The latest articles on DEV Community by amir (@amirsefati). https://dev.to/amirsefati https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.us-east-2.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F161199%2F1386903f-a273-4172-a7ba-0585d3e4d5dd.jpeg https://dev.to/amirsefati en amir Sat, 20 Jun 2026 04:58:26 +0000 https://dev.to/amirsefati/the-rust-performance-trap-i-hit-while-sorting-small-network-datasets-2gj5 https://dev.to/amirsefati/the-rust-performance-trap-i-hit-while-sorting-small-network-datasets-2gj5 <h1> The Rust Performance Trap I Hit While Sorting Small Network Datasets </h1> <p>I recently ran into one of those performance problems that looks completely obvious in hindsight, but was surprisingly hard to notice while I was inside the code.</p> <p>I was working on a deep search and ranking part of a Rust project that processed network-related data.</p> <p>The system had to evaluate many small groups of candidates repeatedly. You can think of these candidates as possible network paths, intermediate nodes, route-like records, latency candidates, or weighted decisions inside a search tree.</p> <p>At each step, I had a small list of candidates.</p> <p>Not thousands of items.</p> <p>Usually something like 10, 20, maybe 40 or 50.</p> <p>Each candidate needed to be scored and ordered before the search could continue.</p> <p>The first version of the code was simple and readable:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight rust"><code><span class="k">let</span> <span class="k">mut</span> <span class="n">candidates</span> <span class="o">=</span> <span class="nn">Vec</span><span class="p">::</span><span class="nf">new</span><span class="p">();</span> <span class="k">for</span> <span class="n">item</span> <span class="k">in</span> <span class="n">input</span> <span class="p">{</span> <span class="n">candidates</span><span class="nf">.push</span><span class="p">(</span><span class="n">item</span><span class="p">);</span> <span class="p">}</span> <span class="n">candidates</span><span class="nf">.sort_by_key</span><span class="p">(|</span><span class="n">item</span><span class="p">|</span> <span class="nf">compute_score</span><span class="p">(</span><span class="n">item</span><span class="p">));</span> </code></pre> </div> <p>It worked.</p> <p>It was clean.</p> <p>But after profiling it with a flamegraph, I noticed something uncomfortable: the program was spending too much time around temporary allocations.</p> <p>At first, that sounds strange. A small <code>Vec</code> does not look expensive.</p> <p>But in a deep search algorithm, a "small allocation" repeated millions of times is no longer small.</p> <p>That was the beginning of the rabbit hole.</p> <h2> The First Bottleneck: Heap Allocation </h2> <p>The first problem was heap allocation.</p> <p>Every time the search visited a node, it created temporary vectors to collect, score, and sort candidates. Since the search tree was deep, this happened again and again.</p> <p>One allocation does not matter much.</p> <p>Thousands of allocations may still be fine.</p> <p>But millions of tiny allocations inside a hot path can become a serious bottleneck.</p> <p>The important thing is this:</p> <blockquote> <p>Heap allocation is not just "getting some memory".</p> </blockquote> <p>There is real machinery behind it.</p> <p>When a program allocates memory on the heap, the allocator has to find a suitable block of memory, update internal metadata, sometimes handle alignment, sometimes split or reuse blocks, and later track that memory so it can be freed safely.</p> <p>Even if the allocator is very optimized, this is still more expensive than using memory that is already available on the stack.</p> <p>With stack memory, the cost is usually very small. The program mostly adjusts the stack pointer. It is simple, predictable, and extremely cache-friendly.</p> <p>Heap memory is more flexible, but that flexibility has a price.</p> <p>In my case, I did not need flexibility.</p> <p>I already knew the candidate lists were small. I did not need an unbounded dynamic vector for every step of the search. I needed a tiny temporary buffer.</p> <p>But I was still paying the cost of heap allocation over and over again.</p> <h2> Why Heap Allocation Can Be Expensive in a Hot Path </h2> <p>Heap allocation becomes especially problematic when it happens inside a tight loop or a deeply repeated algorithm.</p> <p>There are a few reasons for that.</p> <h3> 1. Allocator Overhead </h3> <p>A heap allocator has to manage memory dynamically.</p> <p>That means it needs bookkeeping.</p> <p>When I create a <code>Vec</code>, Rust itself is not doing something inefficient. <code>Vec</code> is a great data structure. But when it needs capacity, it asks the allocator for heap memory.</p> <p>The allocator has to find a free region that fits the requested size. It may reuse an existing block, split a larger block, or request more memory from the system.</p> <p>Even when this is fast, it is not free.</p> <p>In normal application code, this cost may not matter. In a hot path, it can dominate the runtime.</p> <h3> 2. Memory Locality </h3> <p>Stack memory is usually very close to the current execution context.</p> <p>Small arrays on the stack tend to be friendly to the CPU cache. The CPU can load nearby memory efficiently, and the access pattern is usually predictable.</p> <p>Heap memory can be more scattered.</p> <p>If temporary vectors are allocated and freed repeatedly, the actual memory locations may not be as local as a compact stack buffer.</p> <p>This matters because modern CPUs are extremely fast, but memory is relatively slow. A lot of real-world performance comes down to whether the CPU can keep useful data in cache.</p> <p>If the CPU has to wait for memory, the algorithm may look good on paper but still run slower in practice.</p> <h3> 3. Fragmentation and Metadata </h3> <p>Heap allocators also maintain metadata.</p> <p>They need to know which blocks are free, which blocks are used, and how large those blocks are.</p> <p>Over time, allocation and deallocation patterns can create fragmentation. For small short-lived allocations, modern allocators are usually smart, but they still have to manage the lifecycle of memory.</p> <p>For a deep search algorithm, this was unnecessary noise.</p> <p>The lifetime of the data was very short. Each temporary list only lived during one search step.</p> <p>That is exactly the kind of data that usually fits better on the stack.</p> <h3> 4. More Pressure on the CPU Cache </h3> <p>The real issue was not only the cost of allocation itself.</p> <p>The bigger problem was the combination of allocation, sorting, scoring, and repeated traversal.</p> <p>The algorithm was doing many tiny operations. Each operation looked harmless, but together they created pressure on the CPU cache.</p> <p>Temporary heap allocations increased the amount of memory traffic. The CPU had to touch more memory, follow more pointers, and deal with less predictable access patterns.</p> <p>When code runs once, this is not a big deal.</p> <p>When code runs inside the hottest part of a search engine, it matters.</p> <h2> The First Optimization: Remove Temporary Heap Allocation </h2> <p>So my first idea was simple:</p> <blockquote> <p>Stop creating temporary vectors in the hot path.</p> </blockquote> <p>Instead of collecting candidates into a heap-allocated <code>Vec</code>, I moved toward a fixed-size temporary buffer.</p> <p>Conceptually, something like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight rust"><code><span class="k">const</span> <span class="n">MAX_CANDIDATES</span><span class="p">:</span> <span class="nb">usize</span> <span class="o">=</span> <span class="mi">64</span><span class="p">;</span> <span class="k">let</span> <span class="k">mut</span> <span class="n">buffer</span><span class="p">:</span> <span class="p">[</span><span class="n">MaybeUninit</span><span class="o">&lt;</span><span class="n">ScoredCandidate</span><span class="o">&gt;</span><span class="p">;</span> <span class="n">MAX_CANDIDATES</span><span class="p">]</span> <span class="o">=</span> <span class="k">unsafe</span> <span class="p">{</span> <span class="nn">MaybeUninit</span><span class="p">::</span><span class="nf">uninit</span><span class="p">()</span><span class="nf">.assume_init</span><span class="p">()</span> <span class="p">};</span> </code></pre> </div> <p>The exact implementation depends on the project, of course. The important part is the idea:</p> <ul> <li>the number of candidates was bounded</li> <li>the temporary data had a very short lifetime</li> <li>the buffer could live on the stack</li> <li>no heap allocation was needed for every search node</li> </ul> <p>After this change, I expected the program to become faster.</p> <p>And partially, I was right.</p> <p>The allocation cost disappeared from the flamegraph.</p> <p>But then I hit the second trap.</p> <h2> The Surprising Part: Removing Allocations Made It Slower </h2> <p>After removing the temporary heap allocation, I used Rust's standard sorting method:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight rust"><code><span class="n">items</span><span class="nf">.sort_unstable_by_key</span><span class="p">(|</span><span class="n">item</span><span class="p">|</span> <span class="nf">compute_score</span><span class="p">(</span><span class="n">item</span><span class="p">));</span> </code></pre> </div> <p>At first glance, this looked like the right choice.</p> <p>It is in-place. It avoids extra allocation. It is part of the standard library. It uses a serious optimized sorting algorithm.</p> <p>But the program became slower.</p> <p>That was confusing.</p> <p>I had removed heap allocation. I had improved memory usage. I was using a well-optimized standard method.</p> <p>So why did performance drop?</p> <p>The flamegraph gave me the answer.</p> <p>The allocation cost was gone, but now the program was spending too much time recomputing scores.</p> <p>The key detail is that <code>sort_unstable_by_key</code> does not cache the key for every item.</p> <p>The closure can be called multiple times during sorting.</p> <p>That is completely fine when the key is cheap, like reading an integer field:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight rust"><code><span class="n">items</span><span class="nf">.sort_unstable_by_key</span><span class="p">(|</span><span class="n">item</span><span class="p">|</span> <span class="n">item</span><span class="py">.priority</span><span class="p">);</span> </code></pre> </div> <p>But my key was not cheap.</p> <p>The score calculation was based on multiple network-related signals, such as:</p> <ul> <li>estimated latency</li> <li>hop penalty</li> <li>node priority</li> <li>route freshness</li> <li>failure probability</li> <li>domain-specific weights</li> </ul> <p>So every comparison could trigger real computation again.</p> <p>And again.</p> <p>And again.</p> <p>I had removed heap allocation, but I had accidentally introduced repeated CPU work in the hottest part of the program.</p> <p>The code looked clean, but it was doing more work than it appeared.</p> <h2> Why the Default Sort Was Not the Best Tool Here </h2> <p>Rust's <code>sort_unstable_by_key</code> is not bad.</p> <p>Actually, it is very good.</p> <p>The problem was not Rust.</p> <p>The problem was that I used a general-purpose sorting method for a very specific workload.</p> <p>Modern sorting algorithms are excellent for large arrays and general cases. Rust's unstable sort is designed to perform well across many real-world patterns.</p> <p>But my workload had two special properties:</p> <ol> <li>The arrays were very small.</li> <li>The key calculation was relatively expensive.</li> </ol> <p>For large arrays, an <code>O(N log N)</code> sort is usually the obvious choice.</p> <p>But for tiny arrays, Big-O can be misleading.</p> <p>When <code>N</code> is 10, 20, or 40, constant factors matter a lot.</p> <p>At that size, the overhead of the sorting algorithm, the number of comparisons, branch behavior, cache locality, and repeated score calculation can matter more than the theoretical complexity.</p> <p>In my case, the theoretical advantage of the sorting algorithm was less important than the practical cost of using it in a tiny hot loop.</p> <h2> The Fix: Cache the Scores and Sort a Small Stack Buffer </h2> <p>The final solution was simple:</p> <ol> <li>Compute the score for each candidate exactly once.</li> <li>Store the candidate and its score in a small stack buffer.</li> <li>Sort the scored candidates using insertion sort.</li> </ol> <p>Conceptually:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight rust"><code><span class="k">struct</span> <span class="n">ScoredCandidate</span><span class="o">&lt;</span><span class="n">T</span><span class="o">&gt;</span> <span class="p">{</span> <span class="n">score</span><span class="p">:</span> <span class="nb">i32</span><span class="p">,</span> <span class="n">item</span><span class="p">:</span> <span class="n">T</span><span class="p">,</span> <span class="p">}</span> </code></pre> </div> <p>Instead of asking the sorting algorithm to repeatedly call <code>compute_score</code>, I made the score part of the temporary data.</p> <p>The scoring step became linear:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight rust"><code><span class="k">for</span> <span class="n">candidate</span> <span class="k">in</span> <span class="n">candidates</span> <span class="p">{</span> <span class="k">let</span> <span class="n">score</span> <span class="o">=</span> <span class="nf">compute_score</span><span class="p">(</span><span class="n">candidate</span><span class="p">);</span> <span class="n">scored</span><span class="nf">.push</span><span class="p">(</span><span class="n">ScoredCandidate</span> <span class="p">{</span> <span class="n">score</span><span class="p">,</span> <span class="n">item</span><span class="p">:</span> <span class="n">candidate</span><span class="p">,</span> <span class="p">});</span> <span class="p">}</span> </code></pre> </div> <p>After that, sorting only compared already-computed integers.</p> <p>That completely changed the cost profile.</p> <p>The expensive part happened once per candidate, not many times per comparison.</p> <h2> Why Insertion Sort Worked Better </h2> <p>For the sorting step, I used insertion sort.</p> <p>Yes, insertion sort.</p> <p>The algorithm that is usually introduced early in computer science classes and then quickly ignored because it is <code>O(N²)</code>.</p> <p>But for small arrays, insertion sort can be extremely fast.</p> <p>Why?</p> <p>Because it is simple.</p> <p>It has very little overhead. It works well with contiguous memory. It does not need extra allocation. It has predictable behavior. And when the array is small, the quadratic complexity does not have enough room to become a problem.</p> <p>For example, sorting 20 or 30 items with insertion sort is not scary.</p> <p>Especially when the data is already in a small stack buffer and comparisons are cheap integer comparisons.</p> <p>In this case, insertion sort matched the workload better than a more advanced general-purpose sorting algorithm.</p> <p>This is one of those cases where the "worse" algorithm on paper was better for the real machine.</p> <h2> The Result </h2> <p>After the change, the flamegraph looked completely different.</p> <p>The repeated scoring calls disappeared from the hot path.</p> <p>The allocation-related noise was gone.</p> <p>The middle layers of the search became much faster.</p> <p>The biggest improvement did not come from one magical trick. It came from aligning the implementation with the real shape of the workload:</p> <ul> <li>small candidate lists</li> <li>deep repeated search</li> <li>short-lived temporary data</li> <li>expensive scoring</li> <li>no need for heap flexibility</li> <li>stack-friendly memory layout</li> <li>simple sorting over cached scores</li> </ul> <p>The final version was not more complicated in spirit.</p> <p>It was actually more honest about what the program was doing.</p> <p>The program did not need a dynamic vector and a general-purpose sort at every search node.</p> <p>It needed a tiny local ranking buffer.</p> <h2> The Lesson </h2> <p>The main lesson for me was this:</p> <blockquote> <p>The fastest algorithm in theory is not always the fastest algorithm on real hardware.</p> </blockquote> <p>Big-O matters, but it is not the whole story.</p> <p>In performance-sensitive code, especially backend, networking, infrastructure, or systems code, the real questions are often more practical:</p> <ul> <li>How large is the data really?</li> <li>How often does this code run?</li> <li>Is this allocation inside a hot path?</li> <li>Is the temporary memory short-lived?</li> <li>Is the key cheap or expensive?</li> <li>Are we recomputing something that could be cached?</li> <li>Is the memory layout friendly to the CPU cache?</li> <li>Does a general-purpose standard method match this exact workload?</li> </ul> <p>Standard library methods are great defaults. Most of the time, they are exactly what we should use.</p> <p>But "default" does not mean "always optimal".</p> <p>In my case, the better solution was:</p> <ul> <li>avoid repeated heap allocations</li> <li>compute scores once</li> <li>store small temporary data on the stack</li> <li>use insertion sort for tiny arrays</li> </ul> <p>That was enough to beat the more advanced-looking approach.</p> <h2> Final Thought </h2> <p>This experience reminded me that performance work is not only about knowing algorithms.</p> <p>It is about understanding the shape of the data, the lifetime of memory, and how the CPU actually executes the code.</p> <p>Sometimes the bottleneck is not where you expect it to be.</p> <p>Sometimes removing an allocation exposes another hidden cost.</p> <p>And sometimes the "bad" <code>O(N²)</code> algorithm is exactly what your CPU wanted.</p> rust performance networking amir Tue, 09 Jun 2026 17:43:40 +0000 https://dev.to/amirsefati/building-a-kubectl-style-go-cli-factory-iostreams-prompt-policy-and-command-lifecycles-49l0 https://dev.to/amirsefati/building-a-kubectl-style-go-cli-factory-iostreams-prompt-policy-and-command-lifecycles-49l0 <p>Most Go CLIs start simple.</p> <p>You add Cobra, create a few commands, put the logic inside <code>RunE</code>, call <code>fmt.Println</code>, read a couple of flags, and ship it.</p> <p>For a small tool, that is perfectly fine.</p> <p>But as the CLI grows, this style starts to collapse.</p> <p>One command needs authentication.<br><br> Another command needs config resolution.<br><br> Another command needs interactive input.<br><br> Another one must support JSON output for automation.<br><br> Some commands are used by humans in terminals.<br><br> Some are used by CI pipelines.<br><br> Some should prompt.<br><br> Some must never prompt. </p> <p>Eventually, every <code>RunE</code> becomes a mini framework.</p> <p>That is the moment when a CLI stops being "just some commands" and becomes a real application runtime.</p> <p>Recently, I refactored a Go CLI built with Cobra in exactly this direction. The goal was to move away from ad hoc command logic and toward a more mature foundation inspired by large Go CLIs such as <code>kubectl</code>.</p> <p>This article walks through the architecture, the trade-offs, and the Go patterns behind that refactor.</p> <p>This is not a beginner Cobra tutorial. I assume you already know how to create commands, flags, and <code>RunE</code> handlers. The focus here is on long-term maintainability, testability, terminal behavior, and command architecture.</p> <h2> The Original Problem </h2> <p>The CLI originally had a common shape:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">cmd</span> <span class="o">:=</span> <span class="o">&amp;</span><span class="n">cobra</span><span class="o">.</span><span class="n">Command</span><span class="p">{</span> <span class="n">Use</span><span class="o">:</span> <span class="s">"login"</span><span class="p">,</span> <span class="n">RunE</span><span class="o">:</span> <span class="k">func</span><span class="p">(</span><span class="n">cmd</span> <span class="o">*</span><span class="n">cobra</span><span class="o">.</span><span class="n">Command</span><span class="p">,</span> <span class="n">args</span> <span class="p">[]</span><span class="kt">string</span><span class="p">)</span> <span class="kt">error</span> <span class="p">{</span> <span class="n">username</span><span class="p">,</span> <span class="n">_</span> <span class="o">:=</span> <span class="n">cmd</span><span class="o">.</span><span class="n">Flags</span><span class="p">()</span><span class="o">.</span><span class="n">GetString</span><span class="p">(</span><span class="s">"username"</span><span class="p">)</span> <span class="k">if</span> <span class="n">username</span> <span class="o">==</span> <span class="s">""</span> <span class="p">{</span> <span class="k">return</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"username is required"</span><span class="p">)</span> <span class="p">}</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Println</span><span class="p">(</span><span class="s">"Logging in..."</span><span class="p">)</span> <span class="n">session</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">createSession</span><span class="p">(</span><span class="n">cmd</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="n">err</span> <span class="p">}</span> <span class="k">return</span> <span class="n">session</span><span class="o">.</span><span class="n">Login</span><span class="p">(</span><span class="n">username</span><span class="p">)</span> <span class="p">},</span> <span class="p">}</span> </code></pre> </div> <p>This looks harmless.</p> <p>But the problems grow quickly:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">fmt</span><span class="o">.</span><span class="n">Println</span><span class="p">(</span><span class="s">"normal output"</span><span class="p">)</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Fprintln</span><span class="p">(</span><span class="n">os</span><span class="o">.</span><span class="n">Stderr</span><span class="p">,</span> <span class="s">"warning"</span><span class="p">)</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Scanln</span><span class="p">(</span><span class="o">&amp;</span><span class="n">value</span><span class="p">)</span> <span class="n">configPath</span><span class="p">,</span> <span class="n">_</span> <span class="o">:=</span> <span class="n">cmd</span><span class="o">.</span><span class="n">Flags</span><span class="p">()</span><span class="o">.</span><span class="n">GetString</span><span class="p">(</span><span class="s">"config"</span><span class="p">)</span> <span class="n">session</span> <span class="o">:=</span> <span class="n">newSessionFromCommand</span><span class="p">(</span><span class="n">cmd</span><span class="p">)</span> <span class="n">client</span> <span class="o">:=</span> <span class="n">newClientFromCommand</span><span class="p">(</span><span class="n">cmd</span><span class="p">)</span> </code></pre> </div> <p>Now each command knows too much.</p> <p>It knows:</p> <ul> <li>how to read flags</li> <li>how to resolve config</li> <li>how to create sessions</li> <li>where output goes</li> <li>how to prompt users</li> <li>how to detect missing input</li> <li>how to behave in CI</li> <li>how to handle terminal vs non-terminal execution</li> </ul> <p>This creates several long-term issues.</p> <p>First, behavior becomes inconsistent. One command may prompt when input is missing. Another may fail immediately. Another may print prompts to stdout. Another may write errors using <code>fmt.Println</code>.</p> <p>Second, testing becomes painful. If a command directly reads from <code>os.Stdin</code> and writes to <code>os.Stdout</code>, tests must either patch globals or execute the command as a subprocess.</p> <p>Third, automation becomes risky. A command that unexpectedly prompts in CI can hang a pipeline. A prompt printed to stdout can corrupt JSON output. A missing required value may fail in one command but trigger interactive input in another.</p> <p>The refactor was designed to solve these issues at the architectural level.</p> <h2> The Target Shape </h2> <p>The direction was to move the CLI toward this model:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Cobra command ↓ Options struct ↓ Complete(factory, cmd, args) ↓ Validate() ↓ Run() </code></pre> </div> <p>And to introduce a shared runtime foundation:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Factory ├── IOStreams ├── ConfigPath └── PromptPolicy </code></pre> </div> <p>This gives every command the same execution model.</p> <p>Cobra remains responsible for command registration, flag parsing, and command routing.</p> <p>The application logic moves into explicit command options.</p> <p>Runtime concerns like IO, prompting, config path, and interactivity policy are centralized.</p> <p>That is the essence of a kubectl-style CLI architecture.</p> <p>Not because it copies kubectl line-for-line, but because it follows the same conceptual direction:</p> <ul> <li>central runtime factory</li> <li>injected IO streams</li> <li>command options</li> <li>explicit lifecycle</li> <li>separation between command wiring and behavior</li> <li>testable execution paths</li> <li>predictable terminal semantics</li> </ul> <h1> 1. Factory: Centralizing CLI Runtime Dependencies </h1> <p>The first key abstraction is the <code>Factory</code>.</p> <p>A simplified version looks like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">Factory</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">IOStreams</span> <span class="n">IOStreams</span> <span class="n">ConfigPath</span> <span class="kt">string</span> <span class="n">PromptPolicy</span> <span class="n">PromptPolicy</span> <span class="p">}</span> </code></pre> </div> <p>The Factory exists to answer one question:</p> <blockquote> <p>What runtime context does a command need in order to execute?</p> </blockquote> <p>Without a factory, every command eventually starts doing this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">configPath</span><span class="p">,</span> <span class="n">_</span> <span class="o">:=</span> <span class="n">cmd</span><span class="o">.</span><span class="n">Flags</span><span class="p">()</span><span class="o">.</span><span class="n">GetString</span><span class="p">(</span><span class="s">"config"</span><span class="p">)</span> <span class="n">client</span> <span class="o">:=</span> <span class="n">newClient</span><span class="p">(</span><span class="n">configPath</span><span class="p">)</span> <span class="n">session</span> <span class="o">:=</span> <span class="n">newSession</span><span class="p">(</span><span class="n">configPath</span><span class="p">)</span> <span class="n">interactive</span> <span class="o">:=</span> <span class="n">detectTerminal</span><span class="p">(</span><span class="n">os</span><span class="o">.</span><span class="n">Stdin</span><span class="p">,</span> <span class="n">os</span><span class="o">.</span><span class="n">Stderr</span><span class="p">)</span> </code></pre> </div> <p>That logic gets duplicated, slightly modified, and eventually becomes inconsistent.</p> <p>With a Factory, commands receive a shared runtime object:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">NewLoginCmd</span><span class="p">(</span><span class="n">f</span> <span class="o">*</span><span class="n">Factory</span><span class="p">)</span> <span class="o">*</span><span class="n">cobra</span><span class="o">.</span><span class="n">Command</span> <span class="p">{</span> <span class="n">opts</span> <span class="o">:=</span> <span class="o">&amp;</span><span class="n">LoginOptions</span><span class="p">{}</span> <span class="n">cmd</span> <span class="o">:=</span> <span class="o">&amp;</span><span class="n">cobra</span><span class="o">.</span><span class="n">Command</span><span class="p">{</span> <span class="n">Use</span><span class="o">:</span> <span class="s">"login"</span><span class="p">,</span> <span class="n">RunE</span><span class="o">:</span> <span class="k">func</span><span class="p">(</span><span class="n">cmd</span> <span class="o">*</span><span class="n">cobra</span><span class="o">.</span><span class="n">Command</span><span class="p">,</span> <span class="n">args</span> <span class="p">[]</span><span class="kt">string</span><span class="p">)</span> <span class="kt">error</span> <span class="p">{</span> <span class="k">return</span> <span class="n">runOptions</span><span class="p">(</span><span class="n">f</span><span class="p">,</span> <span class="n">cmd</span><span class="p">,</span> <span class="n">args</span><span class="p">,</span> <span class="n">opts</span><span class="p">)</span> <span class="p">},</span> <span class="p">}</span> <span class="k">return</span> <span class="n">cmd</span> <span class="p">}</span> </code></pre> </div> <p>Now the command is no longer responsible for discovering the whole world.</p> <p>It can ask the factory for what it needs.</p> <p>This makes the command easier to test and easier to evolve.</p> <h2> The Risk: Factory Can Become a God Object </h2> <p>A Factory is useful, but it has a dangerous failure mode.</p> <p>It can become a dumping ground.</p> <p>Bad direction:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">Factory</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">IOStreams</span> <span class="n">IOStreams</span> <span class="n">Config</span> <span class="o">*</span><span class="n">Config</span> <span class="n">Client</span> <span class="o">*</span><span class="n">Client</span> <span class="n">Session</span> <span class="o">*</span><span class="n">Session</span> <span class="n">Logger</span> <span class="o">*</span><span class="n">Logger</span> <span class="n">Cache</span> <span class="o">*</span><span class="n">Cache</span> <span class="n">Auth</span> <span class="o">*</span><span class="n">AuthService</span> <span class="n">Search</span> <span class="o">*</span><span class="n">SearchService</span> <span class="n">Submit</span> <span class="o">*</span><span class="n">SubmitService</span> <span class="p">}</span> </code></pre> </div> <p>At that point, Factory becomes a service locator.</p> <p>That is usually a smell.</p> <p>A better rule:</p> <blockquote> <p>Factory should own CLI runtime concerns, not business logic.</p> </blockquote> <p>It is reasonable for Factory to provide access to streams, config path, terminal policy, and construction helpers.</p> <p>But domain services should still have explicit dependencies.</p> <p>Prefer:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">submitService</span> <span class="o">:=</span> <span class="n">submit</span><span class="o">.</span><span class="n">NewService</span><span class="p">(</span><span class="n">client</span><span class="p">,</span> <span class="n">config</span><span class="p">)</span> </code></pre> </div> <p>over:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">submitService</span> <span class="o">:=</span> <span class="n">submit</span><span class="o">.</span><span class="n">NewService</span><span class="p">(</span><span class="n">factory</span><span class="p">)</span> </code></pre> </div> <p>The Factory should make command construction easier. It should not hide every dependency behind one giant object.</p> <h1> 2. IOStreams: Stop Talking Directly to the Process </h1> <p>One of the most important changes was adding an <code>IOStreams</code> abstraction.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">IOStreams</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">In</span> <span class="n">io</span><span class="o">.</span><span class="n">Reader</span> <span class="n">Out</span> <span class="n">io</span><span class="o">.</span><span class="n">Writer</span> <span class="n">ErrOut</span> <span class="n">io</span><span class="o">.</span><span class="n">Writer</span> <span class="n">IsTerminalIn</span> <span class="kt">bool</span> <span class="n">IsTerminalOut</span> <span class="kt">bool</span> <span class="n">IsTerminalErrOut</span> <span class="kt">bool</span> <span class="p">}</span> </code></pre> </div> <p>At first, this looks like a small change.</p> <p>It is not.</p> <p>It changes the CLI from being coupled to the current process into something testable and composable.</p> <h2> Why Direct <code>os.Stdout</code> Usage Becomes a Problem </h2> <p>This is easy:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">fmt</span><span class="o">.</span><span class="n">Println</span><span class="p">(</span><span class="s">"Login successful"</span><span class="p">)</span> </code></pre> </div> <p>But it is also global state.</p> <p>It writes to the real process stdout.</p> <p>In tests, this is annoying. In commands that support machine-readable output, it is risky. In long-term CLI architecture, it creates inconsistent output behavior.</p> <p>Instead:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">fmt</span><span class="o">.</span><span class="n">Fprintln</span><span class="p">(</span><span class="n">streams</span><span class="o">.</span><span class="n">Out</span><span class="p">,</span> <span class="s">"Login successful"</span><span class="p">)</span> </code></pre> </div> <p>Now output can be redirected in tests:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">out</span> <span class="o">:=</span> <span class="o">&amp;</span><span class="n">bytes</span><span class="o">.</span><span class="n">Buffer</span><span class="p">{}</span> <span class="n">errOut</span> <span class="o">:=</span> <span class="o">&amp;</span><span class="n">bytes</span><span class="o">.</span><span class="n">Buffer</span><span class="p">{}</span> <span class="n">in</span> <span class="o">:=</span> <span class="n">strings</span><span class="o">.</span><span class="n">NewReader</span><span class="p">(</span><span class="s">"amir</span><span class="se">\n</span><span class="s">"</span><span class="p">)</span> <span class="n">streams</span> <span class="o">:=</span> <span class="n">IOStreams</span><span class="p">{</span> <span class="n">In</span><span class="o">:</span> <span class="n">in</span><span class="p">,</span> <span class="n">Out</span><span class="o">:</span> <span class="n">out</span><span class="p">,</span> <span class="n">ErrOut</span><span class="o">:</span> <span class="n">errOut</span><span class="p">,</span> <span class="p">}</span> </code></pre> </div> <p>This makes command tests much simpler.