Author: bdubbs
Date: Sun Mar 16 14:29:50 2014
New Revision: 12869
Log:
Add haveged
Added:
trunk/BOOK/postlfs/security/haveged.xml
- copied, changed from r12868, trunk/BOOK/postlfs/security/nettle.xml
trunk/bootscripts/blfs/init.d/haveged
Modified:
trunk/BOOK/general.ent
trunk/BOOK/introduction/welcome/changelog.xml
trunk/BOOK/postlfs/security/security.xml
trunk/BOOK/x/installing/mesalib.xml
trunk/bootscripts/ChangeLog
trunk/bootscripts/Makefile
Modified: trunk/BOOK/general.ent
==============================================================================
--- trunk/BOOK/general.ent Sun Mar 16 11:39:39 2014 (r12868)
+++ trunk/BOOK/general.ent Sun Mar 16 14:29:50 2014 (r12869)
@@ -71,7 +71,7 @@
<!ENTITY lfs-vim-version "7.4">
<!-- End LFS versions -->
-<!ENTITY blfs-bootscripts-version "20140301">
+<!ENTITY blfs-bootscripts-version "20140316">
<!ENTITY blfs-bootscripts-download
"&downloads-root;/blfs-bootscripts-&blfs-bootscripts-version;.tar.bz2">
<!ENTITY blfs-wiki "http://wiki.&lfs-domainname;/blfs/wiki";>
@@ -150,6 +150,7 @@
<!ENTITY gnupg2-version "2.0.22">
<!ENTITY gnutls-version "3.2.12.1">
<!ENTITY gpgme-version "1.4.3">
+<!ENTITY haveged-version "1.9.1">
<!ENTITY iptables-version "1.4.21">
<!ENTITY libcap-version "2.24">
<!ENTITY linux-pam-version "1.1.8">
Modified: trunk/BOOK/introduction/welcome/changelog.xml
==============================================================================
--- trunk/BOOK/introduction/welcome/changelog.xml Sun Mar 16 11:39:39
2014 (r12868)
+++ trunk/BOOK/introduction/welcome/changelog.xml Sun Mar 16 14:29:50
2014 (r12869)
@@ -48,6 +48,10 @@
<para>March 16th, 2014</para>
<itemizedlist>
<listitem>
+ <para>[pierre] - Add haveged. Fixes
+ <ulink url="&blfs-ticket-root;4682">#4682</ulink>.</para>
+ </listitem>
+ <listitem>
<para>[pierre] - Add Pax-070715. Fixes
<ulink url="&blfs-ticket-root;4736">#4736</ulink>.</para>
</listitem>
Copied and modified: trunk/BOOK/postlfs/security/haveged.xml (from r12868,
trunk/BOOK/postlfs/security/nettle.xml)
==============================================================================
--- trunk/BOOK/postlfs/security/nettle.xml Sun Mar 16 11:39:39 2014
(r12868, copy source)
+++ trunk/BOOK/postlfs/security/haveged.xml Sun Mar 16 14:29:50 2014
(r12869)
@@ -4,34 +4,35 @@
<!ENTITY % general-entities SYSTEM "../../general.ent">
%general-entities;
- <!ENTITY nettle-download-http
"http://ftp.gnu.org/gnu/nettle/nettle-&nettle-version;.tar.gz";>
- <!ENTITY nettle-download-ftp
"ftp://ftp.gnu.org/gnu/nettle/nettle-&nettle-version;.tar.gz";>
- <!ENTITY nettle-md5sum "003d5147911317931dd453520eb234a5">
- <!ENTITY nettle-size "1.5 MB">
- <!ENTITY nettle-buildsize "94 MB">
- <!ENTITY nettle-time "0.6 SBU">
+ <!ENTITY haveged-download-http
"http://www.issihosts.com/haveged/haveged-&haveged-version;.tar.gz";>
+ <!ENTITY haveged-download-ftp " ">
+ <!ENTITY haveged-md5sum "015ff58cd10607db0e0de60aeca2f5f8">
+ <!ENTITY haveged-size "468 KB">
+ <!ENTITY haveged-buildsize "4.8 MB">
+ <!ENTITY haveged-time "0.2 SBU">
]>
-<sect1 id="nettle" xreflabel="Nettle-&nettle-version;">
- <?dbhtml filename="nettle.html"?>
+<sect1 id="haveged" xreflabel="Haveged-&haveged-version;">
+ <?dbhtml filename="haveged.html"?>
<sect1info>
<othername>$LastChangedBy$</othername>
<date>$Date$</date>
</sect1info>
- <title>Nettle-&nettle-version;</title>
+ <title>Haveged-&haveged-version;</title>
- <indexterm zone="nettle">
- <primary sortas="a-Nettle">Nettle</primary>
+ <indexterm zone="haveged">
+ <primary sortas="a-Haveged">Haveged</primary>
</indexterm>
<sect2 role="package">
- <title>Introduction to Nettle</title>
+ <title>Introduction to Haveged</title>
<para>
- The <application>Nettle</application> package contains the low-level
- cryptographic library that is designed to fit easily in many contexts.
