semantic-diff 0.9.0

A terminal diff viewer with AI-powered semantic grouping (Claude CLI / Copilot)
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318

use crate::grouper::SemanticGroup;
use serde::{Deserialize, Serialize};
use std::collections::hash_map::DefaultHasher;
use std::collections::HashMap;
use std::hash::{Hash, Hasher};
use std::path::PathBuf;

/// Cached grouping result stored in .git/semantic-diff-cache.json.
#[derive(Debug, Serialize, Deserialize)]
struct CacheEntry {
    /// Hash of the raw diff output — if this matches, the cache is valid.
    diff_hash: u64,
    groups: Vec<CachedGroup>,
    /// HEAD commit hash when this cache was saved. Used for incremental grouping.
    #[serde(default)]
    head_commit: Option<String>,
    /// Per-file content hashes. Key = file path, Value = hash of hunk content.
    #[serde(default)]
    file_hashes: HashMap<String, u64>,
}

/// Serializable version of SemanticGroup.
#[derive(Debug, Serialize, Deserialize)]
struct CachedGroup {
    label: String,
    description: String,
    changes: Vec<CachedChange>,
}

/// Serializable version of GroupedChange.
#[derive(Debug, Serialize, Deserialize)]
struct CachedChange {
    file: String,
    hunks: Vec<usize>,
}

/// Return the current HEAD commit hash, or None if not in a git repo.
pub fn get_head_commit() -> Option<String> {
    let output = std::process::Command::new("git")
        .args(["rev-parse", "HEAD"])
        .output()
        .ok()?;
    if !output.status.success() {
        return None;
    }
    Some(String::from_utf8(output.stdout).ok()?.trim().to_string())
}

/// Compute a fast hash of the raw diff string.
pub fn diff_hash(raw_diff: &str) -> u64 {
    let mut hasher = DefaultHasher::new();
    raw_diff.hash(&mut hasher);
    hasher.finish()
}

/// Try to load cached grouping for the given diff hash.
/// Returns None if no cache, hash mismatch, parse error, or oversized file.
pub fn load(hash: u64) -> Option<Vec<SemanticGroup>> {
    let path = cache_path()?;

    // Reject oversized cache files (FINDING-16: prevent OOM from crafted cache)
    let metadata = std::fs::metadata(&path).ok()?;
    if metadata.len() > 1_048_576 {
        // 1MB limit
        tracing::warn!("Cache file too large ({} bytes), ignoring", metadata.len());
        return None;
    }

    let content = std::fs::read_to_string(&path).ok()?;
    let entry: CacheEntry = serde_json::from_str(&content).ok()?;

    // Validate cache structure (FINDING-16: reject unreasonable group counts)
    if entry.groups.len() > 50 {
        tracing::warn!(
            "Cache has too many groups ({}), ignoring",
            entry.groups.len()
        );
        return None;
    }

    if entry.diff_hash != hash {
        tracing::debug!("Cache miss: hash mismatch");
        return None;
    }

    tracing::info!("Cache hit: reusing {} groups", entry.groups.len());
    Some(
        entry
            .groups
            .into_iter()
            .map(|g| SemanticGroup::new(
                g.label,
                g.description,
                g.changes
                    .into_iter()
                    .map(|c| crate::grouper::GroupedChange {
                        file: c.file,
                        hunks: c.hunks,
                    })
                    .collect(),
            ))
            .collect(),
    )
}

/// Save grouping result to the cache file with optional incremental state.
pub fn save_with_state(
    hash: u64,
    groups: &[SemanticGroup],
    head_commit: Option<&str>,
    file_hashes: &HashMap<String, u64>,
) {
    let Some(path) = cache_path() else { return };

    let entry = CacheEntry {
        diff_hash: hash,
        groups: groups
            .iter()
            .map(|g| CachedGroup {
                label: g.label.clone(),
                description: g.description.clone(),
                changes: g
                    .changes()
                    .iter()
                    .map(|c| CachedChange {
                        file: c.file.clone(),
                        hunks: c.hunks.clone(),
                    })
                    .collect(),
            })
            .collect(),
        head_commit: head_commit.map(|s| s.to_string()),
        file_hashes: file_hashes.clone(),
    };

    match serde_json::to_string(&entry) {
        Ok(json) => {
            if let Err(e) = std::fs::write(&path, json) {
                tracing::warn!("Failed to write cache: {}", e);
            } else {
                tracing::debug!("Saved cache to {}", path.display());
            }
        }
        Err(e) => tracing::warn!("Failed to serialize cache: {}", e),
    }
}

