Skip to content

Commit

Permalink
out_gelf: Port the random seed generation to Windows
Browse files Browse the repository at this point in the history
Windows does not have /dev/urandom. For this reason, it was always
using a less secure value (= UNIX time) as an entropy source.

Use flb_randombytes() to use a good entropy source, and thus,
reduce the possibility of message collision.

Signed-off-by: Fujimoto Seiji <[email protected]>
  • Loading branch information
fujimotos committed Sep 29, 2020
1 parent f952970 commit 01bd37c
Showing 1 changed file with 2 additions and 15 deletions.
17 changes: 2 additions & 15 deletions plugins/out_gelf/gelf.c
Original file line number Diff line number Diff line change
Expand Up @@ -24,6 +24,7 @@
#include <fluent-bit/flb_gzip.h>
#include <fluent-bit/flb_utils.h>
#include <fluent-bit/flb_network.h>
#include <fluent-bit/flb_random.h>
#include <msgpack.h>

#include <stdio.h>
Expand Down Expand Up @@ -321,8 +322,6 @@ static void cb_gelf_flush(const void *data, size_t bytes,
static int cb_gelf_init(struct flb_output_instance *ins, struct flb_config *config,
void *data)
{
int ret;
int fd;
const char *tmp;
struct flb_out_gelf_config *ctx = NULL;

Expand Down Expand Up @@ -408,21 +407,9 @@ static int cb_gelf_init(struct flb_output_instance *ins, struct flb_config *conf
}

/* init random seed */
fd = open("/dev/urandom", O_RDONLY);
if (fd == -1) {
if (flb_randombytes((unsigned char *) &ctx->seed, sizeof(int))) {
ctx->seed = time(NULL);
}
else {
unsigned int val;
ret = read(fd, &val, sizeof(val));
if (ret > 0) {
ctx->seed = val;
}
else {
ctx->seed = time(NULL);
}
close(fd);
}
srand(ctx->seed);

ctx->fd = -1;
Expand Down

0 comments on commit 01bd37c

Please sign in to comment.