</p> <h2> stdout vs stderr Is Not Cosmetic </h2> <p>A mature CLI treats stdout and stderr differently.</p> <p>stdout is for the command result.</p> <p>stderr is for prompts, warnings, diagnostics, and errors.</p> <p>Why?</p> <p>Because stdout is often piped.</p> <p>Example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>mycli search <span class="nb">users</span> <span class="nt">--output</span> json <span class="o">&gt;</span> users.json </code></pre> </div> <p>If a prompt is printed to stdout, the output file may become invalid:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="err">Enter</span><span class="w"> </span><span class="err">username:</span><span class="w"> </span><span class="p">{</span><span class="nl">"users"</span><span class="p">:[</span><span class="err">...</span><span class="p">]}</span><span class="w"> </span></code></pre> </div> <p>That is broken JSON.</p> <p>The prompt must go to stderr:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">fmt</span><span class="o">.</span><span class="n">Fprint</span><span class="p">(</span><span class="n">streams</span><span class="o">.</span><span class="n">ErrOut</span><span class="p">,</span> <span class="s">"Enter username: "</span><span class="p">)</span> </code></pre> </div> <p>Then stdout stays clean:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="nl">"users"</span><span class="p">:[</span><span class="err">...</span><span class="p">]}</span><span class="w"> </span></code></pre> </div> <p>This is a critical CLI contract.</p> <p>It matters even more when a CLI is used in scripts, GitHub Actions, Docker containers, or CI pipelines.</p> <h2> Terminal Detection Belongs in the Runtime </h2> <p>The terminal flags are also important:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">IsTerminalIn</span> <span class="n">IsTerminalOut</span> <span class="n">IsTerminalErrOut</span> </code></pre> </div> <p>These allow the CLI to distinguish between:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>mycli login </code></pre> </div> <p>and:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">echo</span> <span class="s2">"token"</span> | mycli login </code></pre> </div> <p>or:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>mycli search <span class="nb">test</span> <span class="o">&gt;</span> output.json </code></pre> </div> <p>In interactive mode, prompting may be acceptable.</p> <p>In a pipeline, it may be dangerous.</p> <p>This is where <code>IOStreams</code> and <code>PromptPolicy</code> work together.</p> <h1> 3. PromptPolicy: Make Interactivity Explicit </h1> <p>The CLI added a global flag:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nt">--interactive</span><span class="o">=</span>auto|always|never </code></pre> </div> <p>This is one of the most important UX decisions in the whole refactor.</p> <p>The policy means:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>auto → prompt only when stdin and stderr are attached to a terminal always → require interactive prompting; fail clearly if terminal is unavailable never → never prompt; require all values explicitly </code></pre> </div> <p>This prevents a very common CLI problem:</p> <blockquote> <p>A command behaves nicely on a developer laptop but hangs forever in CI.</p> </blockquote> <p>For example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>mycli login </code></pre> </div> <p>In a real terminal, it is fine to ask:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Username: Password: </code></pre> </div> <p>But inside CI, that same command should not wait for input forever.</p> <p>With <code>--interactive=never</code>, the behavior becomes deterministic:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>mycli login <span class="nt">--interactive</span><span class="o">=</span>never </code></pre> </div> <p>If required input is missing, the command fails immediately.</p> <p>That is exactly what automation needs.</p> <h2> Why <code>auto</code> Should Require stdin and stderr </h2> <p>A good <code>auto</code> policy should usually require at least:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">streams</span><span class="o">.</span><span class="n">IsTerminalIn</span> <span class="o">&amp;&amp;</span> <span class="n">streams</span><span class="o">.</span><span class="n">IsTerminalErrOut</span> </code></pre> </div> <p>Why stderr?</p> <p>Because prompts are written to stderr. If stderr is not a terminal, interactive prompting may not be visible to the user.</p> <p>Depending on your CLI, you may also consider stdout. But for prompting specifically, stdin and stderr are usually the key streams.</p> <h2> Should the Flag Be Named <code>--interactive</code>? </h2> <p><code>--interactive=auto|always|never</code> is clear and explicit.</p> <p>Alternative names could be:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nt">--prompt</span><span class="o">=</span>auto|always|never <span class="nt">--input-mode</span><span class="o">=</span>interactive|non-interactive|auto <span class="nt">--non-interactive</span> </code></pre> </div> <p>A boolean <code>--non-interactive</code> is common, but less expressive.</p> <p>The tri-state model is more powerful because it allows a user to say:</p> <ul> <li>"auto-detect"</li> <li>"force prompting"</li> <li>"never prompt"</li> </ul> <p>For serious CLIs, the tri-state model is often worth it.</p> <h1> 4. Prompt Layer: Centralize Human Input </h1> <p>Before the refactor, prompting could easily spread into command files:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">fmt</span><span class="o">.</span><span class="n">Print</span><span class="p">(</span><span class="s">"Enter name: "</span><span class="p">)</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Scanln</span><span class="p">(</span><span class="o">&amp;</span><span class="n">name</span><span class="p">)</span> </code></pre> </div> <p>That approach does not scale.</p> <p>Prompt behavior should be reusable and policy-driven.</p> <p>The prompt layer supports:</p> <ul> <li>text prompts</li> <li>secret prompts</li> <li>select prompts</li> </ul> <p>Conceptually:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">Prompter</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">Streams</span> <span class="n">IOStreams</span> <span class="n">Policy</span> <span class="n">PromptPolicy</span> <span class="p">}</span> </code></pre> </div> <p>Then command code can do:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">name</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">prompter</span><span class="o">.</span><span class="n">Text</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="s">"Name"</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="n">err</span> <span class="p">}</span> </code></pre> </div> <p>For secrets:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">password</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">prompter</span><span class="o">.</span><span class="n">Secret</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="s">"Password"</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="n">err</span> <span class="p">}</span> </code></pre> </div> <p>Secret input should use:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">golang</span><span class="o">.</span><span class="n">org</span><span class="o">/</span><span class="n">x</span><span class="o">/</span><span class="n">term</span> </code></pre> </div> <p>For example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">readSecret</span><span class="p">(</span><span class="n">fd</span> <span class="kt">int</span><span class="p">)</span> <span class="p">([]</span><span class="kt">byte</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="n">term</span><span class="o">.</span><span class="n">ReadPassword</span><span class="p">(</span><span class="n">fd</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>This is one place where Go CLI design gets tricky.</p> <p><code>term.ReadPassword</code> works with file descriptors, not just <code>io.Reader</code>.</p> <p>That means a clean prompt abstraction may need to separate generic testable prompting from terminal-specific password reading.</p> <p>A common pattern is to inject the password reader:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">SecretReader</span> <span class="k">interface</span> <span class="p">{</span> <span class="n">ReadPassword</span><span class="p">(</span><span class="n">fd</span> <span class="kt">int</span><span class="p">)</span> <span class="p">([]</span><span class="kt">byte</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>or use a function field:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">SecretReadFunc</span> <span class="k">func</span><span class="p">(</span><span class="n">fd</span> <span class="kt">int</span><span class="p">)</span> <span class="p">([]</span><span class="kt">byte</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> </code></pre> </div> <p>That makes secret prompt behavior testable without requiring a real terminal.</p> <h2> Prompting Should Not Leak Into Commands </h2> <p>The command should not decide terminal behavior manually.</p> <p>Bad:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">if</span> <span class="n">term</span><span class="o">.</span><span class="n">IsTerminal</span><span class="p">(</span><span class="kt">int</span><span class="p">(</span><span class="n">os</span><span class="o">.</span><span class="n">Stdin</span><span class="o">.</span><span class="n">Fd</span><span class="p">()))</span> <span class="p">{</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Print</span><span class="p">(</span><span class="s">"Username: "</span><span class="p">)</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Scanln</span><span class="p">(</span><span class="o">&amp;</span><span class="n">username</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>Better:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">username</span><span class="p">,</span> <span class="n">err</span> <span class="o">=</span> <span class="n">prompt</span><span class="o">.</span><span class="n">Text</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="s">"Username"</span><span class="p">)</span> </code></pre> </div> <p>The prompt layer handles:</p> <ul> <li>policy</li> <li>terminal checks</li> <li>stderr output</li> <li>input reading</li> <li>empty input behavior</li> <li>cancellation behavior</li> <li>consistent errors</li> </ul> <p>That keeps command code focused on command semantics.</p> <h1> 5. Options Pattern: Complete, Validate, Run </h1> <p>The next major change was introducing command options.</p> <p>The pattern looks like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">LoginOptions</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">Username</span> <span class="kt">string</span> <span class="n">Password</span> <span class="kt">string</span> <span class="n">Streams</span> <span class="n">IOStreams</span> <span class="n">Client</span> <span class="o">*</span><span class="n">client</span><span class="o">.</span><span class="n">Client</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">o</span> <span class="o">*</span><span class="n">LoginOptions</span><span class="p">)</span> <span class="n">Complete</span><span class="p">(</span><span class="n">f</span> <span class="o">*</span><span class="n">Factory</span><span class="p">,</span> <span class="n">cmd</span> <span class="o">*</span><span class="n">cobra</span><span class="o">.</span><span class="n">Command</span><span class="p">,</span> <span class="n">args</span> <span class="p">[]</span><span class="kt">string</span><span class="p">)</span> <span class="kt">error</span> <span class="p">{</span> <span class="n">username</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">cmd</span><span class="o">.</span><span class="n">Flags</span><span class="p">()</span><span class="o">.</span><span class="n">GetString</span><span class="p">(</span><span class="s">"username"</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="n">err</span> <span class="p">}</span> <span class="n">o</span><span class="o">.</span><span class="n">Username</span> <span class="o">=</span> <span class="n">username</span> <span class="n">o</span><span class="o">.</span><span class="n">Streams</span> <span class="o">=</span> <span class="n">f</span><span class="o">.</span><span class="n">IOStreams</span> <span class="k">if</span> <span class="n">o</span><span class="o">.</span><span class="n">Username</span> <span class="o">==</span> <span class="s">""</span> <span class="p">{</span> <span class="n">value</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">f</span><span class="o">.</span><span class="n">Prompter</span><span class="p">()</span><span class="o">.</span><span class="n">Text</span><span class="p">(</span><span class="s">"Username"</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="n">err</span> <span class="p">}</span> <span class="n">o</span><span class="o">.</span><span class="n">Username</span> <span class="o">=</span> <span class="n">value</span> <span class="p">}</span> <span class="n">o</span><span class="o">.</span><span class="n">Client</span> <span class="o">=</span> <span class="n">f</span><span class="o">.</span><span class="n">NewClient</span><span class="p">()</span> <span class="k">return</span> <span class="no">nil</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">o</span> <span class="o">*</span><span class="n">LoginOptions</span><span class="p">)</span> <span class="n">Validate</span><span class="p">()</span> <span class="kt">error</span> <span class="p">{</span> <span class="k">if</span> <span class="n">o</span><span class="o">.</span><span class="n">Username</span> <span class="o">==</span> <span class="s">""</span> <span class="p">{</span> <span class="k">return</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"username is required"</span><span class="p">)</span> <span class="p">}</span> <span class="k">return</span> <span class="no">nil</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">o</span> <span class="o">*</span><span class="n">LoginOptions</span><span class="p">)</span> <span class="n">Run</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">)</span> <span class="kt">error</span> <span class="p">{</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">o</span><span class="o">.</span><span class="n">Client</span><span class="o">.</span><span class="n">Login</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">o</span><span class="o">.</span><span class="n">Username</span><span class="p">,</span> <span class="n">o</span><span class="o">.</span><span class="n">Password</span><span class="p">);</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="n">err</span> <span class="p">}</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Fprintln</span><span class="p">(</span><span class="n">o</span><span class="o">.</span><span class="n">Streams</span><span class="o">.</span><span class="n">Out</span><span class="p">,</span> <span class="s">"Login successful"</span><span class="p">)</span> <span class="k">return</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>And a shared runner:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">Options</span> <span class="k">interface</span> <span class="p">{</span> <span class="n">Complete</span><span class="p">(</span><span class="n">f</span> <span class="o">*</span><span class="n">Factory</span><span class="p">,</span> <span class="n">cmd</span> <span class="o">*</span><span class="n">cobra</span><span class="o">.</span><span class="n">Command</span><span class="p">,</span> <span class="n">args</span> <span class="p">[]</span><span class="kt">string</span><span class="p">)</span> <span class="kt">error</span> <span class="n">Validate</span><span class="p">()</span> <span class="kt">error</span> <span class="n">Run</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">)</span> <span class="kt">error</span> <span class="p">}</span> <span class="k">func</span> <span class="n">runOptions</span><span class="p">(</span><span class="n">f</span> <span class="o">*</span><span class="n">Factory</span><span class="p">,</span> <span class="n">cmd</span> <span class="o">*</span><span class="n">cobra</span><span class="o">.</span><span class="n">Command</span><span class="p">,</span> <span class="n">args</span> <span class="p">[]</span><span class="kt">string</span><span class="p">,</span> <span class="n">opts</span> <span class="n">Options</span><span class="p">)</span> <span class="kt">error</span> <span class="p">{</span> <span class="n">ctx</span> <span class="o">:=</span> <span class="n">cmd</span><span class="o">.</span><span class="n">Context</span><span class="p">()</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">opts</span><span class="o">.</span><span class="n">Complete</span><span class="p">(</span><span class="n">f</span><span class="p">,</span> <span class="n">cmd</span><span class="p">,</span> <span class="n">args</span><span class="p">);</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="n">err</span> <span class="p">}</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">opts</span><span class="o">.</span><span class="n">Validate</span><span class="p">();</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="n">err</span> <span class="p">}</span> <span class="k">return</span> <span class="n">opts</span><span class="o">.</span><span class="n">Run</span><span class="p">(</span><span class="n">ctx</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>This lifecycle gives commands clear boundaries.</p> <h2> Complete </h2> <p><code>Complete</code> collects input and dependencies.</p> <p>It can read:</p> <ul> <li>args</li> <li>flags</li> <li>config path</li> <li>prompted values</li> <li>clients</li> <li>sessions</li> <li>runtime dependencies</li> </ul> <p>It should not execute major side effects.</p> <h2> Validate </h2> <p><code>Validate</code> checks semantic correctness.</p> <p>It should answer:</p> <blockquote> <p>Do we have enough valid information to run?</p> </blockquote> <p>Examples:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">if</span> <span class="n">o</span><span class="o">.</span><span class="n">Username</span> <span class="o">==</span> <span class="s">""</span> <span class="p">{</span> <span class="k">return</span> <span class="n">errors</span><span class="o">.</span><span class="n">New</span><span class="p">(</span><span class="s">"username is required"</span><span class="p">)</span> <span class="p">}</span> <span class="k">if</span> <span class="o">!</span><span class="n">validProvider</span><span class="p">(</span><span class="n">o</span><span class="o">.</span><span class="n">Provider</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"unsupported provider %q"</span><span class="p">,</span> <span class="n">o</span><span class="o">.</span><span class="n">Provider</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <h2> Run </h2> <p><code>Run</code> performs side effects.</p> <p>Examples:</p> <ul> <li>API requests</li> <li>writing config</li> <li>creating sessions</li> <li>submitting data</li> <li>rendering final output</li> </ul> <p>This split makes tests more focused.</p> <p>You can test <code>Validate</code> without a fake API.</p> <p>You can test <code>Complete</code> with fake streams.</p> <p>You can test <code>Run</code> with a fake client.</p> <p>This is significantly better than testing a huge <code>RunE</code> closure.</p> <h1> 6. Cobra Should Wire Commands, Not Own the Application </h1> <p>Cobra is excellent for:</p> <ul> <li>command tree</li> <li>flags</li> <li>args</li> <li>help text</li> <li>shell completion</li> <li>command dispatch</li> </ul> <p>But Cobra should not become your application architecture.</p> <p>A common problem is passing <code>*cobra.Command</code> deep into the application:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">NewSession</span><span class="p">(</span><span class="n">cmd</span> <span class="o">*</span><span class="n">cobra</span><span class="o">.</span><span class="n">Command</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">Session</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">configPath</span><span class="p">,</span> <span class="n">_</span> <span class="o">:=</span> <span class="n">cmd</span><span class="o">.</span><span class="n">Flags</span><span class="p">()</span><span class="o">.</span><span class="n">GetString</span><span class="p">(</span><span class="s">"config"</span><span class="p">)</span> <span class="c">// ...</span> <span class="p">}</span> </code></pre> </div> <p>This couples your session layer to Cobra.</p> <p>That is a design smell.</p> <p>A session package should not know that Cobra exists.</p> <p>Better:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">NewSession</span><span class="p">(</span><span class="n">configPath</span> <span class="kt">string</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">Session</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="c">// ...</span> <span class="p">}</span> </code></pre> </div> <p>or:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">NewSession</span><span class="p">(</span><span class="n">cfg</span> <span class="n">Config</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">Session</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="c">// ...</span> <span class="p">}</span> </code></pre> </div> <p>The command layer can use Cobra to resolve the flag, but lower layers should receive plain Go values.</p> <p>Good dependency direction:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>cmd → runtime/config/client/session </code></pre> </div> <p>Bad dependency direction:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>session → cobra client → cobra config → cobra </code></pre> </div> <p>The deeper your business code knows about Cobra, the harder it becomes to test and reuse.</p> <h1> 7. Stream-Aware Output and Table Rendering </h1> <p>Another important refactor was changing output rendering to accept a writer.</p> <p>Bad:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">RenderTable</span><span class="p">(</span><span class="n">rows</span> <span class="p">[]</span><span class="n">Row</span><span class="p">)</span> <span class="p">{</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Println</span><span class="p">(</span><span class="s">"NAME</span><span class="se">\t</span><span class="s">STATUS"</span><span class="p">)</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">row</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">rows</span> <span class="p">{</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Printf</span><span class="p">(</span><span class="s">"%s</span><span class="se">\t</span><span class="s">%s</span><span class="se">\n</span><span class="s">"</span><span class="p">,</span> <span class="n">row</span><span class="o">.</span><span class="n">Name</span><span class="p">,</span> <span class="n">row</span><span class="o">.</span><span class="n">Status</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>Better:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">RenderTable</span><span class="p">(</span><span class="n">w</span> <span class="n">io</span><span class="o">.</span><span class="n">Writer</span><span class="p">,</span> <span class="n">rows</span> <span class="p">[]</span><span class="n">Row</span><span class="p">)</span> <span class="kt">error</span> <span class="p">{</span> <span class="n">tw</span> <span class="o">:=</span> <span class="n">tabwriter</span><span class="o">.</span><span class="n">NewWriter</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="m">0</span><span class="p">,</span> <span class="m">0</span><span class="p">,</span> <span class="m">2</span><span class="p">,</span> <span class="sc">' '</span><span class="p">,</span> <span class="m">0</span><span class="p">)</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Fprintln</span><span class="p">(</span><span class="n">tw</span><span class="p">,</span> <span class="s">"NAME</span><span class="se">\t</span><span class="s">STATUS"</span><span class="p">)</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">row</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">rows</span> <span class="p">{</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Fprintf</span><span class="p">(</span><span class="n">tw</span><span class="p">,</span> <span class="s">"%s</span><span class="se">\t</span><span class="s">%s</span><span class="se">\n</span><span class="s">"</span><span class="p">,</span> <span class="n">row</span><span class="o">.</span><span class="n">Name</span><span class="p">,</span> <span class="n">row</span><span class="o">.</span><span class="n">Status</span><span class="p">)</span> <span class="p">}</span> <span class="k">return</span> <span class="n">tw</span><span class="o">.</span><span class="n">Flush</span><span class="p">()</span> <span class="p">}</span> </code></pre> </div> <p>Then commands can call:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">return</span> <span class="n">table</span><span class="o">.</span><span class="n">Render</span><span class="p">(</span><span class="n">o</span><span class="o">.</span><span class="n">Streams</span><span class="o">.</span><span class="n">Out</span><span class="p">,</span> <span class="n">rows</span><span class="p">)</span> </code></pre> </div> <p>Now rendering is testable:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">var</span> <span class="n">out</span> <span class="n">bytes</span><span class="o">.</span><span class="n">Buffer</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">table</span><span class="o">.</span><span class="n">Render</span><span class="p">(</span><span class="o">&amp;</span><span class="n">out</span><span class="p">,</span> <span class="n">rows</span><span class="p">)</span> <span class="n">require</span><span class="o">.</span><span class="n">NoError</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">err</span><span class="p">)</span> <span class="n">assert</span><span class="o">.</span><span class="n">Contains</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">out</span><span class="o">.</span><span class="n">String</span><span class="p">(),</span> <span class="s">"NAME"</span><span class="p">)</span> </code></pre> </div> <p>This also prepares the CLI for future output modes:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>mycli search query <span class="nt">--output</span> table mycli search query <span class="nt">--output</span> json mycli search query <span class="nt">--output</span> yaml </code></pre> </div> <p>A mature CLI usually needs a clear output strategy.</p> <p>For example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">OutputFormat</span> <span class="kt">string</span> <span class="k">const</span> <span class="p">(</span> <span class="n">OutputTable</span> <span class="n">OutputFormat</span> <span class="o">=</span> <span class="s">"table"</span> <span class="n">OutputJSON</span> <span class="n">OutputFormat</span> <span class="o">=</span> <span class="s">"json"</span> <span class="n">OutputYAML</span> <span class="n">OutputFormat</span> <span class="o">=</span> <span class="s">"yaml"</span> <span class="p">)</span> </code></pre> </div> <p>Then a renderer can own output behavior:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">Renderer</span> <span class="k">interface</span> <span class="p">{</span> <span class="n">Render</span><span class="p">(</span><span class="n">w</span> <span class="n">io</span><span class="o">.</span><span class="n">Writer</span><span class="p">,</span> <span class="n">value</span> <span class="n">any</span><span class="p">)</span> <span class="kt">error</span> <span class="p">}</span> </code></pre> </div> <p>Do not mix API logic with table formatting.</p> <p>That separation becomes very valuable when command output grows.</p> <h1> 8. Testing Strategy for This Architecture </h1> <p>This architecture enables better tests.</p> <p>But it also creates new test responsibilities.</p> <h2> Prompt Tests </h2> <p>Prompt tests should cover:</p> <ul> <li>text prompt writes prompt text to stderr</li> <li>text prompt reads from input</li> <li>empty value behavior</li> <li>select prompt valid selection</li> <li>select prompt invalid selection</li> <li>secret prompt does not echo input</li> <li>prompt disabled by policy</li> <li>prompt fails without terminal in <code>always</code> </li> <li>prompt skips/fails in <code>never</code> </li> </ul> <p>Example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">TestPromptTextWritesToErrOut</span><span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">testing</span><span class="o">.</span><span class="n">T</span><span class="p">)</span> <span class="p">{</span> <span class="n">in</span> <span class="o">:=</span> <span class="n">strings</span><span class="o">.</span><span class="n">NewReader</span><span class="p">(</span><span class="s">"amir</span><span class="se">\n</span><span class="s">"</span><span class="p">)</span> <span class="n">out</span> <span class="o">:=</span> <span class="o">&amp;</span><span class="n">bytes</span><span class="o">.</span><span class="n">Buffer</span><span class="p">{}</span> <span class="n">errOut</span> <span class="o">:=</span> <span class="o">&amp;</span><span class="n">bytes</span><span class="o">.</span><span class="n">Buffer</span><span class="p">{}</span> <span class="n">streams</span> <span class="o">:=</span> <span class="n">IOStreams</span><span class="p">{</span> <span class="n">In</span><span class="o">:</span> <span class="n">in</span><span class="p">,</span> <span class="n">Out</span><span class="o">:</span> <span class="n">out</span><span class="p">,</span> <span class="n">ErrOut</span><span class="o">:</span> <span class="n">errOut</span><span class="p">,</span> <span class="n">IsTerminalIn</span><span class="o">:</span> <span class="no">true</span><span class="p">,</span> <span class="n">IsTerminalErrOut</span><span class="o">:</span> <span class="no">true</span><span class="p">,</span> <span class="p">}</span> <span class="n">p</span> <span class="o">:=</span> <span class="n">NewPrompter</span><span class="p">(</span><span class="n">streams</span><span class="p">,</span> <span class="n">PromptAuto</span><span class="p">)</span> <span class="n">value</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">p</span><span class="o">.</span><span class="n">Text</span><span class="p">(</span><span class="s">"Username"</span><span class="p">)</span> <span class="n">require</span><span class="o">.</span><span class="n">NoError</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">err</span><span class="p">)</span> <span class="n">require</span><span class="o">.</span><span class="n">Equal</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="s">"amir"</span><span class="p">,</span> <span class="n">value</span><span class="p">)</span> <span class="n">require</span><span class="o">.</span><span class="n">Empty</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">out</span><span class="o">.</span><span class="n">String</span><span class="p">())</span> <span class="n">require</span><span class="o">.</span><span class="n">Contains</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">errOut</span><span class="o">.</span><span class="n">String</span><span class="p">(),</span> <span class="s">"Username"</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>The important assertion is not just that the prompt works.</p> <p>The important assertion is:</p> <blockquote> <p>prompt text does not go to stdout.</p> </blockquote> <h2> Non-Interactive Tests </h2> <p>Every command that supports prompting should have tests for non-interactive mode.</p> <p>Example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">TestLoginMissingUsernameNonInteractiveFails</span><span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">testing</span><span class="o">.</span><span class="n">T</span><span class="p">)</span> <span class="p">{</span> <span class="n">streams</span> <span class="o">:=</span> <span class="n">IOStreams</span><span class="p">{</span> <span class="n">In</span><span class="o">:</span> <span class="n">strings</span><span class="o">.</span><span class="n">NewReader</span><span class="p">(</span><span class="s">""</span><span class="p">),</span> <span class="n">Out</span><span class="o">:</span> <span class="o">&amp;</span><span class="n">bytes</span><span class="o">.</span><span class="n">Buffer</span><span class="p">{},</span> <span class="n">ErrOut</span><span class="o">:</span> <span class="o">&amp;</span><span class="n">bytes</span><span class="o">.</span><span class="n">Buffer</span><span class="p">{},</span> <span class="n">IsTerminalIn</span><span class="o">:</span> <span class="no">false</span><span class="p">,</span> <span class="n">IsTerminalErrOut</span><span class="o">:</span> <span class="no">false</span><span class="p">,</span> <span class="p">}</span> <span class="n">f</span> <span class="o">:=</span> <span class="n">NewFactory</span><span class="p">(</span><span class="n">streams</span><span class="p">,</span> <span class="n">PromptNever</span><span class="p">)</span> <span class="n">cmd</span> <span class="o">:=</span> <span class="n">NewLoginCmd</span><span class="p">(</span><span class="n">f</span><span class="p">)</span> <span class="n">cmd</span><span class="o">.</span><span class="n">SetArgs</span><span class="p">([]</span><span class="kt">string</span><span class="p">{})</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">cmd</span><span class="o">.</span><span class="n">Execute</span><span class="p">()</span> <span class="n">require</span><span class="o">.</span><span class="n">Error</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">err</span><span class="p">)</span> <span class="n">require</span><span class="o">.</span><span class="n">Contains</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">err</span><span class="o">.