Replacing Math.random() with something a little more random.
diff --git a/framework/src/org/apache/cordova/CordovaBridge.java b/framework/src/org/apache/cordova/CordovaBridge.java
index 081127d..a6ebebb 100644
--- a/framework/src/org/apache/cordova/CordovaBridge.java
+++ b/framework/src/org/apache/cordova/CordovaBridge.java
@@ -18,6 +18,8 @@
*/
package org.apache.cordova;
+import java.security.SecureRandom;
+
import org.apache.cordova.PluginManager;
import org.json.JSONArray;
import org.json.JSONException;
@@ -107,7 +109,8 @@
/** Called by cordova.js to initialize the bridge. */
int generateBridgeSecret() {
- expectedBridgeSecret = (int)(Math.random() * Integer.MAX_VALUE);
+ SecureRandom randGen = new SecureRandom();
+ expectedBridgeSecret = (int)(randGen.nextInt() * Integer.MAX_VALUE);
return expectedBridgeSecret;
}