[ENH]: Spanner collection and segments Schemas#6123
Conversation
Reviewer ChecklistPlease leverage this checklist to ensure your code review is thorough before approving Testing, Bugs, Errors, Logs, Documentation
System Compatibility
Quality
|
This stack of pull requests is managed by Graphite. Learn more about stacking. |
|
It also introduces region-specific compaction cursor and collection metadata schemas, surfaces errors when decoding tenant resource names, and wires up the SysDB server stub for incrementing the compaction failure counter while leaving the handler unimplemented. This summary was automatically generated by @propel-code-bot |
![propel-code-bot[bot]](https://avatars.githubusercontent.com/in/1179004?s=60&v=4){kind=small}
rust/spanner-migrations/migrations/0004-create_collections.spanner.sql
Outdated
Show resolved
Hide resolved
rust/spanner-migrations/migrations/0006-create_collection_compaction_cursors.spanner.sql
Outdated
Show resolved
Hide resolved
rust/spanner-migrations/migrations/0005-create_collections_unique_index.spanner.sql
Outdated
Show resolved
Hide resolved
rust/spanner-migrations/migrations/0005-create_collections_unique_index.spanner.sql
Outdated
Show resolved
Hide resolved
rust/spanner-migrations/migrations/0005-create_collection_compaction_cursors.spanner.sql
Show resolved
Hide resolved
tanujnay112
left a comment
tanujnay112
left a comment
There was a problem hiding this comment.
index name seems fishy
| ) PRIMARY KEY (collection_id, region), | ||
| INTERLEAVE IN PARENT collections |
There was a problem hiding this comment.
[Logic] The INTERLEAVE IN PARENT clause is missing ON DELETE CASCADE. This prevents deleting a collections row if it has associated compaction cursors. If the intention is to allow hard deletes of collections (e.g., via garbage collection), you must manually delete all children first without this clause.
This same pattern applies to migrations/0007-create_segments.spanner.sql (segments in cursors) and migrations/0009-create_collection_metadata.spanner.sql (metadata in collections).
Consider adding ON DELETE CASCADE to all interleaved tables to simplify the deletion lifecycle.
Context for Agents
The `INTERLEAVE IN PARENT` clause is missing `ON DELETE CASCADE`. This prevents deleting a `collections` row if it has associated compaction cursors. If the intention is to allow hard deletes of collections (e.g., via garbage collection), you must manually delete all children first without this clause.
This same pattern applies to `migrations/0007-create_segments.spanner.sql` (segments in cursors) and `migrations/0009-create_collection_metadata.spanner.sql` (metadata in collections).
Consider adding `ON DELETE CASCADE` to all interleaved tables to simplify the deletion lifecycle.
File: rust/spanner-migrations/migrations/0006-create_collection_compaction_cursors.spanner.sql
Line: 20There was a problem hiding this comment.
It's ok, I'll pay the cost of maintaining the integrity at my layer
| updated_at TIMESTAMP NOT NULL OPTIONS (allow_commit_timestamp=true), | ||
| file_paths JSON | ||
| ) PRIMARY KEY (collection_id, region, id), | ||
| INTERLEAVE IN PARENT collection_compaction_cursors |
There was a problem hiding this comment.
[Performance] Interleaving collection_segments in collection_compaction_cursors creates a significant risk of lock contention.
Since collection_compaction_cursors tracks mutable state (like last_compacted_offset), its rows will likely be updated frequently by compaction jobs. Inserting rows into collection_segments requires a lock on the parent row to verify existence. This means ingestion (adding segments) and compaction (updating cursor) will contend for locks on the same cursor row, potentially serializing operations per region.
Recommendation: Interleave collection_segments directly in collections.
With PRIMARY KEY (collection_id, region, id), the segments will still be physically colocated by region (due to lexicographical key ordering), achieving the same query efficiency without coupling ingestion to compaction state stability.
Context for Agents
Interleaving `collection_segments` in `collection_compaction_cursors` creates a significant risk of lock contention.
Since `collection_compaction_cursors` tracks mutable state (like `last_compacted_offset`), its rows will likely be updated frequently by compaction jobs. Inserting rows into `collection_segments` requires a lock on the parent row to verify existence. This means ingestion (adding segments) and compaction (updating cursor) will contend for locks on the same cursor row, potentially serializing operations per region.
