Re: Hash Table Collisions (n.runs-SA-2011.004)

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: Re: Hash Table Collisions (n.runs-SA-2011.004)
From: Mark Hamburg <mark@...>
Date: Sat, 31 Dec 2011 18:27:17 -0800

On Dec 31, 2011, at 6:14 PM, TNHarris wrote:

> On 12/31/2011 09:22 AM, Alexander Gladysh wrote:
>> 
>> It would also be nice to know, if LJ2 implementation is vulnerable.
>> 
> 
> It is. LJ2 will only use at most 16 bytes from the string for hashing. The longer the string, the easier it is to guess which bytes are skipped, even if you randomize the selection. In a 32 byte string, the 19th through 28th bytes are not used in the hash.

I am increasingly convinced that the best defense is to fail string interning when the buckets get too long. This obviously could reject some non-malicious cases, but those shouldn't be that common.

Mark

Follow-Ups:
- Re: Hash Table Collisions (n.runs-SA-2011.004), Tom N Harris
- Re: Hash Table Collisions (n.runs-SA-2011.004), Vaughan McAlley

References:
- Re: Hash Table Collisions (n.runs-SA-2011.004), TNHarris

Prev by Date: Re: Hash Table Collisions (n.runs-SA-2011.004)
Next by Date: Re: [ANN] LuaJSON-1.3 released
Previous by thread: Re: Hash Table Collisions (n.runs-SA-2011.004)
Next by thread: Re: Hash Table Collisions (n.runs-SA-2011.004)
Index(es):
- Date
- Thread