commit 2daf6ae2495c862adf8bc717bfe9964081ea0b10
author Georg Brandl <georg@python.org> Mon Feb 20 19:54:16 2012 +0100
committer Georg Brandl <georg@python.org> Mon Feb 20 19:54:16 2012 +0100
tree ebd7efe668e4f7842c6d51bdbde47b00f92a57db
parent ec1712a1662282c909b4cd4cc0c7486646bc9246

Issue #13703: add a way to randomize the hash values of basic types (str, bytes, datetime)
in order to make algorithmic complexity attacks on (e.g.) web apps much more complicated.

The environment variable PYTHONHASHSEED and the new command line flag -R control this
behavior.

Python/sysmodule.c

diff --git a/Python/sysmodule.c b/Python/sysmodule.c
index c688172..6a7e914 100644
--- a/Python/sysmodule.c
+++ b/Python/sysmodule.c
@@ -1126,6 +1126,7 @@
     /* {"unbuffered",                   "-u"}, */
     /* {"skip_first",                   "-x"}, */
     {"bytes_warning", "-b"},
+    {"hash_randomization", "-R"},
     {0}
 };
 
@@ -1134,9 +1135,9 @@
     flags__doc__,       /* doc */
     flags_fields,       /* fields */
 #ifdef RISCOS
-    12
+    13
 #else
-    11
+    12
 #endif
 };
 
@@ -1169,6 +1170,7 @@
     /* SetFlag(saw_unbuffered_flag); */
     /* SetFlag(skipfirstline); */
     SetFlag(Py_BytesWarningFlag);
+    SetFlag(Py_HashRandomizationFlag);
 #undef SetFlag
 
     if (PyErr_Occurred()) {