snapdir-cli 1.8.0

snapdir CLI implementation: the library behind the `snapdir` binary (which ships in the `snapdir` crate).
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290

//! Fast-walk CLI contract tests (snapdir-cli, black-box) — ADVERSARY.
//!
//! Authored from the gate SPEC ONLY, driving the `snapdir` BINARY (no impl
//! visibility). Mirrors the existing CLI harness (`assert_cmd` + `assert_fs`,
//! cache pinned via `SNAPDIR_CACHE_DIR`) used by `tests/e2e.rs`.
//!
//! The contract: a new global `--walk-jobs <N>` flag + `SNAPDIR_WALK_JOBS` env
//! controls cross-file hashing parallelism and is SEPARATE from `--jobs` /
//! `SNAPDIR_JOBS` (transfer concurrency). It must NEVER change a snapshot id:
//! `snapdir id <fixture>` is byte-identical across `--walk-jobs 1`,
//! `--walk-jobs 8`, and `SNAPDIR_WALK_JOBS` unset, and across repeated runs.
//!
//! These tests reference `--walk-jobs` / `SNAPDIR_WALK_JOBS`, which do NOT exist
//! in the current binary (`snapdir id --walk-jobs 4` currently errors with
//! "unexpected argument '--walk-jobs'"), so the suite cannot pass until the CLI
//! lane lands the flag.

use std::path::Path;
use std::process::Command;

use assert_cmd::prelude::*;
use assert_fs::prelude::*;
use assert_fs::TempDir;

/// A fresh `snapdir` command with the cache pinned so tests never touch the
/// user's real cache, and with the transfer-jobs / walk-jobs env vars cleared so
/// the ambient environment can't perturb a run.
fn snapdir(cache: &Path) -> Command {
    let mut cmd = Command::cargo_bin("snapdir").expect("snapdir binary built");
    cmd.env("SNAPDIR_CACHE_DIR", cache);
    cmd.env_remove("SNAPDIR_WALK_JOBS");
    cmd.env_remove("SNAPDIR_JOBS");
    cmd
}

/// Runs `snapdir <args>` (cache pinned), asserts success, returns trimmed stdout.
fn id_ok(cache: &Path, args: &[&str]) -> String {
    let out = snapdir(cache).args(args).output().expect("run snapdir");
    assert!(
        out.status.success(),
        "snapdir {args:?} failed ({:?})\nstderr: {}",
        out.status.code(),
        String::from_utf8_lossy(&out.stderr),
    );
    String::from_utf8(out.stdout).unwrap().trim_end().to_owned()
}

/// The deterministic bench-style ramp (`(i*31 + 7) & 0xff`), so the materialized
/// fixture (and thus its golden id) is reproducible across runs and machines.
fn deterministic_bytes(len: usize) -> Vec<u8> {
    (0..len)
        .map(|i| u8::try_from(i.wrapping_mul(31).wrapping_add(7) & 0xff).expect("masked to u8"))
        .collect()
}

#[cfg(unix)]
fn pin_mode(path: &Path, mode: u32) {
    use std::os::unix::fs::PermissionsExt;
    std::fs::set_permissions(path, PermissionsExt::from_mode(mode)).expect("set_permissions");
}
#[cfg(not(unix))]
fn pin_mode(_path: &Path, _mode: u32) {}

/// Materializes a fixture tree mixing MANY small files + a FEW large (> 256 KiB,
/// exercising the blake3 mmap path) + empty files + a unicode/space path, with
/// every file/dir mode pinned (umask-independent) so the golden id is stable.
///
/// This is the SAME recipe used to capture `GOLDEN_ID` from the current binary,
/// at two different parent locations (the id was identical and stable across
/// repeated runs), so the hardcoded golden is legitimate and location-independent.
fn build_fixture(root: &TempDir) {
    let base = root.path();
    pin_mode(base, 0o755);

