test: fix flaky TestAESPRNGRandom

Xor-el · Xor-el · commit 552298f0c716 · 2026-06-13T11:06:38.000+01:00
- fix flaky TestAESPRNGRandom by retrying on small-buffer collisions
diff --git a/CryptoLib.Tests/src/Security/SecureRandomTests.pas b/CryptoLib.Tests/src/Security/SecureRandomTests.pas
@@ -217,10 +217,16 @@ procedure TTestSecureRandom.TestAESPRNG;
 end;
 
 procedure TTestSecureRandom.TestAESPRNGRandom;
+const
+  // For very small buffers two independent random draws can legitimately be
+  // equal (e.g. a single byte collides with probability 1/256). Retrying a
+  // few times distinguishes ordinary randomness (which diverges on retry)
+  // from a genuinely stuck RNG (which keeps returning identical output).
+  MaxCollisionRetries = Int32(8);
 var
   b1, b2: TBytes;
   a1, a2: IRandomNumberGenerator;
-  Idx: Int32;
+  Idx, Retry: Int32;
 begin
   // it is hard to validate randomness - we just test the feature set
   b1 := nil;
@@ -248,6 +254,14 @@ procedure TTestSecureRandom.TestAESPRNGRandom;
     a1.GetBytes(b1);
     a2.GetBytes(b2);
 
+    Retry := 0;
+    while AreEqual(b1, b2) and (Retry < MaxCollisionRetries) do
+    begin
+      a1.GetBytes(b1);
+      a2.GetBytes(b2);
+      System.Inc(Retry);
+    end;
+
     CheckTrue(not AreEqual(b1, b2));
   end;
 
