First: I did say "Beyond those guesses,". The information provided by the OP so far consists solely of the build parameters for the two builds. I compared those two sets and attempted to reason about possibilities.

A non-problem that allows you to trivially DoS any web server where input from the client

Hm. That problem was addressed way back in 2003/5.8.1 with something akin to this:

So what new problem was addressed by the 5.17 changes? (And has anyone ever seen a plausible demonstration of that "new problem"? Has there ever been a reported sighting of anyone exploiting that new problem in the field? If the change is so critical, why wasn't it back-ported to 5.10 and other earlier versions that are still being shipped with 95% of *nix distributions?)

Anyway, perl's hash handling has been getting faster, not slower in recent years.

Agreed. Not just hash handling, but just about every aspect of Perl (save maybe string handling) has gotten faster in recent builds. Congratulations.

However, over the years there have been some weird behaviours that only affected windows builds.

Once again I'll remind you that I was attempting to help the OP on the basis of the minimal information supplied; whilst asking him to provide more.

So what new problem was addressed by the 5.17 changes?

I can't remember the full details off the top of my head, but amongst others issues, there was a bug in the 5.8.1 implementation that, with a suitably crafted set of keys, could trigger the hash code into doubling the bucket size for every added key, making it trivial to exhaust a web server's memory. It was also shown that the ordering of keys extracted from a hash (like a web server returning unsorted headers) could be used to determine the server's hash seed.

And has anyone ever seen a plausible demonstration of that "new problem"?

On the security list I've seen simple code (that puts a particular sequence of keys into hash) that can crash the perl process.

Has there ever been an reported sighting of anyone exploiting that new problem in the field?

That shouldn't be the criteria for fixing security issues.

If the change is so critical, why wasn't it back-ported to 5.10 and other earlier versions that are still being shipped with 95% of *nix distributions?)

We backported the relevant changes to all maintained perl versions. It's up to vendors whether they patch old unsupported perl versions if they still ship them.

Dave.

It was also shown that the ordering of keys extracted from a hash (like a web server returning unsorted headers) could be used to determine the server's hash seed.

That's a demonstration I would like to see. As in, someone actually deducing it from the returned headers of a system they otherwise have no visibility to; rather than a just a theoretical speculation that it might be possible.

Basically, I don't believe that this theoretical possibility could ever be actually exploited. (But I did also say: (IMO) above.)

---

With the rise and rise of 'Social' network sites: 'Computers are making people easier to use everyday'

Examine what is said, not who speaks -- Silence betokens consent -- Love the truth but pardon error.

"Science is about questioning the status quo. Questioning authority". The enemy of (IT) success is complexity.

In the absence of evidence, opinion is indistinguishable from prejudice.

There's a tool in the perl src repository which uses cachegrind behind the scenes to accurately measure how many CPU instructions, data reads etc a small snippet of code uses. With the following initial setup (so the hash already exists and has some keys):

my %h = qw(a 1 b 2 c 3 d 4); my $key = "foo";
[download]

Running the following benchmark (using a non-constant key so the key's hash gets recalculated each time):

$h{$key} = 1; delete $h{$key}
[download]

Shows the following results on various perls:

Key:
    Ir   Instruction read
    Dr   Data read
    Dw   Data write
    COND conditional branches
    IND  indirect branches
    _m   branch predict miss
    _m1  level 1 cache miss
    _mm  last cache (e.g. L3) miss
    -    indeterminate percentage (e.g. 1/0)

The numbers represent raw counts per loop iteration.


       perl589o perl5101o perl5125o perl5144o perl5163o perl5184o perl
+5203o perl5222o perl5240o perl5258o
       -------- --------- --------- --------- --------- --------- ----
+----- --------- --------- ---------
    Ir   1348.0    1340.4    1378.0    1383.0    1423.0    1453.0    1
+466.0    1368.0    1356.0    1300.0
    Dr    414.0     403.0     411.0     404.0     408.0     403.0     
+411.0     379.0     373.0     362.0
    Dw    226.0     214.0     222.0     227.0     228.0     231.0     
+231.0     208.0     206.0     196.0
  COND    202.0     210.1     210.0     204.0     213.0     204.0     
+210.0     199.0     197.0     188.0
   IND     16.0      16.0      17.0      18.0      18.0      18.0     
+ 17.0      14.0      12.0      14.0

COND_m      2.0       1.0       4.0       2.0       3.0       3.0     
+  1.0       2.0       2.0       3.0
 IND_m      9.0       9.0      11.0       9.0       9.0      11.0     
+  9.0       5.0       5.0       5.0

 Ir_m1      0.0       0.0       0.0       0.0       0.0       0.0     
+  0.0      -0.1       0.0       0.0
 Dr_m1      0.0       0.0       0.0       0.0       0.0       0.0     
+  0.0       0.0       0.0       0.0
 Dw_m1      0.0       0.0       0.0       0.0       0.0       0.0     
+  0.0       0.0       0.0       0.0

 Ir_mm      0.0       0.0       0.0       0.0       0.0       0.0     
+  0.0       0.0       0.0       0.0
 Dr_mm      0.0       0.0       0.0       0.0       0.0       0.0     
+  0.0       0.0       0.0       0.0
 Dw_mm      0.0       0.0       0.0       0.0       0.0       0.0     
+  0.0       0.0       0.0       0.0
[download]

Which shows everything being much the same before 5.22 (and in particular no significant slowdown in 5.16), and things getting better since.

Dave.