Seguro
A production wrapper around FoundationDB, ready for integration with vere.
Background
The results of Phase 1 of the Seguro project demonstrate that FoundationDB is the best choice of distributed databases to utilize for the project. This is Phase 2 of the Seguro project, which implements an MVP event reader/writer module using FoundationDB as the underlying data store.
See below for additional context:
Objectives
Phase 2 of the Seguro project can be considered as "all work up to actual integration with vere". Limiting Phase 2 to this is desirable because it i.) keeps the grant's scope of work at a reasonable level, and ii.) it allows more time for the following three ancillary runtime projects/considerations to achieve resolution:
- Asynchronous reads in
vere - Merging/releasing event log truncation urbit/urbit#7501
- A decision on whether or not to add another process to the overall Urbit runtime architecture
Each of these three workstreams need to be resolved before Seguro can be integrated with vere.
Event Fragmentation Scheme
FoundationDB supports a maximum value size of 100KB and recommends limiting value size to only 10KB for best performance. Since our data model requires arbitrarily sized byte buffer values for events, an event fragmentation algorithm is required to support events with larger payloads.
Events which exceed the size limit of a single database value must be fragmented so that such events are stored across multiple database key/value pairs. To achieve event fragmentation, key/value pairs will be formatted like so:
Keys/Values
| encoding | format | |
|---|---|---|
| key | ASCII string, null-terminated | "<event id>:<fragment id>" |
| value | raw bytes | <fragment header><fragment payload> |
event ids and fragment ids are both contiguous, non-negative integers.
Fragment Header
fragment headers are raw byte strings with byte-widths determined by the total size of the event payload. By default, fragment headers have a byte-width of 4:
| byte | bucket | format | example |
|---|---|---|---|
| 0 | byte-width | overflow toggle bit, fragment id | 0000 0000 |
| 1 | ASCII ':' character | 0011 1010 | |
| 2 | length | total fragments | 0000 0001 |
| 3 | ASCII ':' character | 0011 1010 |
The overflow toggle bit is the high bit of byte 0.
The default fragment header byte-width of 4 supports events which can be fragmented with 127 or less total fragments.
For events which require greater than 127 fragments to be stored, the overflow toggle bit is set to 1 and the low 7 bits are used to encode the fragment header byte-width instead of the fragment id. If those 7 bits encode a value of x bytes, the following x bytes in the fragment header will contain the fragment id. Note that, no matter the value of the overflow toggle bit, the byte-width and length buckets always have the same byte-widths. Thus, the total byte-width of any fragment header is 2x+2, where x is 1 when the overflow toggle bit or the encoded value of the low 7 bits when the overflow toggle bit is set to 1.
Let's see how the 255th fragment of an example event which requires 255 fragments to be stored would look:
| byte | bucket | format | example |
|---|---|---|---|
| 0 | byte-width | overflow toggle bit, bucket byte-width | 1000 0010 |
| 1 | byte-width | fragment id | 1111 1111 |
| 2 | ASCII ':' character | 0011 1010 | |
| 3 | length | total fragments | 0000 0000 |
| 4 | length | total fragments continued | 1111 1111 |
| 5 | ASCII ':' character | 0011 1010 |
In this case, x is 2, so the total byte-width of the fragment header is 2x+2 = 2*2+2 = 6.
Fragment Payload
The fragment payload is the raw bytes of the event, as encoded by vere, which are appended to the end of the fragment header byte string.
The maximum size of each event's fragment payload is simply:
(maximum db value size) - (fragment header size)
For instance, if the maximum db value size is 10KB and the fragment header size for the given event is the default of 4 bytes, each fragment payload can hold up to 9,996 bytes.
Fragmentation Tests
Tests ensuring multi-fragment events are written and read correctly and without corruption must be included in this work.
Reads
Single and batch reads must be supported, with the following function signatures, or similar:
event read_event(int event_id);event[] read_event_batch(int min_event_id, int max_event_id);
Writes
Single transaction batch writes and multiple, simultaneous, asynchronous writes must be supported as well:
int write_event_batch(event[]);future write_event_async(event);
Additional requirements for writes include:
- A benchmark determining which of the above perform best
- A brief analysis of pros/cons of integrating the two, based on whether the overall architecture is in- or out-of-process
Future Work
- Integration with
vere - Release
- Automatic failover
Milestones
Phase 2 - Implement a working FoundationDB event read/write layer that is as ready as possible for interfacing with the Urbit runtime.
Deliverables:
Implementation using the FoundationDB C API
Event fragmentation scheme, including correctness tests
Single and batch reads
Writes
- Single transaction batch writes
- Multiple, simultaneous transaction writes (race a bunch of futures)
- Benchmark determining best performance write strategy
- Brief analysis of implementation pros/cons based on in- or out-of-process architecture
Linux compatibility (macOS, Windows can be supported later)
Payment: 5 stars
Expected Completion: October 2022
