下面是原始网页http://seclists.org/oss-sec/2017/q2/33的快照。安全客与该网页作者无关,不对其内容负责。 刷新快照
oss-sec: Re: Re: libxslt math.random issue
Home page logo

oss-sec mailing list archives

Re: Re: libxslt math.random issue
From: Florian Weimer <fweimer () redhat com>
Date: Fri, 7 Apr 2017 20:01:44 +0200

On 04/07/2017 07:50 PM, Frank Ch. Eigler wrote:

Florian Weimer wrote:

FWIW, why is glibc not doing srand(RANDOMVECTOR) during startup... :/

The C standard does not allow it.

”
If rand is called before any calls to srand have been made, the same
sequence shall be generated as when srand is first called with a seed
value of 1.
”

Yes, but that does not imply that srand(1) needs to resolve to a
build-constant value.

Sorry, I don't understand. The standard also says, “If srand() is then called with the same seed value, the sequence of pseudo-random numbers shall be repeated.”

The sequences is *required* to be deterministic, and this is deliberate.

Thanks,
Florian


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]