add improved std.hash.int - deprecate std.hash.uint32 #21858
Conversation
|
Thank you for the research! Running both the hash functions in a "counter mode" construction, I tested them using PractRand: As you can see, the current uint32 fails at 256 MiB: The 32 bit hash function in this PR fails at 1 GiB: (1/4 the state space!) The statistical tests in the PractRand suite are very advanced (even compared to TestU01's BigCrush, which is limited in duration) - I feel this is good evidence we should switch to the new one in this PR. While less common, I feel that the 64 and 16 bit hash functions would also be nice. One thought though for maintainers, would it be worth it to include a hashUsize function, that switches over @bitSizeOf(usize), selecting one of these functions? |
There was a problem hiding this comment.
Thank you. Can you please make the function accept the integer type as a parameter, and soft-deprecate the old function (make it keep working but documented as deprecated)?
Just switch on the integer type and put @compileError("unimplemented") for the unhandled cases. Or, feel free use the other std.hash abstractions to support those kind of integers.
pub fn int(input: anytype) @TypeOf(input) {
switch (@TypeOf(input)) {
u32 => { ... },
u64 => { ... },
francescoalemanno
force-pushed
the
patch-1
branch
from
76a7ed7 to
92ca5a6
Compare
francescoalemanno
changed the title
|
I believe it is now ready to be merged :) |
andrewrk
added
standard library
|
I pushed 2 commits after yours and force pushed to the branch, and set to auto-merge. Would you please look at the last commit that I added there, and consider that approach? Is there any concern about bias when using the upcasting and truncation strategy? |
Head branch was pushed to by a user without write access
|
Alright this is getting a bit chaotic for me. I'd like to see performance benchmarks on this before it lands. It looks like significantly more instructions now for u32. |
|
Sorry Andrew, I meant well with my sudden modifications :) the excellent news is that it reaches 4 Gigs without failing: this in turn implies that the properties of this hash are much better, perhaps to an excessive amount... |
|
Both are important factors |
|
I do agree with that, the new construction is ~ 12 times slower, but it does not depends on a lot of magic and tuned constants which helps in writing generic code. edit: brought it down to ~4 times slower without sacrificing quality. it passed 8gb practrand, so 4 times slower but 8 times more reliable w.r.t. to the previous version. I will look around for some more tricks to trim it down further. edit v2: I realized that optimizing a non-crypto hash to pass practrand is unnecessary (sorry for the wasted time Andrew...), I found a good middle ground that fixes the statistical artifacts while keeping the hasher performant. Now it looks good to me @andrewrk. |
francescoalemanno
force-pushed
the
patch-1
branch
from
53ff3de to
dcbbed4
Compare
|
finally all requirements for a good bit-mixer are met:
@andrewrk, if there are other requirements before merging let me know, and thank you. |
|
It looks like you've managed to reveal a bug in the C backend. The next step here will be extracting a reduced behavior test case from this code that triggers the bug and getting that fixed in master branch. Then we can come back and rebase this branch. By the way, how are you measuring performance? Can you write that down somewhere in the PR description? |
|
Oh okay! I do not have a Linux machine with me currently, is there any way I can help? Benchmarking strategy This benchmarking function times a given hashing function by running it on a range of values (up to 2^32−1), recording the execution time for each run, and keeping track of the best (fastest) observed time. It uses an accumulator, x, to avoid compiler optimizations. After five iterations, it returns the fastest recorded time in milliseconds. |