</span><span class="n">Error</span><span class="p">(),</span> <span class="s">"username is required"</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>This protects CI behavior.</p> <h2> Golden Tests </h2> <p>For table output, golden tests are very useful.</p> <p>Example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>testdata/search_table.golden </code></pre> </div> <p>Then:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">got</span> <span class="o">:=</span> <span class="n">out</span><span class="o">.</span><span class="n">String</span><span class="p">()</span> <span class="n">want</span> <span class="o">:=</span> <span class="n">readGolden</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="s">"testdata/search_table.golden"</span><span class="p">)</span> <span class="n">require</span><span class="o">.</span><span class="n">Equal</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">want</span><span class="p">,</span> <span class="n">got</span><span class="p">)</span> </code></pre> </div> <p>Golden tests help prevent accidental output changes.</p> <p>That matters because CLI output is a user interface.</p> <h2> Integration Tests </h2> <p>You should also have command-level integration tests that execute Cobra commands with fake streams.</p> <p>Test cases:</p> <ul> <li> <code>login</code> with flags only</li> <li> <code>login</code> with prompt</li> <li> <code>login</code> missing input with <code>--interactive=never</code> </li> <li> <code>search</code> output redirected</li> <li> <code>plates add</code> with prompted missing values</li> <li>SSO provider selection</li> <li>config path override</li> <li>invalid config path</li> <li>stdout/stderr separation</li> </ul> <p>For a CLI, these tests are often more valuable than many small unit tests.</p> <h1> 9. Recommended Package Structure </h1> <p>At the beginning, keeping everything under <code>cli/cmd</code> is acceptable.</p> <p>But as the CLI grows, <code>cmd</code> can become a junk drawer.</p> <p>A more scalable structure:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>cli/ cmd/ root.go login.go logout.go search.go submit.go plates.go my.go internal/ cli/ runtime/ factory.go context.go streams/ streams.go prompt/ prompt.go policy.go secret.go table/ table.go renderer.go options/ runner.go config/ loader.go model.go writer.go session/ session.go store.go client/ client.go auth.go auth/ login.go sso.go plates/ service.go search/ service.go </code></pre> </div> <p>The goal:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>cmd = Cobra wiring internal/cli = CLI runtime and UX infrastructure internal/config = config ownership internal/client = API transport internal/session = session persistence domain packages = business behavior </code></pre> </div> <p>This does not need to happen all at once.</p> <p>A good extraction order:</p> <ol> <li>Move <code>IOStreams</code> into <code>internal/cli/streams</code> </li> <li>Move <code>PromptPolicy</code> and prompt code into <code>internal/cli/prompt</code> </li> <li>Move table rendering into <code>internal/cli/table</code> </li> <li>Move config/session/client out of <code>cmd</code> </li> <li>Move business-heavy command logic into domain packages</li> </ol> <p>Do not over-engineer too early.</p> <p>But do prevent <code>cmd</code> from becoming the only package in the application.</p> <h1> 10. What Will Hurt First as the CLI Grows? </h1> <p>The first pain point will probably be Factory growth.</p> <p>If every new feature adds another field to Factory, the abstraction will become too broad.</p> <p>The second pain point will be command option duplication.</p> <p>If every options struct manually repeats the same config/client/session setup, you will need shared helpers.</p> <p>For example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">ClientOptions</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">ConfigPath</span> <span class="kt">string</span> <span class="n">Client</span> <span class="o">*</span><span class="n">client</span><span class="o">.</span><span class="n">Client</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">o</span> <span class="o">*</span><span class="n">ClientOptions</span><span class="p">)</span> <span class="n">CompleteClient</span><span class="p">(</span><span class="n">f</span> <span class="o">*</span><span class="n">Factory</span><span class="p">)</span> <span class="kt">error</span> <span class="p">{</span> <span class="n">o</span><span class="o">.</span><span class="n">ConfigPath</span> <span class="o">=</span> <span class="n">f</span><span class="o">.</span><span class="n">ConfigPath</span> <span class="n">o</span><span class="o">.</span><span class="n">Client</span> <span class="o">=</span> <span class="n">f</span><span class="o">.</span><span class="n">NewClient</span><span class="p">()</span> <span class="k">return</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>The third pain point will be output consistency.</p> <p>As soon as users depend on CLI output, changes become breaking changes.</p> <p>You may eventually need:</p> <ul> <li>stable table columns</li> <li>JSON schema guarantees</li> <li><code>--output</code></li> <li><code>--quiet</code></li> <li><code>--verbose</code></li> <li>structured errors</li> <li>exit code conventions</li> </ul> <p>The fourth pain point will be prompt semantics.</p> <p>Some commands may need required prompts. Some may need optional prompts. Some should never prompt even in auto mode.</p> <p>You may eventually need command-level prompt declarations:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">PromptRequirement</span> <span class="kt">int</span> <span class="k">const</span> <span class="p">(</span> <span class="n">PromptOptional</span> <span class="n">PromptRequirement</span> <span class="o">=</span> <span class="no">iota</span> <span class="n">PromptRequired</span> <span class="n">PromptForbidden</span> <span class="p">)</span> </code></pre> </div> <p>But I would not add this until real commands need it.</p> <h1> 11. What Not to Over-Engineer Yet </h1> <p>A good architecture is not the same as adding layers everywhere.</p> <p>I would avoid these too early:</p> <h2> Do not build a full dependency injection framework </h2> <p>Go does not need a DI container here.</p> <p>Constructor injection and small factories are enough.</p> <h2> Do not create generic abstractions before repetition exists </h2> <p>If only two commands need something, duplication may be acceptable.</p> <p>Wait until the pattern is obvious.</p> <h2> Do not move every command into a separate package immediately </h2> <p>That can make navigation harder.</p> <p>Start by extracting infrastructure:</p> <ul> <li>streams</li> <li>prompt</li> <li>table</li> <li>config</li> <li>client</li> <li>session</li> </ul> <p>Then extract domain logic when commands become large.</p> <h2> Do not make Factory own all services </h2> <p>Factory should help create runtime dependencies.</p> <p>It should not become the application.</p> <h2> Do not hide Cobra too aggressively </h2> <p>Cobra is fine in the command layer.</p> <p>The important part is preventing Cobra from leaking into lower layers.</p> <h1> 12. Senior-Level Review of the Architecture </h1> <p>Overall, this is a strong direction.</p> <p>The combination of:</p> <ul> <li>Factory</li> <li>IOStreams</li> <li>PromptPolicy</li> <li>prompt layer</li> <li>Complete/Validate/Run</li> <li>writer-based rendering</li> </ul> <p>is a solid foundation for a larger Go CLI.</p> <p>The architecture improves:</p> <ul> <li>testability</li> <li>automation safety</li> <li>stdout/stderr correctness</li> <li>command consistency</li> <li>future extensibility</li> <li>separation of concerns</li> </ul> <p>It also aligns conceptually with mature CLIs like <code>kubectl</code>.</p> <p>But the design must be kept disciplined.</p> <p>The most important rules going forward:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>1. Keep Cobra in cmd. 2. Keep stdout clean. 3. Keep prompts on stderr. 4. Keep Factory focused. 5. Keep business logic out of command wiring. 6. Keep command lifecycle consistent. 7. Keep lower packages free from Cobra. 8. Keep tests stream-aware and policy-aware. </code></pre> </div> <p>If those rules hold, the CLI can grow to dozens of commands without becoming a maintenance problem.</p> <h1> Final Thoughts </h1> <p>A CLI is not just a thin wrapper around functions.</p> <p>A serious CLI is an interface contract.</p> <p>It is used by humans, scripts, CI systems, terminals, pipes, and other tools.</p> <p>That means small decisions matter:</p> <ul> <li>stdout or stderr?</li> <li>prompt or fail?</li> <li>terminal or pipe?</li> <li>config from where?</li> <li>error with what exit behavior?</li> <li>table or JSON?</li> <li>command-specific logic or shared runtime?</li> </ul> <p>The refactor described here is not just cleanup.</p> <p>It creates a foundation.</p> <p>The CLI moves from this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Each command does everything itself. </code></pre> </div> <p>to this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Commands share a runtime, follow a lifecycle, and behave predictably. </code></pre> </div> <p>That is the difference between a small Cobra app and a maintainable Go CLI platform.</p> go cli architecture kubernetes amir Sun, 07 Jun 2026 16:22:15 +0000 https://dev.to/amirsefati/building-hybrid-search-with-postgresql-pgvector-and-citus-299b https://dev.to/amirsefati/building-hybrid-search-with-postgresql-pgvector-and-citus-299b <p>Search looks simple from the outside.</p> <p>A user types something like:</p> <blockquote> <p>short-range copper module</p> </blockquote> <p>and expects the system to return the right product, maybe even an exact SKU like:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>QDD-2Q200-CU3M </code></pre> </div> <p>But when you work with a real product catalog, especially something technical like networking hardware, search becomes much harder.</p> <p>You are not only searching titles. You are searching SKUs, brands, specs, categories, descriptions, compatibility notes, datasheets, and sometimes even weird abbreviations that only people in that industry understand.</p> <p>For simple websites, keyword search is usually enough. But for a serious catalog with hundreds of thousands of products, keyword search alone starts to break down.</p> <p>That is where hybrid search becomes interesting.</p> <p>In this article, I want to explain how I would design a high-performance hybrid search system using:</p> <ul> <li>PostgreSQL</li> <li>pgvector</li> <li>full-text search</li> <li>HNSW indexes</li> <li>Reciprocal Rank Fusion, or RRF</li> <li>Citus for scaling later</li> </ul> <p>The goal is not to make the architecture more complicated than necessary. The goal is to keep the system practical, fast, and maintainable.</p> <h2> Why keyword search is not enough </h2> <p>Traditional search usually works by matching words.</p> <p>For example, if the user searches:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Cisco Catalyst 9300 48-port PoE </code></pre> </div> <p>keyword search can do a good job because the query contains exact terms like <code>Cisco</code>, <code>Catalyst</code>, <code>9300</code>, and <code>PoE</code>.</p> <p>But what happens when the user searches like this?<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>short range copper module </code></pre> </div> <p>Maybe the product description does not use those exact words. Maybe it says <code>direct attach cable</code>, <code>DAC</code>, or only contains the SKU and technical specs.</p> <p>A pure keyword engine may miss good results because the words do not match exactly.</p> <p>This is the main reason vector search is useful. Vector search is not only looking at exact words. It tries to understand the meaning behind the query.</p> <h2> What pgvector gives us </h2> <p><code>pgvector</code> allows PostgreSQL to store and search embeddings directly inside the database.</p> <p>An embedding is basically a list of numbers that represents the meaning of a text.</p> <p>For example, this text:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Cisco 10G short range SFP transceiver </code></pre> </div> <p>can be converted by an embedding model into a vector like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>[0.021, -0.182, 0.441, ...] </code></pre> </div> <p>Of course, real vectors usually have hundreds or thousands of dimensions.</p> <p>The nice part is that PostgreSQL can now compare these vectors and find the closest products to the user's query.</p> <p>So instead of only asking:</p> <blockquote> <p>Which rows contain these exact words?</p> </blockquote> <p>we can also ask:</p> <blockquote> <p>Which rows are semantically close to this query?</p> </blockquote> <p>This is very powerful for technical catalogs.</p> <h2> Why I still prefer hybrid search </h2> <p>Vector search is powerful, but it is not perfect.</p> <p>One of its weaknesses is exact matching.</p> <p>For example, if someone searches:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Catalyst 9300 48-port PoE </code></pre> </div> <p>a vector search might return products that are semantically close, such as:</p> <ul> <li>Catalyst 9300 24-port models</li> <li>Catalyst 9400 models</li> <li>non-PoE switches</li> <li>similar Cisco switches</li> </ul> <p>From a semantic point of view, these products are close.</p> <p>But from a buyer's point of view, they may be wrong.</p> <p>If the user typed <code>9300</code>, <code>48-port</code>, and <code>PoE</code>, those details matter.</p> <p>This is why I would not build this system with vector search alone.</p> <p>A better approach is hybrid search:</p> <ol> <li>Use PostgreSQL full-text search for exact and lexical matching.</li> <li>Use pgvector for semantic matching.</li> <li>Merge both result lists into one final ranking.</li> </ol> <p>This gives us both precision and recall.</p> <h2> Choosing the distance metric </h2> <p>When we compare vectors, we need a distance metric.</p> <p>pgvector supports multiple options, but the most common ones are:</p> <ul> <li>Euclidean distance</li> <li>Cosine distance</li> <li>Inner product</li> </ul> <p>For text embeddings, cosine similarity is usually a strong default because it focuses more on the direction of the vectors instead of their size.</p> <p>That matters because a long product description and a short user query can have very different vector magnitudes.</p> <p>In pgvector, cosine distance uses the <code>&lt;=&gt;</code> operator:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">ORDER</span> <span class="k">BY</span> <span class="n">embedding</span> <span class="o">&lt;=&gt;</span> <span class="err">$</span><span class="mi">1</span> </code></pre> </div> <p>If the embedding model already outputs normalized vectors, inner product can also be a good option because it is usually cheaper to compute.</p> <p>But for a simple and safe implementation, I would start with cosine distance and benchmark from there.</p> <h2> Picking an embedding model </h2> <p>The embedding model is one of the most important decisions in the whole system.</p> <p>A generic model may understand normal English very well, but it may not understand the difference between technical networking terms like:</p> <ul> <li>SMF and MMF</li> <li>SFP and QSFP</li> <li>DAC and AOC</li> <li>10G, 25G, 40G, and 100G</li> <li>similar SKUs that differ by only a few characters</li> </ul> <p>For this kind of catalog, I would choose a model that performs well on technical and retrieval tasks.</p> <p>Two interesting options are:</p> <ul> <li>Qwen embedding models</li> <li>EmbeddingGemma-style compact embedding models</li> </ul> <p>A large model can give better semantic quality, but it also needs more infrastructure. For many real systems, a smaller model with good retrieval quality is easier to operate.</p> <p>For a catalog around 40,000 products, I would probably start with a 512-dimensional or 768-dimensional embedding model and measure quality before jumping to a very large model.</p> <p>The practical question is not only:</p> <blockquote> <p>Which model has the best benchmark score?</p> </blockquote> <p>The real question is:</p> <blockquote> <p>Which model gives good search quality with acceptable latency, storage, and operational cost?</p> </blockquote> <h2> Preparing product data before embedding </h2> <p>One mistake I often see is embedding only the raw description.</p> <p>For e-commerce search, that is usually not enough.</p> <p>A product has more useful context:</p> <ul> <li>SKU</li> <li>brand</li> <li>category</li> <li>product family</li> <li>technical specs</li> <li>compatibility</li> <li>short description</li> <li>long description</li> </ul> <p>Before creating the embedding, I would build a clean text payload like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Category: Optical Transceivers Brand: Cisco SKU: QDD-2Q200-CU3M Product Family: QSFP-DD Features: short range copper module, 200G, direct attach cable Description: ... </code></pre> </div> <p>This helps the embedding model understand the product better.</p> <p>It also makes similar products cluster closer together in vector space.</p> <p>For long descriptions or datasheets, I would not blindly split every 500 characters. That can break important context.</p> <p>Instead, I would use chunks with overlap.</p> <p>For example:</p> <ul> <li>chunk size: 500 to 800 tokens</li> <li>overlap: 100 to 150 tokens</li> </ul> <p>The overlap helps preserve context between chunks.</p> <h2> A simple PostgreSQL schema </h2> <p>Here is a simplified schema for this kind of system:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">CREATE</span> <span class="n">EXTENSION</span> <span class="n">IF</span> <span class="k">NOT</span> <span class="k">EXISTS</span> <span class="n">vector</span><span class="p">;</span> <span class="k">CREATE</span> <span class="n">EXTENSION</span> <span class="n">IF</span> <span class="k">NOT</span> <span class="k">EXISTS</span> <span class="n">pg_trgm</span><span class="p">;</span> <span class="k">CREATE</span> <span class="k">TABLE</span> <span class="n">network_equipment</span> <span class="p">(</span> <span class="n">product_id</span> <span class="n">UUID</span> <span class="k">PRIMARY</span> <span class="k">KEY</span> <span class="k">DEFAULT</span> <span class="n">gen_random_uuid</span><span class="p">(),</span> <span class="n">sku</span> <span class="nb">VARCHAR</span><span class="p">(</span><span class="mi">100</span><span class="p">)</span> <span class="k">UNIQUE</span> <span class="k">NOT</span> <span class="k">NULL</span><span class="p">,</span> <span class="n">manufacturer</span> <span class="nb">VARCHAR</span><span class="p">(</span><span class="mi">100</span><span class="p">)</span> <span class="k">NOT</span> <span class="k">NULL</span><span class="p">,</span> <span class="n">category_id</span> <span class="nb">INT</span> <span class="k">NOT</span> <span class="k">NULL</span><span class="p">,</span> <span class="n">price</span> <span class="nb">DECIMAL</span><span class="p">(</span><span class="mi">10</span><span class="p">,</span> <span class="mi">2</span><span class="p">),</span> <span class="n">stock_quantity</span> <span class="nb">INT</span> <span class="k">DEFAULT</span> <span class="mi">0</span><span class="p">,</span> <span class="n">description</span> <span class="nb">TEXT</span><span class="p">,</span> <span class="n">search_vector</span> <span class="n">tsvector</span> <span class="k">GENERATED</span> <span class="n">ALWAYS</span> <span class="k">AS</span> <span class="p">(</span> <span class="n">setweight</span><span class="p">(</span><span class="n">to_tsvector</span><span class="p">(</span><span class="s1">'english'</span><span class="p">,</span> <span class="n">coalesce</span><span class="p">(</span><span class="n">sku</span><span class="p">,</span> <span class="s1">''</span><span class="p">)),</span> <span class="s1">'A'</span><span class="p">)</span> <span class="o">||</span> <span class="n">setweight</span><span class="p">(</span><span class="n">to_tsvector</span><span class="p">(</span><span class="s1">'english'</span><span class="p">,</span> <span class="n">coalesce</span><span class="p">(</span><span class="n">manufacturer</span><span class="p">,</span> <span class="s1">''</span><span class="p">)),</span> <span class="s1">'B'</span><span class="p">)</span> <span class="o">||</span> <span class="n">setweight</span><span class="p">(</span><span class="n">to_tsvector</span><span class="p">(</span><span class="s1">'english'</span><span class="p">,</span> <span class="n">coalesce</span><span class="p">(</span><span class="n">description</span><span class="p">,</span> <span class="s1">''</span><span class="p">)),</span> <span class="s1">'C'</span><span class="p">)</span> <span class="p">)</span> <span class="n">STORED</span><span class="p">,</span> <span class="n">embedding</span> <span class="n">vector</span><span class="p">(</span><span class="mi">768</span><span class="p">)</span> <span class="p">);</span> <span class="k">CREATE</span> <span class="k">INDEX</span> <span class="n">idx_network_category</span> <span class="k">ON</span> <span class="n">network_equipment</span> <span class="p">(</span><span class="n">category_id</span><span class="p">);</span> <span class="k">CREATE</span> <span class="k">INDEX</span> <span class="n">idx_network_search</span> <span class="k">ON</span> <span class="n">network_equipment</span> <span class="k">USING</span> <span class="n">GIN</span> <span class="p">(</span><span class="n">search_vector</span><span class="p">);</span> </code></pre> </div> <p>The <code>search_vector</code> column is for PostgreSQL full-text search.</p> <p>The <code>embedding</code> column is for semantic search with pgvector.</p> <p>I also like this design because the product data and the vector live in the same database. That means fewer synchronization problems compared to pushing everything into a separate vector database.</p> <p>Of course, external vector databases can be useful. But for many backend systems, keeping this inside PostgreSQL is simpler and more than enough.</p> <h2> IVFFlat vs HNSW </h2> <p>pgvector supports approximate nearest neighbor indexes.</p> <p>The two important options are:</p> <ul> <li>IVFFlat</li> <li>HNSW</li> </ul> <h3> IVFFlat </h3> <p>IVFFlat works by dividing the vector space into lists or clusters.</p> <p>It is usually faster to build and smaller in memory, but it has one important problem: it depends heavily on the data distribution at the time the index is created.</p> <p>If your product catalog changes a lot, recall can degrade over time.</p> <p>So IVFFlat can be useful, but I would be careful with it in a dynamic e-commerce system.</p> <h3> HNSW </h3> <p>HNSW builds a graph of vectors.</p> <p>At query time, it navigates through this graph to find close neighbors quickly.</p> <p>It usually has:</p> <ul> <li>better recall</li> <li>faster queries</li> <li>larger index size</li> <li>slower index build time</li> </ul> <p>For a 40,000-row catalog, I would usually choose HNSW unless there is a strong memory limitation.</p> <p>A typical index could look like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">CREATE</span> <span class="k">INDEX</span> <span class="n">CONCURRENTLY</span> <span class="n">idx_network_embedding_hnsw</span> <span class="k">ON</span> <span class="n">network_equipment</span> <span class="k">USING</span> <span class="n">hnsw</span> <span class="p">(</span><span class="n">embedding</span> <span class="n">vector_cosine_ops</span><span class="p">)</span> <span class="k">WITH</span> <span class="p">(</span><span class="n">m</span> <span class="o">=</span> <span class="mi">16</span><span class="p">,</span> <span class="n">ef_construction</span> <span class="o">=</span> <span class="mi">64</span><span class="p">);</span> </code></pre> </div> <p>At query time, we can tune recall and latency using:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">SET</span> <span class="n">hnsw</span><span class="p">.</span><span class="n">ef_search</span> <span class="o">=</span> <span class="mi">64</span><span class="p">;</span> </code></pre> </div> <p>Higher <code>ef_search</code> usually means better recall but slower queries.</p> <p>This is something I would always benchmark with real data.</p> <h2> Hybrid search with RRF </h2> <p>Now comes the important part: merging keyword search and vector search.</p> <p>The problem is that full-text search and vector search produce different scores.</p> <p>BM25 or <code>ts_rank_cd</code> scores are not directly comparable with cosine distance.</p> <p>So instead of trying to add raw scores together, we can use Reciprocal Rank Fusion, or RRF.</p> <p>RRF uses the rank position of each result, not the raw score.</p> <p>The idea is simple:</p> <ul> <li>If a product ranks high in vector search, it gets points.</li> <li>If it ranks high in keyword search, it gets points.</li> <li>If it ranks high in both, it gets more points.</li> </ul> <p>Here is a simplified query:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">WITH</span> <span class="n">vector_search</span> <span class="k">AS</span> <span class="p">(</span> <span class="k">SELECT</span> <span class="n">product_id</span><span class="p">,</span> <span class="n">ROW_NUMBER</span><span class="p">()</span> <span class="n">OVER</span> <span class="p">(</span> <span class="k">ORDER</span> <span class="k">BY</span> <span class="n">embedding</span> <span class="o">&lt;=&gt;</span> <span class="err">$</span><span class="mi">1</span><span class="p">::</span><span class="n">vector</span> <span class="p">)</span> <span class="k">AS</span> <span class="n">rank_vector</span> <span class="k">FROM</span> <span class="n">network_equipment</span> <span class="k">WHERE</span> <span class="n">category_id</span> <span class="o">=</span> <span class="err">$</span><span class="mi">2</span> <span class="k">ORDER</span> <span class="k">BY</span> <span class="n">embedding</span> <span class="o">&lt;=&gt;</span> <span class="err">$</span><span class="mi">1</span><span class="p">::</span><span class="n">vector</span> <span class="k">LIMIT</span> <span class="mi">100</span> <span class="p">),</span> <span class="n">keyword_search</span> <span class="k">AS</span> <span class="p">(</span> <span class="k">SELECT</span> <span class="n">product_id</span><span class="p">,</span> <span class="n">ROW_NUMBER</span><span class="p">()</span> <span class="n">OVER</span> <span class="p">(</span> <span class="k">ORDER</span> <span class="k">BY</span> <span class="n">ts_rank_cd</span><span class="p">(</span> <span class="n">search_vector</span><span class="p">,</span> <span class="n">websearch_to_tsquery</span><span class="p">(</span><span class="s1">'english'</span><span class="p">,</span> <span class="err">$</span><span class="mi">3</span><span class="p">)</span> <span class="p">)</span> <span class="k">DESC</span> <span class="p">)</span> <span class="k">AS</span> <span class="n">rank_keyword</span> <span class="k">FROM</span> <span class="n">network_equipment</span> <span class="k">WHERE</span> <span class="n">search_vector</span> <span class="o">@@</span> <span class="n">websearch_to_tsquery</span><span class="p">(</span><span class="s1">'english'</span><span class="p">,</span> <span class="err">$</span><span class="mi">3</span><span class="p">)</span> <span class="k">AND</span> <span class="n">category_id</span> <span class="o">=</span> <span class="err">$</span><span class="mi">2</span> <span class="k">ORDER</span> <span class="k">BY</span> <span class="n">ts_rank_cd</span><span class="p">(</span> <span class="n">search_vector</span><span class="p">,</span> <span class="n">websearch_to_tsquery</span><span class="p">(</span><span class="s1">'english'</span><span class="p">,</span> <span class="err">$</span><span class="mi">3</span><span class="p">)</span> <span class="p">)</span> <span class="k">DESC</span> <span class="k">LIMIT</span> <span class="mi">100</span> <span class="p">)</span> <span class="k">SELECT</span> <span class="n">e</span><span class="p">.</span><span class="n">product_id</span><span class="p">,</span> <span class="n">e</span><span class="p">.</span><span class="n">sku</span><span class="p">,</span> <span class="n">e</span><span class="p">.</span><span class="n">manufacturer</span><span class="p">,</span> <span class="n">e</span><span class="p">.</span><span class="n">description</span><span class="p">,</span> <span class="n">e</span><span class="p">.</span><span class="n">price</span><span class="p">,</span> <span class="n">COALESCE</span><span class="p">(</span><span class="mi">1</span><span class="p">.</span><span class="mi">0</span> <span class="o">/</span> <span class="p">(</span><span class="mi">60</span> <span class="o">+</span> <span class="n">v</span><span class="p">.</span><span class="n">rank_vector</span><span class="p">),</span> <span class="mi">0</span><span class="p">.</span><span class="mi">0</span><span class="p">)</span> <span class="o">+</span> <span class="n">COALESCE</span><span class="p">(</span><span class="mi">1</span><span class="p">.</span><span class="mi">0</span> <span class="o">/</span> <span class="p">(</span><span class="mi">60</span> <span class="o">+</span> <span class="n">k</span><span class="p">.</span><span class="n">rank_keyword</span><span class="p">),</span> <span class="mi">0</span><span class="p">.</span><span class="mi">0</span><span class="p">)</span> <span class="k">AS</span> <span class="n">rrf_score</span> <span class="k">FROM</span> <span class="n">vector_search</span> <span class="n">v</span> <span class="k">FULL</span> <span class="k">OUTER</span> <span class="k">JOIN</span> <span class="n">keyword_search</span> <span class="n">k</span> <span class="k">ON</span> <span class="n">v</span><span class="p">.</span><span class="n">product_id</span> <span class="o">=</span> <span class="n">k</span><span class="p">.</span><span class="n">product_id</span> <span class="k">JOIN</span> <span class="n">network_equipment</span> <span class="n">e</span> <span class="k">ON</span> <span class="n">e</span><span class="p">.</span><span class="n">product_id</span> <span class="o">=</span> <span class="n">COALESCE</span><span class="p">(</span><span class="n">v</span><span class="p">.</span><span class="n">product_id</span><span class="p">,</span> <span class="n">k</span><span class="p">.</span><span class="n">product_id</span><span class="p">)</span> <span class="k">ORDER</span> <span class="k">BY</span> <span class="n">rrf_score</span> <span class="k">DESC</span> <span class="k">LIMIT</span> <span class="mi">15</span><span class="p">;</span> </code></pre> </div> <p>This query does two searches:</p> <ol> <li>Finds the top semantic matches using pgvector.</li> <li>Finds the top keyword matches using PostgreSQL full-text search.</li> </ol> <p>Then it combines them using RRF.</p> <p>The result is usually much better than using only one search method.</p> <h2> Filtering matters a lot </h2> <p>One thing that can make or break performance is filtering.</p> <p>If the user is clearly searching inside one category, do not run vector search across the whole table.</p> <p>For example, if the query is about transceivers, there is no reason to compare it against server racks or firewalls.</p> <p>This is why I would always try to apply filters before ranking:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">WHERE</span> <span class="n">category_id</span> <span class="o">=</span> <span class="err">$</span><span class="mi">2</span> </code></pre> </div> <p>In larger systems, I would also consider partitioning by category or tenant.</p> <p>This reduces the search space and keeps latency more predictable.</p> <h2> What about Citus? </h2> <p>For 40,000 products, a single well-tuned PostgreSQL instance can be enough.</p> <p>But if the catalog grows to tens of millions of products, or if the system becomes multi-tenant, we may need horizontal scaling.</p> <p>This is where Citus can help.</p> <p>Citus distributes PostgreSQL tables across worker nodes.</p> <p>For example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">SELECT</span> <span class="n">create_distributed_table</span><span class="p">(</span><span class="s1">'network_equipment'</span><span class="p">,</span> <span class="s1">'product_id'</span><span class="p">);</span> </code></pre> </div> <p>With this setup, each worker can search its own shard, and the coordinator can merge the results.</p> <p>For multi-tenant systems, distributing by <code>tenant_id</code> may be even better because most queries are usually scoped to one tenant.</p> <p>The important point is that we can start simple with PostgreSQL and pgvector, then scale out with Citus when the data size really requires it.</p> <h2> My practical recommendation </h2> <p>If I were building this for a real technical e-commerce catalog, I would start with this architecture:</p> <ul> <li>PostgreSQL as the main database</li> <li>pgvector for semantic search</li> <li>PostgreSQL full-text search for exact keyword search</li> <li>HNSW index for vector search</li> <li>RRF to merge vector and keyword results</li> <li>metadata-enriched embedding text</li> <li>category or tenant filtering before ranking</li> <li>Citus only when a single node is no longer enough</li> </ul> <p>This gives a good balance between performance, search quality, and operational simplicity.</p> <p>I would not start with a complicated distributed system on day one.</p> <p>First, I would make the search quality good on one node. Then I would benchmark with real queries, real products, and real user behavior.</p> <p>Only after that, I would scale the architecture.</p> <h2> Conclusion </h2> <p>Hybrid search is one of the most practical ways to improve product discovery.</p> <p>Keyword search gives us precision.</p> <p>Vector search gives us semantic understanding.</p> <p>RRF gives us a clean way to combine both without fighting with incompatible scoring systems.</p> <p>And pgvector makes the whole architecture easier because we can keep product data, metadata, full-text search, and embeddings inside PostgreSQL.