Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package haveged for openSUSE:Factory checked
in at 2022-04-26 20:14:58
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/haveged (Old)
and /work/SRC/openSUSE:Factory/.haveged.new.1538 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "haveged"
Tue Apr 26 20:14:58 2022 rev:64 rq:972436 version:1.9.18
Changes:
--------
--- /work/SRC/openSUSE:Factory/haveged/haveged.changes 2022-02-17
23:40:33.755700897 +0100
+++ /work/SRC/openSUSE:Factory/.haveged.new.1538/haveged.changes
2022-04-26 20:16:59.884704745 +0200
@@ -1,0 +2,7 @@
+Sun Apr 24 20:37:45 UTC 2022 - Dirk M??ller <dmuel...@suse.com>
+
+- update to 1.9.18:
+ * Round bits up and target full pool size [Jason A. Donenfeld]
+ * Specify right kernel commit in README [Jason A. Donenfeld]
+
+-------------------------------------------------------------------
Old:
----
haveged-1.9.17.tar.gz
New:
----
haveged-1.9.18.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ haveged.spec ++++++
--- /var/tmp/diff_new_pack.14yN24/_old 2022-04-26 20:17:00.344705301 +0200
+++ /var/tmp/diff_new_pack.14yN24/_new 2022-04-26 20:17:00.348705306 +0200
@@ -18,7 +18,7 @@
%{!?_udevrulesdir: %global _udevrulesdir %(pkg-config --variable=udevdir
udev)/rules.d }
Name: haveged
-Version: 1.9.17
+Version: 1.9.18
Release: 0
Summary: Daemon for feeding entropy into the random pool
License: GPL-3.0-only
@@ -40,7 +40,7 @@
BuildRequires: pkgconfig(systemd)
BuildRequires: pkgconfig(udev)
Requires(post): coreutils
-Requires(postun): coreutils
+Requires(postun):coreutils
Enhances: apache2
Enhances: gpg2
Enhances: openssl
++++++ haveged-1.9.17.tar.gz -> haveged-1.9.18.tar.gz ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/haveged-1.9.17/ChangeLog new/haveged-1.9.18/ChangeLog
--- old/haveged-1.9.17/ChangeLog 2022-01-08 19:47:03.000000000 +0100
+++ new/haveged-1.9.18/ChangeLog 2022-04-09 20:54:38.000000000 +0200
@@ -1,3 +1,7 @@
+v1.9.18 (Apr 09, 2022) [Jirka Hladky]
+* Round bits up and target full pool size [Jason A. Donenfeld]
+* Specify right kernel commit in README [Jason A. Donenfeld]
+
v1.9.17 (Jan 08, 2022)
* Added new verbose mode [Jirka Hladky]
* haveged-once.service - use @SBIN_DIR@ instead of hard-coded path [Jirka
Hladky]
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/haveged-1.9.17/README.md new/haveged-1.9.18/README.md
--- old/haveged-1.9.17/README.md 2022-01-08 19:47:03.000000000 +0100
+++ new/haveged-1.9.18/README.md 2022-04-09 20:54:38.000000000 +0200
@@ -4,20 +4,19 @@
IMPORTANT UPDATE
-Starting from Linux kernel v5.6, the HAVEGED **service** has become obsolete.
The userspace application as well as the haveged library are not affected.
There are two main reasons for that:
+Starting from Linux kernel v5.4, the HAVEGED inspired algorithm has been
included in the Linux kernel (see??the [LKML article](
https://lore.kernel.org/lkml/alpine.deb.2.21.1909290010500.2...@nanos.tec.linutronix.de/T/)
and the Linux Kernel
[commit](https://github.com/torvalds/linux/commit/50ee7529ec4500c88f8664560770a7a1b65db72b)).
Additionally, since v5.6, as soon as the??CRNG (the Linux
cryptographic-strength random number generator) gets ready,??`/dev/random` does
not block on reads anymore (see [this
commit](https://github.com/torvalds/linux/commit/30c08efec8884fb106b8e57094baa51bb4c44e32)).
