mirror of
https://github.com/Tencent/WeKnora.git
synced 2026-06-04 13:30:32 +08:00
40b74e2efa
Phase 3 (#1440) gate flip. PR 1 (#1445) + PR 2a (#1481) + PR 2b (#1482) laid the type prep + driver skeleton + read/write paths as gated dead code; this PR wires every activation surface so opensearch becomes a registerable VectorStore engine. Activation wiring - internal/types: validEngineTypes / GetVectorStoreTypes (with HNSW bounds + knn_engine enum + Immutable hints) / retrieverEngineMapping / buildEnvStoreForDriver — every gated surface now recognises "opensearch". IndexConfig grows four omitempty HNSW fields (HNSWM / HNSWEFConstruction / HNSWEFSearch / KNNEngine), keeping other engines' serialised config byte-identical. - internal/container: createOpenSearchEngine + the switch case in createEngineServiceFromStore; the RETRIEVE_DRIVER=opensearch env path in initRetrieveEngineRegistry; NewEngineFactory now closes over the AuditLogService (the EngineFactory type itself is unchanged). - internal/application/service/vectorstore_healthcheck.go: a testOpenSearchConnection case so CreateStore's connectivity probe accepts opensearch instead of returning 400. - internal/application/repository/retriever/opensearch/transport.go: NewOpenSearchClient is exported so the factory and env path can build the TLS-hardened client; healthcheck.go reuses the unexported probeVersion / probeKNNPlugin for the service-layer probe. Service-layer validation - validateOpenSearchIndexConfig validates the HNSW caps (m 2-100, ef_construction 2-4096, ef_search 1-10000, knn_engine ∈ lucene|faiss). Shards/replicas continue to be enforced by the flat ValidateIndexConfig. Create-only: UpdateStore mutates the name only. - validateConnectionConfig requires addr for opensearch. Sync implementations (stubs.go shrinks) - CopyIndices (copy.go) mirrors the Elasticsearch / Qdrant pattern — search → BatchSave with the source_id remap for generated questions — so dim/keyword routing and the source_id contract come from BatchSave for free. embeddingMap is keyed by the *target* SourceID because OpenSearch's BatchSave looks up embeddings by SourceID (lookupEmbedding), not by chunk_id (the ES driver's convention). Pagination is from/size; copies larger than max_result_window (default 10000) need the scroll-based async path that lands later. - BatchUpdateChunkEnabledStatus / BatchUpdateChunkTagID (bulk_update.go) group the input by target value and issue one _update_by_query per group over the cross-dim <base>_* pattern. Caller values flow through bound script params only — never string-interpolated into the Painless source — closing the script-injection surface. - inspectByQueryResponse (byquery.go) mirrors inspectBulkResponse: the full failure reason goes to the debug log only; the returned error carries the bounded id + type. - UpdateByQueryParams.Refresh is *bool in opensearch-go v4.6.0 (the same shape as DeleteByQuery's quirk), so refresh=wait_for is not expressible; we use refresh=true. Driver-owned audit (DIP) - A new opensearch.AuditSink interface (with nopSink + WithAuditSink functional option) lets the driver emit opensearch.index_created and opensearch.reindex_executed events without importing any service package — the service layer implements the interface. NewRepository takes opts, so existing 4-arg test call sites keep compiling unchanged. - internal/container/audit_sink.go bridges AuditSink to AuditLogService. When the context carries no tenant (the env-path registration ctx during boot, for example) the adapter skips the emit with a warning rather than silently writing tenant_id=0, which would collide with the system-scope sentinel. Frontend + polish - FieldSchema (frontend/src/api/vector-store.ts) gains min/max/enum/ immutable. VectorStoreSettings.vue is now schema-driven: a closed `enum` renders a t-select; number inputs use the schema's `:min`/`:max` and