mirror of
				https://github.com/python/cpython.git
				synced 2025-10-25 18:54:53 +00:00 
			
		
		
		
	Issue #13703: add a way to randomize the hash values of basic types (str, bytes, datetime)
in order to make algorithmic complexity attacks on (e.g.) web apps much more complicated. The environment variable PYTHONHASHSEED and the new command line flag -R control this behavior.
This commit is contained in:
		
							parent
							
								
									ec1712a166
								
							
						
					
					
						commit
						2daf6ae249
					
				
					 32 changed files with 660 additions and 152 deletions
				
			
		|  | @ -1126,6 +1126,7 @@ static PyStructSequence_Field flags_fields[] = { | |||
|     /* {"unbuffered",                   "-u"}, */ | ||||
|     /* {"skip_first",                   "-x"}, */ | ||||
|     {"bytes_warning", "-b"}, | ||||
|     {"hash_randomization", "-R"}, | ||||
|     {0} | ||||
| }; | ||||
| 
 | ||||
|  | @ -1134,9 +1135,9 @@ static PyStructSequence_Desc flags_desc = { | |||
|     flags__doc__,       /* doc */ | ||||
|     flags_fields,       /* fields */ | ||||
| #ifdef RISCOS | ||||
|     12 | ||||
|     13 | ||||
| #else | ||||
|     11 | ||||
|     12 | ||||
| #endif | ||||
| }; | ||||
| 
 | ||||
|  | @ -1169,6 +1170,7 @@ make_flags(void) | |||
|     /* SetFlag(saw_unbuffered_flag); */ | ||||
|     /* SetFlag(skipfirstline); */ | ||||
|     SetFlag(Py_BytesWarningFlag); | ||||
|     SetFlag(Py_HashRandomizationFlag); | ||||
| #undef SetFlag | ||||
| 
 | ||||
|     if (PyErr_Occurred()) { | ||||
|  |  | |||
		Loading…
	
	Add table
		Add a link
		
	
		Reference in a new issue
	
	 Georg Brandl
						Georg Brandl