On Oct 26, 2016, at 11:34 AM, Tony Arcieri <basc...@gmail.com> wrote:
> On Tue, Oct 25, 2016 at 11:16 PM, Jeffrey Goldberg <jeff...@goldmark.org> > wrote: > > If the UTF8 strings aren't normalized, you will get different hashes for > > visually and semantically identical strings. > > Unicode normalization is presently an optional flag in objecthash, I noticed that only after sending my message. > but should be on by default (I think?) and supported by all implementations. Yep. Again, thanks for getting this started. This has been something I’ve been concerned about for a while, but not sufficiently concerned about to actually act on. Cheers, -j _______________________________________________ langsec-discuss mailing list langsec-discuss@mail.langsec.org https://mail.langsec.org/cgi-bin/mailman/listinfo/langsec-discuss
