Skip to content

meemo/hasher

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

49 Commits
docs
docs
 
 
src
src
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
Cargo.lock
Cargo.lock
 
 
Cargo.toml
Cargo.toml
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
config.toml
config.toml
 
 
test.py
test.py
 
 

Repository files navigation

hasher

hasher is a program that can do multithreaded simultaneous hashing of files with up to 48 hashing algorithms while only reading the file once. This means that in almost all cases the limiting factor in performance will be IO, and you won't have to waste time reading the same data multiple times if you need multiple hashing algorithms.

Building

hasher requires a fairly modern version of stable Rust. All development is done on the latest stable release, and older versions are likely to cause issues.

Install Rust using the instructions located here.

To build, run the following at the root of the repository:

cargo build -r

After this is complete your binary will be located at target/release/hasher and can be moved wherever you desire, or leave it in place and use cargo run -r.

musl libc Builds

On Linux systems you may run into some glibc version issues if you, for example, build on an Arch Linux system and then run on a Debian Stable system. The easiest way to alleviate this issue is to build the application on the target you are running, however that's not always possible or desirable, so there is another option: static compilation with libc built into the binary. This can be done by following the following steps:

sudo apt install musl-tools  # Or equivalent package for musl-gcc on your system

rustup target add x86_64-unknown-linux-musl
cargo build -r --target=x86_64-unknown-linux-musl

This will create a release build in the same location as normal builds but now it will not use glibc. Note that this will slightly impact performance, as the program is being compiled for a generic x86_64 system, and can't include instructions from extensions that only exist on modern CPUs.

Usage

The basic structure for usage is:

hasher {command} {options} {directories}

With all commands supporting the following basic options (though some may do nothing):

  • -v/--verbose, -q/--quiet
    • Control logging verbosity. Use -vvv for maximum output
  • -e/--fail-fast
    • Stop after encountering an error (by default errors are not fatal)
  • -Q/--silent-failures
    • Silence error messages and skip notifications (errors will still not be fatal unless --fail-fast is used)
  • -r/--retry-count
    • Number of retries for operations (default: 3)
  • -d/--retry-delay
    • Delay in seconds between retries (default: 5)
  • -s/--sql-only
    • Only output to SQLite database
  • -j/--json-only
    • Only output to JSON
  • -p/--pretty-json
    • Pretty print JSON output
  • -c/--config-file
    • Path to config file (default: ./config.toml)
  • -w/--use-wal
    • Use sqlite Write Ahead Logging
  • -n/--stdin
    • Hash data from stdin instead of files
  • -m/--max-depth
    • Maximum number of directories to traverse (default: 30)
  • -L/--no-follow-symlinks
    • Do not follow symlinks (useful in case there are loops)
  • -b/--breadth-first
    • Hash all files in the top level directory first before lower level directories
  • -t/--dry-run
    • Run without actually saving anything
  • -D/--db-path
    • Override the database path from config
  • -z/--compress
    • Compress files when writing to disk (for copy/download)
  • -C/--hash-compressed
    • Hash the compressed file instead of uncompressed
  • -x/--decompress
    • Decompress gzip compressed files before hashing
  • -B/--hash-both
    • Hash both compressed and decompressed content for compressed files
  • -U/--hash-uncompressed
    • Always hash the uncompressed content even when source is compressed
  • --compression-level
    • Compression level (1-9, default: 6)

Compression Handling

The compression functionality in hasher is provided as a convenience feature and currently only supports gzip. File compression state is determined solely by the .gz file extension. When using compression-related options, here are important behaviors to understand:

  • Flag Precedence: When multiple compression flags are used together, they follow this precedence:

    1. --hash-both takes highest precedence (hashes both compressed and uncompressed content)
    2. --hash-uncompressed or --decompress (hashes uncompressed content)
    3. --hash-compressed (hashes compressed content)
    4. Default behavior (hashes the file in its current state)

  • Copy Command: When using copy -z, files are compressed at the destination and get a .gz extension. By default, the hash is calculated from the source file (uncompressed) unless specified otherwise.

  • Download Command: URLs downloaded with download -z are saved with a .gz extension and are compressed during download.

  • Verification: When verifying compressed files, the same compression flag used during hashing must be used for verification to match properly.

