Renamed Kali_Linux_raspberry to Kali_Linux_Raspberry_armhf. See https://github.com/jirka-h/haveged/issues/63

6 files changed, 328 insertions, 0 deletions

diff --git a/contrib/Kali_Linux_Raspberry_armhf/90-haveged.rules b/contrib/Kali_Linux_Raspberry_armhf/90-haveged.rules
new file mode 100644
index 0000000..6b1c5cf
--- /dev/null
+++ b/contrib/Kali_Linux_Raspberry_armhf/90-haveged.rules
@@ -0,0 +1,5 @@
+# Start the haveged service as soon as the random device is available
+# to avoid starting other services while starved of entropy
+
+ACTION=="add", KERNEL=="random" , SUBSYSTEM=="mem", TAG+="systemd", ENV{SYSTEMD_WANTS}+="haveged.service"
+
diff --git a/contrib/Kali_Linux_Raspberry_armhf/haveged-dracut.module b/contrib/Kali_Linux_Raspberry_armhf/haveged-dracut.module
new file mode 100644
index 0000000..ed5f851
--- /dev/null
+++ b/contrib/Kali_Linux_Raspberry_armhf/haveged-dracut.module
@@ -0,0 +1,26 @@
+#!/bin/bash
+# /usr/lib/dracut/modules.d/98haveged/module-setup.sh
+# -*- mode: shell-script; indent-tabs-mode: nil; sh-basic-offset: 4; -*-
+# ex: ts=8 sw=4 sts=4 et filetype=sh
+
+# called by dracut
+depends() {
+    return 0
+}
+
+installkernel() {
+    return 0
+}
+
+# called by dracut
+install() {
+    inst_multiple -o \
+        /usr/sbin/haveged \
+        $systemdsystemunitdir/haveged.service \
+        $systemdsystemunitdir/haveged-switch-root.service
+    mkdir -p "$initdir/$systemdsystemunitdir/sysinit.target.wants"
+    mkdir -p "$initdir/$systemdsystemunitdir/initrd-switch-root.target.wants"
+    mkdir -p "$initdir/$systemdsystemunitdir/systemd-journald.service.wants"
+    ln_r "$systemdsystemunitdir/haveged.service" "$systemdsystemunitdir/systemd-journald.service.wants/haveged.service"
+    ln_r "$systemdsystemunitdir/haveged-switch-root.service" "$systemdsystemunitdir/initrd-switch-root.target.wants/haveged-switch-root.service"
+}
diff --git a/contrib/Kali_Linux_Raspberry_armhf/haveged-switch-root.service b/contrib/Kali_Linux_Raspberry_armhf/haveged-switch-root.service
new file mode 100644
index 0000000..a3eb086
--- /dev/null
+++ b/contrib/Kali_Linux_Raspberry_armhf/haveged-switch-root.service
@@ -0,0 +1,18 @@
+[Unit]
+Description=Tell haveged about new root
+DefaultDependencies=no
+ConditionKernelVersion=<5.6
+ConditionPathExists=/etc/initrd-release
+Before=initrd-switch-root.service
+JoinsNamespaceOf=haveged.service
+
+[Service]
+ExecStart=-@SBIN_DIR@/haveged -c root=/sysroot
+PrivateNetwork=yes
+Type=oneshot
+StandardInput=null
+StandardOutput=null
+StandardError=null
+
+[Install]
+WantedBy=initrd-switch-root.target
diff --git a/contrib/Kali_Linux_Raspberry_armhf/haveged.conf b/contrib/Kali_Linux_Raspberry_armhf/haveged.conf
new file mode 100644
index 0000000..e10884d
--- /dev/null
+++ b/contrib/Kali_Linux_Raspberry_armhf/haveged.conf
@@ -0,0 +1 @@
+add_dracutmodules+=" haveged "
diff --git a/contrib/Kali_Linux_Raspberry_armhf/haveged.service b/contrib/Kali_Linux_Raspberry_armhf/haveged.service
new file mode 100644
index 0000000..9c599ee
--- /dev/null
+++ b/contrib/Kali_Linux_Raspberry_armhf/haveged.service
@@ -0,0 +1,33 @@
+[Unit]
+Description=Entropy Daemon based on the HAVEGE algorithm
+Documentation=man:haveged(8) http://www.issihosts.com/haveged/
+DefaultDependencies=no
+After=apparmor.service systemd-tmpfiles-setup.service systemd-tmpfiles-setup-dev.service
+Before=sysinit.target shutdown.target
+
+[Service]
+EnvironmentFile=-/etc/default/haveged