    for i in 0..20 {
        let f = root.child(format!("small_{i:03}.bin"));
        f.write_binary(&deterministic_bytes(64)).unwrap();
        pin_mode(f.path(), 0o644);
    }
    // A few large files > 256 KiB so the parallel mmap path is exercised.
    for i in 0..3 {
        let f = root.child(format!("large_{i:02}.bin"));
        f.write_binary(&deterministic_bytes(300 * 1024)).unwrap();
        pin_mode(f.path(), 0o644);
    }
    // Empty files.
    for name in ["empty_a.bin", "empty_b.bin"] {
        let f = root.child(name);
        f.write_binary(&[]).unwrap();
        pin_mode(f.path(), 0o644);
    }
    // Unicode + space paths.
    let uni_dir = root.child("uni dir");
    uni_dir.create_dir_all().unwrap();
    pin_mode(uni_dir.path(), 0o755);
    let uf = root.child("uni dir/déjà vu.txt");
    uf.write_binary(&deterministic_bytes(128)).unwrap();
    pin_mode(uf.path(), 0o644);
    let crab = root.child("🦀 crab.bin");
    crab.write_binary(&deterministic_bytes(700 * 1024)).unwrap();
    pin_mode(crab.path(), 0o644);
    // A sub dir mixing sizes (incl. a > 256 KiB file with a space in the name).
    let sub = root.child("sub");
    sub.create_dir_all().unwrap();
    pin_mode(sub.path(), 0o755);
    let ssmall = root.child("sub/s small.bin");
    ssmall.write_binary(&deterministic_bytes(10)).unwrap();
    pin_mode(ssmall.path(), 0o644);
    let slarge = root.child("sub/s large.bin");
    slarge
        .write_binary(&deterministic_bytes(512 * 1024))
        .unwrap();
    pin_mode(slarge.path(), 0o644);
}

/// Golden snapshot id of `build_fixture`'s tree, captured from the CURRENT
/// (pre-change) `snapdir` binary on the byte-identical fixture. Location- and
/// run-independent (verified). `--walk-jobs` must NEVER change it.
const GOLDEN_ID: &str = "3d890b612c02d71c0c51aeb18a04357702f869da85f7691a709e1b88aea657ba";

// ===========================================================================
// CLI clause 1: byte-identical id across --walk-jobs 1 / 8 / unset + repeated runs.
// ===========================================================================

#[test]
fn id_is_byte_identical_across_walk_jobs_and_unset() {
    // Spec clause: `snapdir id <fixture>` is byte-identical across --walk-jobs 1,
    // --walk-jobs 8, and SNAPDIR_WALK_JOBS unset, and across repeated runs.
    let cache = TempDir::new().unwrap();
    let src = TempDir::new().unwrap();
    build_fixture(&src);
    let src_str = src.path().to_string_lossy().into_owned();

    // Baseline: no walk-jobs flag, no env (the "unset" case) — must equal golden.
    let unset = id_ok(cache.path(), &["id", &src_str]);
    assert_eq!(
        unset, GOLDEN_ID,
        "baseline id must equal the recorded golden"
    );

    // --walk-jobs 1 and 8 must each equal the baseline (and golden).
    let j1 = id_ok(cache.path(), &["id", "--walk-jobs", "1", &src_str]);
    let j8 = id_ok(cache.path(), &["id", "--walk-jobs", "8", &src_str]);
    assert_eq!(j1, unset, "--walk-jobs 1 must match the unset id");
    assert_eq!(j8, unset, "--walk-jobs 8 must match the unset id");
    assert_eq!(j1, j8, "--walk-jobs 1 and 8 must agree");

    // Repeated runs are stable.
    let rerun = id_ok(cache.path(), &["id", "--walk-jobs", "8", &src_str]);
    assert_eq!(rerun, j8, "repeated --walk-jobs 8 run must be stable");
}

#[test]
fn id_via_env_var_matches_flag_and_unset() {
    // Spec clause: SNAPDIR_WALK_JOBS env is honored and produces the same id as
    // the flag and the unset case (env and flag are equivalent knobs).
    let cache = TempDir::new().unwrap();
    let src = TempDir::new().unwrap();
    build_fixture(&src);
    let src_str = src.path().to_string_lossy().into_owned();

    let unset = id_ok(cache.path(), &["id", &src_str]);

    // Env-driven walk-jobs (note: snapdir() clears the env, so set it explicitly).
    let env_run = {
        let out = snapdir(cache.path())
            .env("SNAPDIR_WALK_JOBS", "3")
            .args(["id", &src_str])
            .output()
            .expect("run snapdir");
        assert!(
            out.status.success(),
            "snapdir id with SNAPDIR_WALK_JOBS=3 failed: {}",
            String::from_utf8_lossy(&out.stderr)
        );
        String::from_utf8(out.stdout).unwrap().trim_end().to_owned()
    };
    assert_eq!(env_run, unset, "SNAPDIR_WALK_JOBS must not change the id");
    assert_eq!(env_run, GOLDEN_ID);
}