-1) The mainline??Linux Kernel has now HAVEGED algorithm build in internally,
see??the [LKML article.](
https://lore.kernel.org/lkml/alpine.deb.2.21.1909290010500.2...@nanos.tec.linutronix.de/T/)
+I'm happy that these changes made it into the mainline??kernel. It's pleasing
to see that the main idea behind HAVEGED has sustained time test - it was
published already in 2003
[here.](https://www.irisa.fr/caps/projects/hipsor/publications/havege-tomacs.pdf)
I'm also glad that the HAVEGE algorithm is being further explored and examined
- see the [CPU Jitter Random Number
Generator.](https://www.chronox.de/jent.html)
-2) Furthermore, as soon as the??CRNG (the Linux cryptographic-strength random
number generator) gets ready,??`/dev/random` does not block on reads
anymore.??See the [kernel
commit.](https://github.com/torvalds/linux/commit/30c08efec8884fb106b8e57094baa51bb4c44e32)
+Please note that while the mainline Linux Kernel and HAVEGED are using the
same concept to generate the entropy (utilizing the CPU jitter) the
implementation is completely different. In this sense, HAVEGED can be viewed as
another entropy source.
-I'm happy that these changes made it into the mainline??kernel. It's nice to
see that the main idea behind HAVEGED has sustained time test- it was published
already in 2003
[here.](https://www.irisa.fr/caps/projects/hipsor/publications/havege-tomacs.pdf)
+It means that HAVEGED **service** is now less relevant. However, it's still
useful in the following situations, when you
+* need randomness early in the boot process, before the CRNG in the Linux
kernel gets fully initialized.
+* want to deploy an additional entropy source. HAVEGED now inserts entropy
into the kernel every 60 seconds, regardless of the entropy level reported by
Linux Kernel. It does not affect the `/dev/random` read speed but it
diversifies the entropy sources, making the Linux Kernel CRNG more robust.
+* you are looking for userspace RNG to generate random numbers. See??`man -S8
haveged` for examples or try running `haveged -n 0 | pv > /dev/null`
+* and last but not least, most Linux installations are still running on the
older kernel versions.
-I'm also glad that the HAVEGE algorithm is being further explored and examined
- see the [CPU Jitter Random Number
Generator.](https://www.chronox.de/jent.html)
-
-I will keep maintaining HAVEGED - there are a couple??of reasons for that:
-* Most Linux installations are still running on the older kernel versions.??
-* HAVEGED can also be used as the userspace RNG to generate random numbers.
See??`man -S8 haveged` for examples or try running `haveged -n 0 | pv >
/dev/null`
-* Last but not least, HAVEGED can be used as the RNG library.??
+In any case, I will keep maintaining the HAVEGED project. The userspace
application, as well as the haveged library, are not affected in any way by
changes in the Linux kernel.
INTRODUCTION
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/haveged-1.9.17/configure new/haveged-1.9.18/configure
--- old/haveged-1.9.17/configure 2022-01-08 19:47:03.000000000 +0100
+++ new/haveged-1.9.18/configure 2022-04-09 20:54:38.000000000 +0200
@@ -1,6 +1,6 @@
#! /bin/sh
# Guess values for system-dependent variables and create Makefiles.
-# Generated by GNU Autoconf 2.69 for haveged 1.9.17.
+# Generated by GNU Autoconf 2.69 for haveged 1.9.18.
#
#
# Copyright (C) 1992-1996, 1998-2012 Free Software Foundation, Inc.
@@ -587,8 +587,8 @@
# Identity of this package.
PACKAGE_NAME='haveged'
PACKAGE_TARNAME='haveged'
-PACKAGE_VERSION='1.9.17'
-PACKAGE_STRING='haveged 1.9.17'
+PACKAGE_VERSION='1.9.18'
+PACKAGE_STRING='haveged 1.9.18'
PACKAGE_BUGREPORT=''
PACKAGE_URL=''
@@ -1326,7 +1326,7 @@
# Omit some internal or obsolete options to make the list less imposing.
# This message is too long to be a string in the A/UX 3.1 sh.
cat <<_ACEOF
-\`configure' configures haveged 1.9.17 to adapt to many kinds of systems.
+\`configure' configures haveged 1.9.18 to adapt to many kinds of systems.
