[Python-Dev] Python startup time
Antoine Pitrou
solipsis at pitrou.net
Mon May 14 12:57:50 EDT 2018
On Tue, 15 May 2018 01:33:18 +0900
INADA Naoki <songofacandy at gmail.com> wrote:
>
> It will broke hash randomization.
>
> See also: https://www.cvedetails.com/cve/CVE-2017-11499/
I don't know why it would. The mechanism of pre-initializing a process
which is re-used accross many requests is how most server applications
of Python already work (you don't want to bear the cost of spawning
a new interpreter for each request, as antiquated CGI does). I have not
heard that it breaks hash randomization, so a similar mechanism on the
CLI side shouldn't break it either.
Regards
Antoine.
More information about the Python-Dev
mailing list