</p> <p>For a technical catalog like networking hardware, this approach is especially useful because users often search in different ways:</p> <ul> <li>exact SKUs</li> <li>product families</li> <li>technical specs</li> <li>short descriptions</li> <li>vague concepts</li> <li>compatibility terms</li> </ul> <p>A good search engine should handle all of them.</p> <p>For me, the best architecture is not the one with the most tools. It is the one that gives accurate results, keeps latency low, and stays simple enough to operate in production.</p> postgres pgvector search backend amir Wed, 03 Jun 2026 09:36:55 +0000 https://dev.to/amirsefati/from-elasticsearch-bottlenecks-to-weaviate-how-we-built-fast-hybrid-search-in-production-b4i https://dev.to/amirsefati/from-elasticsearch-bottlenecks-to-weaviate-how-we-built-fast-hybrid-search-in-production-b4i <p>For years, Elasticsearch was one of those tools I would almost automatically reach for whenever a system needed search.</p> <p>And honestly, for many use cases, it is still excellent.</p> <p>If you need full-text search, filtering, aggregations, faceting, observability queries, or log exploration, Elasticsearch is a very mature and powerful engine. Its lexical search capabilities, especially through BM25 and inverted indexes, are battle-tested.</p> <p>But my problem started when the product requirement changed from:</p> <blockquote> <p>“Find documents that contain these words.”</p> </blockquote> <p>to:</p> <blockquote> <p>“Find documents that match the meaning of what the user is asking, but still respect exact keywords when they matter.”</p> </blockquote> <p>That is where pure keyword search was no longer enough.</p> <p>We needed <strong>real hybrid search</strong>.</p> <p>Not just semantic search.<br><br> Not just BM25.<br><br> Not a manually glued-together ranking system.</p> <p>We needed a search engine that could combine:</p> <ul> <li>exact keyword matching,</li> <li>semantic similarity,</li> <li>metadata filtering,</li> <li>predictable latency,</li> <li>and production-level throughput.</li> </ul> <p>At first, I tried to make Elasticsearch do it.</p> <p>That decision taught me a lot.</p> <p>Eventually, it also pushed me toward Weaviate.</p> <p>This article is a practical breakdown of what went wrong, why hybrid search is harder than it looks, how Weaviate approaches the problem, and how I think about evaluating vector search quality in production.</p> <h2> The problem: keyword search was no longer enough </h2> <p>Traditional search engines are very good at lexical matching.</p> <p>If a user searches for:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>linux kernel tuning </code></pre> </div> <p>BM25 can rank documents that contain terms like <code>linux</code>, <code>kernel</code>, and <code>tuning</code> very well.</p> <p>But what happens when the user searches for:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>how to reduce context switching overhead in a container runtime </code></pre> </div> <p>The best document might not contain that exact sentence.</p> <p>It might talk about:</p> <ul> <li>Linux namespaces</li> <li>cgroups</li> <li>scheduler behavior</li> <li>CPU pressure</li> <li>process isolation</li> <li>runtime overhead</li> </ul> <p>A pure keyword engine may miss or rank it lower because the vocabulary is different.</p> <p>This is where <strong>semantic search</strong> becomes useful.</p> <p>Instead of only matching words, semantic search converts both documents and queries into vectors, usually called <strong>embeddings</strong>. These embeddings represent the meaning of the text in a high-dimensional space.</p> <p>Documents with similar meaning end up close to each other in that vector space.</p> <p>So now the search engine can understand that:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>"improve API latency under load" </code></pre> </div> <p>is related to:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>"reduce p99 response time during high traffic" </code></pre> </div> <p>even if the exact words are different.</p> <p>But semantic search alone is also not perfect.</p> <p>Sometimes exact terms matter a lot.</p> <p>For example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>PostgreSQL jsonb index performance </code></pre> </div> <p>In this query, the terms <code>PostgreSQL</code>, <code>jsonb</code>, and <code>index</code> are not optional. A purely semantic result about generic database performance may sound similar, but it is not good enough.</p> <p>That is why hybrid search matters.</p> <p>A strong search system should understand both:</p> <ol> <li><strong>What the user literally typed</strong></li> <li><strong>What the user actually means</strong></li> </ol> <h2> My first approach: forcing Elasticsearch to behave like a vector search engine </h2> <p>The first implementation was based on Elasticsearch.</p> <p>The idea looked simple:</p> <ol> <li>Use BM25 for keyword scoring.</li> <li>Use vector similarity for semantic scoring.</li> <li>Combine both scores into one final score.</li> <li>Return the top results.</li> </ol> <p>Conceptually, it made sense.</p> <p>In practice, it became painful.</p> <p>The challenge was score fusion.</p> <p>BM25 scores and vector similarity scores are not naturally comparable.</p> <p>BM25 might produce values like:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>12.4 27.8 43.1 </code></pre> </div> <p>while cosine similarity might produce values like:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>0.71 0.82 0.91 </code></pre> </div> <p>If you combine them naively, the ranking becomes unstable.</p> <p>You cannot simply do:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>final_score = bm25_score + cosine_similarity </code></pre> </div> <p>because the scales are completely different.</p> <p>You need normalization, weighting, ranking logic, and careful testing.</p> <p>In my first version, I tried using custom scripting logic to combine lexical and vector scores at query time.</p> <p>That was the mistake.</p> <h2> The production bottleneck </h2> <p>Custom scoring logic can look elegant in a prototype.</p> <p>Under production traffic, it can become expensive very quickly.</p> <p>The main issue was that vector math and score fusion were happening during query execution. That meant every search request had to do extra scoring work on top of the normal search pipeline.</p> <p>As traffic increased, the symptoms became obvious:</p> <ul> <li>CPU usage started spiking.</li> <li>Tail latency became unstable.</li> <li>p95 and p99 response times became much worse.</li> <li>Scaling required more resources than expected.</li> <li>Search quality improvements were difficult to test safely.</li> </ul> <p>The biggest lesson was not that Elasticsearch is bad.</p> <p>The lesson was:</p> <blockquote> <p>A system optimized for lexical search should not always be forced to become the core of a high-throughput vector search architecture.</p> </blockquote> <p>Elasticsearch can support vector search in modern versions, and for many teams it may be enough. But in my case, the implementation became too complex and too expensive for the kind of hybrid search behavior we needed.</p> <p>I wanted a system where hybrid search was not an afterthought.</p> <p>That is when I started looking seriously at Weaviate.</p> <h2> Why Weaviate felt like the right tool </h2> <p>Weaviate is an open-source vector database written in Go.</p> <p>That immediately caught my attention because I work a lot with Go, backend architecture, and performance-sensitive systems. But the language itself was not the main reason.</p> <p>The real reason was the architecture.</p> <p>Weaviate was designed around vector search from the beginning.</p> <p>Instead of treating embeddings as an extra field attached to a traditional search engine, Weaviate treats vectors as a first-class part of the storage and search model.</p> <p>At a high level, it gives you:</p> <ul> <li>vector search,</li> <li>BM25 keyword search,</li> <li>hybrid search,</li> <li>metadata filtering,</li> <li>schema-based data modeling,</li> <li>GraphQL and REST APIs,</li> <li>and production-oriented indexing options.</li> </ul> <p>For my use case, the most important part was that Weaviate could combine semantic and keyword search natively.</p> <p>No custom query-time score script.</p> <p>No fragile manual scoring layer.</p> <p>No forcing two different ranking systems together in application code.</p> <h2> Quick mental model: how vector search works </h2> <p>Before going deeper into Weaviate, it is useful to understand the basic idea behind vector search.</p> <p>A machine learning model converts text into an embedding:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>"Linux kernel performance tuning" </code></pre> </div> <p>becomes something like:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>[0.012, -0.431, 0.227, 0.091, ...] </code></pre> </div> <p>That vector may have hundreds or thousands of dimensions depending on the embedding model.</p> <p>The same thing happens to every document in your database.</p> <p>When a user sends a query, the query is also converted into a vector. Then the search engine tries to find the nearest vectors.</p> <p>The simplest way to think about this is distance.</p> <p>For example, Euclidean distance between two vectors can be represented as:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>d(p, q) = sqrt(sum((q_i - p_i)^2)) </code></pre> </div> <p>Another common approach is cosine similarity, which compares the angle between two vectors.</p> <p>In real production systems, searching every vector one by one would be too slow at scale. If you have millions of documents, exact brute-force search is usually not practical.</p> <p>That is why vector databases use <strong>Approximate Nearest Neighbor</strong> algorithms, usually called ANN.</p> <p>ANN algorithms trade a tiny amount of perfect accuracy for a massive improvement in speed.</p> <p>One of the most popular ANN algorithms is <strong>HNSW</strong>.</p> <h2> HNSW: the graph behind fast vector search </h2> <p>Weaviate uses HNSW, which stands for <strong>Hierarchical Navigable Small World</strong>.</p> <p>You can think of HNSW as a graph structure built on top of your vectors.</p> <p>Instead of scanning every vector, the engine navigates through a graph to quickly move toward the nearest neighbors.</p> <p>A simplified mental model:</p> <ul> <li>Similar vectors are connected.</li> <li>The graph has multiple layers.</li> <li>Higher layers allow faster long-distance jumps.</li> <li>Lower layers refine the search near the best candidates.</li> </ul> <p>This makes search much faster than brute force while still returning high-quality results.</p> <p>For large-scale semantic search, this matters a lot.</p> <p>A vector database is not only about storing embeddings. The real value is in how efficiently it can index, traverse, filter, and rank them under load.</p> <h2> Hybrid search: why score fusion is harder than it looks </h2> <p>The hardest part of hybrid search is not running BM25.</p> <p>It is not running vector search either.</p> <p>The hard part is combining the results correctly.</p> <p>BM25 and vector search produce different types of scores.</p> <p>BM25 is based on term frequency, inverse document frequency, field length, and lexical relevance.</p> <p>Vector similarity is based on distance or similarity in embedding space.</p> <p>These scores do not mean the same thing.</p> <p>So instead of directly adding scores together, a better strategy is often to combine rankings.</p> <p>This is where rank fusion becomes useful.</p> <h2> Reciprocal Rank Fusion: a better way to combine results </h2> <p>One common technique for hybrid ranking is <strong>Reciprocal Rank Fusion</strong>, usually shortened to RRF.</p> <p>Instead of saying:</p> <blockquote> <p>“This document has a BM25 score of 30 and a vector score of 0.88, so let’s add them.”</p> </blockquote> <p>RRF says:</p> <blockquote> <p>“Where did this document rank in the keyword result list, and where did it rank in the vector result list?”</p> </blockquote> <p>Then it combines ranks.</p> <p>A simplified formula looks like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>RRF_score = 1 / (k + rank_keyword) + 1 / (k + rank_vector) </code></pre> </div> <p>The exact implementation details can vary, but the idea is powerful: ranking position becomes more important than raw score scale.</p> <p>This avoids many of the problems caused by incompatible scoring systems.</p> <p>In Weaviate, hybrid search also exposes an <code>alpha</code> parameter, which lets you control the balance between keyword and vector search.</p> <p>Conceptually:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>alpha = 0.0 -&gt; keyword-focused search alpha = 1.0 -&gt; vector-focused search alpha = 0.5 -&gt; balanced hybrid search </code></pre> </div> <p>That is extremely useful in real systems.</p> <p>Different product areas may need different search behavior.</p> <p>For example:</p> <ul> <li>Documentation search may need more semantic matching.</li> <li>SKU or product-code search may need stronger keyword matching.</li> <li>Support ticket search may need a balance of both.</li> <li>Log or error search may need exact matching for IDs and stack traces.</li> </ul> <p>Being able to tune this without rewriting the whole scoring system is a big win.</p> <h2> Example: hybrid search with the Go client </h2> <p>Here is a simplified example using the Weaviate Go client.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">package</span> <span class="n">main</span> <span class="k">import</span> <span class="p">(</span> <span class="s">"context"</span> <span class="s">"fmt"</span> <span class="s">"log"</span> <span class="s">"github.com/weaviate/weaviate-go-client/v5/weaviate"</span> <span class="s">"github.com/weaviate/weaviate-go-client/v5/weaviate/graphql"</span> <span class="p">)</span> <span class="k">func</span> <span class="n">main</span><span class="p">()</span> <span class="p">{</span> <span class="n">cfg</span> <span class="o">:=</span> <span class="n">weaviate</span><span class="o">.</span><span class="n">Config</span><span class="p">{</span> <span class="n">Host</span><span class="o">:</span> <span class="s">"localhost:8080"</span><span class="p">,</span> <span class="n">Scheme</span><span class="o">:</span> <span class="s">"http"</span><span class="p">,</span> <span class="p">}</span> <span class="n">client</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">weaviate</span><span class="o">.</span><span class="n">NewClient</span><span class="p">(</span><span class="n">cfg</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">log</span><span class="o">.</span><span class="n">Fatal</span><span class="p">(</span><span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="n">ctx</span> <span class="o">:=</span> <span class="n">context</span><span class="o">.</span><span class="n">Background</span><span class="p">()</span> <span class="n">result</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">client</span><span class="o">.</span><span class="n">GraphQL</span><span class="p">()</span><span class="o">.</span><span class="n">Get</span><span class="p">()</span><span class="o">.</span> <span class="n">WithClassName</span><span class="p">(</span><span class="s">"Article"</span><span class="p">)</span><span class="o">.</span> <span class="n">WithFields</span><span class="p">(</span> <span class="n">graphql</span><span class="o">.</span><span class="n">Field</span><span class="p">{</span><span class="n">Name</span><span class="o">:</span> <span class="s">"title"</span><span class="p">},</span> <span class="n">graphql</span><span class="o">.</span><span class="n">Field</span><span class="p">{</span><span class="n">Name</span><span class="o">:</span> <span class="s">"summary"</span><span class="p">},</span> <span class="n">graphql</span><span class="o">.</span><span class="n">Field</span><span class="p">{</span><span class="n">Name</span><span class="o">:</span> <span class="s">"_additional"</span><span class="p">,</span> <span class="n">Fields</span><span class="o">:</span> <span class="p">[]</span><span class="n">graphql</span><span class="o">.</span><span class="n">Field</span><span class="p">{</span> <span class="p">{</span><span class="n">Name</span><span class="o">:</span> <span class="s">"score"</span><span class="p">},</span> <span class="p">}},</span> <span class="p">)</span><span class="o">.</span> <span class="n">WithHybrid</span><span class="p">(</span><span class="n">client</span><span class="o">.</span><span class="n">GraphQL</span><span class="p">()</span><span class="o">.</span><span class="n">HybridArgumentBuilder</span><span class="p">()</span><span class="o">.</span> <span class="n">WithQuery</span><span class="p">(</span><span class="s">"best practices for linux kernel tuning"</span><span class="p">)</span><span class="o">.</span> <span class="n">WithAlpha</span><span class="p">(</span><span class="m">0.7</span><span class="p">),</span> <span class="p">)</span><span class="o">.</span> <span class="n">WithLimit</span><span class="p">(</span><span class="m">10</span><span class="p">)</span><span class="o">.</span> <span class="n">Do</span><span class="p">(</span><span class="n">ctx</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">log</span><span class="o">.</span><span class="n">Fatal</span><span class="p">(</span><span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Printf</span><span class="p">(</span><span class="s">"%+v</span><span class="se">\n</span><span class="s">"</span><span class="p">,</span> <span class="n">result</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>In this example, <code>alpha = 0.7</code> means the query is more semantic than lexical, but keyword matching still contributes to the final ranking.</p> <p>That is exactly the kind of control I wanted.</p> <h2> Production benchmark: what changed after migration </h2> <p>In one internal test, I used a dataset of around 1.5 million text documents, including articles, technical notes, and internal documentation.</p> <p>The goal was not to create a perfect academic benchmark. The goal was to compare the behavior of the previous implementation with the new architecture under similar load.</p> <p>The difference was significant.</p> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>System</th> <th>Search Type</th> <th>Fusion Strategy</th> <th>Approx. p99 Latency</th> <th>CPU Behavior Under Load</th> </tr> </thead> <tbody> <tr> <td>Elasticsearch</td> <td>Hybrid</td> <td>Custom query-time scoring</td> <td>~850 ms</td> <td>Frequent CPU spikes</td> </tr> <tr> <td>Weaviate</td> <td>Hybrid</td> <td>Native hybrid ranking</td> <td>~45 ms</td> <td>Much more stable</td> </tr> </tbody> </table></div> <p>The exact numbers will depend on hardware, schema, vector dimensions, indexing configuration, filters, and query patterns.</p> <p>But the important part was not only the latency improvement.</p> <p>The bigger win was operational simplicity.</p> <p>After the migration:</p> <ul> <li>ranking logic became easier to reason about,</li> <li>query latency became more predictable,</li> <li>CPU usage was more stable,</li> <li>scaling was easier,</li> <li>and experiments with different <code>alpha</code> values became much safer.</li> </ul> <p>That matters a lot in production.</p> <p>Performance is not only about the fastest possible average response time.</p> <p>It is also about predictability.</p> <p>A search system that is fast 90% of the time but unstable at p99 can still hurt the user experience badly.</p> <h2> The hidden challenge: evaluating search quality </h2> <p>Performance is only half of the story.</p> <p>A fast search engine that returns bad results is still a bad search engine.</p> <p>After moving to vector or hybrid search, one of the most important questions becomes:</p> <blockquote> <p>How do we know the new search is actually better?</p> </blockquote> <p>This gets especially important when changing embedding models.</p> <p>For example, imagine moving from one embedding model to a newer one.</p> <p>The new model may produce better vectors.</p> <p>Or it may be worse for your specific domain.</p> <p>You cannot rely only on intuition.</p> <p>You need evaluation.</p> <h2> Metric 1: Mean Reciprocal Rank </h2> <p>Mean Reciprocal Rank, or MRR, measures how early the first relevant result appears.</p> <p>If the correct result is ranked first, the reciprocal rank is:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>1 / 1 = 1.0 </code></pre> </div> <p>If it appears in position 5:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>1 / 5 = 0.2 </code></pre> </div> <p>Then you average this across many test queries.</p> <p>MRR is useful when the user usually needs one best answer.</p> <p>For example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>"How do I configure cgroups v2 memory limits?" </code></pre> </div> <p>If the best document is result number one, the search is doing well.</p> <p>If the best document is buried on page three, the user experience is poor.</p> <h2> Metric 2: Recall@K </h2> <p>Recall@K answers a different question:</p> <blockquote> <p>Out of all relevant documents, how many did we return in the top K results?</p> </blockquote> <p>For example, Recall@10 checks how many relevant documents appear in the first 10 results.</p> <p>This is useful when there may be multiple correct results.</p> <p>For documentation, research, support tickets, or internal knowledge bases, Recall@K can be more useful than only checking the top result.</p> <h2> Metric 3: NDCG </h2> <p>NDCG stands for <strong>Normalized Discounted Cumulative Gain</strong>.</p> <p>It is useful when relevance is not binary.</p> <p>A result can be:</p> <ul> <li>perfect,</li> <li>good,</li> <li>somewhat related,</li> <li>or irrelevant.</li> </ul> <p>NDCG rewards highly relevant documents appearing near the top of the result list.</p> <p>This is closer to how real users experience search.</p> <p>A search result ranked #1 matters more than a result ranked #9.</p> <h2> Metric 4: visual inspection with UMAP or t-SNE </h2> <p>Metrics are important, but visual inspection can also help.</p> <p>One useful technique is to export a sample of your embeddings and reduce them to two dimensions using UMAP or t-SNE.</p> <p>Then you can plot them and inspect whether similar documents form clear clusters.</p> <p>For example, if you are indexing technical articles, you might expect clusters like:</p> <ul> <li>Linux kernel</li> <li>PostgreSQL</li> <li>Kubernetes</li> <li>Go concurrency</li> <li>distributed systems</li> <li>observability</li> </ul> <p>If everything is mixed together randomly, your embedding model may not be representing your domain well.</p> <p>This does not replace proper evaluation, but it can reveal issues quickly.</p> <h2> Practical lessons from the migration </h2> <p>Here are the biggest lessons I took from this project.</p> <h3> 1. Do not treat vector search as just another field type </h3> <p>Embeddings change the architecture of search.</p> <p>They are not just another column in your database.</p> <p>You need to think about indexing, memory, distance metrics, filtering, ranking, and evaluation.</p> <h3> 2. Hybrid search is usually better than pure semantic search </h3> <p>Pure semantic search can be impressive in demos, but production users often search with exact terms.</p> <p>They search for:</p> <ul> <li>product codes,</li> <li>error messages,</li> <li>function names,</li> <li>ticket IDs,</li> <li>file names,</li> <li>database fields,</li> <li>framework names.</li> </ul> <p>A good system should not ignore those signals.</p> <h3> 3. Score fusion deserves serious attention </h3> <p>Combining BM25 and vector similarity incorrectly can make search worse.</p> <p>Rank fusion techniques are often safer than manually combining raw scores.</p> <h3> 4. p99 latency matters more than a beautiful demo </h3> <p>A search demo with 100 documents is easy.</p> <p>A production system with millions of documents, filters, concurrent users, and unpredictable queries is different.</p> <p>Always test tail latency.</p> <h3> 5. Measure quality before changing embedding models </h3> <p>A newer model is not automatically better for your data.</p> <p>Build a small evaluation dataset with real queries and expected results.</p> <p>Even 50 to 100 carefully selected queries can reveal a lot.</p> <h2> When I would still use Elasticsearch </h2> <p>This migration does not mean I would never use Elasticsearch again.</p> <p>I would still choose Elasticsearch for many use cases:</p> <ul> <li>log search,</li> <li>observability,</li> <li>analytics-heavy search,</li> <li>faceted search,</li> <li>complex aggregations,</li> <li>mature operational environments already built around Elastic.</li> </ul> <p>Elasticsearch is still a great tool.</p> <p>The point is not “Elasticsearch bad, Weaviate good.”</p> <p>The point is:</p> <blockquote> <p>Choose the system that matches the shape of your problem.</p> </blockquote> <p>For my specific case, the problem was high-throughput hybrid semantic search.</p> <p>For that, Weaviate was a better fit.</p> <h2> Final thoughts </h2> <p>The biggest engineering mistake is often not choosing a bad tool.</p> <p>It is choosing a good tool for the wrong job.</p> <p>Elasticsearch is a powerful search engine, but when I needed production-grade hybrid search with strong vector search behavior, custom score fusion became too expensive and too hard to maintain.</p> <p>Weaviate gave me a cleaner architecture:</p> <ul> <li>native vector search,</li> <li>BM25 support,</li> <li>hybrid ranking,</li> <li>HNSW indexing,</li> <li>metadata filtering,</li> <li>and a much simpler path to experimentation.</li> </ul> <p>The migration improved latency, reduced operational complexity, and made ranking behavior easier to tune.</p> <p>But the most important lesson was deeper:</p> <p>Search quality is a product feature, not just an infrastructure feature.</p> <p>You need to measure it, tune it, and treat it as part of the user experience.</p> <p>If you are building search for technical documentation, e-commerce, internal knowledge bases, support systems, or AI-powered products, hybrid search is probably worth serious consideration.</p> <p>And if you are currently fighting custom score scripts, unstable p99 latency, and hard-to-debug ranking behavior, it may be time to ask whether your search engine is doing the job it was originally designed to do.</p> <h2> Discussion </h2> <p>Have you implemented hybrid search in production?</p> <p>I would be interested to hear:</p> <ul> <li>whether you used Elasticsearch, OpenSearch, Weaviate, Qdrant, Pinecone, or another system,</li> <li>how you handled score fusion,</li> <li>and how you measured search quality beyond just latency.</li> </ul> search weaviate elasticsearch go amir Tue, 02 Jun 2026 15:48:08 +0000 https://dev.to/amirsefati/demystifying-the-linux-page-cache-the-kernel-optimization-hiding-behind-every-fast-io-40ee https://dev.to/amirsefati/demystifying-the-linux-page-cache-the-kernel-optimization-hiding-behind-every-fast-io-40ee <p>For the last few months, I have been spending a lot of time reading and researching Linux kernel internals.</p> <p>Not just from the surface.</p> <p>I mean going deeper into how the kernel actually manages memory, file I/O, processes, namespaces, cgroups, filesystems, and all the invisible mechanisms that make our backend systems feel fast.</p> <p>As backend engineers, we usually talk about performance in terms of application code:</p> <ul> <li>optimize the query</li> <li>add Redis</li> <li>reduce allocations</li> <li>use a better index</li> <li>improve concurrency</li> <li>tune the API response time</li> </ul> <p>And all of those things matter.</p> <p>But after working on production systems for years, I have learned that sometimes the real bottleneck is not inside your application code.</p> <p>Sometimes the real story is happening below your code, inside the operating system.</p> <p>One of the most important examples of that is the <strong>Linux Page Cache</strong>.</p> <p>It is one of those kernel features that quietly improves almost every backend system we run. It makes file reads faster, batches writes, reduces disk pressure, and gives us the illusion that storage is much faster than it actually is.</p> <p>But it also comes with trade-offs.</p> <p>And if you do not understand those trade-offs, you can easily misread performance numbers, misunderstand memory usage, or even risk losing data in the wrong failure scenario.</p> <p>This article is my attempt to explain the Linux Page Cache from a backend engineer’s point of view.</p> <p>Not as a kernel developer writing C inside <code>mm/filemap.c</code>.</p> <p>But as someone who builds systems on top of Linux and wants to understand what the kernel is really doing behind the scenes.</p> <h2> Why Page Cache Exists </h2> <p>The reason Page Cache exists is simple:</p> <p><strong>Disk is slow. RAM is fast.</strong></p> <p>Even with modern SSDs and NVMe drives, accessing persistent storage is still much slower than accessing memory.</p> <p>When our application reads from a file, the kernel could theoretically go to the disk every single time.</p> <p>But that would be extremely inefficient.</p> <p>So Linux uses available memory as a cache for file data.</p> <p>That cache is called the <strong>Page Cache</strong>.</p> <p>When a process reads a file, Linux usually does not just copy data directly from disk to the application and forget about it.</p> <p>Instead, the kernel loads file data into memory pages and keeps those pages around.</p> <p>So the next time the same file data is requested, Linux can serve it directly from RAM instead of touching the disk again.</p> <p>That is the basic idea.</p> <p>But the impact is huge.</p> <p>Imagine a web server reading the same static files again and again.</p> <p>Or a database repeatedly touching the same data files.</p> <p>Or a log processor scanning files that were recently written.</p> <p>Without Page Cache, every access would become much more expensive.</p> <p>With Page Cache, many of those reads become memory-speed operations.</p> <h2> The First Important Idea: Linux Uses Free RAM Aggressively </h2> <p>One thing that confuses many developers is Linux memory usage.</p> <p>You run <code>free -h</code>, and it looks like most of your RAM is used.</p> <p>At first, it feels scary.</p> <p>But often, that memory is not “wasted” or permanently consumed by applications.</p> <p>A large part of it may be used by the kernel for cache.</p> <p>Linux has a very practical philosophy:</p> <blockquote> <p>Empty RAM is wasted RAM.</p> </blockquote> <p>So if memory is available, the kernel uses it to cache useful data.</p> <p>If an application later needs more memory, Linux can reclaim cache pages and give that memory back.</p> <p>This is why a Linux server may look like it is using a lot of RAM even when your applications are not actually consuming that much.</p> <p>The kernel is trying to help you.</p> <p>It is using memory to avoid unnecessary disk I/O.</p> <p>That is Page Cache doing its job.</p> <h2> What Actually Happens During a File Read? </h2> <p>Let’s say your application calls <code>read()</code> on a file.</p> <p>At a high level, Linux checks whether the requested file data already exists in the Page Cache.</p> <p>There are two possible outcomes.</p> <h3> Cache Hit </h3> <p>If the data is already in memory, the kernel can copy it to your application without going to disk.</p> <p>This is fast.</p> <p>Very fast compared to storage.</p> <h3> Cache Miss </h3> <p>If the data is not in memory, Linux has to read it from disk.</p> <p>But after reading it, the kernel stores it in the Page Cache.</p> <p>So the first read may be slower, but future reads can be much faster.</p> <p>This is one reason benchmarks can be misleading.</p> <p>If you run the same file-read benchmark twice, the second run may look much faster because the data is already cached.</p> <p>Your application did not magically become better.</p> <p>The kernel just remembered the file data.</p> <h2> The Kernel Also Predicts What You Might Read Next </h2> <p>Linux does not only cache what you already read.</p> <p>It also tries to predict what you are going to read.</p> <p>For sequential file access, the kernel may perform <strong>readahead</strong>.</p> <p>That means when you read one part of a file, Linux may load the next parts into memory before you explicitly ask for them.</p> <p>This is extremely useful for workloads like:</p> <ul> <li>reading large logs</li> <li>streaming files</li> <li>scanning datasets</li> <li>serving static assets</li> <li>processing backups</li> <li>importing CSV files</li> </ul> <p>From the application’s point of view, it may feel like the disk is faster than expected.</p> <p>But in reality, the kernel is doing smart work in the background.</p> <p>It sees a pattern and tries to stay ahead of your application.</p> <h2> Writes Are Even More Interesting </h2> <p>Reads are easy to understand:</p> <blockquote> <p>If data is cached, serve it from RAM.</p> </blockquote> <p>Writes are more subtle.</p> <p>When your application writes data to a file, Linux usually does not immediately force that data to physical storage.</p> <p>Instead, the kernel writes the data into memory and marks the affected pages as <strong>dirty</strong>.</p> <p>A dirty page means:</p> <blockquote> <p>This page has been modified in memory, but the change has not necessarily been persisted to disk yet.</p> </blockquote> <p>This is where the kernel gives your application a very useful illusion.</p> <p>Your application calls <code>write()</code>.</p> <p>The kernel accepts the data.</p> <p>The call returns successfully.</p> <p>But that does not always mean the data is already safely stored on disk.</p> <p>It may only mean the data is now in the kernel’s memory and scheduled to be written later.</p> <p>This is one of the biggest performance tricks in the operating system.</p> <p>And also one of the most important trade-offs.</p> <h2> Why Delayed Writes Are So Powerful </h2> <p>Imagine an application appending tiny log entries to a file thousands of times per second.</p> <p>If Linux forced every small write to disk immediately, performance would be terrible.</p> <p>Storage devices are much better at handling larger, sequential writes than many tiny random writes.