IFbHbJQz..Cd  # MD5 key
1755    11 SHA1 6dea311109529e436c2b4fccae9bc753c16d1b48  # SHA1 key
1756    12 SHA1 7076f373d86c4848c59ff8046e49cb7d614ec394  # SHA1 key
1757    13 SHA1 5f48b1b60591eb01b7cf1d33b7774f08d20262d3  # SHA1 key
1758    14 SHA1 eed5ab9d9497319ec60cf3781d52607e76720178  # SHA1 key
1759    15 SHA1 f283562611a04c964da8126296f5f8e58c3f85de  # SHA1 key
1760    16 SHA1 1930da171297dd63549af50b29449de17dcf341f  # SHA1 key
1761    17 SHA1 fee892110358cd4382322b889869e750db8e8a8f  # SHA1 key
1762    18 SHA1 b5520c9fadd7ad3fd8bfa061c8821b65d029bb37  # SHA1 key
1763    19 SHA1 8c74fb440ec80f453ec6aaa62b9baed0ab723b92  # SHA1 key
1764    20 SHA1 6bc05f734306a189326000970c19b3910f403795  # SHA1 key
1765</pre>
1766  <p>Figure 1. Typical Symmetric Key File
1767
1768  <p>Figure 1 shows a typical symmetric keys file used by the reference
1769implementation.
1770Each line of the file contains three fields, first an
1771integer between 1 and 65534, inclusive, representing the key identifier
1772used in the server and peer configuration commands.
1773Next is the key type for the message digest algorithm,
1774which in the absence of the
1775OpenSSL library must be MD5 to designate the MD5 message digest
1776algorithm.
1777If the OpenSSL library is installed, the key type can be any
1778message digest algorithm supported by that library.
1779However, if
1780compatibility with FIPS 140-2 is required, the key type must be either
1781SHA or SHA1.
1782The key type can be changed using an ASCII text editor.
1783
1784  <p>An MD5 key consists of a printable ASCII string less than or equal to
178516 characters and terminated by whitespace or a # character.
1786An OpenSSL
1787key consists of a hex-encoded ASCII string of 40 characters, which is
1788truncated as necessary.
1789
1790  <p>Note that the keys used by the <code>ntpq</code> and <code>ntpdc</code> programs are
1791checked against passwords requested by the programs and entered by hand,
1792so it
1793is generally appropriate to specify these keys in human readable ASCII
1794format.
1795
1796  <p>The <code>ntp-keygen</code> program generates a MD5 symmetric keys file
1797<code>ntpkey_MD5key_hostname.filestamp</code>.
1798Since the file contains private
1799shared keys, it should be visible only to root and distributed by
1800secure means to other subnet hosts.
1801The NTP daemon loads the file <code>ntp.keys</code>, so <code>ntp-keygen</code>
1802installs a soft link from this name to the generated file.
1803Subsequently, similar soft links must be installed by
1804manual or automated means on the other subnet hosts.
1805While this file is
1806not used with the Autokey Version 2 protocol, it is needed to
1807authenticate some remote configuration commands used by the <code>ntpq</code> and
1808<code>ntpdc</code> utilities.
1809
1810</body></html>
1811
1812