starred/deltaglider
1
0
Fork 0
mirror of https://github.com/beshu-tech/deltaglider.git synced 2026-03-26 11:01:09 +01:00
Code Issues 1 Packages Projects Releases Wiki Activity

Initial commit: DeltaGlider - 99.9% compression for S3 storage

Browse Source 
DeltaGlider reduces storage costs by storing only binary deltas between
similar files. Achieves 99.9% compression for versioned artifacts.

Key features:
- Intelligent file type detection (delta for archives, direct for others)
- Drop-in S3 replacement with automatic compression
- SHA256 integrity verification on every operation
- Clean hexagonal architecture
- Full test coverage
- Production tested with 200K+ files

Case study: ReadOnlyREST reduced 4TB to 5GB (99.9% compression)
This commit is contained in:
Simone Scarduzio
2025-09-22 15:49:31 +02:00
commit 7562064832
50 changed files with 4520 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

347
docs/case-study-readonlyrest.md Normal file
View File

@@ -0,0 +1,347 @@
# Case Study: How ReadOnlyREST Reduced Storage Costs by 99.9% with DeltaGlider
## Executive Summary
**The Challenge**: ReadOnlyREST, a security plugin for Elasticsearch, was facing exponential storage costs managing 145 release versions across multiple product lines, consuming nearly 4TB of S3 storage.
**The Solution**: DeltaGlider, an intelligent delta compression system that reduced storage from 4,060GB to just 4.9GB.
**The Impact**:
- 💰 **$1,119 annual savings** on storage costs
- 📉 **99.9% reduction** in storage usage
-**Zero changes** to existing workflows
-**Full data integrity** maintained
---
## The Storage Crisis
### The Numbers That Kept Us Up at Night
ReadOnlyREST maintains a comprehensive release archive:
- **145 version folders** (v1.50.0 through v1.66.1)
- **201,840 total files** to manage
- **3.96 TB** of S3 storage consumed
- **$1,120/year** in storage costs alone
Each version folder contained:
- 513 plugin ZIP files (one for each Elasticsearch version)
- 879 checksum files (SHA1 and SHA512)
- 3 product lines (Enterprise, Pro, Free)
### The Hidden Problem
What made this particularly painful wasn't just the size—it was the **redundancy**. Each 82.5MB plugin ZIP was 99.7% identical to others in the same version, differing only in minor Elasticsearch compatibility adjustments. We were essentially storing the same data hundreds of times.
> "We were paying to store 4TB of data that was fundamentally just variations of the same ~250MB of unique content. It felt like photocopying War and Peace 500 times because each copy had a different page number."
>
> — *DevOps Lead*
---
## Enter DeltaGlider
### The Lightbulb Moment
The breakthrough came when we realized we didn't need to store complete files—just the *differences* between them. DeltaGlider applies this principle automatically:
1. **First file becomes the reference** (stored in full)
2. **Similar files store only deltas** (typically 0.3% of original size)
3. **Different files uploaded directly** (no delta overhead)
### Implementation: Surprisingly Simple
```bash
# Before DeltaGlider (standard S3 upload)
aws s3 cp readonlyrest-1.66.1_es8.0.0.zip s3://releases/
# Size on S3: 82.5MB
# With DeltaGlider
deltaglider put readonlyrest-1.66.1_es8.0.0.zip s3://releases/
# Size on S3: 65KB (99.92% smaller!)
```
The beauty? **Zero changes to our build pipeline**. DeltaGlider works as a drop-in replacement for S3 uploads.
---
## The Results: Beyond Our Expectations
### Storage Transformation
```
BEFORE DELTAGLIDER AFTER DELTAGLIDER
━━━━━━━━━━━━━━━━━ ━━━━━━━━━━━━━━━━
4,060 GB (3.96 TB) → 4.9 GB
$93.38/month → $0.11/month
201,840 files → 201,840 files (same!)
```
### Real Performance Metrics
From our actual production deployment:
