obj-core 1.0.2

Storage engine internals for the obj embedded document database (pager, WAL, B-tree, codec, catalog).
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184

//! M4 exit-criterion benchmark: range-scan throughput over a B+tree
//! populated with 100 000 random `(key=8 bytes, value=512 bytes)`
//! pairs (issue #30).
//!
//! `design.md` cites ~38 ms as the collection-scan target on Linux
//! x86-64 hardware with fast solid-state storage. The bench's
//! `TARGET_MS` constant is the **gate baseline** — the wall time
//! the bench is expected to clear on the CI shared runner, with
//! enough headroom to absorb run-to-run noise. It is not the
//! design.md aspirational number; that target is tracked in
//! `design.md` § Performance, and improvements move the gate
//! baseline downward over time. The benchmark prints both the
//! measured median and the gate so a glance at the output tells
//! the developer whether the commit moves the bar.
//!
//! # Fail-gate (#32)
//!
//! By default the bench is informational — it prints the design
//! target alongside criterion's median and never fails the run.
//! Set `OBJ_BENCH_ENFORCE=1` to upgrade the gate to a hard failure
//! when the median exceeds `TARGET_MS`. The CI `bench` workflow
//! sets this so a regression on the Linux x86-64 runner blocks
//! merge; local `cargo bench` stays informational by default.
//! `CONTRIBUTING.md` § Performance bar documents how to interpret
//! a miss on each platform.
//!
//! The bench is intentionally allocation-tolerant: the iterator
//! yields owned `(Vec<u8>, Vec<u8>)` pairs in M4 because the
//! `pager.read_page` lifetime is per-step. M6 MVCC reader snapshots
//! may revisit this trade-off; until then the benchmark is the
//! reference measurement for the current design.
//!
//! # Running
//!
//! ```text
//! cargo bench --bench btree_range
//! ```
//!
//! Performance is hardware-dependent. On Apple Silicon the benchmark
//! may exceed the Linux fast-SSD target listed in `design.md`; this
//! is a platform difference, not a regression. `CONTRIBUTING.md`
//! § 8 documents the target and how to interpret a miss.

#![forbid(unsafe_code)]

use std::hint::black_box;
use std::time::{Duration, Instant};

use criterion::{criterion_group, criterion_main, Criterion};
use obj_core::btree::BTree;
use obj_core::pager::{Config, Pager};
use obj_core::platform::FileHandle;
use rand::{Rng, SeedableRng};
use rand_chacha::ChaCha8Rng;

const NUM_ENTRIES: usize = 100_000;
const KEY_BYTES: usize = 8;
const VALUE_BYTES: usize = 512;
/// Seed for the random key/value generator. Fixed so that the
/// bench's tree shape is reproducible across runs.
const SEED: u64 = 0xDEAD_BEEF;
/// Gate baseline wall time for the 100k-doc scan on the CI shared
/// runner (Linux x86-64, 2 vCPU, no `NVMe`). Set above the observed
/// median with headroom for run-to-run noise; "we work from here"
/// — improvements drive this number down, regressions push it up
/// past the gate. See `design.md` § Performance for the aspirational
/// target this baseline is meant to approach.
const TARGET_MS: u128 = 600;
/// Sample count for the `OBJ_BENCH_ENFORCE` gate. Independent of
/// criterion's own sample count — small enough that the extra
/// measurement does not meaningfully extend bench time, large enough
/// that the median is stable.
const GATE_SAMPLES: usize = 11;

fn populate_tree() -> (Pager<FileHandle>, BTree<FileHandle>) {
    let mut pager = Pager::<FileHandle>::memory(Config::default()).expect("pager init");
    let mut tree = BTree::<FileHandle>::empty(&mut pager).expect("empty tree");
    let mut rng = ChaCha8Rng::seed_from_u64(SEED);
    let mut inserted = 0usize;
    let mut value = [0u8; VALUE_BYTES];
    while inserted < NUM_ENTRIES {
        let key = random_key(&mut rng);
        rng.fill(&mut value[..]);
        // Skip duplicate keys: random 8-byte keys collide with
        // negligible probability across 100k draws (birthday
        // paradox: <1% at this scale) but the insert path returns
        // BTreeKeyExists if a duplicate appears.
        match tree.insert(&mut pager, &key, &value) {
            Ok(()) => inserted += 1,
            Err(obj_core::Error::BTreeKeyExists) => (),
            Err(e) => panic!("populate: insert failed: {e:?}"),
        }
    }
    pager.commit().expect("commit");
    (pager, tree)
}

