fsys 0.9.1

Adaptive file and directory IO for Rust — fast, hardware-aware, multi-strategy.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268

//! 0.8.0 R-1 — Multi-thread concurrent-append correctness +
//! group-commit verification for the journal substrate.
//!
//! These tests exercise the lock-free append path under heavy
//! concurrent load and verify:
//!
//! 1. **No data corruption.** Bytes from one thread's record
//!    don't interleave with another's; the LSN-reservation
//!    invariant holds.
//! 2. **Group-commit coherence.** When N threads call
//!    `sync_through(lsn)` simultaneously, only one fsync runs;
//!    all callers wake up with the durability guarantee
//!    fulfilled.
//! 3. **Resume correctness.** After close-and-reopen, the
//!    journal's `next_lsn` matches the file size and previously
//!    appended records are still present byte-for-byte.

use fsys::{builder, JournalHandle, JournalReader, Lsn};
use std::path::PathBuf;
use std::sync::atomic::{AtomicU64, Ordering};
use std::sync::{Arc, Barrier};

static C: AtomicU64 = AtomicU64::new(0);

fn tmp_path(tag: &str) -> PathBuf {
    let n = C.fetch_add(1, Ordering::Relaxed);
    std::env::temp_dir().join(format!(
        "fsys_journal_concurrent_{}_{}_{tag}",
        std::process::id(),
        n
    ))
}

struct Cleanup(PathBuf);
impl Drop for Cleanup {
    fn drop(&mut self) {
        let _ = std::fs::remove_file(&self.0);
    }
}

#[test]
fn concurrent_appends_produce_no_data_corruption() {
    // Each thread appends a fixed-size record carrying a thread
    // ID. After all threads finish, we read the file and verify
    // that every record we see is a valid record (matches one of
    // the thread IDs we expect), and the total bytes match
    // threads × records × record_size.
    const THREADS: usize = 16;
    const RECORDS_PER_THREAD: usize = 1000;
    const RECORD_SIZE: usize = 64;
    let path = tmp_path("no_corruption");
    let _g = Cleanup(path.clone());
    let fs = builder().build().expect("handle");
    let log = Arc::new(fs.journal(&path).expect("journal"));

    let barrier = Arc::new(Barrier::new(THREADS));
    let mut joins = Vec::new();
    for tid in 0..THREADS {
        let log = log.clone();
        let barrier = barrier.clone();
        joins.push(std::thread::spawn(move || {
            // All threads wait at the barrier — start hammering
            // simultaneously to maximise contention.
            barrier.wait();
            let mut record = vec![0u8; RECORD_SIZE];
            for i in 0..RECORDS_PER_THREAD {
                // Encode thread ID + record index in the record so
                // we can verify ordering later.
                let tag = format!("T{tid:03}-R{i:06}");
                let bytes = tag.as_bytes();
                record[..bytes.len()].copy_from_slice(bytes);
                let _lsn = log.append(&record).expect("append");
            }
        }));
    }
    for j in joins {
        j.join().expect("thread join");
    }
    // Final sync.
    let final_lsn = log.next_lsn();
    log.sync_through(final_lsn).expect("final sync");

    // Verify total file size matches expected — payload +
    // FRAME_OVERHEAD per record. FRAME_OVERHEAD is 12 bytes
    // (magic + length + crc32c).
    let frame_overhead: usize = 12;
    let expected_bytes = THREADS * RECORDS_PER_THREAD * (RECORD_SIZE + frame_overhead);
    let actual_bytes = std::fs::metadata(&path).expect("stat").len() as usize;
    assert_eq!(
        actual_bytes, expected_bytes,
        "file size mismatch — concurrent appends interleaved or lost data"
    );

    // Replay via JournalReader — verifies framing integrity
    // end-to-end (every record's CRC validates) AND that every
    // expected (tid, record_idx) tag appears exactly once.
    let mut reader = JournalReader::open(&path).expect("open reader");
    let mut tag_counts: std::collections::HashMap<String, usize> = std::collections::HashMap::new();
    for record in reader.iter() {
        let record = record.expect("record decode");
        let trimmed = record
            .payload
            .iter()
            .position(|&b| b == 0)
            .map(|p| &record.payload[..p])
            .unwrap_or(&record.payload);
        let tag = std::str::from_utf8(trimmed).expect("utf-8 tag");
        *tag_counts.entry(tag.to_string()).or_insert(0) += 1;
    }
    assert_eq!(
        reader.tail_state(),
        fsys::JournalTailState::CleanEnd,
        "tail should be clean after reader iteration"
    );

    // Every (tid, record_idx) tag should appear exactly once.
    assert_eq!(
        tag_counts.len(),
        THREADS * RECORDS_PER_THREAD,
        "expected every distinct tag to appear once; saw {} distinct tags",
        tag_counts.len()
    );
    for (tag, count) in &tag_counts {
        assert_eq!(
            *count, 1,
            "tag {tag} appeared {count} times — duplicate or missing record"
        );
    }
}