|
Thanks! If you want to get involved and learn about the C backend you can help out there, otherwise, sit tight and we'll get it fixed and then ping you when it's fixed. |
|
I've reduced the C backend bug and opened it as #21914. |
|
Since the C-backend bug blocked this PR, I figured there was some extra time to squeeze some more performance & quality. I devised some better metrics to evaluate the quality, and now I can see it is pareto optimal. The enhanced quality of the hasher is also noticed in practice: |
|
I have some bad news - Not completely sure the metrics that are being used, but I feel that the implementation is getting a bit "too smart" for it's original purpose. I won't say that I fully understand the testing, but I feel that we could still do better in terms of quality & speed. I do think that there may have been some testing accuracy drift over the past few commits, because the current code for 32 bits fails at 1 GiB for me (and 512 MiB is "suspicious" according to PractRand). I would like to propose a less "autogenerated" hash function. I do understand that it is really nice to be able to automagically hash any integer bit width, but it seems that the current code may be performing sub-par to what I originally reviewed. I would also like to make a case for lower quality, higher throughput hash functions - If people want a high quality hash function, they can always reach into std.hash for cryptographic hash functions, or a specific construction with high quality output. I feel that the number one use-case for this easy-to-reach hash function will be game & architecture developers who "just want a hash" without all the hastle - which means that speed of the hash may be more important than "perfect hash quality". This isn't to say that the current ideas behind the implementation are bad or inferior, I just think that the original code I tested may have been better (in terms of use-cases) than the current code. To satisfy the "make an int function that hashes any bit width", I propose that something along the lines of the following code is introduced: pub fn int(x: anytype) @TypeOf(input) {
switch (@bitSizeOf(input)) {
0 => return 0,
1 => return ~x,
2...8 => return x *% @as(@TypeOf(x), @truncate(0x77)),
16 => return uint16(x), // non-pub decl in current file
32 => return uint32(x), // eventually non-pub decl in current file
64 => return uint64(x), // non-pub decl in current file
else => @compileError("int() function not implemented for current type"),
};
}Current PR Hash Function Test ResultsCurrent PR Hash Function Testing Codeconst std = @import("std");
pub fn main() !void {
const endian = @import("builtin").cpu.arch.endian();
const stdout = std.io.getStdOut().writer();
var bw = std.io.bufferedWriter(stdout);
const writer = bw.writer();
var input: u32 = 0;
while (true) : (input +%= 1) {
const hash = int(input);
writer.writeInt(u32, hash, endian) catch unreachable;
}
try bw.flush();
}
/// Applies a bit-mangling transformation to an integer type `T`.
pub fn int(input: anytype) @TypeOf(input) {
const int_type = @TypeOf(input);
const bits = @typeInfo(int_type).int.bits;
const Unsigned = @Type(.{ .int = .{ .signedness = .unsigned, .bits = bits } });
var x: Unsigned = @bitCast(input);
if (bits == 0) {
x = 0;
} else if (bits == 1) {
x = ~x;
} else if (bits == 2) {
const d = x +% 1;
x = ~((d >> 1) | (d << 1));
} else {
const constants = comptime blk: {
const shift_1 = (bits >> 1);
const shift_2 = shift_1 + 1;
var rng = @import("std").Random.Pcg.init(0xc8dea3c3eab7eaa1);
const sampler = rng.random();
const v = .{
.add = sampler.int(Unsigned),
.mulshifts = .{
.{ sampler.int(Unsigned) | 1, shift_2 },
.{ sampler.int(Unsigned) | 1, shift_1 },
.{ sampler.int(Unsigned) | 1, shift_2 },
.{ sampler.int(Unsigned) | 1, shift_1 },
},
};
break :blk v;
};
x +%= constants.add;
inline for (constants.mulshifts) |ms| {
x *%= ms[0];