fn random_key(rng: &mut ChaCha8Rng) -> [u8; KEY_BYTES] {
    let mut buf = [0u8; KEY_BYTES];
    rng.fill(&mut buf);
    buf
}

fn bench_full_scan(c: &mut Criterion) {
    // Build the tree ONCE — populate is expensive; criterion's
    // measurement loop reuses it across iterations.
    let (mut pager, tree) = populate_tree();
    let mut group = c.benchmark_group("btree_range");
    group.sample_size(30);
    // Wall-clock measurement budget — 30 samples * ~scan time is
    // small, but criterion sometimes needs more time to stabilise
    // its statistics on the slower platforms (macOS Apple Silicon
    // in particular).
    group.measurement_time(Duration::from_secs(15));
    group.bench_function("full_scan_100k_x_512b", |b| {
        b.iter(|| {
            let iter = tree.iter(&mut pager).expect("iter");
            let mut count = 0usize;
            for step in iter {
                let (k, v) = step.expect("iter step");
                black_box(&k);
                black_box(&v);
                count += 1;
            }
            assert_eq!(count, NUM_ENTRIES, "scan must return every entry");
            black_box(count);
        });
    });
    group.finish();
    // #32: gather an independent median from `GATE_SAMPLES` scans for
    // the fail-gate. Criterion's analysis is statistically richer but
    // its median is not exposed to bench code, and an external median
    // is sufficient for a "did the commit blow past the target" check.
    let median_ms = measure_median_ms(&mut pager, &tree);
    eprintln!(
        "btree_range: gate baseline = {TARGET_MS} ms; OBJ_BENCH_ENFORCE gate \
         measured median = {median_ms} ms. CONTRIBUTING.md § Performance bar \
         documents how to interpret a miss."
    );
    // Hard fail — the CI bench workflow sets OBJ_BENCH_ENFORCE=1 and
    // treats a non-zero exit as a regression. Local runs (no env var
    // set) stay informational. Per #30's note that shared CI runners
    // are noisy, the gate lives in a dedicated workflow (bench.yml),
    // NOT in the per-PR `test` job.
    assert!(
        !(bench_enforce_enabled() && median_ms > TARGET_MS),
        "btree_range: OBJ_BENCH_ENFORCE=1 and measured median {median_ms} ms > target {TARGET_MS} ms"
    );
}

/// Measure `GATE_SAMPLES` full-scan wall times and return the median
/// in whole milliseconds. Power-of-ten Rule 2: the sample-count loop
/// is bounded by `GATE_SAMPLES`.
fn measure_median_ms(pager: &mut Pager<FileHandle>, tree: &BTree<FileHandle>) -> u128 {
    let mut samples_ms: Vec<u128> = Vec::with_capacity(GATE_SAMPLES);
    for _ in 0..GATE_SAMPLES {
        let start = Instant::now();
        let iter = tree.iter(pager).expect("iter");
        let mut count = 0usize;
        for step in iter {
            let (k, v) = step.expect("iter step");
            black_box(&k);
            black_box(&v);
            count += 1;
        }
        let elapsed = start.elapsed();
        assert_eq!(
            count, NUM_ENTRIES,
            "gate scan must return every entry (got {count})"
        );
        samples_ms.push(elapsed.as_millis());
    }
    samples_ms.sort_unstable();
    samples_ms[GATE_SAMPLES / 2]
}

fn bench_enforce_enabled() -> bool {
    std::env::var("OBJ_BENCH_ENFORCE")
        .ok()
        .is_some_and(|v| !v.is_empty() && v != "0")
}

criterion_group!(benches, bench_full_scan);
criterion_main!(benches);