From b95aacb8c6766b6382a194d85a8c2c049290ea2a Mon Sep 17 00:00:00 2001
From: Leah Rowe <leah@libreboot.org>
Date: Fri, 13 Mar 2026 14:10:10 +0000
Subject: util/nvmutil: fix entropy issue

the time difference used here could go negative, which
would overflow in the xor op on mix, leading to a biased
entropy pool. we want to ensure that they numbers do
not overflow, because here they are cast to unsigned
which would then produce very large numbers.

Signed-off-by: Leah Rowe <leah@libreboot.org>
---
 util/nvmutil/nvmutil.c | 11 ++++++++++-
 1 file changed, 10 insertions(+), 1 deletion(-)

(limited to 'util/nvmutil/nvmutil.c')

diff --git a/util/nvmutil/nvmutil.c b/util/nvmutil/nvmutil.c
index 10c5a6ab..1095a02a 100644
--- a/util/nvmutil/nvmutil.c
+++ b/util/nvmutil/nvmutil.c
@@ -1172,6 +1172,7 @@ entropy_jitter(void)
 {
 	struct timeval a, b;
 	unsigned long mix = 0;
+	long mix_diff;
 	int i;
 
 	for (i = 0; i < 8; i++) {
@@ -1179,7 +1180,15 @@ entropy_jitter(void)
 		getpid();
 		gettimeofday(&b, NULL);
 
-		mix ^= (unsigned long)(b.tv_usec - a.tv_usec);
+		/*
+		 * prevent negative numbers to prevent overflow,
+		 * which would bias rand to large numbers
+		 */
+		mix_diff = (long)(b.tv_usec - a.tv_usec);
+		if (mix_diff < 0)
+			mix_diff = -mix_diff;
+
+		mix ^= (unsigned long)(mix_diff);
 		mix ^= (unsigned long)&mix;
 	}
 
-- 
cgit v1.2.1