fall back to the legacy replica-vs-shard heuristic only when the schema does not pin them; a danger-coloured warning fires when insecure_skip_verify is toggled on (the switch and warning are wrapped in a vertical stack so the warning sits on its own row below the switch). - i18n: labels for hnsw_m / hnsw_ef_construction / hnsw_ef_search / knn_engine / insecure_skip_verify plus the warning copy in en-US, ko-KR, zh-CN, ru-RU. - docker-compose.dev.yml: an opensearch profile (single-node 3.3.2 with security plugin disabled for dev only). OpenSearch Dashboards lives in a separate, opt-in opensearch-ui profile so the heavy UI container is not forced up alongside the cluster (the driver e2e is fully curl-verifiable against :9200). The new docs/dev/opensearch-integration-test.md covers the end-to-end exercise and the single-node guidance (set replicas=0 to keep the cluster Green). Gating-guard tests flipped - The "OpenSearch is NOT in validEngineTypes / mapping / types list / env builder / stubs" guard tests from PR 1 / PR 2 are replaced by their positive counterparts in this PR. The test suite was the activation checklist; the activation flip is its diff. Backward compatibility - Additive everywhere. IndexConfig's new HNSW fields are omitempty so other engines' serialised config is byte-identical. Existing Elasticsearch / Qdrant / Milvus / Weaviate / Doris / TencentVectorDB stores are untouched. No migrations. Test plan - go build ./... clean - go vet ./... clean - gofmt -l clean on touched files - go test ./... — only TestOssEnsureBucket_CreateFails (Aliyun OSS endpoint), the docreader gRPC tests, and the doris SQL-shape tests fail; all three are pre-existing on upstream/main and untouched by this PR. - New tests across internal/types, opensearch, service and container — including a full end-to-end env-path test that exercises initRetrieveEngineRegistry with RETRIEVE_DRIVER=opensearch against an httptest cluster.
421 lines
14 KiB
Go
421 lines
14 KiB
Go
package opensearch
|
|
|
|
import (
|
|
"bytes"
|
|
"context"
|
|
"encoding/json"
|
|
"fmt"
|
|
|
|
osapi "github.com/opensearch-project/opensearch-go/v4/opensearchapi"
|
|
|
|
"github.com/Tencent/WeKnora/internal/logger"
|
|
)
|
|
|
|
// createIndexAndAlias creates "<alias>_v1" with the full k-NN mapping
|
|
// and then aliases "<alias>" → "<alias>_v1". Idempotent: returns nil if
|
|
// the alias already exists (so concurrent NewRepository calls in
|
|
// different processes don't race the PUT).
|
|
//
|
|
// Orphan cleanup: if aliasPut fails after a successful indicesCreate,
|
|
// the function attempts best-effort DELETE of the orphan _v1 index.
|
|
// Cleanup failure is logged but does not mask the original aliasPut
|
|
// error.
|
|
//
|
|
// Mapping-drift detection: if indicesCreate returns
|
|
// resource_already_exists_exception (cross-process race), the existing
|
|
// mapping's structural fingerprint is checked against the expected
|
|
// fingerprint. Drift returns ErrConfigInvalid wrapping a clear "manual
|
|
// reindex required" message instead of silently overlaying a foreign
|
|
// mapping.
|
|
func (r *Repository) createIndexAndAlias(ctx context.Context, dim int) error {
|
|
log := logger.GetLogger(ctx)
|
|
alias := r.indexAlias(dim)
|
|
realIndex := alias + "_v1"
|
|
|
|
exists, err := r.aliasExists(ctx, alias)
|
|
if err != nil {
|
|
return fmt.Errorf("alias check %s: %w", alias, err)
|
|
}
|
|
if exists {
|
|
return nil // another writer already set it up
|
|
}
|
|
|
|
body, err := buildIndexMapping(r.cfg, dim)
|
|
if err != nil {
|
|
return fmt.Errorf("build mapping for dim=%d: %w", dim, err)
|
|
}
|
|
|
|
indexCreated := false
|
|
if err := r.indicesCreate(ctx, realIndex, body); err != nil {
|
|
if isAlreadyExistsError(err) {
|
|
// Cross-process race or stale orphan. Verify the existing
|
|
// mapping matches what we expected; drift → ErrConfigInvalid.
