stable-hash 0.4.3

A stable, structured hash with backward compatibility
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229

//! This crate provides a stable, structured hash with backward compatibility features.
//! What does that mean?
//!  * Stable: The value of the hash will not change across minor versions of this library,
//!    even when the compiler, process, architecture, or std lib does change.
//!  * Structured: Hashes structs, rather than streams
//!  * Backward compatibility: It is possible to make limited changes to a struct's schema
//!    without changing the value of the hash. One change is that you can add new fields.
//!    This is accomplished by skipping default values when hashing. For example, the values
//!    None, 0, false, and vec![] do not contribute to the hash. Therefore structs Old { a: 1 }
//!    and New { a: 1, b: None } hash to the same value. Another feature enabling backward compatibility
//!    is that the size of an integer can be increased without changing the value. For example,
//!    Old { a: 1u16 } and New { a: 1u32 } hash to the same value. Note that even though two structs
//!    with different schemas are allowed to collide, two structs with the same schema never collide
//!    (where collide is defined as contribution to the hash is injective in respect to the encoding. It is
//!    still possible to find collisions in the final output, especially for the non-cryptographic version)

pub mod crypto;
pub mod fast;
mod impls;
mod macros;
pub mod prelude;
pub mod utils;
mod verification;
use prelude::*;

/// Like Hasher, but consistent across:
/// * builds (independent of rustc version or std implementation details)
/// * platforms (eg: 32 bit & 64 bit, x68 and ARM)
/// * processes (multiple runs of the same program)
pub trait StableHasher {
    /// The type of value returned when finishing
    type Out;

    /// The type used when identifying where a value is located in a struct
    type Addr: FieldAddress;

    /// Create an empty hasher
    fn new() -> Self;

    /// Add a single field to the hash
    fn write(&mut self, field_address: Self::Addr, bytes: &[u8]);

    /// Adds all fields from another hasher
    fn mixin(&mut self, other: &Self);

    /// Removes all fields from another hasher
    fn unmix(&mut self, _other: &Self) {
        unimplemented!()
    }

    /// Finalize the digest
    fn finish(&self) -> Self::Out;

    /// Used when serializing
    type Bytes: AsRef<[u8]>;

    /// Serialize
    fn to_bytes(&self) -> Self::Bytes;

    /// Deserialize
    fn from_bytes(bytes: Self::Bytes) -> Self;
}

/// Like Hash, but consistent across:
/// * builds (independent of rustc version or std implementation details)
/// * platforms (eg: 32 bit & 64 bit, x68 and ARM)
/// * processes (multiple runs of the same program)
///
/// For examples of best practices when implementing:
/// See also d3ba3adc-6e9b-4586-a7e7-6b542df39462
pub trait StableHash {
    fn stable_hash<H: StableHasher>(&self, field_address: H::Addr, state: &mut H);
}

