Add a warning about the subtle global state in legacy random functions#5414
Add a warning about the subtle global state in legacy random functions#5414anthonyryan1 wants to merge 1 commit intophp:masterfrom
Conversation
TimWolla
left a comment
TimWolla
left a comment
There was a problem hiding this comment.
Thank you. I need to think about this a little more. Perhaps it's best to also have a generic “global state bad” message on the affected functions and just mention the fork gotcha in an “aside”.
anthonyryan1
changed the title
|
I've refocused this on simply being a warning on the legacy random pages. Let me know if you'd like to see any other changes or improvements. I've left pcntl out entirely, because arguably this problem is just that these functions still exist and the flaw is their use, rather than any overlap with pcntl. |
language-snippets.ent
Outdated
| This function shares a global state with other functions. | ||
| These functions can alter each other's outputs, regardless of scope. |
There was a problem hiding this comment.
I like the direction. Here's a suggestion that I feel is a little more precise (and hopefully not much more complicated to understand):
This function uses the global Mt19937 (“Mersenne Twister”) instance as the source of randomness and thus shares its state with all other functions using the global Mt19937. Using any of these functions affects the output of all the other functions, regardless of scope.
In particular seeding the Mt19937 instance with a fixed value using <function>mt_srand</function> or <function>srand</function> to generate a repeatable output sequence affects <emph>all</emph> following calls, unless the instance is reseeded with a random seed afterwards.
And of course, the existing warning that there are only 2^32 seeds applies …
3 participants
Fixes php/php-src#21351
Replaces php/php-src#21352