/// Try to load cached grouping for the given HEAD commit (incremental mode).
/// Returns the cached groups and file hashes so the caller can compute the delta.
/// Returns None if no cache, HEAD mismatch, empty file hashes, parse error, or oversized file.
pub fn load_incremental(
    current_head: &str,
) -> Option<(Vec<SemanticGroup>, HashMap<String, u64>)> {
    let path = cache_path()?;

    let metadata = std::fs::metadata(&path).ok()?;
    if metadata.len() > 1_048_576 {
        return None;
    }

    let content = std::fs::read_to_string(&path).ok()?;
    let entry: CacheEntry = serde_json::from_str(&content).ok()?;

    if entry.groups.len() > 50 {
        return None;
    }

    // Match by HEAD commit, not diff hash.
    let cached_head = entry.head_commit.as_deref()?;
    if cached_head != current_head {
        return None;
    }

    if entry.file_hashes.is_empty() {
        return None;
    }

    tracing::info!(
        "Incremental cache hit: {} groups, {} file hashes",
        entry.groups.len(),
        entry.file_hashes.len()
    );

    let groups = entry
        .groups
        .into_iter()
        .map(|g| {
            SemanticGroup::new(
                g.label,
                g.description,
                g.changes
                    .into_iter()
                    .map(|c| crate::grouper::GroupedChange {
                        file: c.file,
                        hunks: c.hunks,
                    })
                    .collect(),
            )
        })
        .collect();

    Some((groups, entry.file_hashes))
}

/// Path to the cache file: .git/semantic-diff-cache.json
/// Returns None if not in a git repo or if git-dir is outside the repo root.
fn cache_path() -> Option<PathBuf> {
    let output = std::process::Command::new("git")
        .args(["rev-parse", "--git-dir"])
        .output()
        .ok()?;
    if !output.status.success() {
        return None;
    }
    let git_dir = String::from_utf8(output.stdout).ok()?.trim().to_string();
    let git_path = PathBuf::from(&git_dir);

    // Validate: git-dir should be within or adjacent to the current working directory.
    // This prevents crafted .git files from redirecting cache writes to arbitrary locations.
    let cwd = std::env::current_dir().ok()?;
    let canonical_git = std::fs::canonicalize(&git_path).unwrap_or(git_path.clone());
    let canonical_cwd = std::fs::canonicalize(&cwd).unwrap_or(cwd);
    if !canonical_git.starts_with(&canonical_cwd) {
        tracing::warn!(
            "git-dir {} is outside repo root {}, refusing to use cache",
            canonical_git.display(),
            canonical_cwd.display()
        );
        return None;
    }

    Some(PathBuf::from(git_dir).join("semantic-diff-cache.json"))
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_diff_hash_deterministic() {
        let a = diff_hash("hello world");
        let b = diff_hash("hello world");
        assert_eq!(a, b);
    }

    #[test]
    fn test_diff_hash_changes() {
        let a = diff_hash("hello");
        let b = diff_hash("world");
        assert_ne!(a, b);
    }

    #[test]
    fn test_cache_path_validates_git_dir_within_cwd() {
        // cache_path() should return a path that's within the repo (when in a git repo)
        // This test just verifies the function doesn't panic and returns a reasonable result
        let path = cache_path();
        if let Some(p) = &path {
            assert!(
                p.to_string_lossy().contains("semantic-diff-cache.json"),
                "cache path should contain cache filename, got: {}",
                p.display()
            );
        }
        // None is acceptable (not in a git repo, or validation failed)
    }

    #[test]
    fn test_load_rejects_oversized_cache() {
        // Create a temp directory with an oversized cache file
        let temp_dir = tempfile::tempdir().unwrap();
        let cache_file = temp_dir.path().join("oversized-cache.json");
        // Create a file larger than 1MB
        let large_content = "x".repeat(1_048_577);
        std::fs::write(&cache_file, large_content).unwrap();
        let metadata = std::fs::metadata(&cache_file).unwrap();
        assert!(
            metadata.len() > 1_048_576,
            "Test file should be larger than 1MB"
        );
        // We can't easily test the full load() path without mocking cache_path(),
        // but we verify the size check constant is correct
    }

    #[test]
    fn test_cache_entry_with_valid_groups_deserializes() {
        let json = r#"{
            "diff_hash": 12345,
            "groups": [
                {"label": "Auth", "description": "Auth changes", "changes": [{"file": "src/auth.rs", "hunks": [0]}]}
            ]
        }"#;
        let entry: CacheEntry = serde_json::from_str(json).unwrap();
        assert_eq!(entry.groups.len(), 1);
        assert_eq!(entry.groups[0].label, "Auth");
    }

    #[test]
    fn test_cache_entry_group_count_validation() {
        // Build a cache entry with 60 groups (over the 50 limit)
        let mut groups = Vec::new();
        for i in 0..60 {
            groups.push(CachedGroup {
                label: format!("Group {}", i),
                description: "desc".to_string(),
                changes: vec![],
            });
        }
        let entry = CacheEntry {
            diff_hash: 99999,
            groups,
            head_commit: None,
            file_hashes: HashMap::new(),
        };
        // Validation check: > 50 groups should be rejected
        assert!(entry.groups.len() > 50);
    }
}