// ===========================================================================
// CLI clause 2: sort stability over a tree with small + large + empty + unicode/space.
// ===========================================================================

#[test]
fn sort_stability_over_mixed_unicode_and_space_tree() {
    // Spec clause: cover a tree mixing many small + a few large (>256KiB) + empty
    // + unicode/space paths; sort stability must hold (the id is stable run over
    // run and across job counts, which is the observable proof of stable sort).
    let cache = TempDir::new().unwrap();
    let src = TempDir::new().unwrap();
    build_fixture(&src);
    let src_str = src.path().to_string_lossy().into_owned();

    let mut ids = Vec::new();
    for jobs in ["1", "2", "4", "8", "16"] {
        ids.push(id_ok(cache.path(), &["id", "--walk-jobs", jobs, &src_str]));
    }
    for id in &ids {
        assert_eq!(id, &ids[0], "id must be stable across every job count");
        assert_eq!(id, GOLDEN_ID, "id must equal the recorded golden");
    }
}

// ===========================================================================
// CLI clause 3: --walk-jobs is SEPARATE from --jobs (both may be set, no conflict).
// ===========================================================================

#[test]
fn walk_jobs_is_separate_from_transfer_jobs() {
    // Spec clause: --walk-jobs is SEPARATE from --jobs (transfer concurrency).
    // Phase 30 (approach-B): --walk-jobs is scoped to the walking commands and
    // --jobs to the TRANSFER commands. `push` carries BOTH; setting them together
    // must NOT error and must produce the same golden id — proving they are
    // independent knobs, not aliases. (`id` is a pure walk command and no longer
    // accepts --jobs, so the both-flags case moves to `push`.)
    let cache = TempDir::new().unwrap();
    let store = TempDir::new().unwrap();
    let store_uri = format!("file://{}", store.path().display());
    let src = TempDir::new().unwrap();
    build_fixture(&src);
    let src_str = src.path().to_string_lossy().into_owned();

    // Both flags together on `push`: must succeed (no "conflicting/duplicate
    // argument") and the recorded snapshot id is the golden id.
    let both = id_ok(
        cache.path(),
        &[
            "push",
            "--store",
            &store_uri,
            "--walk-jobs",
            "4",
            "--jobs",
            "2",
            &src_str,
        ],
    );
    assert_eq!(
        both, GOLDEN_ID,
        "combining --walk-jobs and --jobs must not change the id"
    );

    // --walk-jobs alone on `id` (a pure walk command) must not error and yields
    // the same golden id.
    let walk_only = id_ok(cache.path(), &["id", "--walk-jobs", "4", &src_str]);
    assert_eq!(walk_only, both);

    // Both env vars set together on `id`: still no conflict, same id (the
    // transfer-jobs env var is inert for a non-transfer command).
    let env_both = {
        let out = snapdir(cache.path())
            .env("SNAPDIR_WALK_JOBS", "4")
            .env("SNAPDIR_JOBS", "2")
            .args(["id", &src_str])
            .output()
            .expect("run snapdir");
        assert!(
            out.status.success(),
            "both env vars set must not conflict: {}",
            String::from_utf8_lossy(&out.stderr)
        );
        String::from_utf8(out.stdout).unwrap().trim_end().to_owned()
    };
    assert_eq!(env_both, GOLDEN_ID);
}

#[test]
fn walk_jobs_flag_is_advertised_in_help() {
    // Spec corollary: the CLI lane documents --walk-jobs / SNAPDIR_WALK_JOBS in
    // help text. Phase 30 (approach-B) scopes --walk-jobs to the walking commands,
    // so it is advertised in each walk command's help (e.g. `id --help`) rather
    // than the top-level help.
    let cache = TempDir::new().unwrap();
    let out = snapdir(cache.path())
        .args(["id", "--help"])
        .output()
        .expect("run snapdir id --help");
    assert!(out.status.success(), "id --help must succeed");
    let help = String::from_utf8_lossy(&out.stdout);
    assert!(
        help.contains("--walk-jobs"),
        "id help must advertise the --walk-jobs flag"
    );
    assert!(
        help.contains("SNAPDIR_WALK_JOBS"),
        "id help must advertise the SNAPDIR_WALK_JOBS env var"
    );
}