x ^= x >> ms[1];
}
}
return @bitCast(x);
}EDIT: Here is one path you could try - I find this code better aligns with what I am thinking: Example code for PR, feel free to steal/// Easy & fast hash function for integer types
pub fn int(input: anytype) @TypeOf(input) {
// This function is only intended for integer types
comptime assert(@typeInfo(@TypeOf(input)) == .int);
const bits = @typeInfo(@TypeOf(input)).int.bits;
// Convert input to unsigned integer (easier to deal with)
const Uint = @Type(.{ .int = .{ .bits = bits, .signedness = .unsigned } });
const u_input: Uint = @bitCast(input);
// For bit widths that don't have a dedicated function, use a heuristic
// construction with a multiplier suited to diffusion -
// a mod 2^bits where a^2 - 46 * a + 1 = 0 mod 2^(bits + 4)
const mult: Uint = @truncate(0x4ff55ba64bb740e1_35db2be3690a61d3);
// The bit width of the input integer determines how to hash it
const output = switch (bits) {
0...15 => u_input *% mult,
16 => uint16(u_input),
32 => uint32(u_input),
64 => uint64(u_input),
else => blk: {
// Might be better to just have a @compileError("unsupported");
var x: Uint = u_input;
inline for (0..4) |_| {
x ^= x >> (bits / 2);
x *%= mult;
}
break :blk x;
},
};
return @bitCast(output);
}
// Source: https://github.com/skeeto/hash-prospector
fn uint16(input: u16) u16 {
var x: u16 = input;
x = (x ^ (x >> 7)) *% 0x2993;
x = (x ^ (x >> 5)) *% 0xe877;
x = (x ^ (x >> 9)) *% 0x0235;
x = x ^ (x >> 10);
return x;
}
// DEPRECATED: use std.hash.int()
// Source: https://github.com/skeeto/hash-prospector
pub fn uint32(input: u32) u32 {
var x: u32 = input;
x = (x ^ (x >> 17)) *% 0xed5ad4bb;
x = (x ^ (x >> 11)) *% 0xac4c1b51;
x = (x ^ (x >> 15)) *% 0x31848bab;
x = x ^ (x >> 14);
return x;
}
// Source: https://github.com/jonmaiga/mx3
fn uint64(input: u64) u64 {
var x: u64 = input;
const c = 0xbea225f9eb34556d;
x = (x ^ (x >> 32)) *% c;
x = (x ^ (x >> 29)) *% c;
x = (x ^ (x >> 32)) *% c;
x = x ^ (x >> 29);
return x;
} |
|
Reminder that I marked an earlier state of this branch as auto-merge. I think it was a mistake to force-push again rather than wait until that landed and propose a new change. |
|
@RetroDev256 : past PR and current PR failt practrand at 1GiB, still 4 times bigger than stdlib current default. the metric used is to minimise 1 point correlation function and 2 points correlation functions over the variable "hash(r)^hash(r xor (1<<b))", r,b random in their respective ranges. these two metrics suffice to ensure uniformity of diffusion and bit independence (the qualities needed for a non-crypto hash). @andrewrk : Sorry, I was under the impression that after merging it would become unchangeable for a very long time. And I felt that it could be improved. In any case, I am in favor of reverting to a more controllable implementation, can I just put a few tweaks on top of RetroDev proposal (which is the natural evolution of the branch that was to be automerged... sorry guys) and move forward? Modifications:
Proposed version
/// Easy & fast hash function for integer types
pub fn int(input: anytype) @TypeOf(input) {
// This function is only intended for integer types
const input_type = @typeInfo(@TypeOf(input));
if (input_type != .int) @compileError("std.hash.int only works on integer types.");
const bits = input_type.int.bits;
// Convert input to unsigned integer (easier to deal with)
const Uint = @Type(.{ .int = .{ .bits = bits, .signedness = .unsigned } });
const u_input: Uint = @bitCast(input);
if (bits > 256) @compileError("bit widths > 256 are unsupported, use std.hash.autoHash functionality.");
// For bit widths that don't have a dedicated function, use a heuristic
// construction with a multiplier suited to diffusion -
// a mod 2^bits where a^2 - 46 * a + 1 = 0 mod 2^(bits + 4),
// on Mathematica: bits = 256; BaseForm[Solve[1 - 46 a + a^2 == 0, a, Modulus -> 2^(bits + 4)][[-1]][[1]][[2]], 16]