+ The <application>Haveged</application> package contains a daemon
+ that generates an unpredictable stream of random numbers
+ and feeds the /dev/random device.
</para>
&lfs75_checked;
@@ -40,52 +41,45 @@
<itemizedlist spacing="compact">
<listitem>
<para>
- Download (HTTP): <ulink url="&nettle-download-http;"/>
+ Download (HTTP): <ulink url="&haveged-download-http;"/>
</para>
</listitem>
<listitem>
<para>
- Download (FTP): <ulink url="&nettle-download-ftp;"/>
+ Download (FTP): <ulink url="&haveged-download-ftp;"/>
</para>
</listitem>
<listitem>
<para>
- Download MD5 sum: &nettle-md5sum;
+ Download MD5 sum: &haveged-md5sum;
</para>
</listitem>
<listitem>
<para>
- Download size: &nettle-size;
+ Download size: &haveged-size;
</para>
</listitem>
<listitem>
<para>
- Estimated disk space required: &nettle-buildsize;
+ Estimated disk space required: &haveged-buildsize;
</para>
</listitem>
<listitem>
<para>
- Estimated build time: &nettle-time;
+ Estimated build time: &haveged-time;
</para>
</listitem>
</itemizedlist>
- <bridgehead renderas="sect3">Nettle Dependencies</bridgehead>
-
- <bridgehead renderas="sect4">Optional</bridgehead>
- <para role="optional">
- <xref linkend="openssl"/> (for examples)
- </para>
-
<para condition="html" role="usernotes">User Notes:
- <ulink url="&blfs-wiki;/nettle"/>
+ <ulink url="&blfs-wiki;/haveged"/>
</para>
</sect2>
<sect2 role="installation">
- <title>Installation of Nettle</title>
+ <title>Installation of Haveged</title>
- <para>Install <application>Nettle</application> by running the following
+ <para>Install <application>Haveged</application> by running the following
commands:</para>
<screen><userinput>./configure --prefix=/usr &&
@@ -96,19 +90,30 @@
</para>
<para>
- If you want to disable installing the static library, use this sed:
- </para>
-
-<screen><userinput>sed -i '/^install-here/ s/install-static//'
Makefile</userinput></screen>
-
- <para>
Now, as the <systemitem class="username">root</systemitem> user:
</para>
<screen role="root"><userinput>make install &&
-chmod -v 755 /usr/lib/libhogweed.so.2.5 /usr/lib/libnettle.so.4.7 &&
-install -v -m755 -d /usr/share/doc/nettle-&nettle-version; &&
-install -v -m644 nettle.html
/usr/share/doc/nettle-&nettle-version;</userinput></screen>
+mkdir -pv /usr/share/doc/haveged-&haveged-version; &&
+cp -v README /usr/share/doc/haveged-&haveged-version;</userinput></screen>
+
+ <sect3 id="haveged-init">
+ <title>Boot Script</title>
+
+ <para>
+ If you want the <application>Haveged</application> daemon to
+ start automatically when the system is booted, install the
+ <filename>/etc/rc.d/init.d/haveged</filename> init script included
+ in the <xref linkend="bootscripts"/> package.
+ </para>
+
+ <indexterm zone="haveged haveged-init">
+ <primary sortas="f-haveged">haveged</primary>
+ </indexterm>
+
+<screen role="root"><userinput>make install-haveged</userinput></screen>
+
+ </sect3>
</sect2>
@@ -122,13 +127,13 @@
<seglistitem>
<seg>
- nettle-hash, nettle-lfib-stream, pkcs1-conv and sexp-conv
+ haveged
</seg>
<seg>
- libhogweed.{so,a} and libnettle.{so,a}
+ libhavege.so
</seg>
<seg>
- /usr/include/nettle
+ /usr/include/haveged
</seg>
</seglistitem>
</segmentedlist>
@@ -138,54 +143,17 @@
<?dbfo list-presentation="list"?>
<?dbhtml list-presentation="table"?>
- <varlistentry id="nettle-hash">
- <term><command>nettle-hash</command></term>
- <listitem>
- <para>
- calulates a hash value using a specified algorithm.
