[issue13703] Hash collision security issue
Marc-Andre Lemburg
report at bugs.python.org
Fri Jan 6 18:03:08 CET 2012
Marc-Andre Lemburg <mal at egenix.com> added the comment:
STINNER Victor wrote:
>
> STINNER Victor <victor.stinner at haypocalc.com> added the comment:
>
> hash-attack.patch does never decrement the collision counter.
Why should it ? It's only used as local variable in the lookup function.
Note that the limit only triggers on a per-key basis. It's not
a limit on the total number of collisions in the table, so you don't
need to keep the number of collisions stored on the object.
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue13703>
_______________________________________
More information about the Python-bugs-list
mailing list