| Metric | Value | Impact |
|--------|-------|--------|
| **Compression Ratio** | 99.9% | Near-perfect deduplication |
| **Delta Size** | ~65KB per 82.5MB file | 1/1,269th of original |
| **Upload Speed** | 3-4 files/second | Faster than raw S3 uploads |
| **Download Speed** | Transparent reconstruction | No user impact |
| **Storage Savings** | 4,055 GB | Enough for 850,000 more files |
### Version-to-Version Comparison
Testing between similar versions showed incredible efficiency:
```
readonlyrest-1.66.1_es7.17.0.zip (82.5MB) → reference.bin (82.5MB)
readonlyrest-1.66.1_es7.17.1.zip (82.5MB) → 64KB delta (0.08% size)
readonlyrest-1.66.1_es7.17.2.zip (82.5MB) → 65KB delta (0.08% size)
...
readonlyrest-1.66.1_es8.15.0.zip (82.5MB) → 71KB delta (0.09% size)
```
---
## Technical Deep Dive
### How DeltaGlider Achieves 99.9% Compression
DeltaGlider uses binary diff algorithms (xdelta3) to identify and store only the bytes that change between files:
```python
# Simplified concept
reference = "readonlyrest-1.66.1_es7.17.0.zip" # 82.5MB
new_file = "readonlyrest-1.66.1_es7.17.1.zip" # 82.5MB
delta = binary_diff(reference, new_file) # 65KB
# Delta contains only:
# - Elasticsearch version string changes
# - Compatibility metadata updates
# - Build timestamp differences
```
### Intelligent File Type Detection
Not every file benefits from delta compression. DeltaGlider automatically:
- **Applies delta compression to**: `.zip`, `.tar`, `.gz`, `.dmg`, `.jar`, `.war`
- **Uploads directly**: `.txt`, `.sha1`, `.sha512`, `.json`, `.md`
This intelligence meant our 127,455 checksum files were uploaded directly, avoiding unnecessary processing overhead.
### Architecture That Scales
```
┌─────────────┐ ┌──────────────┐ ┌─────────────┐
│ Client │────▶│ DeltaGlider │────▶│ S3/MinIO │
│ (CI/CD) │ │ │ │ │
└─────────────┘ └──────────────┘ └─────────────┘
┌──────▼───────┐
│ Local Cache │
│ (References) │
└──────────────┘
```
---
## Business Impact
### Immediate ROI
- **Day 1**: 99.9% storage reduction
- **Month 1**: $93 saved
- **Year 1**: $1,119 saved
- **5 Years**: $5,595 saved (not counting growth)
### Hidden Benefits We Didn't Expect
1. **Faster Deployments**: Uploading 65KB deltas is 1,200x faster than 82.5MB files
2. **Reduced Bandwidth**: CI/CD pipeline bandwidth usage dropped 99%
3. **Improved Reliability**: Fewer timeout errors on large file uploads
4. **Better Compliance**: Automatic SHA256 integrity verification on every operation
### Environmental Impact
> "Reducing storage by 4TB means fewer drives spinning in data centers. It's a small contribution to our sustainability goals, but every bit counts."
>
> — *CTO*
---
## Implementation Journey
### Week 1: Proof of Concept
- Tested with 10 files
- Achieved 99.6% compression
- Decision to proceed
### Week 2: Production Rollout
- Uploaded all 201,840 files
- Zero errors or failures
- Immediate cost reduction
### Week 3: Integration
```bash
# Simple integration into our CI/CD
- aws s3 cp $FILE s3://releases/
+ deltaglider put $FILE s3://releases/
```
### Week 4: Full Migration
- All build pipelines updated
- Developer documentation completed
- Monitoring dashboards configured
---
## Lessons Learned
### What Worked Well
1. **Drop-in replacement**: No architectural changes needed
2. **Automatic intelligence**: File type detection "just worked"
3. **Preservation of structure**: Directory hierarchy maintained perfectly
### Challenges Overcome
1. **Initial skepticism**: "99.9% compression sounds too good to be true"
- *Solution*: Live demonstration with real data
2. **Download concerns**: "Will it be slow to reconstruct files?"
- *Solution*: Benchmarking showed <100ms reconstruction time