Command Line Options vs Config File

Command line options always override settings in the config file. The config file (default: config.toml) primarily controls:

  1. Which hash algorithms are calculated (default: CRC32, MD5, SHA1, and SHA256)
  2. Database configuration (path and table name)

Database Behavior

  • The default database path is myhashes.db in the current directory
  • SQLite Write-Ahead Logging (WAL) can be enabled with -w for better performance with concurrent access
  • The database is automatically created if it doesn't exist
  • Database operations use automatic retries if the database is locked (e.g., by another process)
  • Each successful hash operation inserts a record with the file path, size, and enabled hash algorithms

Path Handling Notes

  • Windows paths are handled automatically with special handling for \\?\ prefixes
  • The download command creates directory structures based on the URL path components (hostname/path/filename)
  • Path sanitization is applied to downloaded filenames to ensure they're valid on the filesystem

hash: Hash Files/Directories

hasher hash [OPTIONS] [SOURCE]

Hash files in a directory. If no source is provided, the current directory is used.

Special options:

  • -n/--stdin
    • Hash data from stdin instead of files

verify: Verify Hashes

hasher verify [OPTIONS]

Verify files against stored hashes in the database.

Special options:

  • -M/--mismatches-only
    • Only output when files fail to verify

copy: Copy Files

hasher copy [OPTIONS] <SOURCE> <DESTINATION>

Copy files while hashing them.

Special options:

  • -S/--store-source-path
    • Store source path instead of destination path in database
  • -k/--skip-existing
    • Skip copying files that already exist in the destination
  • -H/--no-hash-existing
    • Skip hash comparison when checking existing files (only check if it exists/size)

download: Download Files

hasher download [OPTIONS] <SOURCE> <DESTINATION>

Download and hash files. SOURCE can be either a URL or a file containing URLs (one per line).

Special options:

  • -N/--no-clobber
    • Do not replace already downloaded files

Config File

The config file (default config.toml) controls which hashes are calculated, database settings, and can provide defaults for all command line options. See the example config.toml in the repository root for all available options.

The config file has three main sections:

  • [database] - Controls database connection and table name
  • [hashes] - Controls which hash algorithms are enabled (true/false)
  • [options] - Provides defaults for command line options

All command line options can be specified in the config file as defaults, which makes it easy to create standard configurations for different purposes. For example:

[options]
pretty_json = true        # Always pretty-print JSON output
max_depth = 50            # Set a deeper directory traversal than default
compression_level = 9     # Use maximum compression

If a config file is not found, the program will run with sensible defaults (CRC32, MD5, SHA1, and SHA256 algorithms enabled).

Note: Command line options always take precedence over config file settings. This allows you to override specific options without modifying the config file.

Supported Hashes

The following hashes are supported:

  • CRC32
  • MD2, MD4, MD5
  • SHA-1
  • SHA-2 (SHA-224 through SHA-512)
  • SHA-3 (SHA3-224 through SHA3-512)
  • BLAKE2 (Blake2s256, Blake2b512)
  • BelT
  • Whirlpool
  • Tiger/Tiger2
  • Streebog (GOST R 34.11-2012)
  • RIPEMD (128/160/256/320)
  • FSB
  • SM3
  • GOST R 34.11-94
  • Grøstl
  • SHABAL

Testing

There are some unit tests for the crucial bits of the which can be tested with:

cargo test

However the test.py script has been created to test that the major user-facing functions are working:

python3 test.py

The only requirements for this script are a reasonably modern version of Python 3.

Code Style

hasher follows rustfmt code style, and it can be applied in a single command with:

rustfmt --edition 2021 src/*.rs src/commands/*.rs

Notes

Memory Integrity

While hasher being written in Rust makes it immune to memory safety bugs, hasher does not have any protections against issues that may compromise memory integrity like cosmic bitflips. This is not a concern for most activities on servers that have ECC memory, however this is important to keep in mind if you are doing very large amounts of hashing on conventional computers with non-ECC memory. Trust, but verify.

Changelog

See docs/CHANGELOG.md for version history.

Other

Sponsored by 📼 🚙

About

Multithreaded parallel hashing utility

Resources

Readme

License

Apache-2.0 license
Activity

Stars

7 stars

Watchers

1 watching

Forks

0 forks
Report repository

Languages