Add hash operator class for cross-document equality

[tobyhede]

Problem

PostgreSQL hash-based operations (hash joins, GROUP BY, DISTINCT,
UNION) on eql_v2_encrypted columns were not supported. The planner
could only use nested loop or merge join strategies for encrypted
column equality, and the HASHES flag was incorrectly set on
cross-type operators where independent hashing of each side is not
possible.

Solution

• Add eql_v2.hash_encrypted() function that computes a 32-bit
  integer hash from HMAC-256 or Blake3 index terms, with HMAC priority
• Register a PostgreSQL hash operator class for eql_v2_encrypted
  with the same-type equality operator
• Remove HASHES from cross-type (encrypted/jsonb) and non-equality
  operators (<>, ~~, ~~*) since hash joins require independent hashing
  of each side
• Update Supabase build exclusion glob to also exclude
  hash_operator_class.sql

Summary by CodeRabbit

• New Features

  • Enables hash-based operations on encrypted columns (hash joins, GROUP BY, DISTINCT, UNION) via a new dedicated hash operator class.

• Bug Fixes / Reliability

  • Hashing now prefers Blake3 then HMAC for consistent encrypted-value hashes; clear errors when required hash terms are missing.
  • Adjusted operator declarations to align with the new hash class.

• Tests

  • Added extensive tests covering hash joins, grouping, DISTINCT, UNION, nulls, cross-type comparisons, and error paths.

• Chores

  • Broadened build tooling discovery for operator-class SQL files.

[tobyhede]

@CodeRabbit full review

[coderabbitai]

✅ Actions performed

Full review triggered.

[coderabbitai]

📝 Walkthrough

Walkthrough

Adds hash support for encrypted values: new function eql_v2.hash_encrypted, a hash operator family/class, removal of HASHES flags from several operators, a build script glob change, and extensive sqlx tests exercising hash joins and related behaviors.

Changes

Cohort / File(s)	Summary
Hash Function Implementation src/encrypted/hash.sql	Creates eql_v2.hash_encrypted(val eql_v2_encrypted) RETURNS integer that converts to STE Vec and returns Blake3 hashtext if present, else HMAC-256 hashtext, otherwise raises an exception.
Hash Operator Infrastructure src/operators/hash_operator_class.sql	Adds eql_v2.encrypted_hash_operator_family (USING hash) and eql_v2.encrypted_hash_operator_class (DEFAULT FOR TYPE eql_v2_encrypted USING hash) with OPERATOR 1 = = and FUNCTION 1 = eql_v2.hash_encrypted(...).
Operator Flag Removals src/operators/=.sql, src/operators/<>.sql, src/operators/~~.sql	Removes HASHES from multiple operator declarations (equality, inequality, pattern-match variants across eql_v2_encrypted ↔ eql_v2_encrypted, eql_v2_encrypted ↔ jsonb, and jsonb ↔ eql_v2_encrypted); retains MERGES and other clauses.
Build Script tasks/build.sh	Changes Supabase exclusion pattern from **/operator_class.sql to **/*operator_class.sql, broadening matched filenames during dependency discovery.
Hash Operation Test Suite tests/sqlx/tests/hash_operator_tests.rs	Adds extensive tests for hash joins, GROUP BY, DISTINCT, UNION, IN/NOT IN, self-joins, direct hash_encrypted calls, error cases when indexes absent, NULL and STE vector edge cases, and forced hash join execution.
Operator Class Test Update tests/sqlx/tests/operator_class_tests.rs	Refactors group_by_encrypted_column test to use a sqlx fixture (../fixtures/encrypted_json) and create_encrypted_json inserts instead of manual ORE-encrypted copying.

Sequence Diagram

sequenceDiagram
    participant Client as Client
    participant PG as PostgreSQL
    participant OpClass as "eql_v2.encrypted_hash_operator_class"
    participant HashFn as "eql_v2.hash_encrypted"

    Client->>PG: Submit query using hash operation (HASH JOIN / GROUP BY / DISTINCT)
    PG->>OpClass: Resolve hash operator class for encrypted type
    PG->>HashFn: Call eql_v2.hash_encrypted(encrypted_val)
    HashFn->>HashFn: Convert value to STE Vec
    alt Blake3 index exists
        HashFn->>HashFn: Return hashtext(blake3_value)
    else HMAC-256 index exists
        HashFn->>HashFn: Return hashtext(hmac_256_value)
    else Neither exists
        HashFn->>HashFn: Raise exception
    end
    HashFn->>PG: Return integer hash
    PG->>PG: Use hash for join/grouping/distinct
    PG->>Client: Return results

Loading

Estimated Code Review Effort

🎯 4 (Complex) | ⏱️ ~45 minutes

Poem

🐇 I nibble code in moonlit rows,
Blake3 leads where starlight goes,
HMAC hums its steady tune,
Hash joins hop beneath the moon,
Encrypted fields now dance in rows.