|
|
if driftErr := r.verifyMappingMatches(ctx, realIndex, body); driftErr != nil {
|
|
return fmt.Errorf(
|
|
"mapping drift on %s: existing index has incompatible mapping; "+
|
|
"manual reindex required: %w",
|
|
realIndex, driftErr,
|
|
)
|
|
}
|
|
// Mapping matches → safe to proceed with alias setup.
|
|
} else {
|
|
return fmt.Errorf("create index %s: %w", realIndex, err)
|
|
}
|
|
} else {
|
|
indexCreated = true
|
|
}
|
|
|
|
if err := r.aliasPut(ctx, realIndex, alias); err != nil {
|
|
// Best-effort orphan cleanup so future retries find a clean slate.
|
|
if indexCreated {
|
|
if delErr := r.indicesDelete(ctx, realIndex); delErr != nil {
|
|
log.Warnf("[OpenSearch] orphan cleanup failed for %s: %v "+
|
|
"(operator must DELETE manually)", realIndex, delErr)
|
|
} else {
|
|
log.Infof("[OpenSearch] cleaned up orphan %s after aliasPut failure", realIndex)
|
|
}
|
|
}
|
|
return fmt.Errorf("put alias %s → %s: %w", alias, realIndex, err)
|
|
}
|
|
if indexCreated {
|
|
// Emit only when we actually provisioned the index (not when a
|
|
// concurrent writer / existing index short-circuited above).
|
|
r.auditSink().EmitIndexCreated(ctx, alias, dim)
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// buildIndexMapping returns the full mapping JSON for a new OpenSearch
|
|
// k-NN index. content uses the standard analyzer (BM25 default); all
|
|
// *_id fields are explicit keyword sub-fields so DeleteByQuery / terms
|
|
// filters hit them without the ES v8 "useKeywordSuffix" auto-detection
|
|
// dance.
|
|
//
|
|
// match_type is intentionally NOT in the mapping — it's a per-result
|
|
// classification derived from RetrieverType at parse time. source_type
|
|
// is stored as `integer` (not stringified) so the wire format remains
|
|
// stable across SourceType enum extension.
|
|
//
|
|
// Pure function — no IO, no logging. Easy to unit-test (byte-exact diff).
|
|
func buildIndexMapping(cfg internalCfg, dim int) ([]byte, error) {
|
|
type mapping struct {
|
|
Settings struct {
|
|
Index struct {
|
|
Knn bool `json:"knn"`
|
|
NumberOfShards int `json:"number_of_shards"`
|
|
NumberOfReplicas int `json:"number_of_replicas"`
|
|
RefreshInterval string `json:"refresh_interval"`
|
|
KnnAlgoParamEFSearch int `json:"knn.algo_param.ef_search"`
|
|
} `json:"index"`
|
|
} `json:"settings"`
|
|
Mappings struct {
|
|
Properties map[string]any `json:"properties"`
|
|
} `json:"mappings"`
|
|
}
|
|
var m mapping
|
|
m.Settings.Index.Knn = true
|
|
m.Settings.Index.NumberOfShards = cfg.shards
|
|
m.Settings.Index.NumberOfReplicas = cfg.replicas
|
|
m.Settings.Index.RefreshInterval = "1s"
|
|
m.Settings.Index.KnnAlgoParamEFSearch = cfg.efSearch
|
|
m.Mappings.Properties = map[string]any{
|
|
"embedding": map[string]any{
|
|
"type": "knn_vector",
|
|
"dimension": dim,
|
|
"method": map[string]any{
|
|
"name": "hnsw",
|
|
"space_type": "cosinesimil",
|
|
"engine": cfg.knnEngine,
|
|
"parameters": map[string]any{
|
|
"m": cfg.hnswM,
|
|
"ef_construction": cfg.hnswEFConstruction,
|
|
},
|
|
},
|
|
},
|
|
"content": map[string]any{"type": "text", "analyzer": "standard"},
|
|
"chunk_id": map[string]any{"type": "keyword"},
|
|
"knowledge_id": map[string]any{"type": "keyword"},
|
|
"knowledge_base_id": map[string]any{"type": "keyword"},
|
|
"tag_id": map[string]any{"type": "keyword"},
|
|
"source_id": map[string]any{"type": "keyword"},
|
|
"source_type": map[string]any{"type": "integer"},
|
|
"is_enabled": map[string]any{"type": "boolean"},
|
|
"is_recommended": map[string]any{"type": "boolean"},
|
|
}
|
|
out, err := json.Marshal(&m)
|
|
if err != nil {
|
|
// Cannot happen for our internal struct, but propagate for symmetry
|
|
// with the other JSON builders in the package.
