From 93ecd26306532dd9b139aaaa25f50444716e35af Mon Sep 17 00:00:00 2001
From: Leah Rowe <leah@libreboot.org>
Date: Sat, 28 Mar 2026 09:12:15 +0000
Subject: TODO

Signed-off-by: Leah Rowe <leah@libreboot.org>
---
 util/libreboot-utils/lib/mkhtemp.c | 6 ++++++
 1 file changed, 6 insertions(+)

(limited to 'util/libreboot-utils/lib/mkhtemp.c')

diff --git a/util/libreboot-utils/lib/mkhtemp.c b/util/libreboot-utils/lib/mkhtemp.c
index 906de053..dda5eed4 100644
--- a/util/libreboot-utils/lib/mkhtemp.c
+++ b/util/libreboot-utils/lib/mkhtemp.c
@@ -821,6 +821,12 @@ err:
 }
 #endif
 
+/* TODO: potential infinite loop under entropy failure.
+ * e.g. keeps returning low quality RNG, or atacker
+ * has control (DoS attack potential).
+ * possible solution: add a timeout (and abort if
+ * the timeout is reached)
+ */
 int
 mkhtemp_fill_random(char *p, size_t xc)
 {
-- 
cgit v1.2.1