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title clearly describes the main change: adding a hash operator class for encrypted columns to enable hash-based operations.
Docstring Coverage	✅ Passed	Docstring coverage is 100.00% which is sufficient. The required threshold is 80.00%.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing touches

• 📝 Generate docstrings

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch cross-document-eq

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

🤖 Fix all issues with AI agents

In `@tests/sqlx/tests/hash_operator_tests.rs`:
- Around line 586-600: The SET LOCAL statements and the join query must run on
the same connection inside an explicit transaction: begin a transaction (e.g.,
let mut tx = pool.begin().await?), run sqlx::query("SET LOCAL enable_nestloop =
off").execute(&mut tx).await?, sqlx::query("SET LOCAL enable_mergejoin =
off").execute(&mut tx).await?, then run the join with
sqlx::query_scalar(...).fetch_one(&mut tx).await?. Finally commit the
transaction (tx.commit().await?). Keep the existing error context ("forced hash
join failed") on the fetch_one call.

🧹 Nitpick comments (1)

tests/sqlx/tests/hash_operator_tests.rs (1)

183-213: Avoid probabilistic hash inequality assertions.

hash1 != hash3 is extremely likely but not guaranteed for 32‑bit hashes. Consider removing the probabilistic assertion to prevent rare flakes.

Proposed change

-    // Different encrypted values may produce different hashes (very likely but not guaranteed)
-    let hash3: i32 = sqlx::query_scalar("SELECT eql_v2.hash_encrypted(create_encrypted_json(2))")
-        .fetch_one(&pool)
-        .await
-        .context("hash_encrypted call 3 failed")?;
-
-    // While hash collisions are theoretically possible, these test values should differ
-    assert_ne!(
-        hash1, hash3,
-        "Different encrypted values should (almost certainly) produce different hashes"
-    );

[coderabbitai]

Actionable comments posted: 1

🤖 Fix all issues with AI agents

In `@tests/sqlx/tests/hash_operator_tests.rs`:
- Around line 391-414: The test hmac_and_blake3_produce_different_hashes
currently uses assert_ne! on two i32 hashes returned by
eql_v2.hash_encrypted(create_encrypted_json(...)) which leaves a tiny flake risk
from 32‑bit collisions; fix by replacing the non-deterministic inequality check
with a deterministic check against fixed expected values (compute the expected
hash outputs for create_encrypted_json(1, 'hm') and create_encrypted_json(1,
'b3') once and use assert_eq! on the scalar results), or if a longer digest is
available, change the SQL to return the full digest/bytea and compare those
bytes instead; if neither is possible, add a clear comment in
hmac_and_blake3_produce_different_hashes acknowledging the tiny collision risk
and keep the assertion.

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Rare flake risk from 32‑bit hash collision.
assert_ne! on two 32‑bit hashes can collide (very low probability). If you want to eliminate even tiny flake risk, consider asserting against a fixed test vector or adding a note acknowledging the collision risk.

🤖 Prompt for AI Agents

In `@tests/sqlx/tests/hash_operator_tests.rs` around lines 391 - 414, The test
hmac_and_blake3_produce_different_hashes currently uses assert_ne! on two i32
hashes returned by eql_v2.hash_encrypted(create_encrypted_json(...)) which
leaves a tiny flake risk from 32‑bit collisions; fix by replacing the
non-deterministic inequality check with a deterministic check against fixed
expected values (compute the expected hash outputs for create_encrypted_json(1,
'hm') and create_encrypted_json(1, 'b3') once and use assert_eq! on the scalar
results), or if a longer digest is available, change the SQL to return the full
digest/bytea and compare those bytes instead; if neither is possible, add a
clear comment in hmac_and_blake3_produce_different_hashes acknowledging the tiny
collision risk and keep the assertion.

[freshtonic]

I see that the underlying hash is only 32 bits. That's quite limiting for a hash collision perspective (see below).

Upon hash collision do we fall back to performing equality on the hash index term (rather than the derived 32 bit hash)?

[freshtonic]

I'm concerned about the 32 bit hash size due to weak collision resistance. ~80K items is all that is required for a 50% chance of a collision.

This might not be a problem if the operator class falls back to an equality check on the full index term when the smaller hash collides.

[freshtonic]

Left some comments.