Check return value of uk_random_bytes()

michpappas · michpappas · commit 29d1cf1a3321 · 2025-10-29T14:22:06.000+01:00
lwip provides the LWIP_RAND() macro to obtain random numbers for purposes like TCP ISNs, source port selection, IP fragment IDs, etc The default implementation implements the macro using rand(), which is implements a pseudo-rng. Furthermore, the macro assumes no error checking. Unikraft's implementation uses libukarandom's uk_random_bytes() to provide secure randomness. That function may fail on reseed, so it's is critical to check its return value. Add a check within the macro, and treat failures as fatal. Signed-off-by: Michalis Pappas <michalis@unikraft.io> Approved-by: Andrei Tatar <ttr@unikraft.io> Reviewed-by: Andrei Tatar <ttr@unikraft.io> GitHub-Closes: #68
diff --git a/include/arch/cc.h b/include/arch/cc.h
@@ -59,10 +59,14 @@
 #define ETH_PAD_SIZE 0
 
 /* rand */
-#define LWIP_RAND() ({				\
-	__u32 x;				\
-	uk_random_fill_buffer(&x, sizeof(x));	\
-	x;					\
+#define LWIP_RAND() ({						\
+	int res;						\
+	__u32 x;						\
+	res = uk_random_fill_buffer(&x, sizeof(x));		\
+	if (unlikely(res))					\
+		UK_CRASH("Could not obtain randomness (%d)",	\
+			 res);					\
+	x;							\
 })
 
 /* compiler hints for packing lwip's structures */