</p> <p>So Linux delays and combines writes.</p> <p>Many small writes can be collected in memory and later flushed to disk in a more efficient way.</p> <p>This process is called <strong>writeback</strong>.</p> <p>The kernel has background mechanisms that periodically flush dirty pages to storage.</p> <p>This gives us much better throughput.</p> <p>Instead of turning every <code>write()</code> call into an expensive physical I/O operation, Linux turns many small writes into fewer, larger writes.</p> <p>That is a huge win for performance.</p> <h2> The Dangerous Part: <code>write()</code> Is Not <code>fsync()</code> </h2> <p>This is where many bugs and misunderstandings happen.</p> <p>A successful <code>write()</code> does not always mean your data is durable.</p> <p>It usually means the kernel accepted your data.</p> <p>If the machine loses power before dirty pages are flushed, some recently written data may be lost.</p> <p>That is why databases, queues, and storage engines care so much about <code>fsync()</code>.</p> <p>When durability matters, you need to force the kernel to flush data to stable storage.</p> <p>For example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight c"><code><span class="n">write</span><span class="p">(</span><span class="n">fd</span><span class="p">,</span> <span class="n">data</span><span class="p">,</span> <span class="n">size</span><span class="p">);</span> <span class="n">fsync</span><span class="p">(</span><span class="n">fd</span><span class="p">);</span> </code></pre> </div> <p><code>write()</code> says:</p> <blockquote> <p>Please accept this data.</p> </blockquote> <p><code>fsync()</code> says:</p> <blockquote> <p>Now make sure it is actually persisted.</p> </blockquote> <p>This distinction is extremely important when building systems where data loss is not acceptable.</p> <p>For normal logs, delayed writeback may be fine.</p> <p>For a financial transaction, it is not something you can ignore.</p> <h2> Why Databases Behave Differently </h2> <p>Databases like PostgreSQL, MySQL, RocksDB, and others are very careful with disk I/O.</p> <p>They know the kernel is caching data.</p> <p>They know writes may be delayed.</p> <p>They know crashes can happen.</p> <p>So they use techniques like:</p> <ul> <li>write-ahead logging</li> <li><code>fsync</code></li> <li>checkpoints</li> <li>direct I/O in some configurations</li> <li>controlled flushing</li> <li>careful ordering of writes</li> </ul> <p>A database cannot simply trust that because <code>write()</code> returned successfully, everything is safe.</p> <p>It needs stronger guarantees.</p> <p>This is also why database performance tuning is complicated.</p> <p>You are not only tuning SQL queries.</p> <p>You are tuning the interaction between:</p> <ul> <li>application</li> <li>database engine</li> <li>filesystem</li> <li>Linux kernel</li> <li>Page Cache</li> <li>storage device</li> <li>cloud virtualization layer</li> </ul> <p>That stack is deep.</p> <p>And Page Cache sits right in the middle of it.</p> <h2> Page Cache and <code>mmap</code> </h2> <p>Another important part of this story is <code>mmap</code>.</p> <p>With normal file I/O, you call <code>read()</code> and <code>write()</code>.</p> <p>With <code>mmap</code>, a file can be mapped into a process’s virtual memory.</p> <p>Then the application can access file data almost like normal memory.</p> <p>But behind the scenes, Page Cache is still involved.</p> <p>When the process touches a memory-mapped page, the kernel may load the corresponding file data into the Page Cache.</p> <p>This is powerful because it can reduce copying and make file access feel very natural from the application side.</p> <p>But it also means that memory-mapped I/O is deeply connected to the kernel’s virtual memory system.</p> <p>This is where the boundary between “file” and “memory” becomes very thin.</p> <p>And that is one of the reasons Linux I/O is such a fascinating topic.</p> <h2> Page Cache Can Make Benchmarks Lie </h2> <p>When I started looking deeper into kernel internals, one of the first practical lessons was this:</p> <p><strong>Never trust a file I/O benchmark unless you understand the cache state.</strong></p> <p>For example, if you benchmark reading a large file once, the first run may include real disk I/O.</p> <p>The second run may mostly hit Page Cache.</p> <p>So it looks much faster.</p> <p>But that does not necessarily mean your code improved.</p> <p>It may only mean the file is already cached.</p> <p>This matters when testing:</p> <ul> <li>file parsers</li> <li>log processors</li> <li>database imports</li> <li>backup tools</li> <li>search indexing jobs</li> <li>media processing pipelines</li> </ul> <p>If you want to test cold disk performance, you need to be intentional.</p> <p>If you want to test warm cache performance, that is also valid.</p> <p>But you should know which one you are measuring.</p> <p>Otherwise, you are not benchmarking your application.</p> <p>You are benchmarking a combination of your application and the kernel’s memory state.</p> <h2> Page Cache Can Also Hurt You </h2> <p>Page Cache is usually helpful.</p> <p>But not always.</p> <p>There are cases where it can create problems.</p> <h3> 1. Cache Pollution </h3> <p>Imagine a server running a database.</p> <p>Most of the time, the database benefits from hot data staying in memory.</p> <p>Now imagine a backup process reads a huge 500GB file sequentially.</p> <p>That large read can fill the Page Cache with data that may never be used again.</p> <p>As a result, more important cached pages may be evicted.</p> <p>This is called cache pollution.</p> <p>The kernel tries to manage this intelligently, but no heuristic is perfect.</p> <h3> 2. Memory Pressure </h3> <p>Because Page Cache uses RAM, it competes with applications for memory.</p> <p>Usually Linux can reclaim cache pages when needed.</p> <p>But under heavy memory pressure, the system may start doing more reclaim work, causing latency spikes.</p> <p>For backend services, this can show up as random performance drops.</p> <h3> 3. Dirty Page Spikes </h3> <p>If an application writes faster than storage can flush, dirty pages can accumulate.</p> <p>At some point, Linux may throttle writers to prevent memory from being overwhelmed by dirty data.</p> <p>From the application’s point of view, write latency may suddenly increase.</p> <p>This is not because your code changed.</p> <p>It is because the kernel is protecting the system.</p> <h2> Useful Commands to Observe Page Cache Behavior </h2> <p>You do not need to be a kernel developer to observe some of this behavior.</p> <p>Linux exposes useful information through <code>/proc</code> and common tools.</p> <h3> Check memory usage </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>free <span class="nt">-h</span> </code></pre> </div> <p>Look at the <code>buff/cache</code> column.</p> <p>That is where you often see memory used for kernel buffers and cache.</p> <h3> Check dirty pages </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">cat</span> /proc/meminfo | <span class="nb">grep</span> <span class="nt">-E</span> <span class="s2">"Dirty|Writeback"</span> </code></pre> </div> <p>Example fields:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Dirty: 123456 kB Writeback: 0 kB </code></pre> </div> <p><code>Dirty</code> shows memory waiting to be written back.</p> <p><code>Writeback</code> shows memory currently being written.</p> <h3> Watch I/O activity </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>iostat <span class="nt">-xz</span> 1 </code></pre> </div> <p>This helps you see disk utilization, await time, and whether the storage device is under pressure.</p> <h3> Watch process I/O </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>pidstat <span class="nt">-d</span> 1 </code></pre> </div> <p>This helps you understand which processes are doing reads and writes.</p> <h2> A Simple Experiment </h2> <p>You can see Page Cache behavior with a simple test.</p> <p>Create a large file:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">dd </span><span class="k">if</span><span class="o">=</span>/dev/zero <span class="nv">of</span><span class="o">=</span>testfile <span class="nv">bs</span><span class="o">=</span>1M <span class="nv">count</span><span class="o">=</span>1024 </code></pre> </div> <p>Now read it:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">time cat </span>testfile <span class="o">&gt;</span> /dev/null </code></pre> </div> <p>Run the same command again:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">time cat </span>testfile <span class="o">&gt;</span> /dev/null </code></pre> </div> <p>The second run may be faster because the file data is already in Page Cache.</p> <p>Now, depending on your system and permissions, you can drop caches for testing:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sync echo </span>3 | <span class="nb">sudo tee</span> /proc/sys/vm/drop_caches </code></pre> </div> <p>Then read again:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">time cat </span>testfile <span class="o">&gt;</span> /dev/null </code></pre> </div> <p>Important note:</p> <p>Do not randomly drop caches on production servers.</p> <p>This is only for controlled testing.</p> <h2> How This Changed the Way I Think About Backend Performance </h2> <p>The more I study Linux internals, the more I realize that backend engineering is not only about writing application code.</p> <p>A production system is a conversation between many layers:</p> <ul> <li>your code</li> <li>runtime</li> <li>memory allocator</li> <li>database</li> <li>filesystem</li> <li>kernel</li> <li>storage</li> <li>network</li> <li>container runtime</li> <li>orchestration platform</li> </ul> <p>If you only look at your code, you may miss the real reason behind a performance issue.</p> <p>For example:</p> <ul> <li>An API becomes slow because disk writeback is saturated.</li> <li>A database has latency spikes because dirty pages are being flushed.</li> <li>A benchmark looks amazing because everything is cached.</li> <li>A log processor slows down because it is causing cache pollution.</li> <li>A container looks memory-heavy because the host is using RAM for cache.</li> </ul> <p>Understanding Page Cache gives you better intuition.</p> <p>It helps you ask better questions.</p> <p>It helps you debug production issues with more confidence.</p> <p>And it reminds you that the operating system is not just a passive layer.</p> <p>The kernel is constantly making decisions on your behalf.</p> <h2> Practical Lessons for Backend Engineers </h2> <p>Here are the lessons I keep in mind now:</p> <h3> 1. Do not panic when Linux uses RAM </h3> <p>High memory usage is not always bad.</p> <p>Check whether memory is used by applications or by cache.</p> <h3> 2. Benchmark carefully </h3> <p>Always understand whether your benchmark is testing cold reads or cached reads.</p> <h3> 3. <code>write()</code> is not durability </h3> <p>If data must survive a crash, understand <code>fsync()</code> and the durability model of your storage system.</p> <h3> 4. Watch dirty pages </h3> <p>Dirty pages can explain sudden write latency spikes.</p> <h3> 5. Be careful with large sequential jobs </h3> <p>Backups, imports, and scans can affect cache behavior for other workloads.</p> <h3> 6. Learn the kernel slowly </h3> <p>You do not need to understand everything at once.</p> <p>But each concept you learn gives you better production intuition.</p> <h2> Final Thoughts </h2> <p>The Linux Page Cache is one of the most important performance features in the operating system.</p> <p>It hides disk latency.</p> <p>It makes repeated reads fast.</p> <p>It batches writes.</p> <p>It uses free memory intelligently.</p> <p>And it does all of this quietly, behind almost every backend system we deploy.</p> <p>But like every powerful abstraction, it has trade-offs.</p> <p>It can make benchmarks misleading.</p> <p>It can delay durability.</p> <p>It can create latency spikes under write pressure.</p> <p>It can affect databases, log processors, and large file workloads in unexpected ways.</p> <p>For me, studying the Page Cache is part of a bigger journey: understanding Linux not just as a server environment, but as a complex engineering system.</p> <p>The deeper I go into the kernel, the more respect I have for the invisible work it does every second.</p> <p>And the more I believe that strong backend engineers should not stop at frameworks, databases, and APIs.</p> <p>At some point, we also need to understand the machine underneath.</p> <p>Because sometimes the bug is not in your code.</p> <p>Sometimes the answer is in the kernel.</p> linux kernel backend performance amir Sun, 31 May 2026 11:31:35 +0000 https://dev.to/amirsefati/the-1978-paper-behind-gos-concurrency-model-4n55 https://dev.to/amirsefati/the-1978-paper-behind-gos-concurrency-model-4n55 <p>Every Go developer eventually hears this sentence:</p> <blockquote> <p>Do not communicate by sharing memory; share memory by communicating.</p> </blockquote> <p>At first, it sounds like a nice Go proverb.</p> <p>But the more concurrent systems you build, the more you realize it is not just a slogan. It is a completely different way of thinking about software design.</p> <p>When I first started working deeply with Go concurrency, I mostly thought about goroutines as “lightweight threads” and channels as “safe queues.” That mental model is useful at the beginning, but it is not the full story.</p> <p>The real story goes much deeper.</p> <p>Go’s concurrency model is heavily inspired by a paper from 1978: <strong>Communicating Sequential Processes</strong>, written by <strong>Tony Hoare</strong>.</p> <p>This article is my attempt to explain that idea in a practical way: why shared-memory concurrency becomes painful, what CSP was trying to solve, and how Go turned that theory into something we can use every day in production systems.</p> <h2> The problem: shared state looks simple until it does not </h2> <p>Most concurrency problems start innocently.</p> <p>You have multiple workers. They need access to the same data. So you put the data in memory and let the workers read and write it.</p> <p>Something like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">Counter</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">value</span> <span class="kt">int</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">c</span> <span class="o">*</span><span class="n">Counter</span><span class="p">)</span> <span class="n">Inc</span><span class="p">()</span> <span class="p">{</span> <span class="n">c</span><span class="o">.</span><span class="n">value</span><span class="o">++</span> <span class="p">}</span> </code></pre> </div> <p>Then concurrency enters the system:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">counter</span> <span class="o">:=</span> <span class="o">&amp;</span><span class="n">Counter</span><span class="p">{}</span> <span class="k">for</span> <span class="n">i</span> <span class="o">:=</span> <span class="m">0</span><span class="p">;</span> <span class="n">i</span> <span class="o">&lt;</span> <span class="m">1000</span><span class="p">;</span> <span class="n">i</span><span class="o">++</span> <span class="p">{</span> <span class="k">go</span> <span class="n">counter</span><span class="o">.</span><span class="n">Inc</span><span class="p">()</span> <span class="p">}</span> </code></pre> </div> <p>Now the code is broken.</p> <p>Multiple goroutines can read and write <code>value</code> at the same time. The final result becomes unpredictable. So we add a mutex:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">Counter</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">mu</span> <span class="n">sync</span><span class="o">.</span><span class="n">Mutex</span> <span class="n">value</span> <span class="kt">int</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">c</span> <span class="o">*</span><span class="n">Counter</span><span class="p">)</span> <span class="n">Inc</span><span class="p">()</span> <span class="p">{</span> <span class="n">c</span><span class="o">.</span><span class="n">mu</span><span class="o">.</span><span class="n">Lock</span><span class="p">()</span> <span class="k">defer</span> <span class="n">c</span><span class="o">.</span><span class="n">mu</span><span class="o">.</span><span class="n">Unlock</span><span class="p">()</span> <span class="n">c</span><span class="o">.</span><span class="n">value</span><span class="o">++</span> <span class="p">}</span> </code></pre> </div> <p>This fixes the data race.</p> <p>But this is where the next problem starts.</p> <p>Mutexes are not bad. They are necessary in many real systems. The issue is that shared state plus locks can easily become the default architecture.</p> <p>And once that happens, your system becomes harder to reason about.</p> <p>You start asking questions like:</p> <ul> <li>Who owns this data?</li> <li>Which goroutine is allowed to update it?</li> <li>How long is this lock held?</li> <li>Can this function call another function that also needs the same lock?</li> <li>Can this code deadlock under load?</li> <li>Why is p99 latency suddenly worse?</li> </ul> <p>This is especially painful in backend systems with high-throughput pipelines, network services, log processors, container runtimes, or in-memory systems where thousands of operations happen concurrently.</p> <p>The code may look safe because it has locks.</p> <p>But safe does not always mean simple.</p> <p>And simple is what keeps production systems maintainable.</p> <h2> The hidden cost of “just add a mutex” </h2> <p>A mutex protects memory, but it also serializes access.</p> <p>That means one slow operation inside a lock can block many other goroutines.</p> <p>I have seen patterns like this in real backend code:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">mu</span><span class="o">.</span><span class="n">Lock</span><span class="p">()</span> <span class="n">user</span><span class="o">.</span><span class="n">Name</span> <span class="o">=</span> <span class="s">"Test User"</span> <span class="n">sendEmail</span><span class="p">(</span><span class="n">user</span><span class="p">)</span> <span class="n">callExternalAPI</span><span class="p">(</span><span class="n">user</span><span class="p">)</span> <span class="n">writeAuditLog</span><span class="p">(</span><span class="n">user</span><span class="p">)</span> <span class="n">mu</span><span class="o">.</span><span class="n">Unlock</span><span class="p">()</span> </code></pre> </div> <p>Technically, the shared data is protected.</p> <p>Architecturally, this is a problem.</p> <p>The lock is not only protecting the small mutation of <code>user.Name</code>. It is now protecting email sending, external API calls, logging, and anything else that happens inside that critical section.</p> <p>That means every goroutine waiting for this lock must wait for the whole flow.</p> <p>The service may have goroutines. It may look concurrent. But a big part of the request path has silently become sequential.</p> <p>This is why concurrency bugs are not always about missing locks.</p> <p>Sometimes the problem is too much locking.</p> <p>Sometimes the real bug is ownership.</p> <h2> Tony Hoare’s idea: stop sharing memory directly </h2> <p>In 1978, Tony Hoare introduced <strong>Communicating Sequential Processes</strong>, usually called CSP.</p> <p>The idea was very different from the classic shared-memory model.</p> <p>Instead of many processes fighting over the same memory, CSP describes a system as independent sequential processes that communicate by sending messages.</p> <p>The important parts are:</p> <ol> <li>Each process has its own local state.</li> <li>Processes do not casually share variables.</li> <li>When they need to coordinate, they communicate explicitly.</li> <li>Communication is part of the design, not an afterthought.</li> </ol> <p>That sounds simple, but it changes how you design systems.</p> <p>Instead of asking:</p> <blockquote> <p>Which lock protects this data?</p> </blockquote> <p>You start asking:</p> <blockquote> <p>Which goroutine owns this data?</p> </blockquote> <p>That is a much more powerful question.</p> <p>Because if one goroutine owns the state, other goroutines do not need to mutate it directly. They send messages to the owner.</p> <p>This is the mental shift behind Go channels.</p> <h2> Go did not just add concurrency. It gave concurrency a shape. </h2> <p>Go could have chosen the same path as many other languages:</p> <ul> <li>threads</li> <li>locks</li> <li>shared memory</li> <li>concurrency libraries</li> <li>complex abstractions built on top</li> </ul> <p>But Go made a different design decision.</p> <p>It gave concurrency first-class language support with:</p> <ul> <li> <code>go</code> for starting goroutines</li> <li> <code>chan</code> for communication</li> <li> <code>select</code> for coordinating multiple communication operations</li> </ul> <p>This matters because concurrency is not treated as a library feature bolted onto the language.</p> <p>It is part of the language’s design.</p> <p>A goroutine is not exactly the same as a CSP process, and Go is not a pure CSP language. Go still allows shared memory, mutexes, atomics, and low-level synchronization when needed.</p> <p>But the spirit of CSP is clearly there:</p> <blockquote> <p>Build independent units of execution and make them communicate explicitly.</p> </blockquote> <p>That is why Go feels so natural for network servers, infrastructure tools, distributed systems, streaming pipelines, and cloud-native software.</p> <h2> A simple CSP-style pipeline in Go </h2> <p>Let’s look at a practical example.</p> <p>Imagine a small pipeline:</p> <ol> <li>Generate jobs.</li> <li>Process jobs.</li> <li>Return results.</li> </ol> <p>A shared-memory mindset might create a global queue, protect it with a mutex, and let workers pull from it.</p> <p>A CSP-style mindset is different.</p> <p>The data flows through channels.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">package</span> <span class="n">main</span> <span class="k">import</span> <span class="p">(</span> <span class="s">"fmt"</span> <span class="s">"time"</span> <span class="p">)</span> <span class="k">type</span> <span class="n">Job</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">ID</span> <span class="kt">int</span> <span class="p">}</span> <span class="k">type</span> <span class="n">Result</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">JobID</span> <span class="kt">int</span> <span class="n">Value</span> <span class="kt">string</span> <span class="p">}</span> <span class="k">func</span> <span class="n">producer</span><span class="p">(</span><span class="n">out</span> <span class="k">chan</span><span class="o">&lt;-</span> <span class="n">Job</span><span class="p">)</span> <span class="p">{</span> <span class="k">defer</span> <span class="nb">close</span><span class="p">(</span><span class="n">out</span><span class="p">)</span> <span class="k">for</span> <span class="n">i</span> <span class="o">:=</span> <span class="m">1</span><span class="p">;</span> <span class="n">i</span> <span class="o">&lt;=</span> <span class="m">5</span><span class="p">;</span> <span class="n">i</span><span class="o">++</span> <span class="p">{</span> <span class="n">out</span> <span class="o">&lt;-</span> <span class="n">Job</span><span class="p">{</span><span class="n">ID</span><span class="o">:</span> <span class="n">i</span><span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="k">func</span> <span class="n">worker</span><span class="p">(</span><span class="n">in</span> <span class="o">&lt;-</span><span class="k">chan</span> <span class="n">Job</span><span class="p">,</span> <span class="n">out</span> <span class="k">chan</span><span class="o">&lt;-</span> <span class="n">Result</span><span class="p">)</span> <span class="p">{</span> <span class="k">for</span> <span class="n">job</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">in</span> <span class="p">{</span> <span class="n">time</span><span class="o">.</span><span class="n">Sleep</span><span class="p">(</span><span class="m">100</span> <span class="o">*</span> <span class="n">time</span><span class="o">.</span><span class="n">Millisecond</span><span class="p">)</span> <span class="n">out</span> <span class="o">&lt;-</span> <span class="n">Result</span><span class="p">{</span> <span class="n">JobID</span><span class="o">:</span> <span class="n">job</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="n">Value</span><span class="o">:</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Sprintf</span><span class="p">(</span><span class="s">"processed job %d"</span><span class="p">,</span> <span class="n">job</span><span class="o">.</span><span class="n">ID</span><span class="p">),</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="k">func</span> <span class="n">main</span><span class="p">()</span> <span class="p">{</span> <span class="n">jobs</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">(</span><span class="k">chan</span> <span class="n">Job</span><span class="p">)</span> <span class="n">results</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">(</span><span class="k">chan</span> <span class="n">Result</span><span class="p">)</span> <span class="k">go</span> <span class="n">producer</span><span class="p">(</span><span class="n">jobs</span><span class="p">)</span> <span class="k">go</span> <span class="k">func</span><span class="p">()</span> <span class="p">{</span> <span class="k">defer</span> <span class="nb">close</span><span class="p">(</span><span class="n">results</span><span class="p">)</span> <span class="n">worker</span><span class="p">(</span><span class="n">jobs</span><span class="p">,</span> <span class="n">results</span><span class="p">)</span> <span class="p">}()</span> <span class="k">for</span> <span class="n">result</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">results</span> <span class="p">{</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Printf</span><span class="p">(</span><span class="s">"job=%d result=%q</span><span class="se">\n</span><span class="s">"</span><span class="p">,</span> <span class="n">result</span><span class="o">.</span><span class="n">JobID</span><span class="p">,</span> <span class="n">result</span><span class="o">.</span><span class="n">Value</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>There is no shared slice.<br> There is no global queue.<br> There is no explicit mutex.</p> <p>The producer owns job creation.<br> The worker owns processing.<br> The main goroutine owns result collection.</p> <p>The data moves through the system.</p> <p>That is the important part.</p> <p>We are not asking multiple goroutines to mutate the same object at the same time. We are designing a flow of ownership.</p> <h2> Scaling the pipeline with multiple workers </h2> <p>Now let’s make it more realistic.</p> <p>A single worker is not enough for heavy workloads. We want multiple workers processing jobs concurrently.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">package</span> <span class="n">main</span> <span class="k">import</span> <span class="p">(</span> <span class="s">"fmt"</span> <span class="s">"sync"</span> <span class="s">"time"</span> <span class="p">)</span> <span class="k">type</span> <span class="n">Job</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">ID</span> <span class="kt">int</span> <span class="p">}</span> <span class="k">type</span> <span class="n">Result</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">WorkerID</span> <span class="kt">int</span> <span class="n">JobID</span> <span class="kt">int</span> <span class="n">Value</span> <span class="kt">string</span> <span class="p">}</span> <span class="k">func</span> <span class="n">producer</span><span class="p">(</span><span class="n">out</span> <span class="k">chan</span><span class="o">&lt;-</span> <span class="n">Job</span><span class="p">,</span> <span class="n">count</span> <span class="kt">int</span><span class="p">)</span> <span class="p">{</span> <span class="k">defer</span> <span class="nb">close</span><span class="p">(</span><span class="n">out</span><span class="p">)</span> <span class="k">for</span> <span class="n">i</span> <span class="o">:=</span> <span class="m">1</span><span class="p">;</span> <span class="n">i</span> <span class="o">&lt;=</span> <span class="n">count</span><span class="p">;</span> <span class="n">i</span><span class="o">++</span> <span class="p">{</span> <span class="n">out</span> <span class="o">&lt;-</span> <span class="n">Job</span><span class="p">{</span><span class="n">ID</span><span class="o">:</span> <span class="n">i</span><span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="k">func</span> <span class="n">worker</span><span class="p">(</span><span class="n">workerID</span> <span class="kt">int</span><span class="p">,</span> <span class="n">jobs</span> <span class="o">&lt;-</span><span class="k">chan</span> <span class="n">Job</span><span class="p">,</span> <span class="n">results</span> <span class="k">chan</span><span class="o">&lt;-</span> <span class="n">Result</span><span class="p">)</span> <span class="p">{</span> <span class="k">for</span> <span class="n">job</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">jobs</span> <span class="p">{</span> <span class="n">time</span><span class="o">.</span><span class="n">Sleep</span><span class="p">(</span><span class="m">100</span> <span class="o">*</span> <span class="n">time</span><span class="o">.</span><span class="n">Millisecond</span><span class="p">)</span> <span class="n">results</span> <span class="o">&lt;-</span> <span class="n">Result</span><span class="p">{</span> <span class="n">WorkerID</span><span class="o">:</span> <span class="n">workerID</span><span class="p">,</span> <span class="n">JobID</span><span class="o">:</span> <span class="n">job</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="n">Value</span><span class="o">:</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Sprintf</span><span class="p">(</span><span class="s">"processed job %d"</span><span class="p">,</span> <span class="n">job</span><span class="o">.</span><span class="n">ID</span><span class="p">),</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="k">func</span> <span class="n">main</span><span class="p">()</span> <span class="p">{</span> <span class="k">const</span> <span class="n">workerCount</span> <span class="o">=</span> <span class="m">3</span> <span class="k">const</span> <span class="n">jobCount</span> <span class="o">=</span> <span class="m">10</span> <span class="n">jobs</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">(</span><span class="k">chan</span> <span class="n">Job</span><span class="p">)</span> <span class="n">results</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">(</span><span class="k">chan</span> <span class="n">Result</span><span class="p">)</span> <span class="k">go</span> <span class="n">producer</span><span class="p">(</span><span class="n">jobs</span><span class="p">,</span> <span class="n">jobCount</span><span class="p">)</span> <span class="k">var</span> <span class="n">wg</span> <span class="n">sync</span><span class="o">.</span><span class="n">WaitGroup</span> <span class="k">for</span> <span class="n">i</span> <span class="o">:=</span> <span class="m">1</span><span class="p">;</span> <span class="n">i</span> <span class="o">&lt;=</span> <span class="n">workerCount</span><span class="p">;</span> <span class="n">i</span><span class="o">++</span> <span class="p">{</span> <span class="n">wg</span><span class="o">.</span><span class="n">Add</span><span class="p">(</span><span class="m">1</span><span class="p">)</span> <span class="k">go</span> <span class="k">func</span><span class="p">(</span><span class="n">workerID</span> <span class="kt">int</span><span class="p">)</span> <span class="p">{</span> <span class="k">defer</span> <span class="n">wg</span><span class="o">.</span><span class="n">Done</span><span class="p">()</span> <span class="n">worker</span><span class="p">(</span><span class="n">workerID</span><span class="p">,</span> <span class="n">jobs</span><span class="p">,</span> <span class="n">results</span><span class="p">)</span> <span class="p">}(</span><span class="n">i</span><span class="p">)</span> <span class="p">}</span> <span class="k">go</span> <span class="k">func</span><span class="p">()</span> <span class="p">{</span> <span class="n">wg</span><span class="o">.</span><span class="n">Wait</span><span class="p">()</span> <span class="nb">close</span><span class="p">(</span><span class="n">results</span><span class="p">)</span> <span class="p">}()</span> <span class="k">for</span> <span class="n">result</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">results</span> <span class="p">{</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Printf</span><span class="p">(</span> <span class="s">"worker=%d job=%d result=%q</span><span class="se">\n</span><span class="s">"</span><span class="p">,</span> <span class="n">result</span><span class="o">.</span><span class="n">WorkerID</span><span class="p">,</span> <span class="n">result</span><span class="o">.</span><span class="n">JobID</span><span class="p">,</span> <span class="n">result</span><span class="o">.</span><span class="n">Value</span><span class="p">,</span> <span class="p">)</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>This is one of the places where Go shines.</p> <p>The design is still readable:</p> <ul> <li>The producer sends jobs.</li> <li>Workers receive jobs.</li> <li>Workers send results.</li> <li>The result channel closes when all workers finish.</li> </ul> <p>We still use <code>sync.WaitGroup</code>, because Go is pragmatic. CSP-style design does not mean “never use the sync package.”</p> <p>It means we use synchronization intentionally.</p> <p>The channel handles data flow.<br> The wait group handles lifecycle coordination.</p> <p>That separation is clean.</p> <h2> The real value: ownership becomes visible </h2> <p>The biggest advantage of CSP-style design is not that it removes every mutex.</p> <p>The biggest advantage is that it makes ownership visible.</p> <p>In shared-memory systems, ownership is often hidden.