infino 0.1.0

A fast retrieval engine that stores data on object storage and runs SQL, full-text search, and vector search over it from a single system — search-on-Parquet.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234

// SPDX-License-Identifier: Apache-2.0
// SPDX-FileCopyrightText: Copyright The Infino Authors

//! Cross-supertable `_id` uniqueness under concurrent
//! minting.
//!
//! The supertable injects a 128-bit Snowflake-shaped id on
//! every `append()` via
//! `utils::idgen::IdGenerator`. Each `Supertable::create().expect("create")` /
//! `::open()` constructs a fresh generator with a 40-bit
//! random worker_id; no coordination across supertables. This
//! file validates that property under two stress shapes:
//!
//! 1. **In-process: 16 generators × 100K ids.** Birthday-
//!    collision probability for 16 random 40-bit worker_ids
//!    is ≈ 1.1×10⁻¹⁰, so 100 runs without collision is the
//!    expected outcome — the test exercises the parallel-
//!    mint path, not a worst-case collision scenario. Mints
//!    directly via `IdGenerator` (not through the writer's
//!    commit path) so the test runs in milliseconds, not
//!    minutes.
//!
//! 2. **Cross-handle: 4 supertable handles sharing storage.**
//!    Each handle constructs its own
//!    `Supertable` against a shared LocalFs backend,
//!    appends + commits a small batch, and a 5th handle
//!    opens against the same storage and runs `SELECT _id
//!    FROM supertable` to verify global uniqueness of the
//!    committed corpus. Tests the full path through the
//!    auto-injection in `append()` + the OCC retry on the
//!    manifest pointer.

#![deny(clippy::unwrap_used)]

use std::{collections::HashSet, sync::Arc, thread};

use arrow_array::{LargeStringArray, RecordBatch};
use infino::{
    supertable::{
        Supertable,
        reader_cache::{ColdFetchMode, DiskCacheConfig, DiskCacheStore, LruPolicy},
        storage::{LocalFsStorageProvider, StorageProvider},
        utils::idgen::IdGenerator,
    },
    test_helpers::{default_supertable_options, schema_id_title},
};

/// Explicit shared worker id forcing the worst-case collision scenario.
const SHARED_WORKER_ID: u64 = 0xABCD;
/// Ids minted per generator in the shared-worker-id uniqueness test.
const SAME_WORKER_MINT_COUNT: usize = 10_000;
use tempfile::TempDir;

const STRESS_N_WORKERS: usize = 16;
const STRESS_IDS_PER_WORKER: usize = 100_000;

#[test]
fn stress_16_generators_each_100k_ids_all_globally_unique() {
    // Spawn N threads, each owning its own IdGenerator with
    // a freshly-randomized worker_id. Each thread mints
    // STRESS_IDS_PER_WORKER ids and returns them to the
    // orchestrator. The union must be `n_workers ×
    // ids_per_worker` distinct values.
    let handles: Vec<thread::JoinHandle<Vec<i128>>> = (0..STRESS_N_WORKERS)
        .map(|_| {
            thread::spawn(|| {
                let g = IdGenerator::new();
                (0..STRESS_IDS_PER_WORKER).map(|_| g.next_id()).collect()
            })
        })
        .collect();

    let mut all: HashSet<i128> = HashSet::with_capacity(STRESS_N_WORKERS * STRESS_IDS_PER_WORKER);
    for h in handles {
        let ids = h.join().expect("worker thread panicked");
        assert_eq!(ids.len(), STRESS_IDS_PER_WORKER);
        for id in ids {
            assert!(
                all.insert(id),
                "duplicate id across workers: {id} — birthday collision \
                 on the 40-bit random worker_id would be the most likely \
                 cause, expected probability ~1.1e-10 at 16 workers"
            );
        }
    }
    assert_eq!(all.len(), STRESS_N_WORKERS * STRESS_IDS_PER_WORKER);
}

#[test]
fn stress_two_generators_with_explicit_same_worker_id_still_unique_within_one_run() {
    // Sanity probe: even if two generators happen to share
    // the same worker_id (the catastrophic scenario the
    // 40-bit space is designed to make extremely unlikely),
    // the per-generator timestamp + sequence counter keeps
    // *within-generator* ids strictly monotonic. The test
    // doesn't claim cross-generator uniqueness in this case
    // — that's the whole point of the random worker_id.
    let g1 = IdGenerator::with_worker_id(SHARED_WORKER_ID);
    let g2 = IdGenerator::with_worker_id(SHARED_WORKER_ID);
    let n = SAME_WORKER_MINT_COUNT;
    let ids1: Vec<i128> = (0..n).map(|_| g1.next_id()).collect();
    let ids2: Vec<i128> = (0..n).map(|_| g2.next_id()).collect();

    // Each individual run is strictly monotonic.
    for w in ids1.windows(2) {
        assert!(w[0] < w[1]);
    }
    for w in ids2.windows(2) {
        assert!(w[0] < w[1]);
    }
}

// ---------------------------------------------------------
// Cross-handle (multi-supertable) test.
// ---------------------------------------------------------

