sys_linux: improve error message for failed PHC open

If the specified PHC device cannot be opened directly, an attempt is made to open it as a network interface. When that fails, the error "Could not open PHC of iface" is misleading the user that it was handled only as an interface. Change the message to "Could not open PHC (of)" to better cover both possibilities. Also remove the errno as it's not set in all code paths.
test: avoid using cmdport equal to ntpport in system tests
2025-12-03 18:25:07 -05:00 · 2025-08-27 14:05:31 +02:00 · 2025-08-27 14:05:27 +02:00 · 2025-08-26 12:34:22 +02:00 · 2025-08-26 12:33:14 +02:00 · 2025-08-26 12:32:33 +02:00
6 changed files with 10 additions and 6 deletions
--- a/client.c
+++ b/client.c
@@ -270,7 +270,7 @@ open_unix_socket(char *server_path)
  if (snprintf(sock_dir1, sizeof (sock_dir1),
               "%s/chronyc.%d", sock_dir0, (int)getpid()) >= sizeof (sock_dir1) ||
      snprintf(sock_dir2, sizeof (sock_dir2),
-               "%s/%s", sock_dir1, rand_dir) >= sizeof (sock_dir1) ||
+               "%s/%s", sock_dir1, rand_dir) >= sizeof (sock_dir2) ||
      snprintf(sock_path, sizeof (sock_path),
               "%s/sock", sock_dir2) >= sizeof (sock_path)) {
    LOG(LOGS_ERR, "Server socket path %s is too long", server_path);
--- a/sys_linux.c
+++ b/sys_linux.c
@@ -944,8 +944,7 @@ SYS_Linux_OpenPHC(const char *device, int flags)
  if (phc_fd < 0) {
    phc_fd = open_phc_by_iface_name(device, flags);
    if (phc_fd < 0) {
-      LOG(LOGS_ERR, "Could not open PHC of iface %s : %s",
-          device, strerror(errno));
+      LOG(LOGS_ERR, "Could not open PHC (of) %s", device);
      return -1;
    }
    phc_fd = verify_fd_is_phc(phc_fd);
--- a/test/simulation/README
+++ b/test/simulation/README
@@ -1,7 +1,7 @@
 This is a collection of simulation tests using the clknetsim simulator
 (supported on Linux only).

-https://github.com/mlichvar/clknetsim
+https://gitlab.com/chrony/clknetsim

 The CLKNETSIM_PATH environment variable should point to the directory where
 clknetsim was downloaded and compiled. If the variable is not set, the tests
--- a/test/system/test.common
+++ b/test/system/test.common
@@ -213,7 +213,10 @@ generate_chrony_conf() {

 	user=$(get_user)
 	ntpport=$(get_free_port)
-	cmdport=$(get_free_port)
+	while true; do
+		cmdport=$(get_free_port)
+		[ "$ntpport" -ne "$cmdport" ] && break
+	done

 	echo "0.0 10000" > "$TEST_LIBDIR/driftfile"
 	echo "1 MD5 abcdefghijklmnopq" > "$TEST_DIR/keys"
--- a/test/unit/nts_ke_session.c
+++ b/test/unit/nts_ke_session.c
@@ -193,6 +193,8 @@ test_unit(void)

    server_cred = NKSN_CreateServerCertCredentials(&cert, &key, 1);
    client_cred = NKSN_CreateClientCertCredentials(&cert, &cert_id, 1, 0);
+    TEST_CHECK(server_cred);
+    TEST_CHECK(client_cred);

    TEST_CHECK(socketpair(AF_UNIX, SOCK_STREAM, 0, sock_fds) == 0);
    TEST_CHECK(fcntl(sock_fds[0], F_SETFL, O_NONBLOCK) == 0);
--- a/util.c
+++ b/util.c
@@ -1203,7 +1203,7 @@ create_dir(char *p, mode_t mode, uid_t uid, gid_t gid)
  }

  /* Set its owner */
-  if (chown(p, uid, gid) < 0) {
+  if (lchown(p, uid, gid) < 0) {
    LOG(LOGS_ERR, "Could not change ownership of %s : %s", p, strerror(errno));
    /* Don't leave it there with incorrect ownership */
    rmdir(p);
Author	SHA1	Message	Date
Miroslav Lichvar	9e8541e3c4	sys_linux: improve error message for failed PHC open If the specified PHC device cannot be opened directly, an attempt is made to open it as a network interface. When that fails, the error "Could not open PHC of iface" is misleading the user that it was handled only as an interface. Change the message to "Could not open PHC (of)" to better cover both possibilities. Also remove the errno as it's not set in all code paths.	2025-08-27 14:05:31 +02:00
Miroslav Lichvar	e95d5a161d	test: avoid using cmdport equal to ntpport in system tests Make sure the two randomly generated port numbers used in system tests are different to avoid failures.	2025-08-27 14:05:27 +02:00
Miroslav Lichvar	2c63dfee34	doc: update URL in test documentation	2025-08-26 12:34:22 +02:00
Miroslav Lichvar	42e6b5577a	test: check credentials in nts_ke_session test Make it more clear when the test fails because the credentials could not be created.	2025-08-26 12:33:14 +02:00
Miroslav Lichvar	830c8bb18a	util: switch create_dir() from chown() to lchown() Use lchown(), the safer variant of chown() that does not follow symlinks, when changing the ownership of a created directory (logdir, dumpdir, ntsdumpdir, and the directory of bindcmdaddress) to the chrony user.	2025-08-26 12:32:33 +02:00
Miroslav Lichvar	0289442998	client: fix sizeof in open_unix_socket() Fix one of the sizeofs in open_unix_socket() to correctly specify sock_dir2 instead of sock_dir1. They have the same size, but don't rely on that. Fixes: `90d808ed28` ("client: mitigate unsafe permissions change on chronyc socket")	2025-08-26 09:59:37 +02:00