arc4random: hard fail with raise(SIGKILL) if getentropy() returns -1

Allow other non-zero return values in case we change our mind to return an ssize_t byte count instead of simple success/fail. ok deraadt, djm
author: matthew <> 2014-06-20 00:02:12 +0000
committer: matthew <> 2014-06-20 00:02:12 +0000
commit: 038448a931f0b4209429847285e08acf69328612 (patch)
tree: 045608db3f2a62c96db0ddee7aed19cfbfd05e56 /src
parent: 150e8864673fb3b65a00e9188f50ca6a5bae927d (diff)
download: openbsd-038448a931f0b4209429847285e08acf69328612.tar.gz
openbsd-038448a931f0b4209429847285e08acf69328612.tar.bz2
openbsd-038448a931f0b4209429847285e08acf69328612.zip
1 files changed, 4 insertions, 3 deletions
diff --git a/src/lib/libc/crypt/arc4random.c b/src/lib/libc/crypt/arc4random.c
index 985fa8a0e5..ea05d2a6e9 100644
--- a/src/lib/libc/crypt/arc4random.c
+++ b/src/lib/libc/crypt/arc4random.c
@@ -1,4 +1,4 @@
-/*      $OpenBSD: arc4random.c,v 1.35 2014/06/19 00:13:22 matthew Exp $ */
+/*      $OpenBSD: arc4random.c,v 1.36 2014/06/20 00:02:12 matthew Exp $ */
 /*
 * Copyright (c) 1996, David Mazieres <dm@uun.org>
@@ -24,6 +24,7 @@
 #include <fcntl.h>
 #include <limits.h>
+#include <signal.h>
 #include <stdlib.h>
 #include <string.h>
 #include <unistd.h>
@@ -91,8 +92,8 @@ _rs_stir(void)
 {
        u_char rnd[KEYSZ + IVSZ];
-        /* XXX */
+        if (getentropy(rnd, sizeof rnd) == -1)
-        (void) getentropy(rnd, sizeof rnd);
+                raise(SIGKILL);
        if (!rs)
                _rs_init(rnd, sizeof(rnd));
author	matthew <>	2014-06-20 00:02:12 +0000
committer	matthew <>	2014-06-20 00:02:12 +0000
commit	038448a931f0b4209429847285e08acf69328612 (patch)
tree	045608db3f2a62c96db0ddee7aed19cfbfd05e56 /src
parent	150e8864673fb3b65a00e9188f50ca6a5bae927d (diff)
download	openbsd-038448a931f0b4209429847285e08acf69328612.tar.gz openbsd-038448a931f0b4209429847285e08acf69328612.tar.bz2 openbsd-038448a931f0b4209429847285e08acf69328612.zip