the defenses in place also protect against accidentally bumbling into the worst case, as was the case for the Rust issue.
-
-
This makes me think that the unique-key-per-HashMap is fragile and so likely not a security mechanism to be relied on.
-
this leaves only two solutions: tree fallback, or educate the world that hashmaps shouldn't *store* untrusted input
-
I personally live in a fuzzier world, where it's ok to apply minor mitigations as long as the perf impact is low
-
random hashers: the ASLR of the data structures world?
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.