rng-tools (5-1ubuntu2) eoan; urgency=medium * Build-Depend on libgcrypt20-dev instead of libgcrypt11-dev -- Julian Andres Klode Tue, 23 Apr 2019 11:53:57 +0200 rng-tools (5-1ubuntu1) disco; urgency=medium * Add systemd unit. -- Dimitri John Ledkov Wed, 06 Mar 2019 09:52:05 +0000 rng-tools (5-1) unstable; urgency=medium [ David Härdeman ] * Add lsb_logging to init.d script (Closes: #384921, #773297) [ Christian Kastner] * Use logcheck-conform filtering rules in logcheck.ignore (Closes: #620692) [ Peter Eisentraut ] * Add support for "status" action to init.d script (Closes: #653482) [ Ivan Baldo ] * Add descriptions in init.d script (Closes: #774920) [ Aron Xu ] * Non-maintainer upload. * Synchronize source tree with Ubuntu (Closes: #587157, #692450, #828835) * Rewrite debian/rules using dh style * Update std-ver to 4.2.1 * Bump to compat 10 -- Aron Xu Sun, 02 Dec 2018 18:00:52 +0800 rng-tools (5-0ubuntu4) bionic; urgency=high * No change rebuild to pick up -fPIE compiler default -- Balint Reczey Tue, 03 Apr 2018 12:42:02 +0000 rng-tools (5-0ubuntu3) vivid; urgency=medium * No-change rebuild for the libgcrypt20 transition. -- Adam Conrad Fri, 27 Mar 2015 06:17:37 -0600 rng-tools (5-0ubuntu2) vivid; urgency=medium * Fix capability detection for Intel RDRAND cpu feature in the init script and thus start rngd daemon on compatible cpus. (LP: #1377131) -- Dimitri John Ledkov Fri, 31 Oct 2014 11:27:17 +0000 rng-tools (5-0ubuntu1) utopic; urgency=medium * Dropped debian/patches * Release version 5. rdrand: Enable the RDSEED instruction rdrand: Fix the RDRAND data reduction rdrand: Simplify by changing x86_rdrand_nlong to x86_rdrand_bytes rngd_rdrand: Support compiling for x32 by adding unative_t rdrand_asm.S: On x86-64 we have enough registers, avoid repeated loads rdrand_asm.S: Use #ifdef instead of #if defined() rngd_rdrand: Don't use a fixed AES key for data reduction rngd_rdrand: Code style cleanups Add BUGS file. rngd.8: Delete obsolete FIXME Provide support for RDRAND capable systems that don't have AES-NI. Fix the AES keys so that they are correct and match the comments. Update FSF mailing address in license. rngtest.1.in: Import spelling fixes from Fedora -LP: #1256167 -- Tim Gardner Tue, 10 Jun 2014 12:42:27 -0600 rng-tools (4-0ubuntu2) trusty; urgency=medium * Add missing build-depends on libgcrypt. -- Stéphane Graber Tue, 18 Mar 2014 15:57:06 -0400 rng-tools (4-0ubuntu1) saucy; urgency=low * Merge from upstream git://git.kernel.org/pub/scm/utils/kernel/rng-tools/rng-tools.git 908d733527a361621da88cdf931a71aa83cba430 -LP: #1084378 -- Tim Gardner Tue, 13 Aug 2013 13:12:05 +0000 rng-tools (2-unofficial-mt.14-1ubuntu1) oneiric; urgency=low * Merge from debian unstable (LP: #812121). Remaining changes: - debian/patches/tpm-engine.patch: implement TPM entropy source (Debian bug 542599). - debian/control: add build-deps for TPM interface. - debian/rng-tools.default: add example for TPM devices. - debian/{rules,rng-tools.postinst}: adjust rc start/stop location to start later then trousers. -- Steve Beattie Sun, 17 Jul 2011 22:48:46 -0700 rng-tools (2-unofficial-mt.14-1) unstable; urgency=low * New upstream version: + Work around VIA Nano xstore bug (closes: #609289) + Add support for Linux 3.0 (closes: #630771) -- Henrique de Moraes Holschuh Sat, 18 Jun 2011 00:12:54 -0300 rng-tools (2-unofficial-mt.13-3ubuntu1) natty; urgency=low * Merge from debian unstable. Remaining changes: - debian/patches/tpm-engine.patch: implement TPM entropy source (Debian bug 542599). - debian/control: add build-deps for TPM