**Recommendation:** Interleave `collection_segments` directly in `collections`.
With `PRIMARY KEY (collection_id, region, id)`, the segments will still be physically colocated by region (due to lexicographical key ordering), achieving the same query efficiency without coupling ingestion to compaction state stability.
File: rust/spanner-migrations/migrations/0007-create_segments.spanner.sql
Line: 16There was a problem hiding this comment.
compaction updates both this table and the parent table
sanketkedia
force-pushed
the
01-07-_enh_spanner_collection_and_segments_schemas
branch
from
8943cfb to
118bdf5
Compare
| is_deleted BOOL DEFAULT (false), | ||
| created_at TIMESTAMP NOT NULL OPTIONS (allow_commit_timestamp=true), | ||
| updated_at TIMESTAMP NOT NULL OPTIONS (allow_commit_timestamp=true) | ||
| ) PRIMARY KEY (collection_id) |
There was a problem hiding this comment.
[Reliability] Consider defining Foreign Key constraints for database_id and tenant_id to enforce referential integrity at the database level. Without them, orphaned records could exist if parent entities are deleted (unless strict soft-delete logic is guaranteed at the application layer).
Context for Agents
Consider defining Foreign Key constraints for `database_id` and `tenant_id` to enforce referential integrity at the database level. Without them, orphaned records could exist if parent entities are deleted (unless strict soft-delete logic is guaranteed at the application layer).
File: rust/spanner-migrations/migrations/0004-create_collections.spanner.sql
Line: 13There was a problem hiding this comment.
why pay write time overhead esp if it can involve a network RTT in distributed sql such as spanner?
| name STRING(MAX) NOT NULL, | ||
| dimension INT64, | ||
| database_id STRING(MAX) NOT NULL, | ||
| database_name STRING(MAX) NOT NULL, |
There was a problem hiding this comment.
[Logic] Storing database_name here creates a denormalized dependency. If a database is renamed in the source-of-truth databases table, this column will become stale unless explicitly synchronized.
Unless this is a specific read-optimization trade-off, consider removing this column and joining with the databases table on database_id when the name is needed.
Context for Agents
Storing `database_name` here creates a denormalized dependency. If a database is renamed in the source-of-truth `databases` table, this column will become stale unless explicitly synchronized.
Unless this is a specific read-optimization trade-off, consider removing this column and joining with the `databases` table on `database_id` when the name is needed.
File: rust/spanner-migrations/migrations/0004-create_collections.spanner.sql
Line: 8There was a problem hiding this comment.
yeah we don't support renaming databases. Also our http routes are defined in terms of db names so there's a tight coupling and non trivial overhead to renaming databases anyways. This is done here as. a read-time optimization to avoid joining with the database table
sanketkedia
force-pushed
the
01-07-_enh_spanner_collection_and_segments_schemas
branch
from
118bdf5 to
432297c
Compare
sanketkedia
changed the base branch from
01-06-_enh_database_and_tenant_crud_enhancements
to
graphite-base/6123
| let mut name_check_stmt = Statement::new( | ||
| "SELECT id FROM databases WHERE name = @name AND tenant_id = @tenant_id AND is_deleted = FALSE", | ||
| ); | ||
| name_check_stmt.add_param("name", &db_name); | ||
| name_check_stmt.add_param("tenant_id", &tenant_id); | ||
|
|
||
| let mut name_iter = tx.query(name_check_stmt).await?; | ||
| if name_iter.next().await?.is_some() { |
There was a problem hiding this comment.
[Logic] Similar to create_tenant, this logic fails if a database with the same name was previously soft-deleted.
The uniqueness check filters out is_deleted = TRUE rows, but the INSERT will violate the unique index on (tenant_id, name) (and the PK on id if reused) because the index includes soft-deleted rows.
Handle the conflict by checking for existing soft-deleted rows and deciding whether to revive them or return a specific error.
Context for Agents
Similar to `create_tenant`, this logic fails if a database with the same name was previously soft-deleted.
The uniqueness check filters out `is_deleted = TRUE` rows, but the `INSERT` will violate the unique index on `(tenant_id, name)` (and the PK on `id` if reused) because the index includes soft-deleted rows.
