1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
use crate::actions::gsi;
use crate::actions::helpers;
use crate::actions::lsi;
use crate::errors::{DynoxideError, Result};
use crate::storage_backend::BaseItemRow;
use crate::storage_backend::StorageBackend;
use crate::types::item_size;
use crate::{ImportOptions, ImportResult};
use web_time::SystemTime;
/// Execute a bulk import of items into a table.
///
/// All items are inserted in a single transaction. If any item fails,
/// the entire import is rolled back.
pub async fn execute<S: StorageBackend>(
storage: &S,
table_name: &str,
items: Vec<crate::types::Item>,
options: &ImportOptions,
) -> Result<ImportResult> {
execute_inner(storage, table_name, items, options, false).await
}
/// Bulk import with option to skip GSI deletes.
///
/// When `skip_gsi_deletes` is true, the DELETE-before-INSERT on GSI tables
/// is skipped entirely. The caller must guarantee there are no pre-existing
/// rows whose GSI keys could become stale (i.e., fresh database).
pub async fn execute_skip_gsi_deletes<S: StorageBackend>(
storage: &S,
table_name: &str,
items: Vec<crate::types::Item>,
options: &ImportOptions,
) -> Result<ImportResult> {
execute_inner(storage, table_name, items, options, true).await
}
async fn execute_inner<S: StorageBackend>(
storage: &S,
table_name: &str,
items: Vec<crate::types::Item>,
options: &ImportOptions,
skip_gsi_deletes: bool,
) -> Result<ImportResult> {
// 1. Require table exists
let meta = helpers::require_table(storage, table_name).await?;
let key_schema = helpers::parse_key_schema(&meta)?;
// 2. Empty vec: no-op
let item_count = items.len();
if items.is_empty() {
return Ok(ImportResult {
items_imported: 0,
bytes_imported: 0,
});
}
// 3. Parse GSI and LSI definitions once (outside the loop)
let gsi_defs = gsi::parse_gsi_defs(&meta)?;
let lsi_defs = lsi::parse_lsi_defs(&meta)?;
let now = SystemTime::now()
.duration_since(SystemTime::UNIX_EPOCH)
.unwrap()
.as_secs_f64();
let cached_at_val: Option<f64> = if options.set_cached_at {
Some(now)
} else {
None
};
// Flush accumulated base rows to one bulk insert every FLUSH_BATCH items so
// a large import does not buffer every row's JSON in memory at once.
const FLUSH_BATCH: usize = 1000;
let mut total_bytes: usize = 0;
// The whole import is one transaction: any failure rolls everything back.
helpers::with_write_transaction(storage, async {
// Pre-fetch the next stream sequence number once (fix: O(n) → O(1))
let mut next_seq = if options.record_streams && meta.stream_enabled {
storage.next_stream_sequence_number(table_name).await?
} else {
0
};
let mut base_rows: Vec<BaseItemRow> = Vec::with_capacity(item_count.min(FLUSH_BATCH));
for mut item in items {
// 5. Validate required keys and extract pk/sk
helpers::validate_item_keys(&item, &key_schema, &meta)?;
crate::validation::validate_item_attribute_values(&item)?;
// Deduplicate sets (in-place, no clone needed)
crate::validation::normalize_item_sets(&mut item);
// TODO: validation must precede this call -- if reaching this line, caller has already validated keys.
let (pk, sk) = helpers::extract_key_strings(&item, &key_schema)?;
// 6. Serialize and calculate size
let item_json = serde_json::to_string(&item).map_err(|e| {
DynoxideError::InternalServerError(format!("JSON serialization failed: {e}"))
})?;
let size = item_size(&item);
total_bytes += size;
// Compute hash prefix for parallel scan ordering
let hash_prefix = item
.get(&key_schema.partition_key)
.map(crate::storage::compute_hash_prefix)
.unwrap_or_default();
// 8. Maintain GSI tables (sparse: skip items missing the GSI pk or sk)
for gsi_def in &gsi_defs {
// Delete any existing GSI entry for this base table key
// (skipped on fresh import — no stale entries to clean up)
if !skip_gsi_deletes {
storage
.delete_gsi_item(table_name, &gsi_def.index_name, &pk, &sk)
.await?;
}
// Insert only when the item belongs in this index (sparse).
if let Some((gsi_pk, gsi_sk)) = gsi_def.index_key_strings(&item) {
// For ALL projection, reuse the base table JSON directly
// (avoids cloning the item HashMap and re-serializing)
let projected_json =
if gsi_def.projection_type == crate::types::ProjectionType::ALL {
item_json.clone()
} else {
let projected = gsi::build_index_item(
&item,
gsi_def,
&key_schema.partition_key,
key_schema.sort_key.as_deref(),
);
serde_json::to_string(&projected).map_err(|e| {
DynoxideError::InternalServerError(format!(
"GSI JSON serialization failed: {e}"
))
})?