#[tokio::test(flavor = "multi_thread", worker_threads = 4)]
async fn four_handles_to_shared_storage_produce_globally_unique_ids() {
    let dir = TempDir::new().expect("tempdir");
    let storage: Arc<dyn StorageProvider> =
        Arc::new(LocalFsStorageProvider::new(dir.path()).expect("provider"));

    const N_HANDLES: usize = 4;
    const ROWS_PER_HANDLE: u64 = 100;

    // Each handle appends a small batch and commits. The
    // commits race on the storage's manifest pointer; OCC
    // retry inside `persist_commit` serializes them in some
    // order. The auto-injected `_id` values are minted by
    // each handle's own IdGenerator with its own random
    // worker_id.
    let mut tasks = Vec::with_capacity(N_HANDLES);
    for handle_idx in 0..N_HANDLES {
        let storage = Arc::clone(&storage);
        tasks.push(tokio::task::spawn_blocking(move || {
            let st = Supertable::create(default_supertable_options().with_storage(storage))
                .expect("create");
            let mut w = st.writer().expect("writer");
            let titles: Vec<String> = (0..ROWS_PER_HANDLE)
                .map(|i| format!("h{handle_idx}_doc{i}"))
                .collect();
            let titles_refs: Vec<&str> = titles.iter().map(String::as_str).collect();
            let batch = RecordBatch::try_new(
                schema_id_title(),
                vec![Arc::new(LargeStringArray::from(titles_refs))],
            )
            .expect("batch");
            w.append(&batch).expect("append");
            w.commit().expect("commit");
        }));
    }
    for t in tasks {
        t.await.expect("task");
    }

    // Open a fresh handle against the same storage and read
    // every `_id` value back, asserting `len(set) == total_rows`.
    //
    // Why we don't compare manifest-level `(id_min, id_max)`
    // ranges: the Snowflake id is laid out as
    // `timestamp (high) || worker_id (40 bits) || sequence`,
    // so a handle whose mints straddle two timestamp ticks has
    // `id_max` carrying the higher ticks while `id_min` carries
    // the lower. Sorted by `id_min`, such a range can numerically
    // "overlap" another handle's range that mints entirely in the
    // lower tick — even though all ids are globally unique because
    // the middle worker_id bits differ. Under coverage instrumentation
    // the slowdown makes the straddle the common case, so the range
    // check fails on perfectly valid ids. Reading the ids out is
    // the only assertion that actually checks the property we care
    // about (no duplicate ids) — and at 400 ids the cost is
    // microseconds.
    // Attach a disk cache so the consumer can pull superfile bytes
    // back from storage on demand — the consumer didn't write any
    // of the superfiles, so its in-memory reader cache is empty.
    let cache_dir = TempDir::new().expect("cache tempdir");
    let cfg = DiskCacheConfig {
        cache_root: cache_dir.path().to_path_buf(),
        disk_budget_bytes: 1 << 30,
        cold_fetch_mode: ColdFetchMode::HybridWithPrefetch,
        cold_fetch_streams: 4,
        cold_fetch_chunk_bytes: 1 << 20,
        mmap_cold_threshold_secs: 0,
        mmap_sweep_interval_secs: 0,
        eviction: Box::new(LruPolicy::new()),
        verify_crc_on_open: true,
        ..Default::default()
    };
    let pinned_fn: Arc<dyn Fn() -> HashSet<_> + Send + Sync> = Arc::new(HashSet::new);
    let cache = DiskCacheStore::new(Arc::clone(&storage), cfg, pinned_fn).expect("cache");
    let consumer = Supertable::open(
        default_supertable_options()
            .with_storage(Arc::clone(&storage))
            .with_disk_cache(Arc::clone(&cache)),
    )
    .expect("open");
    let reader = consumer.reader();
    let segs = reader.manifest().get_all_superfiles();
    assert_eq!(
        segs.len(),
        N_HANDLES,
        "expected one superfile per handle; got {}",
        segs.len()
    );

    let batches = consumer
        .reader()
        .query_sql("SELECT _id FROM supertable")
        .expect("query _id");
    let mut all: HashSet<i128> = HashSet::with_capacity(N_HANDLES * ROWS_PER_HANDLE as usize);
    for b in &batches {
        let col = b
            .column(0)
            .as_any()
            .downcast_ref::<arrow_array::Decimal128Array>()
            .expect("_id is Decimal128");
        for i in 0..col.len() {
            let id = col.value(i);
            assert!(all.insert(id), "duplicate _id minted across handles: {id}");
        }
    }
    let expected = N_HANDLES * ROWS_PER_HANDLE as usize;
    assert_eq!(
        all.len(),
        expected,
        "expected {expected} distinct ids, got {}",
        all.len()
    );

    // Sanity: manifest's per-superfile doc count totals match the
    // ids actually persisted, so we know we read them all.
    let total_rows: u64 = segs.iter().map(|s| s.n_docs).sum();
    assert_eq!(total_rows, N_HANDLES as u64 * ROWS_PER_HANDLE);
}