Windows rand() gives 15bit random number (with MSVC and MinGW), if you build webkit with MinGW or with MSVC (without _CRT_RAND_S define) then code execution goes to #else where they assume that rand() returns 31bits. In that case calling javascript Math.random() always gives values in range of 0.0000xxx and not [0,1]. I will attach patch where this is fixed.
Created attachment 40430 [details] Patch which fixes the bug.
Comment on attachment 40430 [details] Patch which fixes the bug. I think we need more bits of randomness. I'm not sure how many. It seems we are using 32 bits of randomness in the first two cases, and 53 bits in the next two. Having a Windows code path that uses only 30 bits seems wrong, but perhaps the 32-bit ones are also wrong. review- for now based on that issue, but I could be convinced I am wrong.
Well in weakRandomNumber its using 15bit rand() 2 times, so imho normal case (when _CRT_RAND_S is defined) in MSVC randomless is even weaker (or same) than 30bits. Im a bit worried that calling rand() 4 times to get 53bit randomness could have some performance impacts. I can make the patch to use rand 4 times, or copypaste the weak random, if 30bit random is not enough?
Created attachment 40473 [details] Rand() patch which uses 53bits
Comment on attachment 40473 [details] Rand() patch which uses 53bits Clearing flags on attachment: 40473 Committed r49056: <http://trac.webkit.org/changeset/49056>
All reviewed patches have been landed. Closing bug.