Usage: $0 [OPTION]... [VAR=VALUE]...
@@ -1397,7 +1397,7 @@
if test -n "$ac_init_help"; then
case $ac_init_help in
- short | recursive ) echo "Configuration of haveged 1.9.17:";;
+ short | recursive ) echo "Configuration of haveged 1.9.18:";;
esac
cat <<\_ACEOF
@@ -1514,7 +1514,7 @@
test -n "$ac_init_help" && exit $ac_status
if $ac_init_version; then
cat <<\_ACEOF
-haveged configure 1.9.17
+haveged configure 1.9.18
generated by GNU Autoconf 2.69
Copyright (C) 2012 Free Software Foundation, Inc.
@@ -1933,7 +1933,7 @@
This file contains any messages produced by compilers while
running configure, to aid debugging if configure makes a mistake.
-It was created by haveged $as_me 1.9.17, which was
+It was created by haveged $as_me 1.9.18, which was
generated by GNU Autoconf 2.69. Invocation command line was
$ $0 $@
@@ -4105,7 +4105,7 @@
# Define the identity of the package.
PACKAGE='haveged'
- VERSION='1.9.17'
+ VERSION='1.9.18'
cat >>confdefs.h <<_ACEOF
@@ -13922,7 +13922,7 @@
# report actual input values of CONFIG_FILES etc. instead of their
# values after options handling.
ac_log="
-This file was extended by haveged $as_me 1.9.17, which was
+This file was extended by haveged $as_me 1.9.18, which was
generated by GNU Autoconf 2.69. Invocation command line was
CONFIG_FILES = $CONFIG_FILES
@@ -13988,7 +13988,7 @@
cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1
ac_cs_config="`$as_echo "$ac_configure_args" | sed 's/^ //;
s/[\\""\`\$]/\\\\&/g'`"
ac_cs_version="\\
-haveged config.status 1.9.17
+haveged config.status 1.9.18
configured by $0, generated by GNU Autoconf 2.69,
with options \\"\$ac_cs_config\\"
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/haveged-1.9.17/configure.ac
new/haveged-1.9.18/configure.ac
--- old/haveged-1.9.17/configure.ac 2022-01-08 19:47:03.000000000 +0100
+++ new/haveged-1.9.18/configure.ac 2022-04-09 20:54:38.000000000 +0200
@@ -3,7 +3,7 @@
## Minimum Autoconf version
AC_PREREQ([2.59])
-AC_INIT([haveged],[1.9.17])
+AC_INIT([haveged],[1.9.18])
AC_CONFIG_AUX_DIR(config)
AC_USE_SYSTEM_EXTENSIONS
AC_CONFIG_HEADER([config.h])
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/haveged-1.9.17/contrib/Fedora/haveged.spec
new/haveged-1.9.18/contrib/Fedora/haveged.spec
--- old/haveged-1.9.17/contrib/Fedora/haveged.spec 2022-01-08
19:47:03.000000000 +0100
+++ new/haveged-1.9.18/contrib/Fedora/haveged.spec 2022-04-09
20:54:38.000000000 +0200
@@ -1,7 +1,7 @@
%define dracutlibdir lib/dracut
Summary: A Linux entropy source using the HAVEGE algorithm
Name: haveged
-Version: 1.9.15
+Version: 1.9.17
Release: 1%{?dist}
License: GPLv3+
URL: https://github.com/jirka-h/haveged
@@ -60,8 +60,11 @@
#Install systemd service file
sed -e 's:@SBIN_DIR@:%{_sbindir}:g' -i contrib/Fedora/*service
+sed -i '/^ConditionKernelVersion/d' contrib/Fedora/*service
+
install -Dpm 0644 contrib/Fedora/haveged.service
%{buildroot}%{_unitdir}/%{name}.service
install -Dpm 0644 contrib/Fedora/haveged-switch-root.service
%{buildroot}%{_unitdir}/%{name}-switch-root.service
+install -Dpm 0644 contrib/Fedora/haveged-once.service
%{buildroot}%{_unitdir}/%{name}-once.service
install -Dpm 0755 contrib/Fedora/haveged-dracut.module
%{buildroot}/%{_prefix}/%{dracutlibdir}/modules.d/98%{name}/module-setup.sh
