Flatten bytes class hierarchy

[lu-pinto]

PR description

This PR simplifies the Tuweni class hierarchy of the bytes project and attempts to get some performance gains by reducing memory churn, specially for copying byte arrays and Bytes instances. Bytes have now a much flatter class hierarchy that will hopefully improve inlining and reduce time on itable lookups which was identified as one of the problems in Besu for low performance. The implementation of Bytes used at runtime is now highly biased towards ArrayWrappingBytes which makes it easier for JIT to inline and optimize.

Also mutable operations wil be moved into MutableBytes exclusively to show intention in copies. This avoids copies on sequences of logic operations, e.g. MutableBytes.create(10).or(Bytes.fromHex("0x11")).shiftRight(2) no further copies occur after initial instance creation.
Other Bytes subtypes should be immutable from now on to boost performance.

---

Note

Introduces a new, flatter org.apache.tuweni.v2.bytes API and adds benchmarking support.

• Adds core v2 classes: Bytes, MutableBytes, ArrayWrappingBytes, ConcatenatedBytes, ConstantBytesValue, DelegatingBytes, Utils, size-specific Bytes32/Bytes48, and wrappers for ByteBuffer/ByteBuf/Vert.x Buffer
• Centralizes mutating ops in MutableBytes; other Bytes implementations are immutable
• Implements slicing, prefix/trim utilities, numeric conversions, (de)serialization helpers, and efficient logical ops
• Enables JMH via Gradle (conditional on src/jmh), with config, async-profiler support, and adds two benchmarks (BytesMegamorphicBenchmarkV1/V2)
• Expands tests for v2 (buffer/bytebuf/bytebuffer/concat/delegate/bytes32/bytes48) and updates an existing concat test; adds assertj-core test dependency

^{Written by Cursor Bugbot for commit a646271. This will update automatically on new commits. Configure here.}

[github-actions]

All contributors have signed the CLA ✍️ ✅
_{Posted by the CLA Assistant Lite bot.}

[lu-pinto]

I have read the CLA Document and I hereby sign the CLA

[lu-pinto]

recheck

[lu-pinto]

After this comment I will make this PR ready to be pulled in without stopping any development on Tuweni v1 as I'm leaving the current org.apache.tuweni namespace untouched.

I will squash all changes so far and will create an entire new package org.apache.tuweni.v2 which contains the new class hierarchy for Tuweni along with all of its dependents.

[lu-pinto]

recheck

[macfarla]

do we need to add a consensys copyright statement? Are both v1 and v2 tests running?

[github-actions]

This PR was marked stale due to lack of activity. It will be closed in 14 days.

[ahamlat]

I understand to toArray() is removed, correct ?

[lu-pinto]

Yes, I'm not convinced it's needed. At least not needed for tuweni or discovery so far

[ahamlat]

👍

[ahamlat]

It would be nice to have jmh benchmarks on and other binary operations below. I think it will show a pretty good improvement. This is not a blocking comment, but a nice to have.

[lu-pinto]

let's do that in another PR

[ahamlat]

shiftLeft and shiftRight doesn't exist anymore in this implementation, is that intended ?

[lu-pinto]

yes, I have moved all to the MutableBytes. Now can do multiple operations on Bytes and avoid copying and we are explicit that we are creating copies

[ahamlat]

Does it make sens to add shiftLeft and shiftRight here ?

[lu-pinto]

same as #40 (comment)

[ahamlat]

I suggest to rename this class DelegatingBytes32.

[lu-pinto]

Why though? That's an implementation detail

[ahamlat]

I suggest renaming this class DelegatingBytes48.

[lu-pinto]

same as #40 (comment)

[ahamlat]

Why mot just new Bytes48(slice) ?

[ahamlat]

I see, because of DelegatingBytes. I wonder if is not simpler to have another overloaded method with DelegatingBytes as a parameter and delete getImpl() in Bytes.java.