interface. - debian/rng-tools.default: add example for TPM devices. - debian/{rules,rng-tools.postinst}: adjust rc start/stop location to start later then trousers. -- Kees Cook Fri, 05 Nov 2010 17:23:05 -0700 rng-tools (2-unofficial-mt.13-3) unstable; urgency=low * Re-upload to fix problem caused by a bad i386 chroot on the -2 build -- Henrique de Moraes Holschuh Thu, 13 May 2010 23:24:00 -0300 rng-tools (2-unofficial-mt.13-2) unstable; urgency=low * Use DEB_BUILD_ARCH to detect if we should force VIA PadLock support (closes: #580843) -- Henrique de Moraes Holschuh Thu, 13 May 2010 22:33:25 -0300 rng-tools (2-unofficial-mt.13-1) unstable; urgency=low * New upstream source: + Enable large file support (closes: #506639) + Fix COPYING file to contain the correct license (GPL v2 text) + Enable VIA PadLock support on x86_64 (untested) * debian/copyright,debian/rules,debian/rng-tools.postinst: update copyright notices and fix license blurb were wrong (it is GPL2+) * Debian build-system updates: + Set debian/source/format to '3.0 (quilt)' + debian/control: build-depend on autoconf, automake and drop autotools-dev since automake will take care of it and we do not use them directly anymore + debian/rules: remove all autogenerated files in clean target, and call upstream's autogen.sh to regenerate build system + debian/rules: use dh_prep instead of dh_clean -k (lintian) + debian/rules: use dh_lintian * debian/rules: honour CFLAGS, really set build arch/target and really enable viapadlock on i386 * debian/control: rng-tools (binary pkg): add misc:Depends (lintian) * debian/control: rng-tools (binary pkg): swap udev and makedev in dependency header (closes: #546880) * debian/rng-tools.postinst: call MAKEDEV only when available (closes: #504762) * debian/control: add version-control related fields * Remove obsolete /etc/modprobe.d/rng-tools (closes: #518240) * debian/control: bump standards-version to 3.8.4.0 (no changes) * debian/rng-tools.lintian-overrides: ignore complains about the path in /sbin/MAKEDEV calls in postinst -- Henrique de Moraes Holschuh Wed, 05 May 2010 22:50:32 -0300 rng-tools (2-unofficial-mt.12-1ubuntu3) lucid; urgency=low * debian/rng-tools.default: add example for TPM devices (LP: #519427). * debian/{rules,rng-tools.postinst}: adjust rc start/stop location to start later then trousers (LP: #544545). * tpm_engine.c: wait for TPM to become available. -- Kees Cook Fri, 23 Apr 2010 00:40:15 -0700 rng-tools (2-unofficial-mt.12-1ubuntu2) lucid; urgency=low * Implement TPM RNG engine (Debian bug 542599): - tpm_engine.{c,h}: add TPM RNG. - rngd_entsource.{c,h}, rngd.c, Makefile.am, configure.ac: hook up. -- Kees Cook Fri, 23 Oct 2009 13:57:12 -0700 rng-tools (2-unofficial-mt.12-1ubuntu1) jaunty; urgency=low * debian/rng-tools.modprobe: Drop, the kernel will already autoload this * debian/rules: Update -- Scott James Remnant Thu, 05 Mar 2009 18:24:09 +0000 rng-tools (2-unofficial-mt.12-1) unstable; urgency=low * New upstream source: + Some README/NEWS cleanup + No code changes * Upload to unstable (closes: #486688) * Remove debian/README.Debian, new upstream README has most of the text that was there * Sync with Debian sid branch 2-unofficial-mt.10-3 * Packaging cleanup: + Remove old debian/rng-tools.modules file, deprecated since forever... + Bump standards-version to 3.8.0.0, no changes needed + Fix lintian warning: debian-rules-ignores-make-clean-error using the suggested -f Makefile test + Switch to debhelper V7 mode + Use standard debhelper initscripts, lets us get rid of our custom postrm and