};
storage
.insert_gsi_item(
table_name,
&gsi_def.index_name,
&gsi_pk,
&gsi_sk,
&pk,
&sk,
&projected_json,
)
.await?;
}
}
// 8b. Maintain LSI tables (sparse: skip items without a scalar LSI sk)
for lsi_def in &lsi_defs {
// Delete any existing LSI entry for this base table key
if !skip_gsi_deletes {
storage
.delete_lsi_item(table_name, &lsi_def.index_name, &pk, &sk)
.await?;
}
// Insert only when the item belongs in this index (sparse).
if let Some((lsi_pk, lsi_sk)) = lsi_def.index_key_strings(&item) {
// For ALL projection, reuse the base table JSON directly
let projected_json =
if lsi_def.projection_type == crate::types::ProjectionType::ALL {
item_json.clone()
} else {
let projected = gsi::build_index_item(
&item,
lsi_def,
&key_schema.partition_key,
key_schema.sort_key.as_deref(),
);
serde_json::to_string(&projected).map_err(|e| {
DynoxideError::InternalServerError(format!(
"LSI JSON serialization failed: {e}"
))
})?
};
storage
.insert_lsi_item(
table_name,
&lsi_def.index_name,
&lsi_pk,
&lsi_sk,
&pk,
&sk,
&projected_json,
)
.await?;
}
}
// 9. Optional stream recording
if options.record_streams && meta.stream_enabled {
let seq = next_seq;
next_seq += 1;
let shard_id = format!("shardId-{table_name}-000000");
let keys_json = {
let mut keys = std::collections::HashMap::new();
if let Some(v) = item.get(&key_schema.partition_key) {
keys.insert(key_schema.partition_key.clone(), v.clone());
}
if let Some(ref sk_name) = key_schema.sort_key {
if let Some(v) = item.get(sk_name) {
keys.insert(sk_name.clone(), v.clone());
}
}
serde_json::to_string(&keys).unwrap_or_default()
};
let now_epoch = SystemTime::now()
.duration_since(SystemTime::UNIX_EPOCH)
.unwrap()
.as_secs() as i64;
storage
.insert_stream_record(
table_name,
"INSERT",
&keys_json,
Some(&item_json),
None,
&seq.to_string(),
&shard_id,
now_epoch,
)
.await?;
}
// Collect the base row; base inserts flush in batches here (and a
// final flush after the loop), all inside this one transaction.
base_rows.push(BaseItemRow {
pk,
sk,
item_json,
item_size: size,
cached_at: cached_at_val,
hash_prefix,
});
if base_rows.len() >= FLUSH_BATCH {
storage.put_base_items(table_name, &base_rows).await?;
base_rows.clear();
}
}
if !base_rows.is_empty() {
storage.put_base_items(table_name, &base_rows).await?;
}
Ok(())
})
.await?;
Ok(ImportResult {
items_imported: item_count,
bytes_imported: total_bytes,
})
}
#[cfg(test)]
mod tests {
use crate::ImportOptions;
use crate::actions::create_table;
use crate::storage::Storage;
use crate::storage_backend::StorageBackend;
/// A failed import rolls the whole batch back: GSI entries written before
/// the failure (and any base rows) are undone, leaving the table empty.
#[test]
fn import_rolls_back_when_gsi_fan_out_fails() {
let storage = Storage::memory().unwrap();
let create = serde_json::from_value(serde_json::json!({
"TableName": "Orders",
"KeySchema": [{"AttributeName": "UserId", "KeyType": "HASH"}],
"AttributeDefinitions": [
{"AttributeName": "UserId", "AttributeType": "S"},
{"AttributeName": "Status", "AttributeType": "S"}
],
"GlobalSecondaryIndexes": [
{"IndexName": "StatusIndex", "KeySchema": [{"AttributeName": "Status", "KeyType": "HASH"}], "Projection": {"ProjectionType": "ALL"}}
]
}))
.unwrap();
pollster::block_on(create_table::execute(&storage, create)).unwrap();
// Break the GSI fan-out by dropping its physical table.
storage.drop_gsi_table("Orders", "StatusIndex").unwrap();
let items: Vec<crate::types::Item> = vec![
serde_json::from_value(
serde_json::json!({"UserId": {"S": "u1"}, "Status": {"S": "SHIPPED"}}),
)
.unwrap(),
];
let res = pollster::block_on(super::execute(
&storage,
"Orders",
items,
&ImportOptions::default(),
));
assert!(
res.is_err(),
"a mid-fan-out failure must surface as an error"
);
// The whole import rolled back: no base rows landed.
let count =
pollster::block_on(<Storage as StorageBackend>::count_items(&storage, "Orders"))
.unwrap();
assert_eq!(
count, 0,
"import must roll back entirely when fan-out fails"
);
}
}