|
|
return nil, fmt.Errorf("marshal mapping: %w", err)
|
|
}
|
|
return out, nil
|
|
}
|
|
|
|
// buildKeywordsMapping returns the mapping for the dim-less keyword-only
|
|
// index. Same as buildIndexMapping but with the embedding field omitted
|
|
// — used by the no-embedding save path (the service layer dispatches
|
|
// there when the knowledge base has vector indexing disabled).
|
|
func buildKeywordsMapping(cfg internalCfg) ([]byte, error) {
|
|
type mapping struct {
|
|
Settings struct {
|
|
Index struct {
|
|
NumberOfShards int `json:"number_of_shards"`
|
|
NumberOfReplicas int `json:"number_of_replicas"`
|
|
RefreshInterval string `json:"refresh_interval"`
|
|
} `json:"index"`
|
|
} `json:"settings"`
|
|
Mappings struct {
|
|
Properties map[string]any `json:"properties"`
|
|
} `json:"mappings"`
|
|
}
|
|
var m mapping
|
|
m.Settings.Index.NumberOfShards = cfg.shards
|
|
m.Settings.Index.NumberOfReplicas = cfg.replicas
|
|
m.Settings.Index.RefreshInterval = "1s"
|
|
m.Mappings.Properties = map[string]any{
|
|
"content": map[string]any{"type": "text", "analyzer": "standard"},
|
|
"chunk_id": map[string]any{"type": "keyword"},
|
|
"knowledge_id": map[string]any{"type": "keyword"},
|
|
"knowledge_base_id": map[string]any{"type": "keyword"},
|
|
"tag_id": map[string]any{"type": "keyword"},
|
|
"source_id": map[string]any{"type": "keyword"},
|
|
"source_type": map[string]any{"type": "integer"},
|
|
"is_enabled": map[string]any{"type": "boolean"},
|
|
"is_recommended": map[string]any{"type": "boolean"},
|
|
}
|
|
out, err := json.Marshal(&m)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("marshal keywords mapping: %w", err)
|
|
}
|
|
return out, nil
|
|
}
|
|
|
|
// ensureKeywordsIndex creates the dim-less keyword-only index used by
|
|
// the no-embedding save path. mutex + flag pattern so transient
|
|
// failures can be retried by the next caller (sync.Once cannot be
|
|
// reset).
|
|
func (r *Repository) ensureKeywordsIndex(ctx context.Context) error {
|
|
r.keywordsMu.Lock()
|
|
defer r.keywordsMu.Unlock()
|
|
|
|
if r.keywordsReady {
|
|
return nil
|
|
}
|
|
if r.keywordsErr != nil && !isTransientErr(r.keywordsErr) {
|
|
// Permanent failure — don't retry, surface the same error.
|
|
return r.keywordsErr
|
|
}
|
|
|
|
name := r.keywordsIndex()
|
|
exists, err := r.aliasExists(ctx, name) // returns true if index exists too
|
|
if err != nil {
|
|
r.keywordsErr = err
|
|
return err
|
|
}
|
|
if exists {
|
|
r.keywordsReady = true
|
|
r.keywordsErr = nil
|
|
return nil
|
|
}
|
|
body, err := buildKeywordsMapping(r.cfg)
|
|
if err != nil {
|
|
r.keywordsErr = err
|
|
return err
|
|
}
|
|
created := false
|
|
if err := r.indicesCreate(ctx, name, body); err != nil {
|
|
if !isAlreadyExistsError(err) {
|
|
r.keywordsErr = err
|
|
return err
|
|
}
|
|
// resource_already_exists_exception — race with concurrent process,
|
|
// treat as success.