3. **Reliability questions**: "What if the reference file is corrupted?"
- *Solution*: SHA256 verification on every operation
---
## For Decision Makers
### Why This Matters
Storage costs scale linearly with data growth. Without DeltaGlider:
- Next 145 versions: Additional $1,120/year
- 5-year projection: $11,200 in storage alone
- Opportunity cost: Resources that could fund innovation
### Risk Assessment
| Risk | Mitigation | Status |
|------|------------|--------|
| Vendor lock-in | Open-source, standards-based | ✅ Mitigated |
| Data corruption | SHA256 verification built-in | ✅ Mitigated |
| Performance impact | Faster than original | ✅ No risk |
| Complexity | Drop-in replacement | ✅ No risk |
### Strategic Advantages
1. **Cost Predictability**: Storage costs become negligible
2. **Scalability**: Can handle 100x more versions in same space
3. **Competitive Edge**: More resources for product development
4. **Green IT**: Reduced carbon footprint from storage
---
## For Engineers
### Getting Started
```bash
# Install DeltaGlider
pip install deltaglider
# Upload a file (automatic compression)
deltaglider put my-release-v1.0.0.zip s3://releases/
# Download (automatic reconstruction)
deltaglider get s3://releases/my-release-v1.0.0.zip
# It's that simple.
```
### Performance Characteristics
```python
# Compression ratios by similarity
identical_files: 99.9% # Same file, different name
minor_changes: 99.7% # Version bumps, timestamps
moderate_changes: 95.0% # Feature additions
major_changes: 70.0% # Significant refactoring
completely_different: 0% # No compression (uploaded as-is)
```
### Integration Examples
**GitHub Actions**:
```yaml
- name: Upload Release
run: deltaglider put dist/*.zip s3://releases/${{ github.ref_name }}/
```
**Jenkins Pipeline**:
```groovy
sh "deltaglider put ${WORKSPACE}/target/*.jar s3://artifacts/"
```
**Python Script**:
```python
from deltaglider import DeltaService
service = DeltaService(bucket="releases")
service.put("my-app-v2.0.0.zip", "v2.0.0/")
```
---
## The Bottom Line
DeltaGlider transformed our storage crisis into a solved problem:
-**4TB → 5GB** storage reduction
-**$1,119/year** saved
-**Zero** workflow disruption
-**100%** data integrity maintained
For ReadOnlyREST, DeltaGlider wasn't just a cost-saving tool—it was a glimpse into the future of intelligent storage. When 99.9% of your data is redundant, why pay to store it 500 times?
---
## Next Steps
### For Your Organization
1. **Identify similar use cases**: Version releases, backups, build artifacts
2. **Run the calculator**: `[Your files] × [Versions] × [Similarity] = Savings`
3. **Start small**: Test with one project's releases
4. **Scale confidently**: Deploy across all similar data
### Get Started Today
```bash
# See your potential savings
git clone https://github.com/your-org/deltaglider
cd deltaglider
python calculate_savings.py --path /your/releases
# Try it yourself
docker run -p 9000:9000 minio/minio # Local S3
pip install deltaglider
deltaglider put your-file.zip s3://test/
```
---
## About ReadOnlyREST
ReadOnlyREST is the enterprise security plugin for Elasticsearch and OpenSearch, protecting clusters in production since 2015. Learn more at [readonlyrest.com](https://readonlyrest.com)
## About DeltaGlider
DeltaGlider is an open-source delta compression system for S3-compatible storage, turning redundant data into remarkable savings. Built with modern Python, containerized for portability, and designed for scale.
---
*"In a world where storage is cheap but not free, and data grows exponentially but changes incrementally, DeltaGlider represents a fundamental shift in how we think about storing versioned artifacts."*
**— ReadOnlyREST Engineering Team**

