when booting the system: journald reads from /dev/random, which
receives entropy from haveged, which in turn logs to syslog
before providing any. Ideally, haveged would provide a proper
command-line flag to disable use of syslog. Will work with
upstream to resolve this in a cleaner way. (bnc#959237)
- Remove "After=systemd-random-seed.service" from systemd service
file to avoid the potential for deadlocks when booting the
system: systemd-random-seed needs /var to read its previous
state; mounting /var needs journald; journald needs entropy; and
entropy is provided by haveged, which needs systemd-random-seed.
(bnc#959237)
OBS-URL: https://build.opensuse.org/package/show/security/haveged?expand=0&rev=109
- Fix "stop" of service, the daemon in foreground actually
exits with a weird exit code. workaround this misbehaviour
in the service file.
- revert to non-forking service, "forking" services are racy
and provided by systemd purely for compatibility with old daemons.
see daemon(7) for the rationale. Only "simple" (default) and
"notify" services must be used if possible.
- Also, there is no haveged.conf around, neither such file
is parsed by the daemon at all.
- Start the daemon as soon as the random device is available with
the help of udev, as starting services while starved of entropy
is no good.
OBS-URL: https://build.opensuse.org/request/show/233306
OBS-URL: https://build.opensuse.org/package/show/security/haveged?expand=0&rev=92
* Add online tests based on AIS-31
* Add -p option to specify the pid location.
* Fix -F option to not take argument - i.e. now a switch
* Factor diagnostic methods for capture and inject for better performance
* Fix install target, move to bin and eliminate script if not daemon, now use sysv and systemd templates
- use -F with no arguments in haveged.service
* Add s390 architecture. Thanks to Dan Horak and Jiri Hladky
* Add generic architecture with clock_gettime() timer.
* Rewrite collection loop to support multiple instances and new diagnostics
* Rewrite tuning mechanism to add virtual file system mining and correct cpuid bugs
* Add prototype multi-thread collection option
* Reduce collection buffer size to .5MB
* Improve/correct build and install
* Add new invocation options to support new features.
OBS-URL: https://build.opensuse.org/package/show/security/haveged?expand=0&rev=60