+ExecStart=/usr/sbin/haveged --Foreground --verbose=1 $DAEMON_ARGS
+Restart=always
+SuccessExitStatus=137 143
+SecureBits=noroot-locked
+CapabilityBoundingSet=CAP_SYS_ADMIN CAP_SYS_CHROOT
+PrivateTmp=false
+PrivateDevices=true
+PrivateNetwork=false
+ProtectSystem=full
+ProtectHome=true
+ProtectHostname=true
+ProtectKernelLogs=true
+ProtectKernelModules=true
+RestrictNamespaces=true
+RestrictRealtime=true
+
+LockPersonality=true
+MemoryDenyWriteExecute=true
+SystemCallArchitectures=native
+# SystemCallFilter=@basic-io @file-system @io-event @network-io @signal
+# SystemCallFilter=arch_prctl brk ioctl mprotect sysinfo
+
+[Install]
+WantedBy=sysinit.target
diff --git a/contrib/Kali_Linux_Raspberry_armhf/haveged.spec b/contrib/Kali_Linux_Raspberry_armhf/haveged.spec
new file mode 100644
index 0000000..1c36c34
--- /dev/null
+++ b/contrib/Kali_Linux_Raspberry_armhf/haveged.spec
@@ -0,0 +1,245 @@
+%define dracutlibdir lib/dracut
+Summary:        A Linux entropy source using the HAVEGE algorithm
+Name:           haveged
+Version:        1.9.15
+Release:        1%{?dist}
+License:        GPLv3+
+URL:            https://github.com/jirka-h/haveged
+Source0:        https://github.com/jirka-h/%{name}/archive/v%{version}/%{name}-%{version}.tar.gz
+Requires(post):   systemd
+Requires(preun):  systemd
+Requires(postun): systemd
+
+BuildRequires:  gcc
+BuildRequires:  make automake coreutils glibc-common systemd-units
+Enhances:       apache2 gpg2 openssl openvpn php5 smtp_daemon systemd
+
+%description
+A Linux entropy source using the HAVEGE algorithm
+
+Haveged is a user space entropy daemon which is not dependent upon the
+standard mechanisms for harvesting randomness for the system entropy
+pool. This is important in systems with high entropy needs or limited
+user interaction (e.g. headless servers).
+
+Haveged uses HAVEGE (HArdware Volatile Entropy Gathering and Expansion)
+to maintain a 1M pool of random bytes used to fill /dev/random
+whenever the supply of random bits in /dev/random falls below the low
+water mark of the device. The principle inputs to haveged are the
+sizes of the processor instruction and data caches used to setup the
+HAVEGE collector. The haveged default is a 4kb data cache and a 16kb
+instruction cache. On machines with a cpuid instruction, haveged will
+attempt to select appropriate values from internal tables.
+
+%package devel
+Summary:   Headers and shared development libraries for HAVEGE algorithm
+Requires:  %{name} = %{version}-%{release}
+
+%description devel
+Headers and shared object symbolic links for the HAVEGE algorithm
+
+%prep
+%setup -q
+
+%build
+#autoreconf -fiv
+%configure --disable-enttest --enable-nistest --disable-static
+#SMP build is not working
+#make %{?_smp_mflags}
+make
+
+%check
+make check
+
+
+%install
+rm -rf %{buildroot}
+make install DESTDIR=%{buildroot} INSTALL="install -p"
+
+chmod 0644 COPYING README ChangeLog AUTHORS
+
+#Install systemd service file
+sed -e 's:@SBIN_DIR@:%{_sbindir}:g' -i contrib/Fedora/*service
+install -Dpm 0644 contrib/Fedora/haveged.service %{buildroot}%{_unitdir}/%{name}.service
+install -Dpm 0644 contrib/Fedora/haveged-switch-root.service %{buildroot}%{_unitdir}/%{name}-switch-root.service
+install -Dpm 0755 contrib/Fedora/haveged-dracut.module %{buildroot}/%{_prefix}/%{dracutlibdir}/modules.d/98%{name}/module-setup.sh
+install -Dpm 0644 contrib/Fedora/90-haveged.rules %{buildroot}%{_udevrulesdir}/90-%{name}.rules
+
+# We don't ship .la files.
