NAME
Perl::Critic::Policy::Security::RandBytesFromHash - flag common anti-patterns for generating random bytes
VERSION
version v0.1.1
SYNOPSIS
In your perlcriticrc file, add
[Perl::Critic::Policy::Security::RandBytesFromHash]
severity = 1DESCRIPTION
In the previous century, most operating systems didn't provide a good source of random bytes. So people who needed to generate random strings for things like session ids in cookies needed to work around this. They used cryptographic hashes around sources of pseudo-random noise, like
message_digest( rand() + time() + $PID ... )It seemed good enough. Hashing functions like MD5 or SHA were state-of-the-art and the output looked random. That was naive, because the seed values were always predicable:
Perl's built-in
randis seeded by 32-bits and is predicable enough that the seed can be reverse-engineered after a few iterations.The
timefunction is predictable, and is leaked by protocols like HTTP.The
$PIDcomes from a small pool of value values, and it's common for child processes (such as workers for a web service) to have sequential ids.Perl data structures have predictable reference addresses.
Internal counters have predictable content, as most of the leading digits will not change between invocations.
If an attacker can guess most of the seed, they can guess the generated data (which might be a session id in cookie that grants access to a website). When you consider cryptanalysis of older algorithms like MD5 or SHA, along with the significant increase and availability of computing power, then this pattern seems to be an elaborate footgun.
Alas, this pattern still shows up in new code, and it remains in some legacy code.
This is a Perl::Critic policy to flag common cases of this. Anything that looks like the bad sources of randomness outlined above will be flagged.
What can you use instead? Modules like Crypt::URandom, Crypt::SysRandom or Crypt::PRNG.
KNOWN ISSUES
This will identify anything that looks like a hash function or method, or a join with insecure sources in the arguments. A side-effect is that some code will be flagged twice, for example
md5_sum( join("", rand, time, $$ ) )SEE ALSO
CPAN Author’s Guide to Random Data for Security
SOURCE
The development version is on github at https://github.com/robrwo/Perl-Critic-Policy-Security-RandBytesFromHash and may be cloned from https://github.com/robrwo/Perl-Critic-Policy-Security-RandBytesFromHash.git
SUPPORT
Only the latest version of this module will be supported.
This module requires Perl v5.24 or later. Future releases may only support Perl versions released in the last ten years.
Reporting Bugs and Submitting Feature Requests
Please report any bugs or feature requests on the bugtracker website https://github.com/robrwo/Perl-Critic-Policy-Security-RandBytesFromHash/issues
When submitting a bug or request, please include a test-file or a patch to an existing test-file that illustrates the bug or desired feature.
If the bug you are reporting has security implications that make it inappropriate to send to a public issue tracker, then see SECURITY.md for instructions how to report security vulnerabilities.
AUTHOR
Robert Rothenberg <rrwo@cpan.org>
COPYRIGHT AND LICENSE
This software is copyright (c) 2026 by Robert Rothenberg.
This is free software; you can redistribute it and/or modify it under the same terms as the Perl 5 programming language system itself.