prerm. Ignore failures to start/stop rng-tools in the maintainer scripts, however, otherwise we become a pest if /dev/hwrng is missing + linda is gone, drop override handling for it in debian/rules + install upstream README -- Henrique de Moraes Holschuh Thu, 19 Jun 2008 12:54:05 -0300 rng-tools (2-unofficial-mt.11-1) experimental; urgency=low * Sync with Debian sarge branch 2-unofficial-mt.10-1 -- Henrique de Moraes Holschuh Thu, 12 May 2005 10:20:23 -0300 rng-tools (2-unofficial-mt.10-3) unstable; urgency=low * Add LSB initscript header information, thanks to Petter Reinholdtsen for the patch (closes: #466917) * Fix --trng instead of --hrng in manpage and defaults file (closes: #388748) * Remove debian/watch file. Since I am upstream for this heavily modified version, the file is useless anyway (closes: #450224) -- Henrique de Moraes Holschuh Thu, 21 Feb 2008 18:46:30 -0300 rng-tools (2-unofficial-mt.10-2) unstable; urgency=low * Fix typo in initscript which caused HRNGDEVICE definitions in /etc/default/rng-tools to be ignored, thanks to Dariush Pietrzak for noticing this (closes: #354186) -- Henrique de Moraes Holschuh Fri, 24 Feb 2006 09:49:44 -0300 rng-tools (2-unofficial-mt.10-1) unstable; urgency=high * "Last changes for Sarge (I hope)" * The following changes warrant an upstream version bump: + Backport selected changes from rng-tools--hmh-devo--3.0--patch-80: + Upgrade udev and makedev versioned depends to require hwrng naming of the hardware random device + Attempt to makedev only "hwrng", deprecate all other device naming for hw_random and friends (closes: #308248) + Backport configure.ac tweaks, and call ./configure correctly + Backport s/TRNG/HRNG/ in all docs + Backport intel->intelfwh name change for Intel FWH profile -- Henrique de Moraes Holschuh Wed, 11 May 2005 06:43:37 -0300 rng-tools (2-unofficial-mt.9-3) experimental; urgency=low * Sync with 2-unofficial-mt.8-5 -- Henrique de Moraes Holschuh Tue, 15 Feb 2005 08:15:48 -0200 rng-tools (2-unofficial-mt.9-2) experimental; urgency=low * Sync with 2-unofficial-mt.8-3: -- Henrique de Moraes Holschuh Thu, 10 Feb 2005 04:25:42 -0200 rng-tools (2-unofficial-mt.9-1) experimental; urgency=low * New unofficial version: * Support for different input drivers * Add new high-performance (several Mbit/s) VIA PadLock TRNG user-space driver. This work was sponsored by mekensleep.com, in particular by Loic Dachary. Mekensleep gave me unlimited access to a VIA Nehemiah system that they bought for this purpose, and which I am told will be available for the general community after the rngd work is stablized. * --trng=intel renamed to --trng=intelfwh (because Intel may show up with something to compete with VIA's PadLock security engine) * --trng=via renamed to --trng=viakernel * Add NEWS.Debian file to report user-visible changes in behaviour * Minor README.Debian improvements and fixes * Detect running kernel version, and work around kernel 2.4 bugs in entropy accounting -- Henrique de Moraes Holschuh Tue, 8 Feb 2005 23:05:24 -0200 rng-tools (2-unofficial-mt.8-5) unstable; urgency=high * Fix initscript, thanks to Clint Adams (closes: #295321) * Urgency high to get this simple fix into testing ASAP -- Henrique de Moraes Holschuh Mon, 14 Feb 2005 23:58:37 -0200 rng-tools (2-unofficial-mt.8-4) unstable; urgency=high * Fix bad off-by-one error on the FIFO queue allocation that has been in the unofficial versions since forever. I really need to use valgrind more often. -- Henrique de Moraes Holschuh Fri, 11 Feb 2005 00:10:53 -0200 rng-tools (2-unofficial-mt.8-3) unstable; urgency=high * The "WTF are they smoking up there?" release * Rework initscript to detect yet another new alias for the hw_random. Now udev rules want to call it hwrng. I love how these things keep changing for no good reason. -- Henrique de Moraes Holschuh Thu, 10 Feb 2005 04:25:42 -0200 rng-tools (2-unofficial-mt.8-2) unstable; urgency=low * Install modprobe.d file mapping char-major-10-183, /dev/hwrandom, /dev/hw_random and /dev/misc/hw_random to the hw_random module (closes: #287938) * Add lintian overrides for description-synopsis-starts-with-a-capital-letter -- Henrique de Moraes Holschuh Tue, 1 Feb 2005 06:55:36 -0200 rng-tools (2-unofficial-mt.8-1) unstable; urgency=low * New unofficial version * rngd.c: use the GNU version of strerror_r(). Argh! -- Henrique de Moraes Holschuh Sat, 6 Nov 2004 15:18:49 -0200 rng-tools (2-unofficial-mt.7-1) unstable; urgency=low * New unofficial version * rngd, rngtest: Use groupings on Argp parser * rngd: fix macro content output in Argp help text * rngd_threads.c, rngd_threads.h: dynamically size buffer structures * rngd.h: allow up to 1000 buffers, instead of 10 * add many assert() calls to root out bugs -- Henrique de Moraes Holschuh Tue, 2 Nov 2004 11:29:42 -0200 rng-tools (2-unofficial-mt.6-1) unstable; urgency=low * New unofficial version: * select() and poll() don't always work with /dev/hwrandom Thus, even non-blocking IO is a no-go. Add SIGALRM functionality that is pthread-aware to rngd, and use that to implement --rng-timeout. * rngd_linux.c: implement --feed-interval in a portable way * better thread-safety when logging messages * Better watch file using prdownloads.sf.net as primary source of version information -- Henrique de Moraes Holschuh Sun, 31 Oct 2004 12:33:02 -0300 rng-tools (2-unofficial-mt.5-1) unstable; urgency=low * New unofficial version: * Deprecate --timeout, rename it to --feed-interval * rngd_linux.c: use select() instead of poll(), so that we do not lose track of --feed-interval (non-portable to non-Linux kernels) * Document in rngd(8) that --fill-watermark now takes percentage values and defaults to 50% * Implement --rng-timeout, default 10s, so that we can detect a RNG that is silent/disabled -- Henrique de Moraes Holschuh Sun, 24 Oct 2004 09:22:39 -0300 rng-tools (2-unofficial-mt.4-1) unstable; urgency=low * New upstream version + No real changes, upstream just accepted Debian patches + Added Jeff Garzik to copyright notice for rngd * New unofficial version * Get kernel entropy pool size from /proc, and use that to allow the user to specify --fill-watermark in percentage values relative to the pool size, as well as in absolute bit size * Limit --fill-watermark dynamically to the kernel entropy pool size (closes: #274479) * Better input validation when processing command line parameters * Cosmetic changes to code (signed/unsigned cleanups, plus some other code/formatting cleanups) * Minor manpage typos and formatting fixes * Add myself to copyright notice for rngd, due to the threading code, and all the other small features * Log PID to syslog * Make sure we do have work to do before we leave the sink and FIPS thread startup code * Sync rngtest "entropy source returned EOF" message to be the same as rngd's * Add watch file for uscan/DEHS * Use automake 1.9 in build * Minor updates to debian/copyright * Update logcheck.ignore for LOG_PID logging, and force-feed the ignore file to violations.ignore.d/ to workaround logcheck braindamage -- Henrique de Moraes Holschuh Mon, 4 Oct 2004 10:46:21 -0300 rng-tools (1.1-unofficial-mt.3-1) unstable; urgency=low * New unofficial version: * Better pidfile locking, fixes race; * strerror() is not threadsafe, so don't use it inside threads. Use strerror_r() instead; * Nicer error message when entropy source signals EOF. -- Henrique de Moraes Holschuh Mon, 28 Jun 2004 23:33:07 -0300 rng-tools (1.1-unofficial-mt.2-1) unstable; urgency=low * New unofficial version: * Clean-up 64-bit support, using the __STDC_FORMAT_MACROS and PRI?64 macros ugliness. Thanks to the ia64 autobuilder and the gcc warnings for the heads-up ;-) -- Henrique de Moraes Holschuh Fri, 11 Jun 2004 17:08:59 -0300 rng-tools (1.1-unofficial-mt.1-1) unstable; urgency=medium * New unofficial version: * Initialize statistics early in rngd.c * Switch to arch: any. I figure that at least ppc, ia32, ia64 and amd64/x86_64 may benefit from this package (although I do not know of a TRNG for the PPC). One could also generate the random numbers elsewhere and store them in a (big) file, at which point anything that runs Linux would be able to use this package with the TRNG output file (closes: #252535); * Minor updates to package description, and README.Debian. * Urgency medium, to get a bug-free version in testing ASAP -- Henrique de Moraes Holschuh Sat, 5 Jun 2004 14:02:45 -0300 rng-tools (1.1-unofficial-mt-3) unstable; urgency=low * Upload to unstable, since Jeff Garzik seems to be otherwise busy and the upstream merge has halted for some weeks now. * Ack bugs fixed by previous uploads to experimental: closes: #248548, #239810 -- Henrique de Moraes Holschuh Mon, 24 May 2004 01:50:10 -0300 rng-tools (1.1-unofficial-mt-2) experimental; urgency=low * Use simple MAKEDEV calls, and kill all legacy "let's fix the device inode" code. Add intel_rng and i810_rng variations to the initscript device search list (closes: #248548) -- Henrique de Moraes Holschuh Tue, 11 May 2004 20:37:45 -0300 rng-tools (1.1-unofficial-mt-1) experimental; urgency=low * Major batch of enhancements from yours thruly. Not yet merged upstream, right now consider this a temporary fork (the merge IS ongoing). Do not bother upstream with bugs against this package. The new functionality may change, depending on upstream merge; ChangeLog: + Use multithreading to increase the available bandwidth, now rngd can read, process FIPS tests, and feed the kernel at the same time; + Store data on buffers, that can be operated independently by the threads. Default to triple-buffering; + Lock memory used as buffers of random data; + Add statistics, based on ideas from mtrngd.cpp by Martin Peck ; + Detect and deal with TRNGs stuck in a failing state, using an exponential backoff and eventually giving up and exiting; + Revamped manpage extensively; + Configure /dev/random, /dev/hwrandom and pidfile location using autoconf, to avoid hardcoded defaults; + Work on systems using kernel 2.6 (closes: #243319) * Add logcheck ignore rules; * Update README.Debian to reflect new functionality in the package; * Update package description and short description a bit; * Use --name and --start-as instead of --exec in initscript; * postinst: ignore exit status of initscript on start (closes: #239810) (yes, I have changed my mind about the issue). -- Henrique de Moraes Holschuh Mon, 10 May 2004 09:01:35 -0300 rng-tools (1.1-1) unstable; urgency=low * New upstream source: + New rngtest by yours thruly + Improved FIPS tests * Minor update to README.Debian; * Separate recommended options by TRNG type in /etc/default/rng-tools; * Fix initscript to properly wait for rngd to exit on stop/restart; * Update