commit 27cbcd6241d787b5e99c6ed05ec8377051f397aa
author Gregory P. Smith <greg@krypto.org> Mon Dec 10 18:15:46 2012 -0800
committer Gregory P. Smith <greg@krypto.org> Mon Dec 10 18:15:46 2012 -0800
tree 02fe4460f5a52993a36a9aa575397f9001700ae1
parent 90555d0f0d0b8e4ffbbb37ba12a8e43020ad1e98

Fix the internals of our hash functions to used unsigned values during hash
computation as the overflow behavior of signed integers is undefined.

In practice we require compiling everything with -fwrapv which forces overflow
to be defined as twos compliment but this keeps the code cleaner for checkers
or in the case where someone has compiled it without -fwrapv or their
compiler's equivalent.

Found by Clang trunk's Undefined Behavior Sanitizer (UBSan).

Cleanup only - no functionality or hash values change.

Objects/bytesobject.c

diff --git a/Objects/bytesobject.c b/Objects/bytesobject.c
index 796e400..ef3a5a1 100644
--- a/Objects/bytesobject.c
+++ b/Objects/bytesobject.c
@@ -873,7 +873,7 @@
 {
     register Py_ssize_t len;
     register unsigned char *p;
-    register Py_hash_t x;
+    register Py_uhash_t x;  /* Unsigned for defined overflow behavior. */
 
 #ifdef Py_DEBUG
     assert(_Py_HashSecret_Initialized);