[lu-pinto]

Correct, because of DelegatingBytes so we need to get straight access to the implementation to avoid stacked method call that just loops.
Not sure I understand the suggestion - do you mean casting Bytes to DelegatingBytes ?

[ahamlat]

Instead of throwing and then catching the exception, I suggest replacing with the code of Math.addExact :

  int result = totalSize + size;
        // HD 2-12 Overflow iff both arguments have the opposite sign of the result
        if (((totalSize ^ result) & (size ^ result)) < 0) {
            throw new IllegalArgumentException(
            "Combined length of values is too long (> Integer.MAX_VALUE)");
        }
        totalSize = result;

[lu-pinto]

but are you sure the method is not going to be inlined anyway? I would suggest creating a benchmark to prove that

[ahamlat]

I can confirm that the V2 implementations has better performance for megamorphic use case and similar performances for the non megamorphic one

Benchmark                         (mode)  Mode  Cnt   Score   Error  Units
BytesMegamorphicBenchmarkV1.test    mono  avgt   10   6.774 ± 0.351  ms/op
BytesMegamorphicBenchmarkV1.test    mega  avgt   10  15.024 ± 0.225  ms/op
BytesMegamorphicBenchmarkV2.test    mono  avgt   10   6.591 ± 0.189  ms/op
BytesMegamorphicBenchmarkV2.test    mega  avgt   10   9.899 ± 0.070  ms/op

[ahamlat]

In this case, we're loosing the information that the returned Bytes from keccak256 is 32 bytes. I wonder if there're edge cases to this, as Bytes can store more than 32 bytes.

[lu-pinto]

I agree you loose the developer friendliness. Though for performance might be justified. Anyway, we are leaving both versions of the code in anyways so we have time to decide after this PR, IMO

[ahamlat]

The same as for keccak256

[github-actions]

This PR was marked stale due to lack of activity. It will be closed in 14 days.

[github-actions]

Closed as inactive. Feel free to reopen if this PR is still being worked on.

[cursor]

Bug: Bitwise Operation Errors in UInt Classes

The and, or, and xor methods in both UInt256 and UInt384 classes contain a byte indexing error when operating on Bytes or Bytes32 parameters. The byte offset calculation incorrectly uses the ints array index (i) instead of the bytes parameter index (j), leading to incorrect bitwise results and potential IndexOutOfBoundsException.

Additional Locations (4)

• units/src/main/java/org/apache/tuweni/v2/units/bigints/UInt384.java#L457-L464
• units/src/main/java/org/apache/tuweni/v2/units/bigints/UInt384.java#L487-L494
• units/src/main/java/org/apache/tuweni/v2/units/bigints/UInt384.java#L519-L526
• units/src/main/java/org/apache/tuweni/v2/units/bigints/UInt256.java#L637-L644

 

[cursor]

Bug: Packet Signature Mismatch Causes Verification Failures

The ENRRequestPacket.create() method uses PacketType.ENRRESPONSE for the packet signature. This is inconsistent with the encode() method's use of PacketType.ENRREQUEST and will cause signature verification failures for ENRRequest packets.

 

[cursor]

Bug: Double Hashing Causes Memory Leak

The sha2_256 methods (both byte[] and Bytes overloads) compute the hash twice when Sodium is available. The first hash object is stored and destroyed, but a new hash object is created and returned from a second computation, which is then leaked.

Additional Locations (1)

• crypto/src/main/java/org/apache/tuweni/v2/crypto/Hash.java#L106-L107

 

[github-actions]

This PR was marked stale due to lack of activity. It will be closed in 14 days.

[cursor]

Bug: Array Wrapper Overruns Bounds: Incorrect Length

The fromArray method creates an ArrayWrappingBytes with bytes.length as the length parameter, which attempts to wrap more bytes than available when offset > 0. This causes the wrapper to extend beyond the array bounds. The length should be SIZE (32 bytes) to correctly wrap exactly 32 bytes starting from the offset, matching the method's documented behavior and the validation performed by checkLength.