- </para>
- <indexterm zone="nettle nettle-hash">
- <primary sortas="b-nettle-hash">nettle-hash</primary>
- </indexterm>
- </listitem>
- </varlistentry>
-
- <varlistentry id="nettle-lfib-stream">
- <term><command>nettle-lfib-stream</command></term>
- <listitem>
- <para>
- outputs a sequence of pseudorandom (non-cryptographic) bytes,
using
- Knuth's lagged fibonacci generator. The stream is useful for
testing,
- but should not be used to generate cryptographic keys or anything
- else that needs real randomness.
- </para>
- <indexterm zone="nettle nettle-lfib-stream">
- <primary sortas="b-nettle-lfib-stream">nettle-lfib-stream</primary>
- </indexterm>
- </listitem>
- </varlistentry>
-
- <varlistentry id="pkcs1-conv">
- <term><command>pkcs1-conv</command></term>
- <listitem>
- <para>
- converts private and public RSA keys from PKCS #1 format to
- sexp format.
- </para>
- <indexterm zone="nettle pkcs1-conv">
- <primary sortas="b-pkcs1-conv">pkcs1-conv</primary>
- </indexterm>
- </listitem>
- </varlistentry>
-
- <varlistentry id="sexp-conv">
- <term><command>sexp-conv</command></term>
+ <varlistentry id="haveged-prog">
+ <term><command>haveged</command></term>
<listitem>
<para>
- converts an s-expression to a different encoding.
+ is a daemon that generates an unpredictable stream of random
+ numbers harvested from the indirect effects of hardware events
+ based on hidden processor states (caches, branch predictors,
memory
+ translation tables, etc).
</para>
- <indexterm zone="nettle sexp-conv">
- <primary sortas="b-sexp-conv">sexp-conv</primary>
+ <indexterm zone="haveged haveged-prog">
+ <primary sortas="b-haveged-prog">haveged</primary>
</indexterm>
</listitem>
</varlistentry>
Modified: trunk/BOOK/postlfs/security/security.xml
==============================================================================
--- trunk/BOOK/postlfs/security/security.xml Sun Mar 16 11:39:39 2014
(r12868)
+++ trunk/BOOK/postlfs/security/security.xml Sun Mar 16 14:29:50 2014
(r12869)
@@ -50,6 +50,7 @@
<xi:include xmlns:xi="http://www.w3.org/2001/XInclude"; href="gnupg2.xml"/>
<xi:include xmlns:xi="http://www.w3.org/2001/XInclude"; href="gnutls.xml"/>
<xi:include xmlns:xi="http://www.w3.org/2001/XInclude"; href="gpgme.xml"/>
+ <xi:include xmlns:xi="http://www.w3.org/2001/XInclude"; href="haveged.xml"/>
<xi:include xmlns:xi="http://www.w3.org/2001/XInclude"; href="iptables.xml"/>
<xi:include xmlns:xi="http://www.w3.org/2001/XInclude";
href="firewalling.xml"/>
<xi:include xmlns:xi="http://www.w3.org/2001/XInclude"; href="libcap.xml"/>
Modified: trunk/BOOK/x/installing/mesalib.xml
==============================================================================
--- trunk/BOOK/x/installing/mesalib.xml Sun Mar 16 11:39:39 2014 (r12868)
+++ trunk/BOOK/x/installing/mesalib.xml Sun Mar 16 14:29:50 2014 (r12869)
@@ -79,7 +79,7 @@
<listitem>
<para>
Required patch:
- <ulink
url="&patch-root;/MesaLib-&mesalib-version;-svga_texture-1.patch"/>.
