Install and configure Chrony (#119)

sky-uk · Jan 31, 2023 · a763982 · a763982
1 parent b204139
commit a763982
Show file tree

Hide file tree

Showing 4 changed files with 62 additions and 1 deletion.
diff --git a/_dependencies/defaults/main.yml b/_dependencies/defaults/main.yml
@@ -29,4 +29,10 @@ wait_for_dns: true
 canary_tidy_on_success: false
 
 # External DNS server for lookups when using external IPs (the default AWS resolver will resolve the VPC IPs)
-external_dns_resolver: "8.8.8.8"
+external_dns_resolver: "8.8.8.8"
+
+# Whether to install chrony (ntp client)
+chrony_install: yes
+
+# NTP servers for chrony
+ntp_servers: "{{ ['169.254.169.123 prefer iburst minpoll 4 maxpoll 4'] if cluster_vars.type == 'aws' else ['metadata.google.internal'] if cluster_vars.type == 'gcp' else ['pool.ntp.org'] }}"
diff --git a/config/handlers/main.yml b/config/handlers/main.yml
@@ -14,3 +14,11 @@
     name: metricbeat
     state: restarted
     enabled: yes
+
+
+- name: Chrony | Restart and enable chrony
+  become: yes
+  service:
+    name: chronyd
+    state: restarted
+    enabled: yes
diff --git a/config/tasks/chrony.yml b/config/tasks/chrony.yml
@@ -0,0 +1,43 @@
+---
+
+- name: Chrony | Install and Configure - Ubuntu
+  block:
+    - name: Chrony | Ubuntu install
+      become: yes
+      apt:
+        name: chrony
+        update_cache: yes
+        state: present
+  when: ansible_os_family == "Debian"
+
+- name: Chrony | Install and Configure - CentOS
+  block:
+    - name: Chrony | CentOS install
+      become: yes
+      yum:
+        name: chrony
+        state: present
+  when: ansible_os_family == "RedHat"
+
+- name: Configure Chrony
+  become: yes
+  copy:
+    dest: "/etc/{% if ansible_os_family == 'Debian'%}chrony/{% endif %}chrony.conf"
+    backup: yes
+    content: |-
+      {% for ntp_server in ntp_servers %}
+      server {{ ntp_server }}
+      {% endfor %}
+
+      {% if ansible_os_family == 'RedHat' %}
+      keyfile /etc/chrony.keys
+      {% else %}
+      keyfile /etc/chrony/chrony.keys
+      {% endif %}
+
+      driftfile /var/lib/chrony/chrony.drift
+      logdir /var/log/chrony
+      rtcsync
+      makestep 1 3
+  notify:
+    - Chrony | Restart and enable chrony
diff --git a/config/tasks/main.yml b/config/tasks/main.yml
@@ -85,6 +85,10 @@
   include_tasks: cloud_agents.yml
   when: (cloud_agent is defined and cloud_agent)
 
+- name: Install chrony (NTP client)
+  include_tasks: chrony.yml
+  when: chrony_install|bool
+
 - name: Update packages (when pkgupdate is defined)
   include_tasks: pkgupdate.yml
   when: pkgupdate is defined and (pkgupdate == 'always' or (pkgupdate == 'onCreate' and inventory_hostname in (hostvars['localhost'].cluster_hosts_created | json_query('[].hostname'))))