 

[cursor]

Bug: Append Ignores Slice Boundaries

The appendTo method puts the entire byteBuffer into the target buffer, ignoring the offset and size() of this wrapper. When a ByteBufferWrappingBytes represents a slice (constructed with offset and length), this appends the wrong bytes. The method transfers from the buffer's current position/limit rather than the intended slice range defined by offset and size().

 

[lu-pinto]

IMO it's not a bug

[cursor]

Bug: Type Mismatch: ZERO Constant Threatens Integrity

The ZERO constant is declared as type Bytes instead of Bytes32, causing a type inconsistency. The javadoc states it's a Bytes32 containing all zero bytes, but the actual type doesn't match. This breaks type safety and could cause issues when code expects a Bytes32 instance but receives a generic Bytes reference.

 

[cursor]

Bug: ZERO Constant: Type Inconsistency Threatens Safety

The ZERO constant is declared as type Bytes instead of Bytes48, causing a type inconsistency. The javadoc states it's a Bytes48 containing all zero bytes, but the actual type doesn't match. This breaks type safety and could cause issues when code expects a Bytes48 instance but receives a generic Bytes reference.

 

[cursor]

Bug: Immutability Contract Violated: Stale Hashcodes

The and, or, and xor methods mutate the size field after object construction when resizing the internal array. Since size is inherited from the immutable parent Bytes class and used for hashcode caching, this mutation breaks the immutability contract and can cause cached hashcodes to become stale, leading to incorrect behavior in hash-based collections.

 

[lu-pinto]

make this final

[cursor]

Bug: DelegatingBytes missing trimTrailingZeros override

The DelegatingBytes class overrides trimLeadingZeros() to delegate to its delegate (line 206-208), but is missing an override for trimTrailingZeros(). This means calls to trimTrailingZeros() will use the base Bytes implementation instead of delegating to the wrapped delegate, breaking the delegation pattern and potentially causing inconsistent behavior compared to other delegated methods.

 

[lu-pinto]

I reverted changes made to other projects than bytes in order to make it more reviewable. Will issue separate PR's for other projects

[cursor]

Bug: appendTo ignores offset and size in ByteBuffer wrapper

The appendTo(ByteBuffer) method in ByteBufferWrappingBytes ignores the offset and size fields, putting the entire source ByteBuffer instead of just the wrapped slice. All other methods in this class (like get, getInt, getLong, and, or, xor, equals, computeHashcode, toArray) correctly use offset + i when accessing data. However, appendTo just calls byteBuffer.put(this.byteBuffer) which will write from the source buffer's position to its limit, disregarding the stored offset entirely. This contrasts with BufferWrappingBytes and ByteBufWrappingBytes which slice their buffers in the constructor, and with ArrayWrappingBytes which correctly passes offset and size() to the put operation.

 

[cursor]

Bug: ConstantBytesValue.get missing required bounds check

The get(int i) method in ConstantBytesValue returns the constant value without checking bounds, violating the documented contract of the abstract Bytes.get(int i) method which specifies it should throw IndexOutOfBoundsException if i < 0 or i >= size(). All other implementations (ArrayWrappingBytes, ConcatenatedBytes, etc.) either explicitly call checkElementIndex or rely on the underlying buffer to throw. This means Bytes.repeat((byte) 0, 5).get(100) would incorrectly return 0 instead of throwing an exception.

 

[fab-10]

first partial pass

[fab-10]

could be rewritten using checkArgument like for checkLength with a formatted string highlighting the arugments

[fab-10]

the name is misleading, because the value is max signed long.
Moreover, it is not used internally, so could be removed since not public

[fab-10]

should we allow 0 sized constant bytes in the first place?

[fab-10]

IDK if it is worth to add another check that if the other is of the same type then just compare the single value

[fab-10]

is there really the need to cycle to have a good hash code?

[fab-10]

using new Bytes[count] you can save one allocation

[fab-10]

it seems there are no unit tests for this method

[fab-10]

no unit tests for this class

[fab-10]

should be package

[fab-10]

Should not this return a Bytes32?

