lib/randgen - warn when DOVECOT_SRAND is not able to be used

As suggested by Jeff, it's friendly to warn if we're unable to act upon the request for reproduceable random numbers because we're not built for that. Note, this deliberately permits a blank string, so that you can silence the warning by prefixing a command with an empty DOVECOT_SRAND= which is taken as an explicit attempt to disable use of the feature. Signed-off-by: Phil Carmody <phil@dovecot.fi>
dovecot · Feb 14, 2019 · 8463321 · 8463321
1 parent 00a3985
commit 8463321
Showing 1 changed file with 5 additions and 1 deletion.
diff --git a/src/lib/randgen.c b/src/lib/randgen.c
@@ -141,17 +141,21 @@ void random_fill(void *buf, size_t size)
 void random_init(void)
 {
 	unsigned int seed;
+	const char *env_seed;
 
 	if (init_refcount++ > 0)
 		return;
 
+	env_seed = getenv("DOVECOT_SRAND");
 #ifdef DEBUG
-	const char *env_seed = getenv("DOVECOT_SRAND");
 	if (env_seed != NULL && str_to_uint(env_seed, &seed) >= 0) {
 		kiss_init(seed);
 		/* getrandom_present = FALSE; not needed, only used in random_read() */
 		goto normal_exit;
 	}
+#else
+	if (env_seed != NULL && *env_seed != '\0')
+		i_warning("DOVECOT_SRAND is not available in non-debug builds");
 #endif /* DEBUG */
 
 #if defined(USE_RANDOM_DEV)