+rm -rf %{buildroot}%{_libdir}/libhavege.*a
+
+mkdir -p %{buildroot}%{_defaultdocdir}/%{name}
+cp -p COPYING README ChangeLog AUTHORS contrib/build/havege_sample.c %{buildroot}%{_defaultdocdir}/%{name}
+
+%post
+/sbin/ldconfig
+%systemd_post %{name}.service %{name}-switch-root.service
+
+%preun
+%systemd_preun %{name}.service %{name}-switch-root.service
+
+%postun
+%systemd_postun_with_restart %{name}.service %{name}-switch-root.service
+/sbin/ldconfig
+
+%files
+%{_mandir}/man8/haveged.8*
+%{_sbindir}/haveged
+%{_unitdir}/*.service
+%{_libdir}/*so.*
+%{_defaultdocdir}/*
+%{_udevrulesdir}/*-%{name}.rules
+%dir %{_prefix}/%{dracutlibdir}/modules.d/98%{name}
+%{_prefix}/%{dracutlibdir}/modules.d/98%{name}/*
+
+%files devel
+%{_mandir}/man3/libhavege.3*
+%dir %{_includedir}/%{name}
+%{_includedir}/%{name}/havege.h
+%doc contrib/build/havege_sample.c
+%{_libdir}/*.so
+
+
+%changelog
+* Thu Sep 30 2021 Jirka Hladky <hladky.jiri@gmail.com> - 1.9.15-1
+ - Update to 1.9.15
+
+* Thu Jul 22 2021 Fedora Release Engineering <releng@fedoraproject.org> - 1.9.14-5
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
+
+* Tue Mar 02 2021 Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl> - 1.9.14-4
+- Rebuilt for updated systemd-rpm-macros
+  See https://pagure.io/fesco/issue/2583.
+
+* Tue Jan 26 2021 Fedora Release Engineering <releng@fedoraproject.org> - 1.9.14-3
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
+
+* Sun Jan 3 2021 Jirka Hladky <hladky.jiri@gmail.com> - 1.9.14-2
+ - Update to 1.9.14
+ - BZ1835006 - Added dracut module
+ - Start the service as soon as the random device is available with
+   the help of udev, as starting services while starved of entropy
+   is no good.
+
+* Sun Jun 28 2020 Jirka Hladky <hladky.jiri@gmail.com> - 1.9.13-1
+ - Update to 1.9.13
+
+* Thu Jun 18 2020 Jirka Hladky <hladky.jiri@gmail.com> - 1.9.12-1
+ - Update to 1.9.12
+
+* Fri Jun 12 2020 Jirka Hladky <hladky.jiri@gmail.com> - 1.9.11-1
+ - Update to 1.9.11
+
+* Thu Jun 11 2020 Jirka Hladky <hladky.jiri@gmail.com> - 1.9.10-1
+ - Update to 1.9.10
+
+* Thu Jun 11 2020 Jirka Hladky <hladky.jiri@gmail.com> - 1.9.9-2
+ - Fixed haveged.service file
+
+* Tue Jun 09 2020 Jirka Hladky <hladky.jiri@gmail.com> - 1.9.9-1
+ - Update to 1.9.9
+
+* Wed Jan 29 2020 Fedora Release Engineering <releng@fedoraproject.org> - 1.9.8-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
+
+* Mon Sep 30 2019 Jirka Hladky <hladky.jiri@gmail.com> - 1.9.8-1
+ - Update to 1.9.8
+
+* Mon Aug 26 2019 Jirka Hladky <hladky.jiri@gmail.com> - 1.9.6-1
+ - Update to 1.9.6
+
+* Thu Jul 25 2019 Fedora Release Engineering <releng@fedoraproject.org> - 1.9.1-12
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
+
+* Fri Feb 01 2019 Fedora Release Engineering <releng@fedoraproject.org> - 1.9.1-11
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
+
+* Fri Jul 13 2018 Fedora Release Engineering <releng@fedoraproject.org> - 1.9.1-10
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
+
+* Wed Feb 07 2018 Fedora Release Engineering <releng@fedoraproject.org> - 1.9.1-9
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
+
+* Wed Aug 02 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1.9.1-8
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
+
+* Wed Jul 26 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1.9.1-7
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
+
+* Fri Feb 10 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1.9.1-6
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
+
+* Wed Feb 03 2016 Fedora Release Engineering <releng@fedoraproject.org> - 1.9.1-5
