Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 470020 - net-misc/openssh: init.d script may benefit from "after entropy"
Summary: net-misc/openssh: init.d script may benefit from "after entropy"
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: [OLD] Core system (show other bugs)
Hardware: All Linux
: Normal enhancement (vote)
Assignee: Gentoo's Team for Core System packages
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2013-05-15 22:48 UTC by Roman Žilka
Modified: 2018-06-19 14:42 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Roman Žilka 2013-05-15 22:48:59 UTC 
sshd is a service which may, hypothetically, start establishing encrypted connections very early after start. Because of that, it could benefit from "use entropy" in the initscript's depend(). "Entropy" is provided by RNG control daemons such as rng-tools.

Reproducible: Always
Comment 1 SpanKY gentoo-dev 2013-05-22 05:21:29 UTC 
i think we just want "after entropy"
Comment 2 Larry the Git Cow gentoo-dev 2018-04-11 02:44:06 UTC 
The bug has been closed via the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=9b74fc16d7b050757989bd8ebba1366e3b8eeda1

commit 9b74fc16d7b050757989bd8ebba1366e3b8eeda1
Author:     Thomas Deutschmann <whissi@gentoo.org>
AuthorDate: 2018-04-11 02:16:28 +0000
Commit:     Thomas Deutschmann <whissi@gentoo.org>
CommitDate: 2018-04-11 02:43:57 +0000

    net-misc/openssh: Bump to v7.7_p1
    
    Ebuild changes:
    ===============
    - HPN patch set updated to v14.14. MT AES CTR cipher are still not
      working at the moment but we are working on this.
    
    - SCTP patch updated for openssh-7.7_p1.
    
    - LDAP patch is currently not available because patch isn't compatble
      with openssh-7.7_p1 and needs a major rewrite because upstream removed
      auth_parse_options() via commit 7c8568576071.
    
    - X.509 patch updated to v11.3.1.
    
    - Previously, SCTP patch sometimes got applied even when "sctp" USE flag
      wasn't set, this is now fixed.
    
    - We now always expose applied patches in version string (previously
      this was only the case for some patches and was also depending on
      whether the "hpn" USE flag was enabled or not).
    
    - Make sure "/var/empty" gets preserved by package manager. [Bug 647034]
    
    - Runscript: "use" entropy. [Bug 470020]
    
    - Runscript: Use "/run" instead of "/var/run". [Bug 555734]
    
    - Runscript: Verify daemon is really up and running. [Bug 617596]
    
    - Runscript: Simplified (thanks to Michael Orlitzky)
    
    - Runscript: Add prefix support. [Bug 640666]
    
    - Runscript: It is now possible to pass any by start-stop-daemon supported
                 arguments (like "--ionice" or "--nicelevel" for example) to
                 start-stop-daemon. [Bug 636764]
    
    Closes: https://bugs.gentoo.org/470020
    Closes: https://bugs.gentoo.org/555734
    Closes: https://bugs.gentoo.org/617596
    Closes: https://bugs.gentoo.org/636764
    Closes: https://bugs.gentoo.org/640666
    Closes: https://bugs.gentoo.org/647034
    Closes: https://bugs.gentoo.org/652438
    Package-Manager: Portage-2.3.28, Repoman-2.3.9

 net-misc/openssh/Manifest                          |   4 +
 .../openssh/files/openssh-7.7_p1-GSSAPI-dns.patch  | 351 ++++++++++++++++++
 net-misc/openssh/files/sshd-r1.confd               |  33 ++
 net-misc/openssh/files/sshd.rc6.5                  |  89 +++++
 net-misc/openssh/openssh-7.7_p1.ebuild             | 406 +++++++++++++++++++++
 5 files changed, 883 insertions(+)