Use crypto/rand, not math/rand, to generate session IDs.

math/rand always uses a deterministic seed. The sequence of session IDs was therefore always the same: Uv38ByGCZU8WP18PmmIdcg lWbHTRDYaB0NhtHpHgAWeQ ... Multiple copies of this program would have had session ID collisions. I don't know what the consequences of that would be.
2025-10-13 20:11:19 -04:00 · 2017-06-29 16:00:29 -07:00 · 2017-06-29 16:00:29 -07:00 · faeb8da8c9
commit faeb8da8c9
parent af8a026991
1 changed files with 1 additions and 1 deletions
--- a/proxy-go/snowflake.go
+++ b/proxy-go/snowflake.go
@ -8,7 +8,7 @@ import (
 	"io"
 	"io/ioutil"
 	"log"
-	"math/rand"
+	"crypto/rand"
 	"net"
 	"net/http"
 	"net/url"