</p> <p>You see a pointer passed around. You see a struct used in multiple places. You see a lock somewhere. But it is not always obvious who is responsible for the state.</p> <p>With channels, ownership is easier to see.</p> <p>For example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">jobs</span> <span class="o">&lt;-</span> <span class="n">job</span> </code></pre> </div> <p>This line says:</p> <blockquote> <p>I am sending this job to another part of the system.</p> </blockquote> <p>And this line:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">job</span> <span class="o">:=</span> <span class="o">&lt;-</span><span class="n">jobs</span> </code></pre> </div> <p>says:</p> <blockquote> <p>I am receiving this job and now I am responsible for processing it.</p> </blockquote> <p>That clarity matters.</p> <p>In production systems, many bugs are not caused by complex algorithms. They are caused by unclear ownership.</p> <p>Who closes this channel?<br> Who updates this state?<br> Who retries this job?<br> Who owns cancellation?<br> Who handles backpressure?</p> <p>A channel-based design forces you to answer these questions earlier.</p> <h2> Backpressure is built into the model </h2> <p>Another underrated benefit of channels is backpressure.</p> <p>An unbuffered channel forces the sender and receiver to synchronize:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">jobs</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">(</span><span class="k">chan</span> <span class="n">Job</span><span class="p">)</span> </code></pre> </div> <p>If the producer sends faster than the worker receives, the producer blocks.</p> <p>That is not a bug. That is backpressure.</p> <p>Buffered channels allow some temporary queueing:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">jobs</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">(</span><span class="k">chan</span> <span class="n">Job</span><span class="p">,</span> <span class="m">100</span><span class="p">)</span> </code></pre> </div> <p>Now the producer can get ahead by 100 jobs, but not forever.</p> <p>This is powerful in real systems.</p> <p>For example, imagine a log processing service:</p> <ul> <li>HTTP requests receive logs.</li> <li>A parser normalizes them.</li> <li>A batcher writes them to storage.</li> <li>A separate worker sends alerts.</li> </ul> <p>Without backpressure, one fast layer can overwhelm a slower layer.</p> <p>With channels, you can make pressure visible and controlled.</p> <p>You can decide where the system should block, buffer, drop, retry, or shed load.</p> <p>That is architecture, not just syntax.</p> <h2> Where channels are a bad fit </h2> <p>It is also important to be honest: channels are not magic.</p> <p>Not every concurrency problem becomes better with channels.</p> <p>Sometimes a mutex is simpler and faster.</p> <p>For example, this is perfectly reasonable:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">Metrics</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">mu</span> <span class="n">sync</span><span class="o">.</span><span class="n">Mutex</span> <span class="n">requests</span> <span class="kt">int64</span> <span class="n">errors</span> <span class="kt">int64</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">m</span> <span class="o">*</span><span class="n">Metrics</span><span class="p">)</span> <span class="n">IncRequests</span><span class="p">()</span> <span class="p">{</span> <span class="n">m</span><span class="o">.</span><span class="n">mu</span><span class="o">.</span><span class="n">Lock</span><span class="p">()</span> <span class="n">m</span><span class="o">.</span><span class="n">requests</span><span class="o">++</span> <span class="n">m</span><span class="o">.</span><span class="n">mu</span><span class="o">.</span><span class="n">Unlock</span><span class="p">()</span> <span class="p">}</span> </code></pre> </div> <p>For small, local, short-lived critical sections, a mutex is often the cleanest solution.</p> <p>Channels can become messy when they are used only because they feel “more Go-like.”</p> <p>Bad channel usage can create:</p> <ul> <li>goroutine leaks</li> <li>unclear lifecycle</li> <li>blocked sends</li> <li>blocked receives</li> <li>complicated shutdown logic</li> <li>over-engineered code</li> </ul> <p>The point is not:</p> <blockquote> <p>Always use channels.</p> </blockquote> <p>The point is:</p> <blockquote> <p>Use channels when communication and ownership are the core problem.</p> </blockquote> <p>Use mutexes when protecting a small piece of shared state is the core problem.</p> <p>Senior Go engineering is knowing the difference.</p> <h2> A practical rule I use </h2> <p>When I design concurrent Go code, I usually ask myself:</p> <h3> 1. Is this state owned by one goroutine? </h3> <p>If yes, channels can be a great fit. Other goroutines can send commands or data to the owner.</p> <h3> 2. Is this just a small shared counter or cache? </h3> <p>A mutex or atomic may be better.</p> <h3> 3. Do I need backpressure? </h3> <p>Channels make this easier to model.</p> <h3> 4. Do I need cancellation? </h3> <p>Then I design the channel flow together with <code>context.Context</code>.</p> <h3> 5. Who closes the channel? </h3> <p>If I cannot answer this clearly, the design is not finished.</p> <p>That last question is very important.</p> <p>Channel ownership is not only about sending data. It is also about lifecycle.</p> <p>Usually, the sender closes the channel. Receivers should not close a channel they do not own.</p> <h2> CSP thinking in modern backend systems </h2> <p>The reason I like CSP is that it maps well to real backend architecture.</p> <p>A backend service is not just functions calling functions.</p> <p>It is a system of flows:</p> <ul> <li>requests flow into handlers</li> <li>jobs flow into queues</li> <li>events flow into processors</li> <li>logs flow into pipelines</li> <li>metrics flow into aggregators</li> <li>commands flow into state owners</li> <li>results flow back to clients</li> </ul> <p>When you think in flows, Go becomes very natural.</p> <p>This is also why Go became popular in infrastructure software. Tools like Docker, Kubernetes, and Terraform are written in Go not only because Go compiles to a static binary, but also because its concurrency model fits the kind of problems infrastructure software needs to solve.</p> <p>Infrastructure software is full of concurrent work:</p> <ul> <li>watching state</li> <li>reconciling resources</li> <li>handling network calls</li> <li>streaming logs</li> <li>scheduling tasks</li> <li>managing timeouts</li> <li>coordinating workers</li> </ul> <p>CSP-style thinking gives these systems a clean structure.</p> <h2> Final thoughts </h2> <p>Tony Hoare’s CSP paper is almost 50 years old, but the idea still feels modern.</p> <p>That is rare in software.</p> <p>Many technologies become outdated quickly, but good mental models survive.</p> <p>Go did not invent the idea of communicating sequential processes. But Go made the idea practical for everyday engineers.</p> <p>That is the beauty of Go’s concurrency model.</p> <p>It takes a deep computer science concept and gives us a small set of simple tools:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">go</span> <span class="k">func</span><span class="p">()</span> <span class="k">chan</span> <span class="k">select</span> </code></pre> </div> <p>The tools are simple.</p> <p>The design thinking behind them is powerful.</p> <p>For me, the biggest lesson is this:</p> <blockquote> <p>Concurrency becomes easier when we stop thinking only about shared state and start thinking about ownership, communication, and flow.</p> </blockquote> <p>That is the real value of CSP in Go.</p> <p>Not just fewer mutexes.</p> <p>Better architecture.</p> <h2> References </h2> <ul> <li>Tony Hoare — <em>Communicating Sequential Processes</em> (1978)</li> <li>Rob Pike — <em>Go Concurrency Patterns</em> </li> <li>Rob Pike — <em>Concurrency Is Not Parallelism</em> </li> <li>Go Blog — <em>Share Memory By Communicating</em> </li> </ul> go concurrency architecture amir Fri, 29 May 2026 09:48:11 +0000 https://dev.to/amirsefati/how-syncpool-helped-me-stabilize-p99-latency-in-a-high-throughput-log-processing-pipeline-1e00 https://dev.to/amirsefati/how-syncpool-helped-me-stabilize-p99-latency-in-a-high-throughput-log-processing-pipeline-1e00 <p>A while ago, I was working on a log processing system that was very similar in spirit to Sentry.</p> <p>The system was responsible for receiving events from different services, parsing JSON payloads, normalizing metadata, enriching logs with extra context, and then pushing the final events into storage and downstream queues.</p> <p>At first, everything looked fine.</p> <p>The code was clean. The architecture was simple. The throughput was acceptable in local testing.</p> <p>But when the traffic increased, something interesting happened:</p> <p>The average latency was still okay, but the p99 latency started to become unstable.</p> <p>That was the first sign that the bottleneck was not just CPU or database performance. Something deeper was happening inside the runtime.</p> <p>In this article, I want to explain how I found the problem, why the system became slower under load, and how using <code>sync.Pool</code> helped reduce allocation pressure, make the garbage collector work less, and keep latency more stable.</p> <p>This is not a magical optimization. It is a very specific tool for a very specific kind of problem.</p> <p>But when you are building high-throughput systems, especially systems that process JSON, logs, network payloads, or temporary buffers, understanding object pooling can make a big difference.</p> <h2> The System I Was Building </h2> <p>The service was a log ingestion pipeline.</p> <p>The flow looked something like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Client / SDK ↓ HTTP ingestion API ↓ JSON decode ↓ Validation ↓ Normalization ↓ Enrichment ↓ Batching ↓ Queue / Storage </code></pre> </div> <p>Each incoming request contained one or more log events.</p> <p>A simplified event looked like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"service"</span><span class="p">:</span><span class="w"> </span><span class="s2">"payment-api"</span><span class="p">,</span><span class="w"> </span><span class="nl">"level"</span><span class="p">:</span><span class="w"> </span><span class="s2">"error"</span><span class="p">,</span><span class="w"> </span><span class="nl">"message"</span><span class="p">:</span><span class="w"> </span><span class="s2">"failed to charge customer"</span><span class="p">,</span><span class="w"> </span><span class="nl">"timestamp"</span><span class="p">:</span><span class="w"> </span><span class="s2">"2026-05-28T12:40:00Z"</span><span class="p">,</span><span class="w"> </span><span class="nl">"trace_id"</span><span class="p">:</span><span class="w"> </span><span class="s2">"6f9c9b9d7a1a"</span><span class="p">,</span><span class="w"> </span><span class="nl">"metadata"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"customer_id"</span><span class="p">:</span><span class="w"> </span><span class="s2">"cus_123"</span><span class="p">,</span><span class="w"> </span><span class="nl">"region"</span><span class="p">:</span><span class="w"> </span><span class="s2">"eu-west"</span><span class="p">,</span><span class="w"> </span><span class="nl">"retry_count"</span><span class="p">:</span><span class="w"> </span><span class="mi">2</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p>For every request, the service had to:</p> <ul> <li>read the request body</li> <li>decode JSON</li> <li>create internal event structs</li> <li>normalize fields</li> <li>create temporary buffers</li> <li>encode the final payload again</li> <li>send it to another component</li> </ul> <p>This kind of workload creates many short-lived objects.</p> <p>And in Go, short-lived objects are usually fine — until you create too many of them in a hot path.</p> <h2> The First Symptom: Average Latency Looked Fine, p99 Did Not </h2> <p>At low traffic, the service looked healthy.</p> <p>Something like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Requests/sec: 2,000 Average latency: 8ms p95 latency: 18ms p99 latency: 35ms CPU usage: Normal Memory usage: Stable </code></pre> </div> <p>But when the traffic increased, the picture changed:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Requests/sec: 15,000+ Average latency: 16ms p95 latency: 90ms p99 latency: 280ms - 400ms CPU usage: Higher than expected Memory usage: Sawtooth pattern GC activity: Frequent </code></pre> </div> <p>The average latency was not terrible, but the tail latency was bad.</p> <p>And for this kind of system, p99 matters a lot.</p> <p>If a log processing system becomes slow during incidents, it creates a very bad situation: when you need observability the most, your observability pipeline becomes the bottleneck.</p> <p>That is exactly the kind of failure mode I wanted to avoid.</p> <h2> Why p99 Latency Matters More Than Average Latency </h2> <p>Average latency can hide real production problems.</p> <p>For example, imagine this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>95 requests finish in 10ms 4 requests finish in 50ms 1 request finishes in 500ms </code></pre> </div> <p>The average may still look acceptable.</p> <p>But that one slow request is part of your p99.</p> <p>In high-throughput backend systems, p99 latency usually tells a more honest story than average latency.</p> <p>When p99 starts jumping under load, it usually means some part of the system occasionally blocks, pauses, waits, or does too much work.</p> <p>In my case, one of the main causes was allocation pressure and frequent garbage collection.</p> <h2> The Initial Code: Simple, But Allocation Heavy </h2> <p>The first version of the code was easy to read.</p> <p>For every request, I created new buffers and temporary objects.</p> <p>Something like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">package</span> <span class="n">main</span> <span class="k">import</span> <span class="p">(</span> <span class="s">"bytes"</span> <span class="s">"encoding/json"</span> <span class="s">"io"</span> <span class="s">"net/http"</span> <span class="p">)</span> <span class="k">type</span> <span class="n">LogEvent</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">Service</span> <span class="kt">string</span> <span class="s">`json:"service"`</span> <span class="n">Level</span> <span class="kt">string</span> <span class="s">`json:"level"`</span> <span class="n">Message</span> <span class="kt">string</span> <span class="s">`json:"message"`</span> <span class="n">Timestamp</span> <span class="kt">string</span> <span class="s">`json:"timestamp"`</span> <span class="n">TraceID</span> <span class="kt">string</span> <span class="s">`json:"trace_id"`</span> <span class="n">Metadata</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="k">interface</span><span class="p">{}</span> <span class="s">`json:"metadata"`</span> <span class="p">}</span> <span class="k">func</span> <span class="n">ingestHandler</span><span class="p">(</span><span class="n">w</span> <span class="n">http</span><span class="o">.</span><span class="n">ResponseWriter</span><span class="p">,</span> <span class="n">r</span> <span class="o">*</span><span class="n">http</span><span class="o">.</span><span class="n">Request</span><span class="p">)</span> <span class="p">{</span> <span class="n">body</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">io</span><span class="o">.</span><span class="n">ReadAll</span><span class="p">(</span><span class="n">r</span><span class="o">.</span><span class="n">Body</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">http</span><span class="o">.</span><span class="n">Error</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="s">"failed to read body"</span><span class="p">,</span> <span class="n">http</span><span class="o">.</span><span class="n">StatusBadRequest</span><span class="p">)</span> <span class="k">return</span> <span class="p">}</span> <span class="k">var</span> <span class="n">events</span> <span class="p">[]</span><span class="n">LogEvent</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">json</span><span class="o">.</span><span class="n">Unmarshal</span><span class="p">(</span><span class="n">body</span><span class="p">,</span> <span class="o">&amp;</span><span class="n">events</span><span class="p">);</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">http</span><span class="o">.</span><span class="n">Error</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="s">"invalid json"</span><span class="p">,</span> <span class="n">http</span><span class="o">.</span><span class="n">StatusBadRequest</span><span class="p">)</span> <span class="k">return</span> <span class="p">}</span> <span class="n">normalized</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">([]</span><span class="n">LogEvent</span><span class="p">,</span> <span class="m">0</span><span class="p">,</span> <span class="nb">len</span><span class="p">(</span><span class="n">events</span><span class="p">))</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">event</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">events</span> <span class="p">{</span> <span class="n">normalized</span> <span class="o">=</span> <span class="nb">append</span><span class="p">(</span><span class="n">normalized</span><span class="p">,</span> <span class="n">normalizeEvent</span><span class="p">(</span><span class="n">event</span><span class="p">))</span> <span class="p">}</span> <span class="k">var</span> <span class="n">buf</span> <span class="n">bytes</span><span class="o">.</span><span class="n">Buffer</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">json</span><span class="o">.</span><span class="n">NewEncoder</span><span class="p">(</span><span class="o">&amp;</span><span class="n">buf</span><span class="p">)</span><span class="o">.</span><span class="n">Encode</span><span class="p">(</span><span class="n">normalized</span><span class="p">);</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">http</span><span class="o">.</span><span class="n">Error</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="s">"failed to encode events"</span><span class="p">,</span> <span class="n">http</span><span class="o">.</span><span class="n">StatusInternalServerError</span><span class="p">)</span> <span class="k">return</span> <span class="p">}</span> <span class="c">// sendToQueue(buf.Bytes())</span> <span class="n">w</span><span class="o">.</span><span class="n">WriteHeader</span><span class="p">(</span><span class="n">http</span><span class="o">.</span><span class="n">StatusAccepted</span><span class="p">)</span> <span class="p">}</span> <span class="k">func</span> <span class="n">normalizeEvent</span><span class="p">(</span><span class="n">event</span> <span class="n">LogEvent</span><span class="p">)</span> <span class="n">LogEvent</span> <span class="p">{</span> <span class="k">if</span> <span class="n">event</span><span class="o">.</span><span class="n">Level</span> <span class="o">==</span> <span class="s">""</span> <span class="p">{</span> <span class="n">event</span><span class="o">.</span><span class="n">Level</span> <span class="o">=</span> <span class="s">"info"</span> <span class="p">}</span> <span class="k">if</span> <span class="n">event</span><span class="o">.</span><span class="n">Metadata</span> <span class="o">==</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">event</span><span class="o">.</span><span class="n">Metadata</span> <span class="o">=</span> <span class="nb">make</span><span class="p">(</span><span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="k">interface</span><span class="p">{})</span> <span class="p">}</span> <span class="k">return</span> <span class="n">event</span> <span class="p">}</span> </code></pre> </div> <p>At first glance, this is not bad code.</p> <p>Actually, for many applications, this is completely fine.</p> <p>But under heavy load, the problem was that this path was executed thousands of times per second.</p> <p>That means the service was constantly creating:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>new byte slices new buffers new maps new event slices new encoder objects new temporary JSON structures </code></pre> </div> <p>Most of these objects were short-lived.</p> <p>They were created, used for a few milliseconds, and then became garbage.</p> <p>The garbage collector had to clean them again and again.</p> <h2> The Real Problem: Too Many Temporary Objects </h2> <p>In Go, allocation itself is not always expensive.</p> <p>The real cost often appears later.</p> <p>Every object that escapes to the heap becomes something the garbage collector may need to track.</p> <p>When the system creates too many temporary objects, the GC has more work to do.</p> <p>That can lead to:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>more frequent GC cycles more CPU used by the runtime less CPU available for actual request processing latency spikes during high traffic unstable p95 and p99 latency </code></pre> </div> <p>This was exactly what I saw.</p> <p>The service was not slow because the logic was complex.</p> <p>It was slow because the hot path was creating too much garbage.</p> <p>That is an important distinction.</p> <p>Sometimes performance problems are not caused by bad algorithms. Sometimes they are caused by too much memory churn.</p> <h2> How I Confirmed the Problem </h2> <p>Before changing anything, I wanted to confirm the source of the issue.</p> <p>I checked runtime metrics and profiling data.</p> <p>The signs were clear:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>high allocation rate frequent GC cycles bytes.Buffer allocations in the hot path JSON processing allocations temporary slices created per request </code></pre> </div> <p>A simplified benchmark showed the same pattern.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">BenchmarkIngestWithoutPool</span><span class="p">(</span><span class="n">b</span> <span class="o">*</span><span class="n">testing</span><span class="o">.</span><span class="n">B</span><span class="p">)</span> <span class="p">{</span> <span class="n">payload</span> <span class="o">:=</span> <span class="n">generatePayload</span><span class="p">(</span><span class="m">100</span><span class="p">)</span> <span class="n">b</span><span class="o">.</span><span class="n">ReportAllocs</span><span class="p">()</span> <span class="n">b</span><span class="o">.</span><span class="n">ResetTimer</span><span class="p">()</span> <span class="k">for</span> <span class="n">i</span> <span class="o">:=</span> <span class="m">0</span><span class="p">;</span> <span class="n">i</span> <span class="o">&lt;</span> <span class="n">b</span><span class="o">.</span><span class="n">N</span><span class="p">;</span> <span class="n">i</span><span class="o">++</span> <span class="p">{</span> <span class="n">_</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">processLogsWithoutPool</span><span class="p">(</span><span class="n">payload</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">b</span><span class="o">.</span><span class="n">Fatal</span><span class="p">(</span><span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>The result looked like this in my local benchmark:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>BenchmarkIngestWithoutPool-10 8200 145000 ns/op 128 KB/op 420 allocs/op </code></pre> </div> <p>The exact numbers are not the important part.</p> <p>The important part was the pattern:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>allocs/op was high bytes/op was high GC activity increased with throughput p99 latency became unstable under pressure </code></pre> </div> <p>That told me the optimization target was not just request logic.</p> <p>The target was allocation behavior.</p> <h2> Where <code>sync.Pool</code> Fits </h2> <p><code>sync.Pool</code> is a temporary object pool provided by Go.</p> <p>It allows you to reuse objects instead of allocating new ones every time.</p> <p>A good mental model is this:</p> <p>Instead of creating and throwing away the same type of object thousands of times per second, you keep reusable objects in a pool.</p> <p>You get one when you need it.</p> <p>You reset it.</p> <p>You use it.</p> <p>Then you put it back.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Get → Reset → Use → Put back </code></pre> </div> <p>This can reduce pressure on the garbage collector because fewer temporary objects are allocated in the hot path.</p> <p>But there is an important warning:</p> <p><code>sync.Pool</code> is not a cache.</p> <p>Objects inside the pool can be removed by the garbage collector at any time.</p> <p>So you should not use it to store important state.</p> <p>It is best for temporary, reusable objects like:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>bytes.Buffer []byte buffers temporary encoders scratch objects serialization helpers </code></pre> </div> <p>That made it a good fit for my log processing pipeline.</p> <h2> The Improved Version: Reusing Buffers </h2> <p>The first improvement was to reuse <code>bytes.Buffer</code> objects.</p> <p>Instead of creating a new buffer for every request, I created a pool:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">package</span> <span class="n">main</span> <span class="k">import</span> <span class="p">(</span> <span class="s">"bytes"</span> <span class="s">"encoding/json"</span> <span class="s">"io"</span> <span class="s">"net/http"</span> <span class="s">"sync"</span> <span class="p">)</span> <span class="k">var</span> <span class="n">bufferPool</span> <span class="o">=</span> <span class="n">sync</span><span class="o">.</span><span class="n">Pool</span><span class="p">{</span> <span class="n">New</span><span class="o">:</span> <span class="k">func</span><span class="p">()</span> <span class="n">any</span> <span class="p">{</span> <span class="k">return</span> <span class="nb">new</span><span class="p">(</span><span class="n">bytes</span><span class="o">.</span><span class="n">Buffer</span><span class="p">)</span> <span class="p">},</span> <span class="p">}</span> <span class="k">type</span> <span class="n">LogEvent</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">Service</span> <span class="kt">string</span> <span class="s">`json:"service"`</span> <span class="n">Level</span> <span class="kt">string</span> <span class="s">`json:"level"`</span> <span class="n">Message</span> <span class="kt">string</span> <span class="s">`json:"message"`</span> <span class="n">Timestamp</span> <span class="kt">string</span> <span class="s">`json:"timestamp"`</span> <span class="n">TraceID</span> <span class="kt">string</span> <span class="s">`json:"trace_id"`</span> <span class="n">Metadata</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="k">interface</span><span class="p">{}</span> <span class="s">`json:"metadata"`</span> <span class="p">}</span> <span class="k">func</span> <span class="n">ingestHandler</span><span class="p">(</span><span class="n">w</span> <span class="n">http</span><span class="o">.</span><span class="n">ResponseWriter</span><span class="p">,</span> <span class="n">r</span> <span class="o">*</span><span class="n">http</span><span class="o">.</span><span class="n">Request</span><span class="p">)</span> <span class="p">{</span> <span class="n">body</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">io</span><span class="o">.</span><span class="n">ReadAll</span><span class="p">(</span><span class="n">r</span><span class="o">.</span><span class="n">Body</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">http</span><span class="o">.</span><span class="n">Error</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="s">"failed to read body"</span><span class="p">,</span> <span class="n">http</span><span class="o">.</span><span class="n">StatusBadRequest</span><span class="p">)</span> <span class="k">return</span> <span class="p">}</span> <span class="k">var</span> <span class="n">events</span> <span class="p">[]</span><span class="n">LogEvent</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">json</span><span class="o">.</span><span class="n">Unmarshal</span><span class="p">(</span><span class="n">body</span><span class="p">,</span> <span class="o">&amp;</span><span class="n">events</span><span class="p">);</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">http</span><span class="o">.</span><span class="n">Error</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="s">"invalid json"</span><span class="p">,</span> <span class="n">http</span><span class="o">.</span><span class="n">StatusBadRequest</span><span class="p">)</span> <span class="k">return</span> <span class="p">}</span> <span class="n">normalized</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">([]</span><span class="n">LogEvent</span><span class="p">,</span> <span class="m">0</span><span class="p">,</span> <span class="nb">len</span><span class="p">(</span><span class="n">events</span><span class="p">))</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">event</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">events</span> <span class="p">{</span> <span class="n">normalized</span> <span class="o">=</span> <span class="nb">append</span><span class="p">(</span><span class="n">normalized</span><span class="p">,</span> <span class="n">normalizeEvent</span><span class="p">(</span><span class="n">event</span><span class="p">))</span> <span class="p">}</span> <span class="n">buf</span> <span class="o">:=</span> <span class="n">bufferPool</span><span class="o">.</span><span class="n">Get</span><span class="p">()</span><span class="o">.</span><span class="p">(</span><span class="o">*</span><span class="n">bytes</span><span class="o">.</span><span class="n">Buffer</span><span class="p">)</span> <span class="n">buf</span><span class="o">.</span><span class="n">Reset</span><span class="p">()</span> <span class="k">defer</span> <span class="k">func</span><span class="p">()</span> <span class="p">{</span> <span class="n">buf</span><span class="o">.</span><span class="n">Reset</span><span class="p">()</span> <span class="n">bufferPool</span><span class="o">.</span><span class="n">Put</span><span class="p">(</span><span class="n">buf</span><span class="p">)</span> <span class="p">}()</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">json</span><span class="o">.</span><span class="n">NewEncoder</span><span class="p">(</span><span class="n">buf</span><span class="p">)</span><span class="o">.</span><span class="n">Encode</span><span class="p">(</span><span class="n">normalized</span><span class="p">);</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">http</span><span class="o">.</span><span class="n">Error</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="s">"failed to encode events"</span><span class="p">,</span> <span class="n">http</span><span class="o">.</span><span class="n">StatusInternalServerError</span><span class="p">)</span> <span class="k">return</span> <span class="p">}</span> <span class="c">// Important:</span> <span class="c">// If the downstream function stores this data or uses it asynchronously,</span> <span class="c">// copy it before returning the buffer to the pool.</span> <span class="n">payload</span> <span class="o">:=</span> <span class="nb">append</span><span class="p">([]</span><span class="kt">byte</span><span class="p">(</span><span class="no">nil</span><span class="p">),</span> <span class="n">buf</span><span class="o">.</span><span class="n">Bytes</span><span class="p">()</span><span class="o">...</span><span class="p">)</span> <span class="c">// sendToQueue(payload)</span> <span class="n">_</span> <span class="o">=</span> <span class="n">payload</span> <span class="n">w</span><span class="o">.</span><span class="n">WriteHeader</span><span class="p">(</span><span class="n">http</span><span class="o">.</span><span class="n">StatusAccepted</span><span class="p">)</span> <span class="p">}</span> <span class="k">func</span> <span class="n">normalizeEvent</span><span class="p">(</span><span class="n">event</span> <span class="n">LogEvent</span><span class="p">)</span> <span class="n">LogEvent</span> <span class="p">{</span> <span class="k">if</span> <span class="n">event</span><span class="o">.</span><span class="n">Level</span> <span class="o">==</span> <span class="s">""</span> <span class="p">{</span> <span class="n">event</span><span class="o">.</span><span class="n">Level</span> <span class="o">=</span> <span class="s">"info"</span> <span class="p">}</span> <span class="k">if</span> <span class="n">event</span><span class="o">.</span><span class="n">Metadata</span> <span class="o">==</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">event</span><span class="o">.</span><span class="n">Metadata</span> <span class="o">=</span> <span class="nb">make</span><span class="p">(</span><span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="k">interface</span><span class="p">{})</span> <span class="p">}</span> <span class="k">return</span> <span class="n">event</span> <span class="p">}</span> </code></pre> </div> <p>This change looks small, but it matters under load.</p> <p>The buffer is no longer allocated from zero for every request.</p> <p>Instead, the service reuses an existing buffer.</p> <p>That means fewer allocations, less memory churn, and less GC pressure.</p> <h2> The Most Important Rule: Never Reuse Dirty Objects </h2> <p>When using a pool, always reset the object before reusing it.</p> <p>This is critical.</p> <p>For <code>bytes.Buffer</code>, call:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">buf</span><span class="o">.</span><span class="n">Reset</span><span class="p">()</span> </code></pre> </div> <p>For a slice, reset it like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">items</span> <span class="o">=</span> <span class="n">items</span><span class="p">[</span><span class="o">:</span><span class="m">0</span><span class="p">]</span> </code></pre> </div> <p>For a struct, clear the fields manually or create a reset method:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">EventBuilder</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">service</span> <span class="kt">string</span> <span class="n">level</span> <span class="kt">string</span> <span class="n">message</span> <span class="kt">string</span> <span class="n">fields</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="kt">string</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">b</span> <span class="o">*</span><span class="n">EventBuilder</span><span class="p">)</span> <span class="n">Reset</span><span class="p">()</span> <span class="p">{</span> <span class="n">b</span><span class="o">.