[Python-Dev] [issue13703] Hash collision security issue

Gregory P. Smith greg at krypto.org
Sun Jan 29 22:20:07 CET 2012

On Fri, Jan 27, 2012 at 11:39 AM,  <martin at v.loewis.de> wrote:
> In fact, none of the strategies fixes all issues with hash collisions;
> even the hash-randomization solutions only deal with string keys, and
> don't consider collisions on non-string keys.

The hash-randomization approach also works fine on immutable container
objects containing bytes and string keys such as tuples and UserString
that merely expose a combination of the hashes of all of their
contained elements.


More information about the Python-Dev mailing list