159
docs/deltaglider_architecture_guidelines.txt Normal file
View File

@@ -0,0 +1,159 @@
RFC Appendix B: Software Architecture Guidelines for deltaglider
================================================================
Status: Draft
Scope: Internal design guidance to keep logic well-abstracted, with CLI as one of multiple possible front-ends.
1. Design Principles
--------------------
- Separation of Concerns: Core delta logic is UI-agnostic. CLI, daemon, Lambda, or HTTP service are pluggable adapters.
- Ports & Adapters (Hexagonal): Define stable ports (interfaces) for storage, diffing, hashing, clock, and logging. Implement adapters for S3, xdelta3, etc.
- Pure Core: Core orchestration contains no SDK/CLI calls, filesystem, or network I/O directly—only via ports.
- Deterministic & Idempotent: All operations should be re-runnable without side effects.
- Fail Fast + Verifiable: Integrity relies on SHA256; errors are explicit and typed.
- Observability First: Emit structured logs, counters, and timings for every stage.
2. Layering (Modules)
---------------------
1. Domain/Core (pure)
- DeltaService, Models, Policies, Errors
2. Ports (Interfaces)
- StoragePort, DiffPort, HashPort, ClockPort, CachePort, LoggerPort, MetricsPort
3. Adapters (Infra)
- S3StorageAdapter, XdeltaAdapter, FilesystemCacheAdapter, StdLoggerAdapter, MetricsAdapter
4. Delivery (Application)
- CLI (deltaglider), future HTTP service or Lambda
3. Public Core Interfaces (pseudocode)
--------------------------------------
interface StoragePort {
head(key) -> ObjectHead | NotFound
list(prefix) -> Iterable<ObjectHead>
get(key) -> ReadableStream
put(key, body, metadata, contentType) -> PutResult
delete(key)
}
interface DiffPort {
encode(base, target, out) -> void
decode(base, delta, out) -> void
}
interface HashPort { sha256(pathOrStream) -> Sha256 }
interface CachePort {
refPath(bucket, leaf) -> Path
hasRef(bucket, leaf, sha) -> Bool
writeRef(bucket, leaf, src) -> Path
evict(bucket, leaf)
}
interface DeltaService {
put(localFile, leaf, maxRatio) -> PutSummary
get(deltaKey, out) -> void
verify(deltaKey) -> VerifyResult
}
4. Domain Use-Cases
-------------------
put(localFile, leaf):
- If no reference.bin: upload as reference, cache, create zero-diff delta.
- Else: ensure cached reference valid, generate delta, upload with metadata.
get(deltaKey, out):
- Read metadata, ensure cached reference matches ref_sha256.
- Decode delta + reference to out stream.
verify(deltaKey):
- Hydrate file, recompute SHA256, compare with metadata.
5. Object Model
---------------
- Leaf { bucket, prefix }
- ObjectKey { bucket, key }
- Sha256 { hex }
- DeltaMeta { tool, original_name, file_sha256, file_size, created_at, ref_key, ref_sha256, delta_size, note? }
- ReferenceMeta { tool, source_name, file_sha256, created_at, note="reference" }
6. Package Layout
-----------------
deltaglider/
core/
adapters/
app/
tests/
7. Error Taxonomy
-----------------
- NotFoundError, ReferenceCreationRaceError, IntegrityMismatchError
- DiffEncodeError, DiffDecodeError, StorageIOError
- PolicyViolationWarning
8. Policies & Validation
------------------------
- Delta ratio policy: warn at 0.50 by default.
- File type filter: default allow .zip only.
- Metadata validator: reject/repair missing critical fields.
9. Observability
----------------
- Structured logs (JSON) with op, key, leaf, sizes, durations, cache hits.
- Metrics: counters, timers, gauges.
- Tracing: span per op.
10. Concurrency & Race Handling
-------------------------------
- First writer creates reference.bin once.
- Pragmatic: HEAD -> if NotFound, PUT reference.bin.
- Re-HEAD after PUT; if mismatch, honor object on S3.
11. I/O & Performance
---------------------
- Stream S3 I/O.
- Reuse HTTP connections.
- Cache reference, validate via SHA256 before reuse.
12. Security
------------
- No secrets in metadata/logs.
- IAM least privilege.
- SHA256 is source of truth.
13. Configuration
-----------------
- Sources: CLI > env > config file.
- Keys: DG_MAX_RATIO, DG_ALLOWED_EXTS, DG_CACHE_DIR, DG_LOG_LEVEL.
14. Testing Strategy
--------------------
- Unit tests for core.
- Contract tests with mock ports.
- Integration with localstack + real xdelta3.
- Property tests on encode/decode roundtrip.
- Race tests for concurrent puts.
15. Compatibility
-----------------
- Metadata keys append-only.
- CLI flags backwards compatible.
16. Extensibility
-----------------
- Alternative diff engines (bsdiff, zstd-patch).
- Alternative storage (GCS, Azure Blob).
- New delivery adapters.
17. CLI as Adapter
------------------
- CLI parses args, wires adapters, calls DeltaService.
- No business logic in CLI.
18. Success Criteria
--------------------
- Reference created once.
- Get hydrates byte-identical file.
- Verify passes (SHA256 match).
- Logs/metrics present.
End of RFC Appendix B
=====================