</span><span class="n">service</span> <span class="o">=</span> <span class="s">""</span> <span class="n">b</span><span class="o">.</span><span class="n">level</span> <span class="o">=</span> <span class="s">""</span> <span class="n">b</span><span class="o">.</span><span class="n">message</span> <span class="o">=</span> <span class="s">""</span> <span class="k">for</span> <span class="n">k</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">b</span><span class="o">.</span><span class="n">fields</span> <span class="p">{</span> <span class="nb">delete</span><span class="p">(</span><span class="n">b</span><span class="o">.</span><span class="n">fields</span><span class="p">,</span> <span class="n">k</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>If you forget to reset objects properly, you can accidentally leak data between requests.</p> <p>That is not just a performance bug.</p> <p>In a log processing system, it can become a serious correctness or security issue.</p> <p>Imagine one customer's metadata appearing inside another customer's event because a pooled object was not cleaned correctly.</p> <p>That is why object pooling should be used carefully.</p> <h2> A Better Pool for Reusable Event Builders </h2> <p>In my case, buffers were only one part of the problem.</p> <p>The pipeline also had a temporary event builder used during normalization and enrichment.</p> <p>A simplified version looked like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">EventBuilder</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">Service</span> <span class="kt">string</span> <span class="n">Level</span> <span class="kt">string</span> <span class="n">Message</span> <span class="kt">string</span> <span class="n">TraceID</span> <span class="kt">string</span> <span class="n">Fields</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="kt">string</span> <span class="p">}</span> <span class="k">func</span> <span class="n">NewEventBuilder</span><span class="p">()</span> <span class="o">*</span><span class="n">EventBuilder</span> <span class="p">{</span> <span class="k">return</span> <span class="o">&amp;</span><span class="n">EventBuilder</span><span class="p">{</span> <span class="n">Fields</span><span class="o">:</span> <span class="nb">make</span><span class="p">(</span><span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="kt">string</span><span class="p">,</span> <span class="m">16</span><span class="p">),</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>Creating this for every event caused extra allocations, especially because of the map.</p> <p>So I moved it to a pool as well:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">var</span> <span class="n">eventBuilderPool</span> <span class="o">=</span> <span class="n">sync</span><span class="o">.</span><span class="n">Pool</span><span class="p">{</span> <span class="n">New</span><span class="o">:</span> <span class="k">func</span><span class="p">()</span> <span class="n">any</span> <span class="p">{</span> <span class="k">return</span> <span class="o">&amp;</span><span class="n">EventBuilder</span><span class="p">{</span> <span class="n">Fields</span><span class="o">:</span> <span class="nb">make</span><span class="p">(</span><span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="kt">string</span><span class="p">,</span> <span class="m">16</span><span class="p">),</span> <span class="p">}</span> <span class="p">},</span> <span class="p">}</span> <span class="k">type</span> <span class="n">EventBuilder</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">Service</span> <span class="kt">string</span> <span class="n">Level</span> <span class="kt">string</span> <span class="n">Message</span> <span class="kt">string</span> <span class="n">TraceID</span> <span class="kt">string</span> <span class="n">Fields</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="kt">string</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">b</span> <span class="o">*</span><span class="n">EventBuilder</span><span class="p">)</span> <span class="n">Reset</span><span class="p">()</span> <span class="p">{</span> <span class="n">b</span><span class="o">.</span><span class="n">Service</span> <span class="o">=</span> <span class="s">""</span> <span class="n">b</span><span class="o">.</span><span class="n">Level</span> <span class="o">=</span> <span class="s">""</span> <span class="n">b</span><span class="o">.</span><span class="n">Message</span> <span class="o">=</span> <span class="s">""</span> <span class="n">b</span><span class="o">.</span><span class="n">TraceID</span> <span class="o">=</span> <span class="s">""</span> <span class="k">for</span> <span class="n">k</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">b</span><span class="o">.</span><span class="n">Fields</span> <span class="p">{</span> <span class="nb">delete</span><span class="p">(</span><span class="n">b</span><span class="o">.</span><span class="n">Fields</span><span class="p">,</span> <span class="n">k</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> <span class="k">func</span> <span class="n">buildEvent</span><span class="p">(</span><span class="n">raw</span> <span class="n">LogEvent</span><span class="p">)</span> <span class="o">*</span><span class="n">EventBuilder</span> <span class="p">{</span> <span class="n">builder</span> <span class="o">:=</span> <span class="n">eventBuilderPool</span><span class="o">.</span><span class="n">Get</span><span class="p">()</span><span class="o">.</span><span class="p">(</span><span class="o">*</span><span class="n">EventBuilder</span><span class="p">)</span> <span class="n">builder</span><span class="o">.</span><span class="n">Reset</span><span class="p">()</span> <span class="n">builder</span><span class="o">.</span><span class="n">Service</span> <span class="o">=</span> <span class="n">raw</span><span class="o">.</span><span class="n">Service</span> <span class="n">builder</span><span class="o">.</span><span class="n">Level</span> <span class="o">=</span> <span class="n">raw</span><span class="o">.</span><span class="n">Level</span> <span class="n">builder</span><span class="o">.</span><span class="n">Message</span> <span class="o">=</span> <span class="n">raw</span><span class="o">.</span><span class="n">Message</span> <span class="n">builder</span><span class="o">.</span><span class="n">TraceID</span> <span class="o">=</span> <span class="n">raw</span><span class="o">.</span><span class="n">TraceID</span> <span class="k">for</span> <span class="n">k</span><span class="p">,</span> <span class="n">v</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">raw</span><span class="o">.</span><span class="n">Metadata</span> <span class="p">{</span> <span class="n">builder</span><span class="o">.</span><span class="n">Fields</span><span class="p">[</span><span class="n">k</span><span class="p">]</span> <span class="o">=</span> <span class="n">stringify</span><span class="p">(</span><span class="n">v</span><span class="p">)</span> <span class="p">}</span> <span class="k">return</span> <span class="n">builder</span> <span class="p">}</span> <span class="k">func</span> <span class="n">releaseEventBuilder</span><span class="p">(</span><span class="n">builder</span> <span class="o">*</span><span class="n">EventBuilder</span><span class="p">)</span> <span class="p">{</span> <span class="n">builder</span><span class="o">.</span><span class="n">Reset</span><span class="p">()</span> <span class="n">eventBuilderPool</span><span class="o">.</span><span class="n">Put</span><span class="p">(</span><span class="n">builder</span><span class="p">)</span> <span class="p">}</span> <span class="k">func</span> <span class="n">stringify</span><span class="p">(</span><span class="n">v</span> <span class="k">interface</span><span class="p">{})</span> <span class="kt">string</span> <span class="p">{</span> <span class="k">switch</span> <span class="n">value</span> <span class="o">:=</span> <span class="n">v</span><span class="o">.</span><span class="p">(</span><span class="k">type</span><span class="p">)</span> <span class="p">{</span> <span class="k">case</span> <span class="kt">string</span><span class="o">:</span> <span class="k">return</span> <span class="n">value</span> <span class="k">case</span> <span class="kt">int</span><span class="o">:</span> <span class="k">return</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Sprintf</span><span class="p">(</span><span class="s">"%d"</span><span class="p">,</span> <span class="n">value</span><span class="p">)</span> <span class="k">case</span> <span class="kt">float64</span><span class="o">:</span> <span class="k">return</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Sprintf</span><span class="p">(</span><span class="s">"%f"</span><span class="p">,</span> <span class="n">value</span><span class="p">)</span> <span class="k">case</span> <span class="kt">bool</span><span class="o">:</span> <span class="k">return</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Sprintf</span><span class="p">(</span><span class="s">"%t"</span><span class="p">,</span> <span class="n">value</span><span class="p">)</span> <span class="k">default</span><span class="o">:</span> <span class="k">return</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Sprintf</span><span class="p">(</span><span class="s">"%v"</span><span class="p">,</span> <span class="n">value</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>The idea is simple:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Do not allocate a new builder for every event. Reuse a builder. Clean it carefully. Return it to the pool. </code></pre> </div> <p>This helped reduce the number of allocations per event.</p> <p>But again, this requires discipline.</p> <p>If the builder is still used somewhere else, do not put it back into the pool.</p> <p>Only return an object to the pool when you are 100% sure nobody else will use it.</p> <h2> A Common Bug: Returning a Buffer Too Early </h2> <p>This is one of the most dangerous mistakes with <code>sync.Pool</code>.</p> <p>Bad example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">buf</span> <span class="o">:=</span> <span class="n">bufferPool</span><span class="o">.</span><span class="n">Get</span><span class="p">()</span><span class="o">.</span><span class="p">(</span><span class="o">*</span><span class="n">bytes</span><span class="o">.</span><span class="n">Buffer</span><span class="p">)</span> <span class="n">buf</span><span class="o">.</span><span class="n">Reset</span><span class="p">()</span> <span class="k">defer</span> <span class="n">bufferPool</span><span class="o">.</span><span class="n">Put</span><span class="p">(</span><span class="n">buf</span><span class="p">)</span> <span class="n">json</span><span class="o">.</span><span class="n">NewEncoder</span><span class="p">(</span><span class="n">buf</span><span class="p">)</span><span class="o">.</span><span class="n">Encode</span><span class="p">(</span><span class="n">event</span><span class="p">)</span> <span class="n">sendAsync</span><span class="p">(</span><span class="n">buf</span><span class="o">.</span><span class="n">Bytes</span><span class="p">())</span> <span class="c">// dangerous</span> </code></pre> </div> <p>This is dangerous because <code>sendAsync</code> may use the byte slice later, after the buffer has already been returned to the pool.</p> <p>Another request can get the same buffer and overwrite the data.</p> <p>The result can be corrupted payloads.</p> <p>The safer version is:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">buf</span> <span class="o">:=</span> <span class="n">bufferPool</span><span class="o">.</span><span class="n">Get</span><span class="p">()</span><span class="o">.</span><span class="p">(</span><span class="o">*</span><span class="n">bytes</span><span class="o">.</span><span class="n">Buffer</span><span class="p">)</span> <span class="n">buf</span><span class="o">.</span><span class="n">Reset</span><span class="p">()</span> <span class="k">defer</span> <span class="k">func</span><span class="p">()</span> <span class="p">{</span> <span class="n">buf</span><span class="o">.</span><span class="n">Reset</span><span class="p">()</span> <span class="n">bufferPool</span><span class="o">.</span><span class="n">Put</span><span class="p">(</span><span class="n">buf</span><span class="p">)</span> <span class="p">}()</span> <span class="n">json</span><span class="o">.</span><span class="n">NewEncoder</span><span class="p">(</span><span class="n">buf</span><span class="p">)</span><span class="o">.</span><span class="n">Encode</span><span class="p">(</span><span class="n">event</span><span class="p">)</span> <span class="n">payload</span> <span class="o">:=</span> <span class="nb">append</span><span class="p">([]</span><span class="kt">byte</span><span class="p">(</span><span class="no">nil</span><span class="p">),</span> <span class="n">buf</span><span class="o">.</span><span class="n">Bytes</span><span class="p">()</span><span class="o">...</span><span class="p">)</span> <span class="n">sendAsync</span><span class="p">(</span><span class="n">payload</span><span class="p">)</span> </code></pre> </div> <p>Yes, this copy creates an allocation.</p> <p>But correctness is more important.</p> <p>Pooling should not create hidden data races or corrupted messages.</p> <p>The goal is not to remove every allocation from the system.</p> <p>The goal is to remove unnecessary allocations safely.</p> <h2> Benchmark Before and After </h2> <p>After applying pooling to the hottest temporary objects, the benchmark improved.</p> <p>The simplified benchmark before pooling:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>BenchmarkIngestWithoutPool-10 8200 145000 ns/op 128 KB/op 420 allocs/op </code></pre> </div> <p>After pooling reusable buffers and temporary event builders:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>BenchmarkIngestWithPool-10 13500 89000 ns/op 62 KB/op 210 allocs/op </code></pre> </div> <p>In this benchmark, the improvement was roughly:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>~38% lower processing time per operation ~51% lower memory usage per operation ~50% fewer allocations per operation </code></pre> </div> <p>But the real win was visible under load.</p> <p>Before:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Requests/sec: 15,000+ Average latency: 16ms p95 latency: 90ms p99 latency: 280ms - 400ms GC cycles: Frequent </code></pre> </div> <p>After:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Requests/sec: 15,000+ Average latency: 11ms p95 latency: 42ms p99 latency: 95ms - 140ms GC cycles: Reduced </code></pre> </div> <p>These numbers are from a simplified internal benchmark scenario, not a universal promise.</p> <p>Your results will depend on payload size, CPU, memory, JSON structure, traffic pattern, and how many allocations exist in your hot path.</p> <p>But the direction was clear:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>less allocation pressure less GC work more stable tail latency better throughput under pressure </code></pre> </div> <p>That was exactly what the system needed.</p> <h2> Why This Works Well for Log Processing Systems </h2> <p>Log processing systems are a good use case for pooling because they usually process many similar objects repeatedly.</p> <p>For example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>network buffers JSON payload buffers temporary event builders batch buffers compression buffers serialization buffers </code></pre> </div> <p>The pattern repeats thousands of times per second.</p> <p>That makes object reuse valuable.</p> <p>In a normal CRUD API, this optimization may not matter.</p> <p>But in ingestion systems, queues, observability pipelines, proxies, gateways, and stream processors, small allocation costs can become very large at scale.</p> <p>This is where senior-level performance work usually starts:</p> <p>Not by guessing.</p> <p>Not by making the code complex immediately.</p> <p>But by measuring the system, finding the hot path, and reducing unnecessary work where it actually matters.</p> <h2> When Not to Use <code>sync.Pool</code> </h2> <p><code>sync.Pool</code> is powerful, but it is not something I use everywhere.</p> <p>I avoid it when:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>the object is very small the code is not in a hot path allocation rate is already low pooling makes the code harder to understand the object contains sensitive data and cleanup is risky ownership is unclear </code></pre> </div> <p>For example, pooling a tiny struct in a low-traffic admin endpoint is probably useless.</p> <p>It makes the code more complex without improving the system.</p> <p>That is not good engineering.</p> <p>Good performance engineering is not about adding clever tricks everywhere.</p> <p>It is about knowing where the system actually pays the cost.</p> <h2> Practical Rules I Follow </h2> <p>Here are the rules I personally follow when using <code>sync.Pool</code>:</p> <h3> 1. Measure first </h3> <p>Do not add pooling just because it looks professional.</p> <p>Check allocations with benchmarks:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">b</span><span class="o">.</span><span class="n">ReportAllocs</span><span class="p">()</span> </code></pre> </div> <p>Use profiling when possible:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go <span class="nb">test</span> <span class="nt">-bench</span><span class="o">=</span><span class="nb">.</span> <span class="nt">-benchmem</span> </code></pre> </div> <p>For production-like analysis, use <code>pprof</code> and runtime metrics.</p> <h3> 2. Pool only hot-path temporary objects </h3> <p>Good candidates:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>bytes.Buffer large []byte slices temporary builders compression buffers serialization helpers </code></pre> </div> <p>Bad candidates:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>business state long-lived objects request-specific objects still used asynchronously objects with unclear ownership </code></pre> </div> <h3> 3. Always reset before reuse </h3> <p>Never trust the object you get from the pool.</p> <p>Clean it before using it.</p> <p>Clean it before putting it back.</p> <h3> 4. Be careful with references </h3> <p>Do not return an object to the pool while another goroutine, function, or queue still references it.</p> <p>This is especially important with:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>[]byte bytes.Buffer maps slices pointers </code></pre> </div> <h3> 5. Do not use <code>sync.Pool</code> as a cache </h3> <p>The garbage collector can clear pooled objects.</p> <p>So never depend on the pool for correctness.</p> <p>The system must work even if the pool is empty.</p> <h2> The Senior Engineering Lesson </h2> <p>The biggest lesson for me was this:</p> <p>Performance problems are not always about slow code.</p> <p>Sometimes they are about how much temporary work the code creates.</p> <p>In my log processing service, the business logic was not very complicated.</p> <p>The real issue was that every request created too many short-lived objects.</p> <p>At low traffic, this was invisible.</p> <p>At high traffic, it became a GC problem.</p> <p>And once GC became more active, p99 latency became unstable.</p> <p>Using <code>sync.Pool</code> did not magically make the system fast.</p> <p>But it removed unnecessary pressure from the runtime.</p> <p>That gave the service more breathing room under load.</p> <p>The final architecture was still simple:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>receive logs parse JSON normalize events reuse temporary buffers batch efficiently send downstream </code></pre> </div> <p>But the implementation became more careful about memory.</p> <p>That is the difference between code that works and code that survives real production traffic.</p> <h2> Final Thoughts </h2> <p><code>sync.Pool</code> is not something every Go application needs.</p> <p>But if you are building high-throughput systems like:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>log processors observability pipelines API gateways stream processors network services JSON-heavy ingestion APIs </code></pre> </div> <p>then object pooling is worth understanding.</p> <p>The key is not to use it blindly.</p> <p>The key is to measure first, identify allocation-heavy hot paths, and then reuse objects safely.</p> <p>For my Sentry-like log processing pipeline, pooling buffers and temporary builders helped reduce allocations, lower GC pressure, and stabilize p99 latency under high load.</p> <p>And in production systems, stable p99 latency is often more important than a beautiful average latency number.</p> <p>Because users do not feel your average.</p> <p>They feel the slow requests.</p> go performance backend observability amir Thu, 28 May 2026 10:31:54 +0000 https://dev.to/amirsefati/why-we-accidentally-blocked-our-users-a-deep-dive-into-idempotency-in-distributed-systems-4aik https://dev.to/amirsefati/why-we-accidentally-blocked-our-users-a-deep-dive-into-idempotency-in-distributed-systems-4aik <p>I learned one of my most important distributed-systems lessons the hard way.</p> <p>We were working on a payment flow connected to an external payment gateway. On paper, the architecture looked solid: microservices, clean database transactions, retry logic, monitoring, and enough security checks to make us feel safe before deployment.</p> <p>Then production reminded us that real users do not live inside clean architecture diagrams.</p> <p>Support tickets started coming in. Some users could not complete payments. Some accounts were being blocked too aggressively. At first, it looked like suspicious behavior: multiple payment attempts, repeated payloads, and requests arriving only seconds apart.</p> <p>But when I dug into the logs, the real problem was not fraud.</p> <p>It was our own backend.</p> <p>A user with a slow network clicked the <strong>Pay</strong> button, waited, saw nothing happen, and clicked again. In another case, the browser retried a request after a timeout. Our backend received multiple identical payment requests within a very short window, and our naive security logic treated them like duplicate transaction anomalies or replay attempts.</p> <p>We were punishing users for having bad internet.</p> <p>That incident changed the way I think about payment systems, retries, APIs, and side effects. In distributed systems, you cannot control the network. You cannot control the user's browser. You cannot guarantee that a response will reach the client.</p> <p>But you <strong>must</strong> control what happens when the same intent reaches your backend more than once.</p> <p>That is where idempotency becomes essential.</p> <h2> The Problem Is Not the Retry. The Problem Is the Side Effect. </h2> <p>Retries are normal.</p> <p>Clients retry. Browsers retry. Mobile networks fail. Gateways timeout. Load balancers drop connections. Users double-click buttons. Background workers reprocess jobs. Message queues deliver the same message more than once.</p> <p>The dangerous part is not receiving the same request multiple times.</p> <p>The dangerous part is executing the same side effect multiple times.</p> <p>For example:</p> <ul> <li>charging a card twice</li> <li>creating two orders</li> <li>sending duplicate invoices</li> <li>blocking a user after repeated attempts</li> <li>reducing inventory multiple times</li> <li>creating duplicate ledger entries</li> <li>triggering the same notification several times</li> </ul> <p>In backend engineering, especially around payments and financial workflows, the real question is not:</p> <blockquote> <p>How do I stop duplicate requests?</p> </blockquote> <p>The better question is:</p> <blockquote> <p>How do I make duplicate requests safe?</p> </blockquote> <h2> What Idempotency Actually Means </h2> <p>In mathematics, an operation is idempotent when applying it multiple times produces the same result as applying it once.</p> <p>In API design, some HTTP methods are naturally expected to be idempotent.</p> <p><code>GET</code> should not change state.</p> <p><code>PUT</code> can be idempotent because replacing a resource with the same representation multiple times should leave the system in the same final state.</p> <p><code>DELETE</code> can also be idempotent because deleting the same resource multiple times still means the resource does not exist.</p> <p>But <code>POST</code> is different.</p> <p>A <code>POST /payments</code> request usually means:</p> <blockquote> <p>Create a new payment.</p> </blockquote> <p>If the client sends the same request twice, the backend may create two payments unless we intentionally design against it.</p> <p>That is the core problem.</p> <p>A payment request represents an <strong>intent</strong>, not just an HTTP payload. If the user intended to pay once, the system should execute that intent once, even if the request arrives multiple times.</p> <h2> Enter the Idempotency Key </h2> <p>An idempotency key is a unique value generated by the client and sent with the request, usually as an HTTP header:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight http"><code><span class="err">Idempotency-Key: 7f3f0f4c-98a4-4d8c-9b91-7a2f9e4c5d11 </span></code></pre> </div> <p>The key says:</p> <blockquote> <p>This request represents one specific user action. If you see this key again, do not execute the action again. Return the result of the first execution.</p> </blockquote> <p>That simple idea changes the system from:</p> <blockquote> <p>I received another request, so I will process it again.</p> </blockquote> <p>to:</p> <blockquote> <p>I received the same intent again, so I will return the same result.</p> </blockquote> <p>This is especially important for:</p> <ul> <li>payments</li> <li>order creation</li> <li>wallet transfers</li> <li>account provisioning</li> <li>invoice generation</li> <li>message publishing</li> <li>background job processing</li> <li>any workflow where duplicate execution is dangerous</li> </ul> <h2> A Good Idempotency Layer Is More Than a Boolean Flag </h2> <p>A common mistake is implementing idempotency like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>if key exists: reject request else: process request </code></pre> </div> <p>That looks simple, but it is not enough for production systems.</p> <p>A real implementation needs to answer several questions:</p> <ul> <li>Is the request currently being processed?</li> <li>Did the request complete successfully?</li> <li>Should we return a cached response?</li> <li>Did the request fail with a retryable error?</li> <li>Is the same key being reused with a different payload?</li> <li>What happens if two identical requests arrive at the exact same millisecond?</li> </ul> <p>For that reason, I prefer thinking about idempotency as a small state machine.</p> <h2> The State Machine I Like to Use </h2> <p>A practical idempotency record can have these states:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>STARTED COMPLETED FAILED </code></pre> </div> <h3> <code>STARTED</code> </h3> <p>The server received the key and started processing the request.</p> <p>This state is important because it protects you from concurrent duplicates. If another request arrives with the same key while the first request is still running, the system should not execute the action again.</p> <p>Usually, I return something like:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight http"><code><span class="err">409 Conflict </span></code></pre> </div> <p>with a response explaining that the request is already in progress.</p> <h3> <code>COMPLETED</code> </h3> <p>The operation finished successfully.</p> <p>At this point, the server stores the final response and returns that same response for future requests with the same key.</p> <p>This is the key behavior that makes retries safe.</p> <h3> <code>FAILED</code> </h3> <p>The operation failed with a server-side or retryable error.</p> <p>This part depends on your business rules, but in many systems I prefer allowing the client to retry after a true internal failure. The important thing is to be explicit about which failures are cached and which failures are not.</p> <h2> Why Redis Works Well Here </h2> <p>You can implement idempotency using PostgreSQL with a unique constraint. In some systems, that is perfectly fine.</p> <p>But in high-throughput APIs, I usually prefer Redis for the idempotency layer because it gives you:</p> <ul> <li>fast key lookup</li> <li>atomic operations</li> <li>natural TTL support</li> <li>simple distributed locking primitives</li> <li>low overhead for temporary request metadata</li> </ul> <p>The TTL part matters a lot.</p> <p>Idempotency keys should not live forever. For many payment-style workflows, a 24-hour TTL is a reasonable starting point. Some systems may need shorter or longer retention depending on reconciliation, compliance, and product behavior.</p> <h2> The Race Condition You Must Handle </h2> <p>The biggest bug in naive idempotency implementations is the race condition.</p> <p>Imagine two identical requests arrive at the same time:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Request A checks key -&gt; key does not exist Request B checks key -&gt; key does not exist Request A processes payment Request B processes payment </code></pre> </div> <p>Now you have two charges.</p> <p>This is why the first write must be atomic.</p> <p>In Redis, you can use <code>SET</code> with <code>NX</code> and <code>EX</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">lockKey</span> <span class="o">=</span> <span class="s2">`idempotency:</span><span class="p">${</span><span class="nx">key</span><span class="p">}</span><span class="s2">`</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">acquired</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">redis</span><span class="p">.</span><span class="nf">set</span><span class="p">(</span> <span class="nx">lockKey</span><span class="p">,</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({</span> <span class="na">state</span><span class="p">:</span> <span class="dl">"</span><span class="s2">STARTED</span><span class="dl">"</span><span class="p">,</span> <span class="nx">payloadHash</span><span class="p">,</span> <span class="na">createdAt</span><span class="p">:</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">()</span> <span class="p">}),</span> <span class="dl">"</span><span class="s2">NX</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">EX</span><span class="dl">"</span><span class="p">,</span> <span class="mi">86400</span> <span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">acquired</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// Another request already created this key.</span> <span class="c1">// Now inspect its current state.</span> <span class="p">}</span> </code></pre> </div> <p><code>NX</code> means "only set this key if it does not already exist."</p> <p>That one detail is critical. It turns the check-and-set operation into one atomic step.</p> <h2> Returning the Cached Response </h2> <p>When the first request completes, we update the idempotency record:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">await</span> <span class="nx">redis</span><span class="p">.</span><span class="nf">set</span><span class="p">(</span> <span class="s2">`idempotency:</span><span class="p">${</span><span class="nx">key</span><span class="p">}</span><span class="s2">`</span><span class="p">,</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({</span> <span class="na">state</span><span class="p">:</span> <span class="dl">"</span><span class="s2">COMPLETED</span><span class="dl">"</span><span class="p">,</span> <span class="nx">payloadHash</span><span class="p">,</span> <span class="na">statusCode</span><span class="p">:</span> <span class="mi">201</span><span class="p">,</span> <span class="na">responseBody</span><span class="p">:</span> <span class="p">{</span> <span class="na">paymentId</span><span class="p">:</span> <span class="dl">"</span><span class="s2">pay_123</span><span class="dl">"</span><span class="p">,</span> <span class="na">status</span><span class="p">:</span> <span class="dl">"</span><span class="s2">succeeded</span><span class="dl">"</span> <span class="p">},</span> <span class="na">completedAt</span><span class="p">:</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">()</span> <span class="p">}),</span> <span class="dl">"</span><span class="s2">EX</span><span class="dl">"</span><span class="p">,</span> <span class="mi">86400</span> <span class="p">);</span> </code></pre> </div> <p>Then, if the same request arrives again:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">record</span> <span class="o">=</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">parse</span><span class="p">(</span><span class="k">await</span> <span class="nx">redis</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="s2">`idempotency:</span><span class="p">${</span><span class="nx">key</span><span class="p">}</span><span class="s2">`</span><span class="p">));</span> <span class="k">if </span><span class="p">(</span><span class="nx">record</span><span class="p">.</span><span class="nx">state</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">COMPLETED</span><span class="dl">"</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="nx">record</span><span class="p">.</span><span class="nx">statusCode</span><span class="p">).</span><span class="nf">json</span><span class="p">(</span><span class="nx">record</span><span class="p">.</span><span class="nx">responseBody</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <p>The client gets a successful response, but the payment is not executed again.</p> <p>That is the whole point.</p> <p>The retry becomes harmless.