lib/59117: arc4random has some failure modes it shouldn't

To: lib-bug-people%netbsd.org@localhost,gnats-admin%netbsd.org@localhost,netbsd-bugs%netbsd.org@localhost
Subject: lib/59117: arc4random has some failure modes it shouldn't
From: campbell+netbsd%mumble.net@localhost
Date: Sun, 2 Mar 2025 13:55:00 +0000 (UTC)

>Number:         59117
>Category:       lib
>Synopsis:       arc4random has some failure modes it shouldn't
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    lib-bug-people
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Sun Mar 02 13:55:00 +0000 2025
>Originator:     Taylor R Campbell
>Release:        current
>Organization:
The Arc4BSD Forkation
>Environment:
>Description:
arc4random can fail (and abort, because it has no return value indicator) for the following reasons:

1. sysctl kern.arandom fails
2. crypto self-test fails
3. pthread_atfork fails
4. thr_keycreate fails

Cases (1) and (2) are reasonable: if we have no entropy, or if the software is buggy, we can't do anything.

Cases (3) and (4) are not really reasonable:

(a) We should have a variant of pthread_atfork where the caller provides storage so it can't fail.  This is also useful for libpthread's pthread_tsd_init which runs in a constructor before malloc is safe to call.
(b) If thr_keycreate fails we can always just fall back to using global state.
>How-To-Repeat:
make pthread_atfork or thr_keycreate fail and try to use arc4random
>Fix:
Yes, please!

Prev by Date: Re: misc/59102 (updated xxx_modcmd() signature in module(9) manpage)
Next by Date: Re: kern/59100 (compat patch from Nov 22 2024 breaks cvsup for monolithic kernel)
Previous by Thread: port-alpha/59116: No console output on alpha 10.1 with raden or Elsa Gloria card
Next by Thread: PR/58931 CVS commit: src
Indexes:

Home | Main Index | Thread Index | Old Index