Same for similar methods in the class

[fab-10]

same as for Bytes32 should not these methos all return Bytes48?

[fab-10]

just wondering if it is cleaner to remove the type suffix for Buffer and ByteBuf variants and just always use wrap for all the following methods

[fab-10]

evaluate if size 0 makes sense

[fab-10]

why is the reason for this duplication?

[fab-10]

no javadoc

[fab-10]

what about all the checks that are present in v1?

[fab-10]

we can say it is 0 filled

[fab-10]

curious of why this check here and non in the constructor

[fab-10]

reverse should be possible w/o allocating a new array

[fab-10]

MutableBytes is not thread-safe, right?

[github-actions]

This PR was marked stale due to lack of activity. It will be closed in 14 days.

[github-actions]

Closed as inactive. Feel free to reopen if this PR is still being worked on.

[cursor]

Missing bounds check in ConstantBytesValue.get() method

High Severity

The get(int i) method in ConstantBytesValue returns this.value for any index without validating that the index is within bounds. According to the Bytes.get() contract (which specifies @throws IndexOutOfBoundsException if i < 0 or i >= size()), invalid indices should throw an exception. Other implementations like ArrayWrappingBytes.get() correctly call checkElementIndex(i, size()) before returning. This bug allows silent access with any index value, which could mask errors in calling code.

 

[cursor]

Missing bounds validation in ByteBufferWrappingBytes accessor methods

Medium Severity

The get(int i), getInt(int i), and getLong(int i) methods don't validate that the index is within the slice bounds (0 <= i < size()). They only rely on the underlying ByteBuffer bounds check which validates against the full buffer capacity, not the wrapper's offset and size. This allows reading data outside the intended slice when offset > 0. For example, with offset=10 and size=5, calling get(50) would access buffer position 60 instead of throwing. The getInt and getLong overrides also bypass the base class's bounds checking logic.

Additional Locations (2)

• bytes/src/main/java/org/apache/tuweni/v2/bytes/ByteBufferWrappingBytes.java#L25-L29
• bytes/src/main/java/org/apache/tuweni/v2/bytes/ByteBufferWrappingBytes.java#L30-L34

 

[cursor]

ByteBufferWrappingBytes.appendTo ignores offset and size

Medium Severity

The appendTo(ByteBuffer) method uses byteBuffer.put(this.byteBuffer) which reads from the source buffer's position() to limit(), completely ignoring the wrapper's offset and size() fields. When wrapping a slice (where offset != 0 or size() != buffer.limit()), this will write incorrect bytes. Compare with ArrayWrappingBytes.appendTo() which correctly calls byteBuffer.put(bytes, offset, size()) to respect the slice boundaries.

 

[cursor]

Missing negative size validation in Bytes.repeat factory method

Medium Severity

The Bytes.repeat(byte b, int size) method creates a ConstantBytesValue without validating that size is non-negative. Other factory methods like wrap, wrapBuffer, wrapByteBuf, and wrapByteBuffer all include checkArgument(size >= 0, "Invalid negative length"). Calling Bytes.repeat((byte)0, -1) creates an object with size() == -1, which leads to incorrect behavior: isZero() returns true without checking any bytes, isEmpty() returns false, and toArrayUnsafe() throws NegativeArraySizeException. This creates an invalid object state that causes confusing errors downstream.

 

[cursor]

Inconsistent null handling between wrap method overloads

Medium Severity

The ConcatenatedBytes.create(List<Bytes>) method calls value.size() on line 84 without checking if value is null, causing NPE for lists containing null elements. However, the varargs overload create(Bytes...) explicitly handles nulls by checking if (value == null) { continue; } on lines 33-36. This inconsistency means Bytes.wrap(List<Bytes>) crashes with null elements while Bytes.wrap(Bytes...) handles them gracefully. Users could encounter unexpected NPEs when using the List-based API.