UUID loses 2 bits of entropy

UUIDv4 includes [4 bits as version number and 2 or 3 bits as variant](https://en.wikipedia.org/wiki/Universally_unique_identifier#Version_4_(random)). This [code](https://github.com/denoland/deno_std/blob/3e17815c7e61cfd2e4c46a12649811543509d563/uuid/v4.ts#L12-L19):

```
export default function generate(): string {
  return "00000000-0000-4000-8000-000000000000".replace(
    /[0]/g,
    (): string =>
      // random integer from 0 to 15 as a hex digit.
      (crypto.getRandomValues(new Uint8Array(1))[0] % 16).toString(16)
  );
}
```

takes 4 bits for variant instead (`8` is hard-coded), so it can generate only 2^120 uuids instead of 2^122.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

UUID loses 2 bits of entropy #559

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development