rand_r(): Separate seed and random number

Enforces originally intended usage of rand_r()'s API. Mostly just paranoia, maybe.
NICMx · Jul 3, 2024 · 19f3972 · 19f3972
1 parent d5e3074
commit 19f3972
Showing 1 changed file with 4 additions and 4 deletions.
diff --git a/src/object/manifest.c b/src/object/manifest.c
@@ -194,21 +194,21 @@ build_rpp(struct Manifest *mft, struct rpki_uri *notif,
     struct rpki_uri *mft_uri, struct rpp **pp)
 {
 	char const *tal;
-	int i, j;
+	unsigned int i, j;
 	struct FileAndHash *fah, *tmpfah;
 	struct rpki_uri *uri;
 	int error;
-	unsigned int rnd;
+	unsigned int seed, rnd;
 
-	rnd = time(NULL) ^ getpid();
+	seed = time(NULL) ^ getpid();
 
 	*pp = rpp_create();
 
 	tal = tal_get_file_name(validation_tal(state_retrieve()));
 
 	/* Fisher-Yates shuffle with modulo bias */
 	for (i = 0; i < mft->fileList.list.count - 1; i++) {
-		rnd = rand_r(&rnd);
+		rnd = rand_r(&seed);
 		j = i + rnd % (mft->fileList.list.count - i);
 		tmpfah = mft->fileList.list.array[j];
 		mft->fileList.list.array[j] = mft->fileList.list.array[i];