const mult: Uint = @truncate(0xfac2e27ed2036860a062b5f264d80a512b00aa459b448bf1eca24d41c96f59e5b);
// The bit width of the input integer determines how to hash it
const output = switch (bits) {
0...2 => u_input *% mult,
16 => uint16(u_input),
32 => uint32(u_input),
64 => uint64(u_input),
else => blk: {
var x: Uint = u_input;
inline for (0..4) |_| {
x ^= x >> (bits / 2);
x *%= mult;
}
break :blk x;
},
};
return @bitCast(output);
}
// Source: https://github.com/skeeto/hash-prospector
fn uint16(input: u16) u16 {
var x: u16 = input;
x = (x ^ (x >> 7)) *% 0x2993;
x = (x ^ (x >> 5)) *% 0xe877;
x = (x ^ (x >> 9)) *% 0x0235;
x = x ^ (x >> 10);
return x;
}
// DEPRECATED: use std.hash.int()
// Source: https://github.com/skeeto/hash-prospector
pub fn uint32(input: u32) u32 {
var x: u32 = input;
x = (x ^ (x >> 17)) *% 0xed5ad4bb;
x = (x ^ (x >> 11)) *% 0xac4c1b51;
x = (x ^ (x >> 15)) *% 0x31848bab;
x = x ^ (x >> 14);
return x;
}
// Source: https://github.com/jonmaiga/mx3
fn uint64(input: u64) u64 {
var x: u64 = input;
const c = 0xbea225f9eb34556d;
x = (x ^ (x >> 32)) *% c;
x = (x ^ (x >> 29)) *% c;
x = (x ^ (x >> 32)) *% c;
x = x ^ (x >> 29);
return x;
}
test int {
const expectEqual = @import("std").testing.expectEqual;
try expectEqual(0x1, int(@as(u1, 1)));
try expectEqual(0x3, int(@as(u2, 1)));
try expectEqual(0x4, int(@as(u3, 1)));
try expectEqual(0xD6, int(@as(u8, 1)));
try expectEqual(0x2880, int(@as(u16, 1)));
try expectEqual(0x2880, int(@as(i16, 1)));
try expectEqual(0x42741D6, int(@as(u32, 1)));
try expectEqual(0x42741D6, int(@as(i32, 1)));
try expectEqual(0x71894DE00D9981F, int(@as(u64, 1)));
try expectEqual(0x71894DE00D9981F, int(@as(i64, 1)));
try expectEqual(0x91206B847D4F47139E1F2030092AF020, int(@as(u128, 1)));
try expectEqual(0x4755A1E0654CF625CED5ECA95965DAD55E332680070C074EA7659F74AA4243EE, int(@as(u256, 1)));
try expectEqual(0x4755A1E0654CF625CED5ECA95965DAD55E332680070C074EA7659F74AA4243EE, int(@as(i256, 1)));
}
|
|
Thank you for this PR @francescoalemanno, I really like the effort you put into this. LGTM. |
lib/std/hash.zig
Outdated
| /// detour through many layers of abstraction elsewhere in the std.hash | ||
| /// namespace. | ||
| /// Copied from https://nullprogram.com/blog/2018/07/31/ | ||
| /// Easy & fast hash function for integer types |
There was a problem hiding this comment.
Please avoid words like "easy" and "fast" in doc comments. These are subjective feelings that do not belong in technical writing.
| /// Easy & fast hash function for integer types | |
| /// Integer to integer hashing for bit widths <= 256. |
Before, the default bit mixer was very biased, and after a lot of searching it turns out that selecting a better solution is hard. I wrote a custom statistical analysis taylored for bit mixers in order to select the best one at each size (u64/u32/u16), compared a lot of mixers, and packaged the best ones in this commit.
also * allow signed ints, simply bitcast them to unsigned * handle odd bit sizes by upcasting and then truncating * naming conventions * remove redundant code * better use of testing API
In the parent commit, I handled odd bit sizes by upcasting and truncating. However it seems the else branch is intended to handle those cases instead, so this commit reverts that behavior.
Uses the non rational solution of a quadratic, I made it work up to 256 bits, added Mathematica code in case anyone wants to verify the magic constant. integers between sizes 3...15 were affected by fatal bias, it is best to make them pass through the generic solution. Thanks to RetroDev256 & Andrew feedback.
It turns out that Zig's default bit mixer is very biased, and after a lot of googling it turns out that selecting a better solution is hard...
I wrote a custom statistical analysis taylored for bit mixers in order to select the best one at each size (u64/u32/u16), compared a lot of mixers, and packaged the best ones in this PR.
TESTING CODE here