install -Dpm 0644 contrib/Fedora/90-haveged.rules
%{buildroot}%{_udevrulesdir}/90-%{name}.rules
@@ -101,6 +104,15 @@
%changelog
+* Sat Jan 08 2022 Jirka Hladky <hladky.j...@gmail.com> - 1.9.17-1
+ - Update to 1.9.17
+
+* Mon Jan 03 2022 Jirka Hladky <hladky.j...@gmail.com> - 1.9.16-2
+ - Fixed ExecStart in haveged-once.service
+
+* Sun Jan 02 2022 Jirka Hladky <hladky.j...@gmail.com> - 1.9.16-1
+ - Update to 1.9.16
+
* Thu Sep 30 2021 Jirka Hladky <hladky.j...@gmail.com> - 1.9.15-1
- Update to 1.9.15
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/haveged-1.9.17/man/haveged.8
new/haveged-1.9.18/man/haveged.8
--- old/haveged-1.9.17/man/haveged.8 2022-01-08 19:47:03.000000000 +0100
+++ new/haveged-1.9.18/man/haveged.8 2022-04-09 20:54:38.000000000 +0200
@@ -118,14 +118,14 @@
Set run level for daemon interface:
n = 0 Run as daemon - must be root. Fills /dev/random when the supply of
random bits
- falls below the low water mark of the device.
+ falls below the low water mark of the device.
n = 1 Display configuration info and terminate.
n > 1 Write <n> kb of output. Deprecated (use --number instead), only provided
for backward
compatibility.
-If --number is specified, values other than 0,1 are ignored. Default is 0.
+If --number is specified, values other than 0,1 are ignored. Default is 0.
.TP
-v n, --verbose=n
Set diagnostic bitmap as sum of following options:
@@ -149,6 +149,9 @@
-w nnn, --write=nnn
Set write_wakeup_threshold of daemon interface to nnn bits. Applies only to
run level 0.
.TP
+-V, --version
+Print version information and exit
+.TP
-?, --help
This summary of program options.
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/haveged-1.9.17/src/havege.h
new/haveged-1.9.18/src/havege.h
--- old/haveged-1.9.17/src/havege.h 2022-01-08 19:47:03.000000000 +0100
+++ new/haveged-1.9.18/src/havege.h 2022-04-09 20:54:38.000000000 +0200
@@ -31,7 +31,7 @@
* header/package version as a numeric major, minor, patch triple. See
havege_version()
* below for usage.
*/
-#define HAVEGE_PREP_VERSION "1.9.17"
+#define HAVEGE_PREP_VERSION "1.9.18"
/**
* Basic types
*/
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/haveged-1.9.17/src/haveged.c
new/haveged-1.9.18/src/haveged.c
--- old/haveged-1.9.17/src/haveged.c 2022-01-08 19:47:03.000000000 +0100
+++ new/haveged-1.9.18/src/haveged.c 2022-04-09 20:54:38.000000000 +0200
@@ -647,9 +647,9 @@
error_exit("Stopping due to signal %d\n", params->exit_code - 128);
t[1] = time(NULL);
- if (t[1] - t[0] > 60) {
- /* add entropy on daemon start and then every 60 seconds
unconditionally */
- nbytes = poolSize / 2;
+ if (t[1] - t[0] > 600) {
+ /* add entropy on daemon start and then every 600 seconds
unconditionally */
+ nbytes = poolSize;
r = (nbytes+sizeof(H_UINT)-1)/sizeof(H_UINT);
fills = h->n_fills;
if (havege_rng(h, (H_UINT *)output->buf, r)<1)
@@ -741,7 +741,7 @@
if (ioctl(random_fd, RNDGETENTCNT, ¤t) == -1)
error_exit("Couldn't query entropy-level from kernel");
/* get number of bytes needed to fill pool */
- nbytes = (poolSize - current)/8;
+ nbytes = (poolSize - current + 7)/8;
if(nbytes<1) continue;
/* get that many random bytes */
r = (nbytes+sizeof(H_UINT)-1)/sizeof(H_UINT);