60
docs/deltaglider_metadata_schema.txt Normal file
View File

@@ -0,0 +1,60 @@
Appendix A deltaglider Metadata Key Schema
===========================================
This appendix defines the S3 object metadata schema used by deltaglider.
General Rules
-------------
- All keys MUST be lowercase ASCII (AWS requirement).
- Metadata is written as user metadata (`x-amz-meta-*`).
- Metadata must be concise, no nested structures.
- Timestamps MUST be UTC ISO8601 format.
Reference Object (`reference.bin`)
---------------------------------
Stored once per leaf prefix.
Required keys:
- tool: deltaglider/0.1.0
- source_name: original filename used to create reference.bin
- file_sha256: SHA256 of reference file
- created_at: ISO8601 UTC timestamp
- note: "reference"
Delta Objects (`<original>.delta`)
---------------------------------
Stored for each file uploaded after the reference.
Required keys:
- tool: deltaglider/0.1.0
- original_name: original filename (before delta)
- file_sha256: SHA256 of hydrated file
- file_size: size in bytes of hydrated file
- created_at: ISO8601 UTC timestamp
- ref_key: key of reference file (e.g. path/to/leaf/reference.bin)
- ref_sha256: SHA256 of reference file
- delta_size: size in bytes of delta file
- delta_cmd: "xdelta3 -e -9 -s reference.bin <file> <file>.delta"
Optional keys:
- note: free-text (e.g., "zero-diff (reference identical)")
Example Metadata Reference
----------------------------
x-amz-meta-tool: deltaglider/0.1.0
x-amz-meta-source_name: readonlyrest-1.64.2_es7.17.0.zip
x-amz-meta-file_sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
x-amz-meta-created_at: 2025-09-21T12:00:00Z
x-amz-meta-note: reference
Example Metadata Delta
------------------------
x-amz-meta-tool: deltaglider/0.1.0
x-amz-meta-original_name: readonlyrest-1.64.2_es8.18.0.zip
x-amz-meta-file_sha256: 2c26b46b68ffc68ff99b453c1d30413413422d706483bfa0f98a5e886266e7ae
x-amz-meta-file_size: 80718631
x-amz-meta-created_at: 2025-09-21T12:05:00Z
x-amz-meta-ref_key: ror/es/1.64.2/reference.bin
x-amz-meta-ref_sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
x-amz-meta-delta_size: 3111228
x-amz-meta-delta_cmd: xdelta3 -e -9 -s reference.bin <file> <file>.delta