#[test]
fn group_commit_coalesces_concurrent_sync_calls() {
    // Many threads each append + sync_through. With group commit
    // working correctly, all threads should observe their
    // sync_through return successfully without deadlock and the
    // synced_lsn should advance monotonically.
    const THREADS: usize = 32;
    let path = tmp_path("group_commit");
    let _g = Cleanup(path.clone());
    let fs = builder().build().expect("handle");
    let log = Arc::new(fs.journal(&path).expect("journal"));

    let mut joins = Vec::new();
    for tid in 0..THREADS {
        let log = log.clone();
        joins.push(std::thread::spawn(move || {
            let lsn = log.append(format!("T{tid:03}").as_bytes()).expect("append");
            log.sync_through(lsn).expect("sync_through");
            // Verify that the synced_lsn is at least our LSN.
            assert!(log.synced_lsn() >= lsn);
            lsn
        }));
    }
    let mut max_lsn = Lsn::ZERO;
    for j in joins {
        let lsn = j.join().expect("join");
        if lsn > max_lsn {
            max_lsn = lsn;
        }
    }
    assert!(log.synced_lsn() >= max_lsn);
}

#[test]
fn close_and_reopen_resumes_correctly() {
    let path = tmp_path("reopen");
    let _g = Cleanup(path.clone());
    let fs = builder().build().expect("handle");

    // First open — append some records.
    let initial_size: u64;
    {
        let log = fs.journal(&path).expect("journal1");
        let _ = log.append(b"first record").expect("a1");
        let _ = log.append(b"second record").expect("a2");
        let lsn = log.append(b"third").expect("a3");
        log.sync_through(lsn).expect("sync");
        initial_size = log.next_lsn().as_u64();
        log.close().expect("close");
    }

    // Reopen — verify resume state.
    let log2 = fs.journal(&path).expect("journal2");
    assert_eq!(log2.next_lsn().as_u64(), initial_size);
    assert_eq!(log2.synced_lsn().as_u64(), initial_size);

    // Append more — verify LSN continues from where we left off.
    let new_lsn = log2.append(b"fourth").expect("a4");
    assert!(new_lsn.as_u64() > initial_size);
    log2.close().expect("close2");

    // Final read-back via JournalReader — verifies framing.
    let mut reader = JournalReader::open(&path).expect("open reader");
    let payloads: Vec<Vec<u8>> = reader.iter().map(|r| r.expect("record").payload).collect();
    assert_eq!(
        payloads,
        vec![
            b"first record".to_vec(),
            b"second record".to_vec(),
            b"third".to_vec(),
            b"fourth".to_vec(),
        ]
    );
    assert_eq!(reader.tail_state(), fsys::JournalTailState::CleanEnd);
}

#[test]
fn synced_lsn_is_monotonic_under_concurrent_load() {
    // Verify the synced_lsn invariant: it never decreases, even
    // under concurrent appends and syncs.
    const THREADS: usize = 8;
    const ROUNDS: usize = 100;
    let path = tmp_path("monotonic");
    let _g = Cleanup(path.clone());
    let fs = builder().build().expect("handle");
    let log = Arc::new(fs.journal(&path).expect("journal"));

    let observed_max = Arc::new(AtomicU64::new(0));
    let mut joins = Vec::new();
    for _ in 0..THREADS {
        let log = log.clone();
        let observed_max = observed_max.clone();
        joins.push(std::thread::spawn(move || {
            for _ in 0..ROUNDS {
                let lsn = log.append(b"x").expect("append");
                log.sync_through(lsn).expect("sync");
                let now = log.synced_lsn().as_u64();
                let prev = observed_max.fetch_max(now, Ordering::SeqCst);
                // synced_lsn observed by us must be >= what we
                // sync_through'd. Concurrent observers may see a
                // higher value if other threads advanced it
                // further. Both are fine; the invariant we
                // assert is "fetch_max never sees a regression"
                // — i.e. synced_lsn is monotonic.
                assert!(now >= lsn.as_u64());
                let _ = prev;
            }
        }));
    }
    for j in joins {
        j.join().expect("join");
    }
}

#[test]
fn append_returns_lsn_equal_to_file_size_after_each_op() {
    // Single-threaded sanity: after each append, the file size
    // should equal the next_lsn (modulo the OS having applied
    // the write — sync_through ensures this). The LSN advance
    // includes frame overhead (12 bytes per record).
    let path = tmp_path("size_invariant");
    let _g = Cleanup(path.clone());
    let fs = builder().build().expect("handle");
    let log = fs.journal(&path).expect("journal");

    for i in 0..50 {
        let payload = vec![0xABu8; 17 + i]; // varying sizes
        let lsn = log.append(&payload).expect("append");
        log.sync_through(lsn).expect("sync");
        let actual_size = std::fs::metadata(&path).expect("stat").len();
        assert_eq!(
            actual_size,
            lsn.as_u64(),
            "after sync_through, file size should equal LSN (= sum of framed record sizes) at iter {i}"
        );
    }
    let _ = JournalHandle::close;
}