copyright file; * Version dependency on a makedev that knows about intel_rng (since hwrandom isn't available yet), and add alternative dependency on udev. Remove useless dependency on devfsd. -- Henrique de Moraes Holschuh Tue, 6 Apr 2004 11:13:34 -0300 rng-tools (1.0-3) unstable; urgency=low * Remove all hand-holding about /dev/hwrandom from initscript. Instead, try to detect which device we should be using. Also, add an /etc/default/rng-tools, and use it (closes: #235045); * Add some helpful hints to README.Debian * Change n for the continuous run test to 32, due to AMD's RNG. This is still FIPS 140-1 compliant for smaller block RNGs, anyway. It will reduce false positives on Intel's RNG as well; * Add --rng-entropy (-H) option; * Add note in description about what this package is about. Add explanation about PRNGs and TRNGs in README.Debian (closes: #235752). -- Henrique de Moraes Holschuh Tue, 9 Mar 2004 17:16:28 -0300 rng-tools (1.0-2) unstable; urgency=low * Add ugly hack workaround until MAKEDEV support for hwrandom goes in (refer to #234366); This closes: #233656. -- Henrique de Moraes Holschuh Mon, 23 Feb 2004 11:11:51 -0300 rng-tools (1.0-1) unstable; urgency=low * New maintainer (closes: #214926); * New upstream version: + Support new hw_random device in new kernels; * And some enhancements to the upstream code, from yours thruly: + Use new automake and autoconf, and enable AM_MAINTAINER_MODE; + Fix rngd to also do the FIPS 140-1 continuous run test; + Add pidfile control; + Improve manpage; * Rename package to rng-tools; * Ack NMUs: + closes: #101389; * Lots of changes in the packaging, including: + Drop partial DevFS support (patches are welcome to implement it _properly_). DevFS users must add the required links or modify the initscript themselves (closes: #197506 since it is now irrelevant); + Standards-version 3.6.1; + Debhelper mode 4; + Rewrite README.Debian, and add section about Intel RNGs (contributions on other RNGs are welcome); + Rewrite copyright file to something that is valid; + Update initscript to something more proper for an important system service. -- Henrique de Moraes Holschuh Fri, 9 Jan 2004 17:24:24 -0200 intel-rng-tools (0.9.1-6) unstable; urgency=low * Uploading with maintainer set to QA group * debian/copyright: de-dh_make-boilerplated -- Andrew Pollock Thu, 20 Nov 2003 23:05:00 +1100 intel-rng-tools (0.9.1-5) unstable; urgency=low * Fixed manpage. (Closes: #110591, #149904) * Remove devfs handling, as it has been breaking. (Closes: #116868) * Make appropriate links in /dev for devfs systems. Poor fix but should work fine. (Closes: #113320) -- Viral Shah Sun, 28 Oct 2001 16:21:57 -0700 intel-rng-tools (0.9.1-4) unstable; urgency=low * Added dependency to makedev (>= 2.3.1-53) for creating /dev/intel_rng. * postinst uses MAKEDEV to create /dev/intel_rng if required. (Closes: #101389) * Entry for devfsd symlink, /etc/devfs/symlink.d/intel-rng-tools added, which creates a symlink for correct use. -- Viral Shah Tue, 19 Jun 2001 10:36:38 +0530 intel-rng-tools (0.9.1-3) unstable; urgency=low * set -e added to postinst. -- Viral Shah Mon, 4 Jun 2001 17:47:42 +0530 intel-rng-tools (0.9.1-2) unstable; urgency=low * Use dh_installmodules to register kernel module. * Integrate mknod in postinst to create /dev/intel_rng, as MAKEDEV doesn't yet support it. Check for /dev/.devfsd in postinst. * Depend upon makedev | devfsd. -- Viral Shah Sun, 3 Jun 2001 12:53:52 +0530 intel-rng-tools (0.9.1-1) unstable; urgency=low * Initial Release. -- Viral Shah Wed, 25 Apr 2001 12:30:29 +0530