|
|
} else {
|
|
created = true
|
|
}
|
|
r.keywordsReady = true
|
|
r.keywordsErr = nil
|
|
if created {
|
|
// dim=0 marks the dim-less keyword-only index.
|
|
r.auditSink().EmitIndexCreated(ctx, name, 0)
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// indicesCreate is the low-level wrapper around Indices.Create. Body is
|
|
// the JSON mapping produced by buildIndexMapping.
|
|
func (r *Repository) indicesCreate(ctx context.Context, name string, body []byte) error {
|
|
req := osapi.IndicesCreateReq{Index: name, Body: bytes.NewReader(body)}
|
|
resp, err := r.client.Indices.Create(ctx, req)
|
|
if err != nil {
|
|
return wrapTransport(err)
|
|
}
|
|
if resp != nil {
|
|
drainAndClose(resp.Inspect().Response.Body)
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// indicesDelete is used by createIndexAndAlias's orphan cleanup path.
|
|
// Caller decides what to do with the error.
|
|
func (r *Repository) indicesDelete(ctx context.Context, name string) error {
|
|
req := osapi.IndicesDeleteReq{Indices: []string{name}}
|
|
resp, err := r.client.Indices.Delete(ctx, req)
|
|
if err != nil {
|
|
return wrapTransport(err)
|
|
}
|
|
if resp != nil {
|
|
drainAndClose(resp.Inspect().Response.Body)
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// aliasExists uses HEAD /_alias/<name> (Indices.Alias.Exists) — returns
|
|
// true on 200, false on 404, error on 5xx / transport.
|
|
//
|
|
// SDK quirk (opensearch-go v4.6.0): the Exists method passes
|
|
// dataPointer=nil to its internal do(), which means non-2xx responses
|
|
// come back as a plain *errors.errorString ("status: 404 Not Found")
|
|
// rather than as a *opensearch.StructError. We therefore inspect
|
|
// resp.StatusCode directly (resp is always returned even when err is
|
|
// non-nil) and only fall back to wrapTransport for the "no response at
|
|
// all" case (true network failure).
|
|
func (r *Repository) aliasExists(ctx context.Context, alias string) (bool, error) {
|
|
req := osapi.AliasExistsReq{Alias: []string{alias}}
|
|
resp, err := r.client.Indices.Alias.Exists(ctx, req)
|
|
if resp != nil {
|
|
statusCode := resp.StatusCode
|
|
drainAndClose(resp.Body)
|
|
switch statusCode {
|
|
case 200:
|
|
return true, nil
|
|
case 404:
|
|
return false, nil
|
|
}
|
|
// Unexpected status (5xx) — fall through to the err path so
|
|
// wrapTransport can classify (and so the test handler's
|
|
// errBody is logged for diagnosis).
|
|
}
|
|
if err != nil {
|
|
return false, wrapTransport(err)
|
|
}
|
|
return false, nil
|
|
}
|
|
|
|
// aliasPut creates an alias pointing at index. Single add operation
|
|
// (rolling-reindex atomic swap is deferred to a follow-up PR — see
|
|
// stubs.go swapToVersion).
|
|
func (r *Repository) aliasPut(ctx context.Context, index, alias string) error {
|
|
req := osapi.AliasPutReq{
|
|
Indices: []string{index},
|
|
Alias: alias,
|
|
}
|
|
resp, err := r.client.Indices.Alias.Put(ctx, req)
|
|
if err != nil {
|
|
return wrapTransport(err)
|
|
}
|
|
if resp != nil {
|
|
drainAndClose(resp.Inspect().Response.Body)
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// verifyMappingMatches GETs the existing index's mapping and compares
|
|
// the embedding field's structural fingerprint (dimension, HNSW
|
|
// parameters, engine) against the expected. A full field-by-field diff
|
|
// would be ideal but expensive; we check only the parts that matter for
|
|
// query correctness.
