Refactor bitcoin_merkle_root functions

[tcharding]

Do two minor refactorings to the `bitcoin_merkle_root[_inline] functions.

This PR has grown, is no longer a refactoring because the two functions have been changed to return an Option.

First patch is cleanup. Here is the commit message for the second patch

The merkle_root of an empty tree is undefined, this is the only error
case we have for the two `bitcoin_merkle_root*` functions. We can fully
describe this error case by returning an `Option` if args are found to
be empty.

While we are at it, refactor out a recursive helper function to make
reading the code between the two functions easier.

[Kixunil]

Very good!

ACK 150d9559f164164a5fb30897bec9336a54af0e05

[dr-orlovsky]

Yes, this makes code much more readable. However it seems like there is a way to get rid from unnecessary unwrap as well

[tcharding]

I've added two more patches that quite heavily refactor the two functions in question. Please re-review at your leisure, this work is really just for the pure fun of beautiful code.

(Includes fix to typo that I recently introduced 'merkel' -> 'merkle' :(

[dr-orlovsky]

I think that we should return a error and not panic if the tree is empty, since it may be quite a common situation

[dr-orlovsky]

This can be improved even more by

match data.len() {
    O => panic!(),
    1 => data[1],
    2 => merkle_root_r(data),
}

[tcharding]

I deleted my original thoughts because they turned out to be wrong and were really long. PR now includes this suggestion.

[Kixunil]

This same condition is in markle_root_r, so probably not needed here.

[tcharding]

I added it there for two reasons:

1. It gives a line of code that can carry the code comment
2. In merkle_root_r this call is the recursion base case, here it is not, so slightly different

I was trying to separate the recursion from the two 'higher' functions.

[Kixunil]

Unrelated but I think ExactSIzeIterator is not actually required. Just allocate Vec based on size_hint and let the Vec resize itself if the hint is incorrect (that's actually what happens today - len is not strictly guaranteed to be correct).

[tcharding]

But then we cannot call iter.len()?

[Kixunil]

I don't think we need to:

let first = iter.next()?;
let second = match iter.next() {
    Some(second) => second,
    // A single hash is by definition the merkle root.
    None => return Some(first),
};
let (min, max) = iter.size_hint();
let mut hashes = Vec::with_capacity(max.unwrap_or(min) / 2 + 1);
let iter = [first, second].iter().chain(iter);
// Continue using `hashes` and `iter` as before.

Note: s/hashes/alloc/g, s/iter/hashes per latest change.

[tcharding]

let iter = [first, second].iter().chain(iter);

I couldn't get this line to build, I used instead:

let mut hashes = iter::once(first).chain(iter::once(second)).chain(hashes);

[Kixunil]

I think it'd be nice to highlight the word "hashes" here and above to make it more obvious it's not data.

[tcharding]

Nice, more descriptive and further unifies the functions!

[Kixunil]

I believe you forgot about highlighting.

[Kixunil]

Looks good, had a few more ideas. I'm unsure if panic! is better than Option but I think Result would be overkill.

[tcharding]

I think that we should return a error and not panic if the tree is empty, since it may be quite a common situation

Thanks for the review @dr-orlovsky, I'm leaning towards @Kixunil suggestion of using an Option. I'll outline the reasoning here to make sure I'm not missing something in your suggestion of returning an error.

• No panic because if we panic we are placing a burden on the caller to check their input
• If the merkle root of an empty tree is undefined then its not really an error to try and calculate it it just does not exist, implies Option
• There is only one error case with no additional information other than 'input was empty', Option fully describes this case

I'll push this change, please comment though if you'd like me to re-consider using an error.

[dr-orlovsky]

I think the Option is fine. I was not that much about error as much about not panicking

[tcharding]

I'm not sure what is the accepted protocol re force pushing in rust-bitcoin? I've tried to find a balance between keeping the PR consisting of sane, easily reviewed patches and making reviewers have to re-review everything again. If there are any strong opinions on force pushing, please let me know. Thanks again for all the reviews.

[tcharding]

I think the Option is fine. I was not that much about error as much about not panicking

Cool, thanks. Easy consensus :)

[dr-orlovsky]

@tcharding from my experience here it seems that force-pushes are more preferable than bloating commit log with fix commits. As for re-ACKs, the normal solution for that is using git diff (if no rebase happened), git range-diff master <old-commit> <new-commit> so this does not make a big problem

[dr-orlovsky]

utACK e0e708b1a4af00fa735c2fb16cb895499ebbef12

[tcharding]

This PR was getting out of control, I've squashed all the hash.rs changes into a single commit. Please re-review at your leisure :)

[Kixunil]

I believe at least undocumented panics should be resolved.

[Kixunil]

I believe you forgot about highlighting.

[tcharding]

I believe you forgot about highlighting.

I don't understand this comment @Kixunil, can you repeat please? (There is no response box under the original comment for some reason.)

[Kixunil]

I suggested adding asterisks around the word "hashes" in the docs, so it becomes hashes. This will make it clear it's not data. I guess you misunderstood what I meant by "highlighting".

[Kixunil]

ACK 086f4807bad8cb5d06f2b8bbc9d1c506d4822328

Nice improvement! I consider my comments to be optional.

[Kixunil]

Maybe this is nicer, I'm not sure, do as you wish.

self.merkle_root()
    .map(|merkle_root| self.header.merkle_root == merkle_root)
    .unwrap_or(false)

[tcharding]

I played with the combinator here as suggested and also on the call to self.witness_root(). It wasn't clearly better either way to me so I ended going with the code as it is since seemed slightly easier to read.

[tcharding]

I suggested adding asterisks around the word "hashes" in the docs, so it becomes hashes. This will make it clear it's not data. I guess you misunderstood what I meant by "highlighting".

Ooooh, my bad, good idea. Will add.

[tcharding]

Added italics to 'hashes' as suggested, rebased, force pushed.

[Kixunil]

ACK b454cf8

[dr-orlovsky]

Seems like we have a bug in the implementation - pls see my comment

[dr-orlovsky]

ACK b454cf8

[tcharding]

'one-ack' badge is stale :)

Thanks for all the reviews fellas.

[Kixunil]

Would merge it but I still didn't setup commit signing properly. My understanding is it's not nice to merge without it.