[Python-Dev] [issue13703] Hash collision security issue

martin at v.loewis.de martin at v.loewis.de
Fri Jan 27 20:39:28 CET 2012

> Another issue occurs to me: when a hash with colliding keys (one  
> that has been attacked, and has trees) has a non-string key added,  
> isn't the flattening process likely to have extremely poor  
> performance?

Correct. "Don't do that, then"

I don't consider it mandatory to fix all issues with hash collision.
In fact, none of the strategies fixes all issues with hash collisions;
even the hash-randomization solutions only deal with string keys, and
don't consider collisions on non-string keys.

More information about the Python-Dev mailing list