Add UUID v4 generation to the standard library.

[IridescentRose]

This is a small addition to the standard library which allows you to create a UUID v4 UUID with an allocator and random number generator.

Example use:

const std = @import("std);

pub fn main() !void {
    const uuid = try std.uuid.newv4(your_allocator, your_random);
    std.debug.print("{}", .{uuid.id});
}

Output:
b29f4b7f-945b-4e55-b95b-b6ebeab198e2

[jedisct1]

UUIDs must be unique, and accepting an arbitrary RNG doesn't guarantee that. An application may inadvertently use a deterministic or badly seeded RNG.

Do we really want the application to provide the RNG? Not having to do so would also simplify the interface.

[IridescentRose]

@jedisct1 How would you propose making it truly unique?

[jedisct1]

@jedisct1 How would you propose making it truly unique?

With crypto.randomBytes(). That wouldn't be "truly unique", but the probability of a UUID collision would be negligible.

[data-man]

For comparison: uuid-rs/uuid

v1 - adds the Uuid::new_v1 function and the ability to create a V1 using an implementation of uuid::v1::ClockSequence (usually uuid::v1::Context) and a timestamp from time::timespec.
v3 - adds the Uuid::new_v3 function and the ability to create a V3 UUID based on the MD5 hash of some data.
v4 - adds the Uuid::new_v4 function and the ability to randomly generate a Uuid.
v5 - adds the Uuid::new_v5 function and the ability to create a V5 UUID based on the SHA1 hash of some data.

[jsyrjala]

@jedisct1 How would you propose making it truly unique?

With crypto.randomBytes(). That wouldn't be "truly unique", but the probability of a UUID collision would be negligible.

I think there should be methods for both with and without rng parameter. Sometimes gathering entropy in kernel can be slow. E.g app running in a freshly started Docker container. I have seen cases where it takes minutes to gather enough entropy to generate a couple of random UUIDs.

[jedisct1]

Was is with the randomBytes() function?

On Linux, it is using the getrandom() system call which should never block; there's enough entropy gathered when the system starts to provide all the randomness you will ever need later.

On BSDs, it is using arc4random() that never blocks. Same on WASI. If these functions are not available, it is using /dev/urandom (not /dev/random) that doesn't block either.

If something ever blocks, it means that the system is unable to generate random numbers, so it would be unable to generate UUIDs based on random numbers anyway.

[jsyrjala]

Was is with the randomBytes() function?

On Linux, it is using the getrandom() system call which should never block; there's enough entropy gathered when the system starts to provide all the randomness you will ever need later.

On BSDs, it is using arc4random() that never blocks. Same on WASI. If these functions are not available, it is using /dev/urandom (not /dev/random) that doesn't block either.

If something ever blocks, it means that the system is unable to generate random numbers, so it would be unable to generate UUIDs based on random numbers anyway.

It was not related to zig. I don't remember exact details, it used /dev/random or some other thing that definitely blocked, though.

[daurnimator]

In many situations you don't want or require a syscall for randomness, e.g. on thread Start you would usually seed a threadlocal csprng from the kernel, and then use that in the thread. Similarly for freestanding targets you will need to provide a rand object.

…

On Fri, 9 Oct 2020, 21:36 Frank Denis, ***@***.***> wrote: Was is with the randomBytes() function? On Linux, it is using the getrandom() system call which should never block; there's enough entropy gathered when the system starts to provide all the randomness you will ever need later. On BSDs, it is using arc4random() that never blocks. Same on WASI. If these functions are not available, it is using /dev/urandom (not /dev/random) that doesn't block either. If something ever blocks, it means that the system is unable to generate random numbers, so it would be unable to generate UUIDs based on random numbers anyway. — You are receiving this because you commented. Reply to this email directly, view it on GitHub <#6618 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAA7HY3EQ3BHE6W7OYASAMTSJ3RTBANCNFSM4SJO74AQ> .

[jedisct1]

#6622 explains my concerns about requiring a Rand parameter in functions needing secure random numbers.

We currently don't have any safe option to use in that context. And if we had one, would we need more?

[IridescentRose]

I'll get on this tomorrow

[daurnimator]

Looks good enough to me now!

Left a couple of nits that don't need to be fixed

Also, should have space after // before comment.

[daurnimator]

there's an extra set of parenthesis here (the outermost pair)

[daurnimator]

no need for an @intCast here: a cast from u4 to usize will be implicit.

[daurnimator]

Should set to undefined here: var chars: *const [16]u8 = undefined;

Or could reorganise to have:

const chars = if ( ..... ) ... else if (....) ... else ...;

[andrewrk]

UUIDs must be unique, and accepting an arbitrary RNG doesn't guarantee that. An application may inadvertently use a deterministic or badly seeded RNG.

Do we really want the application to provide the RNG? Not having to do so would also simplify the interface.

Here's a proposal which is intended to address this use case: #6704

Idea here would be the API could be a simple, global, infallible call to gimmeDatUUID() and it would use this thread-local CSPRNG as the backing RNG.

[andrewrk]

To be clear, this PR is blocking on #6704

[andrewrk]

This is about to get unblocked by #7482

[andrewrk]

std.crypto.random is now available to use.

[andrewrk]

Upon further reflection, I think this code is appropriate for a third party library rather than the std lib.