Create generic interface for hash functions #178
Conversation
vqhuy
force-pushed
the
gh06
branch
3 times, most recently
from
332faf0
to
9d040e8
Compare
|
Would there be any interest in trying to syncronize this interface with the one in google/trillian#670 ? |
crypto/hasher/hasher_test.go
Outdated
| leaf []byte | ||
| want Hash | ||
| }{ | ||
| {treeNonce: [32]byte{0}, index: []byte("foo"), depth: 128, leaf: []byte("leaf"), want: h2h("65e7f29787a6168affd016656bb1f4f03af91cf7416270f5015005f8594d3eb6")}, |
There was a problem hiding this comment.
Question about the index since I ran into this too.
Should indexes be required to be the full length of the hash function? This would change the test vectors.
There was a problem hiding this comment.
There was a problem hiding this comment.
For HashLeaf, I think yes. But the length of the index of empty nodes vary.
There was a problem hiding this comment.
Just a note that in trillian we're using int64 for treeID.
|
I like @gdbelvin's idea. It makes it easier to sync up and might increase compatibility. Be aware that the interface described in google/trillian#670 isn't fully implemented yet (but will be soon). |
Definitely. |
crypto/hasher/hasher.go
Outdated
| return h.Sum(nil) | ||
| } | ||
|
|
||
| // ID returns the name of the cryptographic hash function in string. |
There was a problem hiding this comment.
s/in string/as a string/ or simply "ID returns the name of the cryptographic hash function"
merkletree/pad.go
Outdated
| @@ -5,6 +5,7 @@ import ( | |||
| "errors" | |||
|
|
|||
| "github.com/coniks-sys/coniks-go/crypto" | |||
| conikshasher "github.com/coniks-sys/coniks-go/crypto/hasher/coniks" | |||
There was a problem hiding this comment.
I would rather prefer a shorter import alias. What do you think about hasher? As this whole project is called 'coniks', I feel hasher would be enough.
There was a problem hiding this comment.
Ideally, this package should be imported using a blank import name. I used conikshasher for now because we import both hasher and hasher/coniks sometimes.
There was a problem hiding this comment.
Makes sense! I would still prefer a shorter import. It would saves some typing when using it and it seems more consistent with the generally shorter package names in golang. But it isn't that important. What about chasher for example?
crypto/hasher/coniks/coniks.go
Outdated
| leafIdentifier = 'L' | ||
| ) | ||
|
|
||
| type coniksHasher struct { |
There was a problem hiding this comment.
If the package is called coniks, it's a bit inelegant to call the struct coniksHasher. hasher would be optimal but would collide with github.com/coniks-sys/coniks-go/crypto/hasher. I still wonder if we could come up with a better name here?
crypto/hasher/hasher.go
Outdated
| } | ||
|
|
||
| // treeHasher provides hash functions for tree implementations. | ||
| type treeHasher interface { |
There was a problem hiding this comment.
On first sight, it's a bit confusing that the treeHasher is unexported but embedded in the exported PADHasher interface. Maybe there is a good reason which I don't see yet? OK, the 'tree-hashing logic' is separate from the rest (ID, Size, ...) but if one wants to implement a different PADHasher, one needs to find the private interface treeHasher. I think it makes sense to collapse both and a public interface should be self-contained (or embed other public interfaces if there are really good reasons). LMK what you think.
There was a problem hiding this comment.
I don't remember why I didn't publish treeHasher interface but I can't find any reasons for not doing that.
I think it makes sense to collapse both and a public interface should be self-contained (or embed other public interfaces if there are really good reasons).
Can you elaborate?
There was a problem hiding this comment.
I think this should be one interface instead of two. At least both should be public if there is a good reason for having two ifaces (which I don't see).
crypto/hasher/hasher.go
Outdated
| } | ||
|
|
||
| // Hasher returns a PADHasher. | ||
| func Hasher(h string) (PADHasher, error) { |
There was a problem hiding this comment.
Maybe rename to NewHasher or GetHasher?
crypto/hasher/hasher.go
Outdated
| hashers[h] = f() | ||
| } | ||
|
|
||
| // Hasher returns a PADHasher. |
There was a problem hiding this comment.
returns a registered PADHasher identified by the given string. If no such PADHasher exists, it returns an error.
crypto/hasher/coniks/coniks.go
Outdated
| const ( | ||
| // CONIKSHasher is the identity of the hashing algorithm | ||
| // specified in the CONIKSHasher paper. | ||
| CONIKSHasher = "CONIKS Hasher" |
There was a problem hiding this comment.
I wonder, if there will be different hashers, shouldn't be a central place of identifiers? I always thought we are only swapping the underlying hash function, but all these hashers will be "CONIKS Hashers".
There was a problem hiding this comment.
The idea is each hasher implementation should have its own ID declared in its own package. But you're right, we should have a central place of identifiers which includes our "standard" hash schemes, and "CONIKS Hasher" should be replaced by something like "SHA256-xxxx".
vqhuy
force-pushed
the
gh06
branch
2 times, most recently
from
34ac0a9
to
b7b8da6
Compare
…eir own hash function. * Convert the default hash function to SHA-512/256 * Part of #50 Credit to KT's team
|
Glad to see this PR moving forward! Thanks @liamsi and @c633. |
We would love to do that. |
Create PADHasher & TreeHasher interface to allow developers to use their own hash function.
Part of #50 and #177
In favor of google/trillian#694, I implemented 29aa6a2.
Please let me know what you think.