Handle the conflict by checking for existing soft-deleted rows and deciding whether to revive them or return a specific error.
File: rust/rust-sysdb/src/spanner.rs
Line: 207|
|
||
| let mut iter = tx.query(check_stmt).await?; | ||
|
|
||
| // If tenant doesn't exist, insert it using DML | ||
| // If tenant doesn't exist, insert it otherwise ignore for idempotency | ||
| // Set last_compaction_time to Unix epoch (0) by default | ||
| if iter.next().await?.is_none() { | ||
| let mut insert_stmt = Statement::new( |
There was a problem hiding this comment.
[Logic] This creates a potential bug where creating a tenant that was previously soft-deleted will fail with a database constraint violation (PK violation) instead of handling it gracefully.
The check is_deleted = FALSE ignores soft-deleted rows, but the subsequent INSERT will collide with the existing soft-deleted row's primary key id.
Consider checking for the row existence regardless of is_deleted status, and then either reviving the tenant (UPDATE is_deleted = false) or returning a specific error.
Context for Agents
This creates a potential bug where creating a tenant that was previously soft-deleted will fail with a database constraint violation (PK violation) instead of handling it gracefully.
The check `is_deleted = FALSE` ignores soft-deleted rows, but the subsequent `INSERT` will collide with the existing soft-deleted row's primary key `id`.
Consider checking for the row existence regardless of `is_deleted` status, and then either reviving the tenant (UPDATE `is_deleted` = false) or returning a specific error.
File: rust/rust-sysdb/src/spanner.rs
Line: 92432297c to
50a6033
Compare
This comment has been minimized.
This comment has been minimized.
sanketkedia
force-pushed
the
01-07-_enh_spanner_collection_and_segments_schemas
branch
from
2398ba0 to
3890bf5
Compare
| size_bytes_post_compaction INT64 DEFAULT (0), | ||
| num_versions INT64 DEFAULT (0), | ||
| version_file_name STRING(MAX), | ||
| last_compaction_time_secs TIMESTAMP OPTIONS (allow_commit_timestamp=true), |
There was a problem hiding this comment.
[Maintainability] The column name last_compaction_time_secs implies an integer value representing seconds (e.g., Unix epoch), but the type is TIMESTAMP with allow_commit_timestamp=true. This naming convention is misleading as TIMESTAMP in Spanner is a specific data type, not just a count of seconds.
Consider renaming to last_compaction_time or last_compaction_at to accurately reflect the data type and avoid confusion.
Context for Agents
The column name `last_compaction_time_secs` implies an integer value representing seconds (e.g., Unix epoch), but the type is `TIMESTAMP` with `allow_commit_timestamp=true`. This naming convention is misleading as `TIMESTAMP` in Spanner is a specific data type, not just a count of seconds.
Consider renaming to `last_compaction_time` or `last_compaction_at` to accurately reflect the data type and avoid confusion.
File: rust/spanner-migrations/migrations/0005-create_collection_compaction_cursors.spanner.sql
Line: 14There was a problem hiding this comment.
All it means is that I am keeping time in secs since epoch
| async fn increment_compaction_failure_count( | ||
| &self, | ||
| _request: Request<IncrementCompactionFailureCountRequest>, | ||
| ) -> Result<Response<IncrementCompactionFailureCountResponse>, Status> { | ||
| todo!() | ||
| } |
There was a problem hiding this comment.
[Reliability] Using todo!() will cause the server to panic if this endpoint is triggered. For unimplemented gRPC methods, it's safer to return a Status::unimplemented error code. This ensures the service remains stable even if the endpoint is called accidentally.
[FileRule: rust/language_specific.instructions.rust]
Context for Agents
Using `todo!()` will cause the server to panic if this endpoint is triggered. For unimplemented gRPC methods, it's safer to return a `Status::unimplemented` error code. This ensures the service remains stable even if the endpoint is called accidentally.
[FileRule: rust/language_specific.instructions.rust]
File: rust/rust-sysdb/src/server.rs
Line: 4892 participants
Description of changes
Summarize the changes made by this PR.
Test plan
How are these changes tested?
pytestfor python,yarn testfor js,cargo testfor rustMigration plan
None
Observability plan
None
Documentation Changes
None