/// Tracks the path from the root of a struct to a member value. For example,
/// within the value vec![ { num: 0, string: "Alice" }, { num: 1, string: "Bob" } ],
/// the value Alice exists at the path:
///
///    FieldAddress::root()  // Vec
///       .child(0)          // [0]
///       .child(1)          // .string
///
/// Because default values do not contribute to the final hash in order to support
/// backward compatibility, this concept is necessary to disambiguate in cases where default
/// values exist in a struct with multiple fields. For example given the struct:
///
/// Struct {
///    a: 0,
///    b: 1,
/// }
///
/// and
///
/// Struct {
///    a: 1,
///    b: 0,
/// }
///
/// if we naively write out the struct as a series of fields without addresses each would produce
/// the following encoded stream (default values omitted):
///
/// {1}
/// {1}
///
/// But, with field addresses you get this encoding instead:
///
/// {(1, 0)}
/// {(0, 1)}
///
/// which fixes the collision.
pub trait FieldAddress: Sized {
    /// The starting value
    fn root() -> Self;
    /// A nesting along the path. When calling this function,
    /// a consistent number should be supplied to identify a given field.
    /// To maintain backward compatibility, this number should remain consistent
    /// even as fields are added, removed, or re-ordered.
    fn child(&self, number: u64) -> Self;
    /// This one is tricky, as it involves hashing a set online.
    /// In this case, each member of the set has the same FieldAddress, but work must
    /// be done to relate multiple field addresses within the same set. The first return
    /// value is for a member of the set, and the second for relating members within the set.
    /// This is confusing. Consider the following example _without_ having two values returned
    /// here:
    ///
    /// { ("a", 1), ("b", 2) }
    /// { ("b", 1), ("a", 2) }
    ///
    /// See that these collide unless we do something to "relate" children within different
    /// members of the same set even while the members must have the same address to keep the
    /// set unordered.
    ///
    /// Understand ye, and despair. The other option was to sort the set. But, this has two
    /// drawbacks. First, it would require `StableHash: Ord`. (Ironically, unordered sets like
    /// HashMap and HashSet where this is relevant do not implement Ord... so this is a no-go but
    /// even if they did we still would prefer to not have this constraint). The second problem
    /// with sorting is that it is less online. Within the graph-node Proof of Indexing (the flagship
    /// use-case which this crate was implemented for) we need to be able to add and remove items
    /// from very large unordered sets without re-sorting and re-calculating everything up to the root.
    /// This ability becomes necessary when indexing off-chain data sources with unreliable availability.
    ///
    /// Please avoid implementing or calling this function unless you know what you are doing.
    /// See also a817fb02-7c77-41d6-98e4-dee123884287
    fn unordered(&self) -> (Self, Self);
}

pub fn fast_stable_hash<T: StableHash>(value: &T) -> u128 {
    profile_fn!(fast_stable_hash);
    generic_stable_hash::<T, crate::fast::FastStableHasher>(value)
}

pub fn crypto_stable_hash<T: StableHash>(value: &T) -> [u8; 32] {
    profile_fn!(crypto_stable_hash);
    generic_stable_hash::<T, crate::crypto::CryptoStableHasher>(value)
}

#[cfg(test)]
mod tests {
    use std::fmt::Debug;

    use rand::thread_rng as rng;
    use rand::Rng as _;

    use crate::crypto::CryptoStableHasher;
    use crate::fast::FastStableHasher;
    use crate::StableHasher;

    #[test]
    fn unmix_fast() {
        unmix_fuzz(1000, FastStableHasher::rand);
    }

    #[test]
    fn unmix_crypto() {
        unmix_fuzz(30, CryptoStableHasher::rand);
    }

    fn unmix_fuzz<T, F>(count: u32, f: F)
    where
        F: Fn() -> T,
        T: StableHasher + Eq + Debug + Clone,
    {
        let rand_vec = || {
            let mut v = Vec::new();
            for _ in 0..rng().gen_range(0..15) {
                v.push(f());
            }
            v
        };
        let take_rand = |v: &mut Vec<T>| {
            if v.len() == 0 {
                return None;
            }
            let i = rng().gen_range(0..v.len());
            Some(v.swap_remove(i))
        };

        for _ in 0..count {
            let mut mixins = rand_vec();
            let mut mixouts = Vec::<T>::new();

            let mut mixin_only = T::new();
            let mut complete = T::new();

            while mixins.len() + mixouts.len() > 0 {
                if rng().gen() {
                    if let Some(mixin) = take_rand(&mut mixins) {
                        // Include duplicates sometimes to demonstrate this is a multiset.
                        if rng().gen_range(0..5) == 0 {
                            mixins.push(mixin.clone());
                        }
                        complete.mixin(&mixin);
                        if rng().gen() {
                            mixin_only.mixin(&mixin);
                        } else {
                            mixouts.push(mixin);
                        }
                    }
                } else {
                    if let Some(mixout) = take_rand(&mut mixouts) {
                        complete.unmix(&mixout);
                    }
                }
            }

            assert_eq!(complete, mixin_only);
        }
    }
}