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
+
+* Wed Jun 17 2015 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.9.1-4
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
+
+* Sat Aug 16 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.9.1-3
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
+
+* Sat Jun 07 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.9.1-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
+
+* Thu Feb 13 2014 Jirka Hladky <hladky.jiri@gmail.com> - 1.9.1-1
+- Update to 1.9.1
+
+* Sat Jan 04 2014 Jirka Hladky <hladky.jiri@gmail.com> - 1.8-1
+- Unversioned docdir change, more info on 
+  https://fedoraproject.org/wiki/Changes/UnversionedDocdirs
+
+* Fri Jan 03 2014 Jirka Hladky <hladky.jiri@gmail.com> - 1.8-0
+- Updated to the version 1.8
+- Improvement to systemd service file
+- Fixed exit status
+
+* Sat Aug 03 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.7-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
+
+* Thu Feb 14 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.7-1
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
+
+* Sat Jan 19 2013 Jirka Hladky <hladky.jiri@gmail.com> - 1.7-0
+- Updated to the version 1.7
+- Version 1.7 brings developement libraries
+- Added devel package
+* Sat Oct 13 2012 Jirka Hladky <hladky.jiri@gmail.com> - 1.5-2
+- BZ 850144
+- Introduce new systemd-rpm macros in haveged spec file
+- Fedora 19 changes the way how to work with services in spec files. 
+- It introduces new macros - systemd_post, systemd_preun and systemd_postun; 
+- which replace scriptlets from Fedora 18 and older
+- see https://fedoraproject.org/wiki/Packaging:ScriptletSnippets#Systemd
+
+* Tue Aug 14 2012 Jirka Hladky <hladky.jiri@gmail.com> - 1.5-1
+- Update to the version 1.5
+- Main new feature is a run time verification of the produced random numbers
+- PIDFILE set to /run/haveged.pid
+- converted README and man page to UTF-8. Informed the upstream to fix it.
+* Wed Feb 15 2012 Jirka Hladky <hladky.jiri@gmail.com> - 1.4-3
+- PIDFile should be stored at /run instead of the default location /var/run 
+- There is  long term plan that directory /var/run will not further exist in the future Fedora versions
+- Asked upstream to add -p <PID_FILE_location> switch to influence the location of the PID File
+- Set PIDFile=/var/run/haveged.pid This is needed as long -p option is not implemented
+- https://bugzilla.redhat.com/show_bug.cgi?id=770306#c10
+* Wed Feb 15 2012 Jirka Hladky <hladky.jiri@gmail.com> - 1.4-2
+- Updated systemd service file, https://bugzilla.redhat.com/show_bug.cgi?id=770306
+* Tue Feb 14 2012 Jirka Hladky <hladky.jiri@gmail.com> - 1.4-1
+- Update to the version 1.4
+- Conversion to systemd, drop init script
+* Sun Nov 06 2011 Jirka Hladky <hladky.jiri@gmail.com> - 1.3-2
+- Fixed a bug on non x86 systems
+* Sat Nov 05 2011 Jirka Hladky <hladky.jiri@gmail.com> - 1.3-1
+- update from the upstream (1.3 stable)
+* Mon Oct 03 2011 Jirka Hladky <hladky.jiri@gmail.com> - 1.3-0
+-version 1.3 beta
+* Fri Sep 30 2011 Jirka Hladky <hladky.jiri@gmail.com> - 1.2-4
+- ppc64 build
+* Mon Sep 26 2011 Jirka Hladky <hladky.jiri@gmail.com> - 1.2-3
+- Cleaned spec file according to https://bugzilla.redhat.com/show_bug.cgi?id=739347#c11
+* Sat Sep 24 2011 Jirka Hladky <hladky.jiri@gmail.com> - 1.2-2
+- Added comment to explain why we need use Fedora specific start script
+* Wed Sep 21 2011 Jirka Hladky <hladky.jiri@gmail.com> - 1.2-1
+- Cleaned spec file according to https://bugzilla.redhat.com/show_bug.cgi?id=739347#c1
+* Wed Sep 07 2011  Jirka Hladky <hladky.jiri@gmail.com> - 1.2-0
+- Initial build