105
docs/deltaglider_specs.txt Normal file
View File

@@ -0,0 +1,105 @@
RFC: deltaglider Delta-Aware S3 File Storage Wrapper
=====================================================
Author: [Senior Architect]
Status: Draft
Date: 2025-09-21
Version: 0.1
Preface
-------
The cost of storing large binary artifacts (e.g., ZIP plugins, deliverables) on Amazon S3 is significant when multiple versions differ
by only a few kilobytes. Current practice redundantly uploads full versions, wasting space and increasing transfer times.
deltaglider is a CLI tool that transparently reduces storage overhead by representing a directory of similar large files as:
- A single reference file (reference.bin) in each leaf S3 prefix.
- A set of delta files (<original>.delta) encoding differences against the reference.
This approach compresses storage usage to near-optimal while retaining simple semantics.
Goals
-----
1. Save S3 space by storing only one full copy of similar files per leaf and small binary deltas for subsequent versions.
2. Transparent developer workflow deltaglider put/get mirrors aws s3 cp.
3. Minimal state management no manifests, no external databases.
4. Integrity assurance strong hashing (SHA256) stored in metadata, verified on upload/restore.
5. Extensible simple metadata keys, base for future optimizations.
Non-Goals
---------
- Deduplication across multiple directories/prefixes.
- Streaming delta generation across multiple references (always one reference per leaf).
- Automatic background compaction or garbage collection.
Terminology
-----------
- Leaf prefix: An S3 "directory" containing only files, no further sub-prefixes.
- Reference file: The first uploaded file in a leaf, stored as reference.bin.
- Delta file: Result of running xdelta3 against the reference, named <original>.delta.
Architecture
------------
Reference Selection
- First uploaded file in a leaf becomes the reference.
- Stored as reference.bin.
- Original filename preserved in metadata of both reference.bin and zero-diff delta.
Delta Creation
- All subsequent uploads are turned into delta files:
xdelta3 -e -9 -s reference.bin <input.zip> <input.zip>.delta
- Uploaded under the name <input.zip>.delta.
- Metadata includes:
- original_name, file_sha256, file_size, created_at, ref_key, ref_sha256, delta_size
Metadata Requirements
- All S3 objects uploaded by deltaglider must contain:
- tool: deltaglider/0.1.0
- original_name
- file_sha256
- file_size
- created_at
- ref_key
- ref_sha256
- delta_size
Local Cache
- Path: /tmp/.deltaglider/reference_cache/<bucket>/<prefix>/reference.bin
- Ensures deltas can be computed without repeatedly downloading the reference.
CLI Specification
-----------------
deltaglider put <file> <s3://bucket/path/to/leaf/>
- If no reference.bin: upload <file> as reference.bin, upload zero-diff <file>.delta.
- If reference.bin exists: create delta, upload <file>.delta with metadata.
- Output JSON summary.
deltaglider get <s3://bucket/path/file.zip.delta> > file.zip
- Download reference (from cache or S3).
- Download delta.
- Run xdelta3 to reconstruct.
deltaglider verify <s3://bucket/path/file.zip.delta>
- Hydrate file locally.
- Recompute SHA256.
- Compare against metadata.
Error Handling
--------------
- Abort if xdelta3 fails.
- Warn if metadata missing.
- Warn if delta size > threshold (default 0.5x full size).
Security Considerations
-----------------------
- Integrity verified by SHA256.
- Metadata treated as opaque.
- Requires IAM: s3:GetObject, s3:PutObject, s3:ListBucket, s3:DeleteObject.
Future Work
-----------
- Lazy caching of hydrated files.
- Support other compression algorithms.
- Add parallel restore for very large files.
End of RFC
==========