Status: Accepted
Owner: [email protected]
Labels: Type-Bug Priority-Medium
New issue 936 by [email protected]: Internal random values should not
share state with Math.random() RNG
http://code.google.com/p/v8/issues/detail?id=936
V8 uses one random number generator for both the JavaScript Math.random()
function and internal uses by the JIT. This can leak security-relevant
state, such as the offset of large block allocations or the cookies used to
mask SMIs. We should split out fthe random state between the JavaScript
facing API and the internal APIs, and ensure they're seeded differently.
--
v8-dev mailing list
[email protected]
http://groups.google.com/group/v8-dev