|
|
func (r *Repository) verifyMappingMatches(ctx context.Context, index string, expected []byte) error {
|
|
req := osapi.MappingGetReq{Indices: []string{index}}
|
|
resp, err := r.client.Indices.Mapping.Get(ctx, &req)
|
|
if err != nil {
|
|
return fmt.Errorf("get mapping %s: %w", index, wrapTransport(err))
|
|
}
|
|
if resp != nil {
|
|
drainAndClose(resp.Inspect().Response.Body)
|
|
}
|
|
|
|
// Both fingerprints are derived from the mapping's embedding-field
|
|
// HNSW parameters: dimension, m, ef_construction, engine, space_type.
|
|
// We parse the expected (our own JSON) and the actual (cluster
|
|
// response) and compare just those bits.
|
|
expectedFP, err := extractEmbeddingFingerprint(expected)
|
|
if err != nil {
|
|
return fmt.Errorf("parse expected fingerprint: %w", err)
|
|
}
|
|
actualFP, err := extractMappingFingerprintFromResp(resp, index)
|
|
if err != nil {
|
|
return fmt.Errorf("parse actual fingerprint: %w", err)
|
|
}
|
|
if expectedFP != actualFP {
|
|
return fmt.Errorf("mapping fingerprint mismatch: expected %+v, got %+v: %w",
|
|
expectedFP, actualFP, ErrConfigInvalid)
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// embFingerprint is the minimal set of HNSW parameters that uniquely
|
|
// determine query semantics for a k-NN index. If any of these differ
|
|
// between create-time and an existing index, retrieval is incorrect.
|
|
type embFingerprint struct {
|
|
Dimension int
|
|
M int
|
|
EFConstruction int
|
|
Engine string
|
|
SpaceType string
|
|
}
|
|
|
|
// extractEmbeddingFingerprint parses our own mapping JSON (produced by
|
|
// buildIndexMapping) to pull out the HNSW parameters.
|
|
func extractEmbeddingFingerprint(body []byte) (embFingerprint, error) {
|
|
var m struct {
|
|
Mappings struct {
|
|
Properties map[string]any `json:"properties"`
|
|
} `json:"mappings"`
|
|
}
|
|
if err := json.Unmarshal(body, &m); err != nil {
|
|
return embFingerprint{}, err
|
|
}
|
|
return extractFingerprintFromProps(m.Mappings.Properties)
|
|
}
|
|
|
|
// extractMappingFingerprintFromResp parses the cluster's GET-mapping
|
|
// response and pulls out the embedding-field HNSW fingerprint for the
|
|
// given index.
|
|
func extractMappingFingerprintFromResp(resp *osapi.MappingGetResp, index string) (embFingerprint, error) {
|
|
indexMapping, ok := resp.Indices[index]
|
|
if !ok {
|
|
return embFingerprint{}, fmt.Errorf("index %s not in mapping response", index)
|
|
}
|
|
// MappingGetResp.Indices[index].Mappings is a json.RawMessage in
|
|
// the SDK — we decode the inner properties shape ourselves.
|
|
var m struct {
|
|
Properties map[string]any `json:"properties"`
|
|
}
|
|
if err := json.Unmarshal(indexMapping.Mappings, &m); err != nil {
|
|
return embFingerprint{}, err
|
|
}
|
|
return extractFingerprintFromProps(m.Properties)
|
|
}
|
|
|
|
func extractFingerprintFromProps(props map[string]any) (embFingerprint, error) {
|
|
emb, ok := props["embedding"].(map[string]any)
|
|
if !ok {
|
|
return embFingerprint{}, fmt.Errorf("embedding field missing or wrong type")
|
|
}
|
|
dim, _ := emb["dimension"].(float64) // json.Unmarshal produces float64 for numbers
|
|
method, _ := emb["method"].(map[string]any)
|
|
engine, _ := method["engine"].(string)
|
|
spaceType, _ := method["space_type"].(string)
|
|
params, _ := method["parameters"].(map[string]any)
|
|
m, _ := params["m"].(float64)
|
|
efc, _ := params["ef_construction"].(float64)
|
|
return embFingerprint{
|
|
Dimension: int(dim),
|
|
M: int(m),
|
|
EFConstruction: int(efc),
|
|
Engine: engine,
|
|
SpaceType: spaceType,
|
|
}, nil
|
|
}
|