tags:

views:

299

answers:

3
+1  Q: 

Python - Why use anything other than uuid4() for unique strings?

I see quit a few implementations of unique string generation for things like uploaded image names, session IDs, et al, and many of them employ the usage of hashes like SHA1, or others.

I'm not questioning the legitimacy of using custom methods like this, but rather just the reason. If I want a unique string, I just say this:

>>> import uuid
>>> uuid.uuid4()
UUID('07033084-5cfd-4812-90a4-e4d24ffb6e3d')

And I'm done with it. I wasn't very trusting before I read up on uuid, so I did this:

>>> import uuid
>>> s = set()
>>> for i in range(5000000):  # That's 5 million!
>>>     s.add(uuid.uuid4())
...
...
>>> len(s)
5000000

Not one repeater (I wouldn't expect one now considering the odds are like 1.108e+50, but it's comforting to see it in action). You could even half the odds by just making your string by combining 2 uuid4()s.

So, with that said, why do people spend time on random() and other stuff for unique strings, etc? Is there an important security issue or other regarding uuid?

+1  A: 

One possible reason is that you want the unique string to be human-readable. UUIDs just aren't easy to read.

Jason Baker  2010-03-12 18:37:43
+2  A: 

Well, sometimes you want collisions. If someone uploads the same exact image twice, maybe you'd rather tell them it's a duplicate rather than just make another copy with a new name.

Ben Voigt  2010-03-12 18:38:06
@Ben, Wouldn't you just save the image name as another field in the row, and use programming logic to overwrite the existing image, or say "oops" when they upload the same image again.
orokusaki  2010-03-12 18:40:12
His point is still valid: sometimes you want collisions, and GUIDs don't offer them.Having said that, anyone who is using SHA-1 to find a *unique* string is probably doing something wrong, since its output is almost certainly less unique than its input.
ladenedge  2010-03-12 18:47:13
@ladenedge I think the SHA1 is part of the equation just to make a more normalized value (in case there are spaces, etc).
orokusaki  2010-03-12 19:11:11
@orokusaki: the image name is _generated_, according to the first line of the question. So how is that going to help you identify duplicates, unless it's a hash on the content?
Ben Voigt  2010-03-12 19:39:27
@Ben Here's my DB row `[image_name, image_filename, some_other_field, so_on_and_so_on]`. If I get a request to add a new image with an existing `image_name`, I just find the matching `image_filename` and replace that. Who would use the actual image file name for their system of record? I'm developing a multiple tenant architecture, so 5000 clients might have uploaded `logo.jpg`. I wouldn't rely just on having separate folders for each client because then if I change my file system to some cool new S3-like system I don't want to have to create new buckets for each client. That's a nightmare.
orokusaki  2010-03-14 16:26:13
+1  A: 

uuids are long, and meaningless (for instance, if you order by uuid, you get a meaningless result).

And, because it's too long, I wouldn't want to put it in a URL or expose it to the user in any shape or form.

hasen j  2010-03-12 18:41:50

related questions

Programmatically talking to a Serial Port in OS X or Linux
Best ways to teach a beginner to program?
Calling a Function From a String With the Function's Name in Python
An executable Python app
Text Editor For Linux (Besides Vi)?
What Hosting Service is best for Django applications?
File size differences after copying a file to a server vía FTP
Python: what is the difference between (1,2,3) and [1,2,3], and when should I use each?
Python: What OS am I running on?
How do I make a menu in python that does not require the user to press (enter) to make a selection?
How do you express binary literals in Python?
What is the most efficient graph data structure in Python?
Adding a Method to an Existing Object
How to learn Python: Good Example Code?
How do I use Python's itertools.groupby()?
Python and MySQL
Class views in Django
Is there an IDE that provides code completion for Python
Using 'in' to match an attribute of Python objects in an array
cx_Oracle - what is the best way to iterate over a result set?
cx_Oracle - How do I access Oracle from Python?
Continuous Integration System for a Python Codebase
Get a preview jpeg of a pdf on windows?
How can I find the full path to a font from its display name on a Mac?
XML Processing in Python