+ <ulink
url="&patch-root;/MesaLib-&mesalib-version;-svga_texture-1.patch"/>
</para>
</listitem>
<listitem>
Modified: trunk/bootscripts/ChangeLog
==============================================================================
--- trunk/bootscripts/ChangeLog Sun Mar 16 11:39:39 2014 (r12868)
+++ trunk/bootscripts/ChangeLog Sun Mar 16 14:29:50 2014 (r12869)
@@ -1,3 +1,6 @@
+2014-03-16 Bruce Dubbs <[email protected]>
+ * Added haveged bootscript
+
2013-10-23 Igor Živković <[email protected]>
* Add dovecot init script
Modified: trunk/bootscripts/Makefile
==============================================================================
--- trunk/bootscripts/Makefile Sun Mar 16 11:39:39 2014 (r12868)
+++ trunk/bootscripts/Makefile Sun Mar 16 14:29:50 2014 (r12869)
@@ -221,6 +221,12 @@
ln -sf ../init.d/gpm ${EXTDIR}/rc.d/rc5.d/S70gpm
ln -sf ../init.d/gpm ${EXTDIR}/rc.d/rc6.d/K10gpm
+install-haveged: create-dirs
+ install -m ${MODE} blfs/init.d/haveged ${EXTDIR}/rc.d/init.d/
+ ln -sf ../init.d/haveged ${EXTDIR}/rc.d/rc3.d/S21haveged
+ ln -sf ../init.d/haveged ${EXTDIR}/rc.d/rc4.d/S21haveged
+ ln -sf ../init.d/haveged ${EXTDIR}/rc.d/rc5.d/S21haveged
+
install-heimdal: create-dirs
install -m ${MODE} blfs/init.d/heimdal ${EXTDIR}/rc.d/init.d/
ln -sf ../init.d/heimdal ${EXTDIR}/rc.d/rc0.d/K42heimdal
@@ -615,6 +621,16 @@
rm -f ${EXTDIR}/rc.d/rc5.d/S24saslauthd
rm -f ${EXTDIR}/rc.d/rc6.d/K49saslauthd
+uninstall-dbus:
+ rm -f ${EXTDIR}/rc.d/init.d/dbus
+ rm -f ${EXTDIR}/rc.d/rc0.d/K30dbus
+ rm -f ${EXTDIR}/rc.d/rc1.d/K30dbus
+ rm -f ${EXTDIR}/rc.d/rc2.d/S29dbus
+ rm -f ${EXTDIR}/rc.d/rc3.d/S29dbus
+ rm -f ${EXTDIR}/rc.d/rc4.d/S29dbus
+ rm -f ${EXTDIR}/rc.d/rc5.d/S29dbus
+ rm -f ${EXTDIR}/rc.d/rc6.d/K30dbus
+
uninstall-dhcpd:
rm -f ${EXTDIR}/rc.d/init.d/dhcpd
rm -f ${EXTDIR}/sysconfig/dhcpd
@@ -676,6 +692,12 @@
rm -f ${EXTDIR}/rc.d/rc5.d/S70gpm
rm -f ${EXTDIR}/rc.d/rc6.d/K10gpm
+uninstall-haveged:
+ rm -f ${EXTDIR}/rc.d/init.d/haveged
+ rm -f ${EXTDIR}/rc.d/rc3.d/S21haveged
+ rm -f ${EXTDIR}/rc.d/rc4.d/S21haveged
+ rm -f ${EXTDIR}/rc.d/rc5.d/S21haveged
+
uninstall-heimdal:
rm -f ${EXTDIR}/rc.d/init.d/heimdal
rm -f ${EXTDIR}/rc.d/rc0.d/K42heimdal
@@ -762,7 +784,7 @@
rm -f ${EXTDIR}/rc.d/rc5.d/S24nfs-server
rm -f ${EXTDIR}/rc.d/rc6.d/K48nfs-server
-uninstall-ntp:
+uninstall-ntpd:
rm -f ${EXTDIR}/rc.d/init.d/ntp
rm -f ${EXTDIR}/rc.d/rc0.d/K46ntp
rm -f ${EXTDIR}/rc.d/rc1.d/K46ntp
Added: trunk/bootscripts/blfs/init.d/haveged
==============================================================================
--- /dev/null 00:00:00 1970 (empty, because file is newly added)
+++ trunk/bootscripts/blfs/init.d/haveged Sun Mar 16 14:29:50 2014
(r12869)
@@ -0,0 +1,49 @@
+#!/bin/sh
+########################################################################
+# Begin haveged
+#
+# Description : Start haveged daemon
+#
+# Author : Bruce Dubbs - [email protected]
+#
+# Version : LFS 7.5
+#
+########################################################################
+
+### BEGIN INIT INFO
+# Provides: haveged
+# Required-Start:
+# Should-Start:
+# Required-Stop:
+# Should-Stop:
+# Default-Start: 3 4 5
+# Default-Stop: 0 1 2 6
+# Short-Description: haveged daemon
+# Description: Provide increased entropy to /dev/random
+# X-LFS-Provided-By: BLFS / LFS 7.6
+### END INIT INFO
+
+. /lib/lsb/init-functions
+
+#$LastChangedBy: bdubbs $
+#$Date: 2012-05-09 15:19:23 -0500 (Wed, 09 May 2012) $
+
+case "$1" in
+ start)
+ log_info_msg "Starting haveged..."
+ start_daemon /usr/sbin/haveged
+ evaluate_retval
+ ;;
+
+ status)
+ statusproc /usr/sbin/haveged
+ ;;
+
+ *)
+ echo "Usage: $0 {start|status}"
+ exit 1
+ ;;
+esac
+
+# End haveged
+
--
http://linuxfromscratch.org/mailman/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page