</p> <h2> Payload Fingerprinting: The Edge Case Many People Miss </h2> <p>There is one subtle bug that can become very dangerous.</p> <p>What if the client reuses the same idempotency key for a different request?</p> <p>Example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Key: abc-123 Amount: $10 </code></pre> </div> <p>Then later:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Key: abc-123 Amount: $1,000 </code></pre> </div> <p>If your server only checks the key, it may return the cached response for the old request. That can create serious data integrity problems.</p> <p>The fix is payload fingerprinting.</p> <p>When the request first arrives, create a stable hash of the meaningful request body:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="nx">crypto</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">crypto</span><span class="dl">"</span><span class="p">;</span> <span class="kd">function</span> <span class="nf">createPayloadHash</span><span class="p">(</span><span class="nx">payload</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">crypto</span> <span class="p">.</span><span class="nf">createHash</span><span class="p">(</span><span class="dl">"</span><span class="s2">sha256</span><span class="dl">"</span><span class="p">)</span> <span class="p">.</span><span class="nf">update</span><span class="p">(</span><span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">(</span><span class="nx">payload</span><span class="p">))</span> <span class="p">.</span><span class="nf">digest</span><span class="p">(</span><span class="dl">"</span><span class="s2">hex</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <p>Then store that hash with the idempotency key.</p> <p>On every retry, compare the incoming payload hash with the stored hash.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">if </span><span class="p">(</span><span class="nx">record</span><span class="p">.</span><span class="nx">payloadHash</span> <span class="o">!==</span> <span class="nx">incomingPayloadHash</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">400</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Idempotency key was reused with a different payload.</span><span class="dl">"</span> <span class="p">});</span> <span class="p">}</span> </code></pre> </div> <p>This prevents key reuse bugs from silently corrupting your workflow.</p> <p>In my opinion, this is not optional for financial systems.</p> <h2> Be Careful with 4xx and 5xx Responses </h2> <p>Not every response should be cached the same way.</p> <h3> 2xx responses </h3> <p>Usually safe to cache.</p> <p>The operation succeeded, and future retries should return the same response.</p> <h3> 5xx responses </h3> <p>This depends on where the failure happened.</p> <p>If your service failed before executing the side effect, a retry may be safe.</p> <p>If your service timed out after calling the payment gateway, you may not know whether the external side effect happened. In that case, you need reconciliation, gateway lookup, or a more careful state transition.</p> <p>This is where many systems get complicated.</p> <h3> 4xx responses </h3> <p>Be very careful.</p> <p>If the user sent invalid input, you may not want to cache that failure forever. Maybe the user fixes the payload and retries. Maybe the frontend generated the key before validation was complete.</p> <p>Personally, I do not like blindly caching all 4xx responses for long periods. For many product flows, it is better to reject the invalid request and ask the client to generate a new idempotency key after the user changes the input.</p> <p>The important thing is to define this behavior intentionally.</p> <h2> Client-Side Key Generation </h2> <p>The idempotency key should usually be generated on the client.</p> <p>For example, in a checkout page, generate the key when the user starts a specific payment attempt and reuse that key for retries of the same attempt.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">idempotencyKey</span> <span class="o">=</span> <span class="nx">crypto</span><span class="p">.</span><span class="nf">randomUUID</span><span class="p">();</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="dl">"</span><span class="s2">/api/payments</span><span class="dl">"</span><span class="p">,</span> <span class="p">{</span> <span class="na">method</span><span class="p">:</span> <span class="dl">"</span><span class="s2">POST</span><span class="dl">"</span><span class="p">,</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">"</span><span class="s2">Content-Type</span><span class="dl">"</span><span class="p">:</span> <span class="dl">"</span><span class="s2">application/json</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">Idempotency-Key</span><span class="dl">"</span><span class="p">:</span> <span class="nx">idempotencyKey</span> <span class="p">},</span> <span class="na">body</span><span class="p">:</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({</span> <span class="na">amount</span><span class="p">:</span> <span class="mi">1000</span><span class="p">,</span> <span class="na">currency</span><span class="p">:</span> <span class="dl">"</span><span class="s2">USD</span><span class="dl">"</span> <span class="p">})</span> <span class="p">});</span> </code></pre> </div> <p>If the server generates the key too late, it may not help with network failures between the client and server.</p> <p>The client needs to be able to say:</p> <blockquote> <p>I am retrying the same action.</p> </blockquote> <p>That requires the client to own the key for that action.</p> <h2> Idempotency Is Not a Replacement for Database Integrity </h2> <p>One mistake I see sometimes is treating idempotency as the only protection layer.</p> <p>It should not be.</p> <p>Idempotency is part of the design, but you should still use database constraints and transactional boundaries where appropriate.</p> <p>For example:</p> <ul> <li>unique constraints for order numbers</li> <li>unique transaction references</li> <li>ledger constraints</li> <li>gateway transaction IDs</li> <li>consistent status transitions</li> <li>outbox patterns for event publishing</li> </ul> <p>In serious systems, correctness usually comes from layers.</p> <p>The API idempotency layer prevents duplicate execution at the request boundary.</p> <p>The database protects final state.</p> <p>The message queue and worker design protect asynchronous processing.</p> <p>The reconciliation process protects you when external systems behave unexpectedly.</p> <h2> A Simple Middleware Flow </h2> <p>A clean idempotency middleware can follow this flow:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>1. Read Idempotency-Key from the request. 2. Validate that the key exists for dangerous POST endpoints. 3. Create a hash of the request payload. 4. Atomically create a STARTED record with Redis SET NX EX. 5. If the key already exists: - compare payload hash - if STARTED, return 409 Conflict - if COMPLETED, return cached response - if FAILED, allow or reject retry based on policy 6. Execute the business operation. 7. Store the final response as COMPLETED. 8. Return the response to the client. </code></pre> </div> <p>This flow is simple enough to understand, but strong enough to avoid many production problems.</p> <h2> Practical Rules I Follow Now </h2> <p>After dealing with this in real systems, these are the rules I try to follow:</p> <ol> <li>Any endpoint that creates money movement must support idempotency.</li> <li>Any endpoint that creates orders, invoices, or irreversible side effects should support idempotency.</li> <li>The key should represent one user intent, not one HTTP request.</li> <li>The first write for the idempotency key must be atomic.</li> <li>Store and compare a payload hash.</li> <li>Cache successful responses.</li> <li>Be very careful when caching failures.</li> <li>Use TTL intentionally.</li> <li>Do not rely only on frontend button disabling.</li> <li>Do not use rate limiting as a replacement for idempotency.</li> </ol> <p>That last point is important.</p> <p>Rate limiting protects infrastructure.</p> <p>Idempotency protects correctness.</p> <p>They are not the same thing.</p> <h2> The Real Lesson </h2> <p>The day we accidentally blocked users was not just a payment bug. It was a design lesson.</p> <p>Our system was technically trying to protect users, but because we did not model retries correctly, we created a worse experience for legitimate customers.</p> <p>Distributed systems are messy. Networks fail. Clients retry. Users double-click. Gateways timeout. Workers reprocess jobs.</p> <p>A mature backend does not pretend these things will not happen.</p> <p>A mature backend absorbs them.</p> <p>Idempotency is one of those patterns that looks simple from the outside, but when you implement it properly, it changes the reliability of the whole system.</p> <p>For me, the biggest mindset shift was this:</p> <blockquote> <p>Do not fight duplicate requests. Make duplicate requests safe.</p> </blockquote> <p>That is the difference between a backend that works in ideal conditions and a backend that survives production.</p> backend distributedsystems redis architecture amir Thu, 28 May 2026 09:35:32 +0000 https://dev.to/amirsefati/go-modules-in-practice-init-tidy-vendor-and-publishing-packages-58lc https://dev.to/amirsefati/go-modules-in-practice-init-tidy-vendor-and-publishing-packages-58lc <p>As a backend engineer, I have worked on many services where the hard part was not only writing the code. The hard part was keeping the project clean, reproducible, easy to build, and safe to maintain as the team and codebase grew.</p> <p>In Go, a big part of that discipline comes from understanding <strong>Go Modules</strong>.</p> <p>At first, Go Modules may look simple: a <code>go.mod</code> file, a <code>go.sum</code> file, and a few commands like <code>go mod init</code> and <code>go mod tidy</code>. But in real projects, these small tools decide how your service builds in CI, how your dependencies are verified, how private repositories are handled, and how other developers can use your package.</p> <p>In this article, I want to explain Go Modules in a practical way, from the mindset of someone building production backend systems.</p> <p>We will cover:</p> <ul> <li>What Go Modules are and why Go does not work like NPM or Pip</li> <li>How <code>go mod init</code>, <code>go mod tidy</code>, and <code>go mod vendor</code> actually help</li> <li>How I think about Go project structure without over-engineering</li> <li>How to publish your own Go package</li> <li>A few production tips that matter in real teams</li> </ul> <h2> What Are Go Modules? </h2> <p>A <strong>Go module</strong> is a versioned collection of Go packages.</p> <p>In simple words, it is the boundary of your project. It tells Go:</p> <ul> <li>what your project is called</li> <li>which Go version it targets</li> <li>which dependencies it needs</li> <li>which versions of those dependencies should be used</li> </ul> <p>A Go module is defined by the <code>go.mod</code> file.</p> <p>Before Go Modules, Go projects were commonly managed inside <code>GOPATH</code>. That worked, but it created friction around dependency versions and project location. Go Modules solved that by making dependency management explicit and project-based.</p> <p>Today, when I start a serious Go project, one of the first things I do is initialize a module.</p> <h2> Why Go Packages Feel Different From NPM or Pip </h2> <p>If you come from JavaScript or Python, Go package management may feel a little strange at first.</p> <p>In Node.js, packages are usually published to <strong>NPM</strong>.</p> <p>In Python, packages are usually published to <strong>PyPI</strong>.</p> <p>Go is different.</p> <p>Go uses the module path as an import path, and that path is usually a version control URL, for example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">import</span> <span class="s">"github.com/google/uuid"</span> </code></pre> </div> <p>This means Go can resolve packages directly from places like GitHub, GitLab, or Bitbucket.</p> <p>That is why many Go packages look like URLs. The module path is not just a name. It is also the identity of the package.</p> <p>This design makes publishing very simple. In many cases, publishing a Go package is just:</p> <ol> <li>push your code to GitHub</li> <li>create a proper Git tag</li> <li>let Go tooling resolve it</li> </ol> <p>No separate package registry account is required for basic public modules.</p> <h2> Starting a Project With <code>go mod init</code> </h2> <p>Every Go module starts with this command:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go mod init &lt;module-path&gt; </code></pre> </div> <p>For example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir </span>my-awesome-project <span class="nb">cd </span>my-awesome-project go mod init github.com/yourusername/my-awesome-project </code></pre> </div> <p>This creates a <code>go.mod</code> file:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">module</span> <span class="n">github</span><span class="o">.</span><span class="n">com</span><span class="o">/</span><span class="n">yourusername</span><span class="o">/</span><span class="n">my</span><span class="o">-</span><span class="n">awesome</span><span class="o">-</span><span class="n">project</span> <span class="k">go</span> <span class="m">1.22</span> </code></pre> </div> <p>The module path matters.</p> <p>For local experiments, you can use something simple:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go mod init myapp </code></pre> </div> <p>But for real packages, especially packages you may publish later, I prefer using the final repository path from the beginning:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go mod init github.com/yourusername/my-awesome-project </code></pre> </div> <p>That prevents painful import-path changes later.</p> <h2> Adding Third-Party Packages </h2> <p>Let’s say I am building a small HTTP service and I want to use Gin:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">package</span> <span class="n">main</span> <span class="k">import</span> <span class="p">(</span> <span class="s">"net/http"</span> <span class="s">"github.com/gin-gonic/gin"</span> <span class="p">)</span> <span class="k">func</span> <span class="n">main</span><span class="p">()</span> <span class="p">{</span> <span class="n">r</span> <span class="o">:=</span> <span class="n">gin</span><span class="o">.</span><span class="n">Default</span><span class="p">()</span> <span class="n">r</span><span class="o">.</span><span class="n">GET</span><span class="p">(</span><span class="s">"/ping"</span><span class="p">,</span> <span class="k">func</span><span class="p">(</span><span class="n">c</span> <span class="o">*</span><span class="n">gin</span><span class="o">.</span><span class="n">Context</span><span class="p">)</span> <span class="p">{</span> <span class="n">c</span><span class="o">.</span><span class="n">JSON</span><span class="p">(</span><span class="n">http</span><span class="o">.</span><span class="n">StatusOK</span><span class="p">,</span> <span class="n">gin</span><span class="o">.</span><span class="n">H</span><span class="p">{</span> <span class="s">"message"</span><span class="o">:</span> <span class="s">"pong"</span><span class="p">,</span> <span class="p">})</span> <span class="p">})</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">r</span><span class="o">.</span><span class="n">Run</span><span class="p">();</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="nb">panic</span><span class="p">(</span><span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>At this point, Go sees an external import:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="s">"github.com/gin-gonic/gin"</span> </code></pre> </div> <p>Now the module needs to know about this dependency.</p> <p>You can run:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go mod tidy </code></pre> </div> <p>or directly:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go get github.com/gin-gonic/gin </code></pre> </div> <p>In daily work, I use <code>go mod tidy</code> a lot because it does more than just add packages.</p> <h2> What <code>go mod tidy</code> Really Does </h2> <p><code>go mod tidy</code> is one of the commands I run before almost every commit in a Go project.</p> <p>It scans your code and tests, then updates <code>go.mod</code> and <code>go.sum</code> based on what is actually used.</p> <p>It does three important things:</p> <h3> 1. Adds Missing Dependencies </h3> <p>If your code imports a package but your module does not list it yet, <code>go mod tidy</code> adds it.</p> <p>Example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go mod tidy </code></pre> </div> <p>After that, your <code>go.mod</code> may include something like:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">require</span> <span class="n">github</span><span class="o">.</span><span class="n">com</span><span class="o">/</span><span class="n">gin</span><span class="o">-</span><span class="n">gonic</span><span class="o">/</span><span class="n">gin</span> <span class="n">v1</span><span class="m">.10.0</span> </code></pre> </div> <h3> 2. Removes Unused Dependencies </h3> <p>If you removed a package from your code but it is still listed in <code>go.mod</code>, <code>go mod tidy</code> cleans it up.</p> <p>This is important because old dependencies are not harmless. They can increase build complexity, create security review noise, and confuse other engineers.</p> <h3> 3. Updates <code>go.sum</code> </h3> <p><code>go.sum</code> stores cryptographic checksums for module versions.</p> <p>This helps Go verify that the dependency being downloaded is the same one expected by your project.</p> <p>In production, this matters. Reproducible builds are not a luxury. They are part of engineering discipline.</p> <p>My rule is simple:</p> <blockquote> <p>If I changed imports, removed packages, upgraded dependencies, or touched tests, I run <code>go mod tidy</code> before committing.</p> </blockquote> <h2> Understanding <code>go.mod</code> and <code>go.sum</code> </h2> <p>A minimal <code>go.mod</code> file looks like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">module</span> <span class="n">github</span><span class="o">.</span><span class="n">com</span><span class="o">/</span><span class="n">yourusername</span><span class="o">/</span><span class="n">my</span><span class="o">-</span><span class="n">awesome</span><span class="o">-</span><span class="n">project</span> <span class="k">go</span> <span class="m">1.22</span> <span class="n">require</span> <span class="n">github</span><span class="o">.</span><span class="n">com</span><span class="o">/</span><span class="n">gin</span><span class="o">-</span><span class="n">gonic</span><span class="o">/</span><span class="n">gin</span> <span class="n">v1</span><span class="m">.10.0</span> </code></pre> </div> <p>This file is human-readable and should be committed.</p> <p><code>go.sum</code> is also committed. Some developers think <code>go.sum</code> is like a cache file and should be ignored. That is a mistake.</p> <p><code>go.sum</code> is part of dependency verification. It helps ensure that the same module versions resolve consistently across machines, CI pipelines, and production builds.</p> <p>So in real Go projects, I commit both:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>go.mod go.sum </code></pre> </div> <h2> Vendoring Dependencies With <code>go mod vendor</code> </h2> <p>By default, Go downloads dependencies into the module cache on your machine.</p> <p>But sometimes you want dependencies copied directly into your project. For that, Go provides:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go mod vendor </code></pre> </div> <p>This creates a <code>vendor/</code> directory and copies dependency source code into it.</p> <p>Your project may look like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>my-awesome-project/ ├── go.mod ├── go.sum ├── main.go └── vendor/ </code></pre> </div> <h3> When Vendoring Makes Sense </h3> <p>I do not vendor dependencies in every project, but it can be useful in specific cases:</p> <ul> <li>CI/CD environments with restricted internet access</li> <li>companies with strict dependency review processes</li> <li>projects that must build in isolated networks</li> <li>teams that want dependency source code available inside the repository</li> </ul> <p>For most normal public projects, vendoring is not required. Go’s module proxy and checksum database already solve many reliability problems for public dependencies.</p> <p>But for enterprise systems, especially where builds must be predictable and auditable, vendoring can still be a valid choice.</p> <p>If you use vendoring, build with:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go build <span class="nt">-mod</span><span class="o">=</span>vendor ./... </code></pre> </div> <p>or test with:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go <span class="nb">test</span> <span class="nt">-mod</span><span class="o">=</span>vendor ./... </code></pre> </div> <h2> Project Structure: Start Simple </h2> <p>One of the mistakes I often see is copying project structures from other ecosystems.</p> <p>A developer comes from Laravel, Django, NestJS, or Spring Boot and immediately creates folders like:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>controllers/ services/ repositories/ models/ helpers/ utils/ managers/ </code></pre> </div> <p>This is not always wrong, but in Go it often becomes unnecessary complexity too early.</p> <p>Go projects usually become cleaner when they start simple and grow based on real pressure.</p> <p>For a small service, this can be enough:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>my-project/ ├── go.mod ├── go.sum └── main.go </code></pre> </div> <p>That structure is not “too simple”. It is honest.</p> <p>You do not need architecture before you have a problem that needs architecture.</p> <h2> A Practical Production Structure </h2> <p>When the project grows, I usually move toward a structure like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>my-project/ ├── cmd/ │ └── api/ │ └── main.go ├── internal/ │ ├── config/ │ │ └── config.go │ ├── database/ │ │ └── postgres.go │ ├── http/ │ │ └── router.go │ └── user/ │ ├── handler.go │ ├── service.go │ └── repository.go ├── pkg/ │ └── logger/ │ └── logger.go ├── go.mod └── go.sum </code></pre> </div> <p>Here is how I think about these folders:</p> <h3> <code>cmd/</code> </h3> <p>This contains application entry points.</p> <p>For example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>cmd/api/main.go cmd/worker/main.go cmd/migrate/main.go </code></pre> </div> <p>Each subdirectory represents a runnable program.</p> <h3> <code>internal/</code> </h3> <p>This is where most application code should live.</p> <p>The important thing about <code>internal/</code> is that Go enforces its privacy. Code inside <code>internal/</code> cannot be imported from outside the parent module tree.</p> <p>That is powerful.</p> <p>It means your business logic, database code, handlers, and internal services are protected from becoming accidental public APIs.</p> <h3> <code>pkg/</code> </h3> <p>I use <code>pkg/</code> only for code that is intentionally reusable by other projects.</p> <p>For example:</p> <ul> <li>a logger package</li> <li>a small validation package</li> <li>a reusable client</li> <li>shared utilities that are stable enough to expose</li> </ul> <p>I do not put everything into <code>pkg/</code>. If the code is only for this application, it belongs in <code>internal/</code>.</p> <h2> Publishing Your Own Go Package </h2> <p>One thing I really like about Go is how easy it is to publish packages.</p> <p>Let’s say I wrote a small package for PostgreSQL migration helpers and I want other developers to use it.</p> <h3> Step 1: Create the Module </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir </span>pgmigrate <span class="nb">cd </span>pgmigrate go mod init github.com/yourusername/pgmigrate </code></pre> </div> <h3> Step 2: Write a Small Package </h3> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">package</span> <span class="n">pgmigrate</span> <span class="k">import</span> <span class="s">"database/sql"</span> <span class="k">type</span> <span class="n">Migration</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">Version</span> <span class="kt">int</span> <span class="n">Name</span> <span class="kt">string</span> <span class="n">Up</span> <span class="kt">string</span> <span class="n">Down</span> <span class="kt">string</span> <span class="p">}</span> <span class="k">func</span> <span class="n">Apply</span><span class="p">(</span><span class="n">db</span> <span class="o">*</span><span class="n">sql</span><span class="o">.</span><span class="n">DB</span><span class="p">,</span> <span class="n">migration</span> <span class="n">Migration</span><span class="p">)</span> <span class="kt">error</span> <span class="p">{</span> <span class="n">_</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">db</span><span class="o">.</span><span class="n">Exec</span><span class="p">(</span><span class="n">migration</span><span class="o">.</span><span class="n">Up</span><span class="p">)</span> <span class="k">return</span> <span class="n">err</span> <span class="p">}</span> </code></pre> </div> <h3> Step 3: Add Tests </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go <span class="nb">test</span> ./... </code></pre> </div> <p>Even for small packages, tests matter. A package without tests is harder to trust.</p> <h3> Step 4: Push to GitHub </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>git add <span class="nb">.</span> git commit <span class="nt">-m</span> <span class="s2">"initial release"</span> git push origin main </code></pre> </div> <h3> Step 5: Tag a Version </h3> <p>Go Modules use semantic versioning.</p> <p>Create a Git tag:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>git tag v0.1.0 git push origin v0.1.0 </code></pre> </div> <p>Now other developers can use it:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go get github.com/yourusername/pgmigrate@v0.1.0 </code></pre> </div> <p>That is the beauty of Go package publishing. Git tags are releases.</p> <h2> Semantic Versioning in Go </h2> <p>Versioning is very important in Go.</p> <p>A normal release tag looks like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>v1.2.3 </code></pre> </div> <p>The meaning is:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>MAJOR.MINOR.PATCH </code></pre> </div> <ul> <li> <code>PATCH</code>: bug fixes</li> <li> <code>MINOR</code>: new backward-compatible features</li> <li> <code>MAJOR</code>: breaking changes</li> </ul> <p>One Go-specific detail is important: if your module reaches <code>v2</code> or higher, the module path must include the major version.</p> <p>Example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">module</span> <span class="n">github</span><span class="o">.</span><span class="n">com</span><span class="o">/</span><span class="n">yourusername</span><span class="o">/</span><span class="n">pgmigrate</span><span class="o">/</span><span class="n">v2</span> </code></pre> </div> <p>And users import it like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">import</span> <span class="s">"github.com/yourusername/pgmigrate/v2"</span> </code></pre> </div> <p>This may feel strange in the beginning, but it makes breaking changes explicit.</p> <h2> Working With Private Modules </h2> <p>In real companies, not all Go modules are public.</p> <p>If your company has private repositories, you should configure <code>GOPRIVATE</code>.</p> <p>Example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">export </span><span class="nv">GOPRIVATE</span><span class="o">=</span>github.com/mycompany/<span class="k">*</span> </code></pre> </div> <p>This tells Go not to use the public proxy or checksum database for those module paths.</p> <p>For private GitHub modules, your machine or CI runner also needs Git authentication configured correctly, usually through SSH keys or tokens.</p> <p>In CI/CD, this is one of the first things I check when a build fails with private dependencies.</p> <p>A common symptom is:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>terminal prompts disabled </code></pre> </div> <p>or:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>repository not found </code></pre> </div> <p>The dependency may exist, but the CI runner does not have permission to access it.</p> <h2> Local Multi-Module Development With <code>go work</code> </h2> <p>Sometimes I work on two Go modules at the same time.</p> <p>For example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>workspace/ ├── api-service/ └── shared-lib/ </code></pre> </div> <p>Before Go workspaces, developers often used <code>replace</code> in <code>go.mod</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">replace</span> <span class="n">github</span><span class="o">.</span><span class="n">com</span><span class="o">/</span><span class="n">mycompany</span><span class="o">/</span><span class="n">shared</span><span class="o">-</span><span class="n">lib</span> <span class="o">=&gt;</span> <span class="o">../</span><span class="n">shared</span><span class="o">-</span><span class="n">lib</span> </code></pre> </div> <p>This works, but it is easy to accidentally commit local paths.</p> <p>A better option for local development is <code>go work</code>.</p> <p>Example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir </span>workspace <span class="nb">cd </span>workspace go work init ./api-service ./shared-lib </code></pre> </div> <p>This creates a <code>go.work</code> file that connects local modules during development.</p> <p>I like this approach because it keeps local development clean without polluting the module definition.</p> <h2> My Production Checklist for Go Modules </h2> <p>Before I push Go code, I usually check these things:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go <span class="nb">fmt</span> ./... go <span class="nb">test</span> ./... go mod tidy </code></pre> </div> <p>For larger services, I also check:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go vet ./... </code></pre> </div> <p>And if vendoring is used:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go mod vendor go <span class="nb">test</span> <span class="nt">-mod</span><span class="o">=</span>vendor ./... </code></pre> </div> <p>This small routine prevents many annoying problems in CI.</p> <p>My practical checklist is:</p> <ul> <li>commit both <code>go.mod</code> and <code>go.sum</code> </li> <li>run <code>go mod tidy</code> before pushing</li> <li>avoid unnecessary dependencies</li> <li>do not expose internal application code as public packages</li> <li>use <code>GOPRIVATE</code> for private company modules</li> <li>tag releases properly when publishing packages</li> <li>be careful with <code>replace</code> directives before committing</li> </ul> <h2> Common Mistakes I See </h2> <p>Here are some mistakes I have seen many times in real projects.</p> <h3> Mistake 1: Ignoring <code>go.sum</code> </h3> <p>Do not ignore <code>go.sum</code>.</p> <p>It is part of module verification and should be committed.</p> <h3> Mistake 2: Creating Too Many Folders Too Early </h3> <p>A complex folder structure does not automatically make a project clean.</p> <p>In Go, simple structure is usually better until the codebase proves it needs more separation.</p> <h3> Mistake 3: Putting Everything in <code>pkg/</code> </h3> <p><code>pkg/</code> should not mean “all packages”.</p> <p>Use it for code you intentionally want other modules to import. Otherwise, prefer <code>internal/</code>.</p> <h3> Mistake 4: Forgetting Private Module Configuration </h3> <p>If your dependency is private, the build environment must know that.</p> <p>Use <code>GOPRIVATE</code> and make sure Git authentication works in CI.</p> <h3> Mistake 5: Committing Local <code>replace</code> Paths </h3> <p>This one is very common.</p> <p>A local <code>replace</code> like this can break everyone else’s build:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">replace</span> <span class="n">github</span><span class="o">.</span><span class="n">com</span><span class="o">/</span><span class="n">mycompany</span><span class="o">/</span><span class="n">shared</span><span class="o">-</span><span class="n">lib</span> <span class="o">=&gt;</span> <span class="o">../</span><span class="n">shared</span><span class="o">-</span><span class="n">lib</span> </code></pre> </div> <p>Use <code>go work</code> for local multi-module development when possible.</p> <h2> Final Thoughts </h2> <p>Go Modules are not just a dependency tool. They are part of how Go projects stay clean, buildable, and maintainable.</p> <p>For me, the main lesson is this:</p> <blockquote> <p>Keep the module simple, keep dependencies intentional, and let the project structure grow only when the project really needs it.</p> </blockquote> <p>Start with <code>go mod init</code>.</p> <p>Use <code>go mod tidy</code> as a habit.</p> <p>Understand when <code>vendor/</code> is useful.</p> <p>Use <code>internal/</code> to protect your application code.</p> <p>Tag releases properly when you publish packages.</p> <p>These small habits make a big difference when your Go project moves from a local experiment to a production service used by real users.</p> <p>Happy coding.</p> go backend opensource amir Tue, 26 May 2026 18:39:04 +0000 https://dev.to/amirsefati/mastering-context-in-go-a-senior-engineers-playbook-for-lifecycle-management-147c https://dev.to/amirsefati/mastering-context-in-go-a-senior-engineers-playbook-for-lifecycle-management-147c <p>When you are architecting backend systems, distributed architectures, and microservices, one of the biggest challenges is not just making your code run fast.</p> <p>It is knowing exactly <strong>when to stop it</strong>.</p> <p>Throughout my years working with backend systems and Go’s concurrency model, I have seen how ignoring a seemingly simple concept can slowly create serious production problems: goroutine leaks, wasted CPU cycles, exhausted memory, hanging requests, and services that become harder to reason about under load.</p> <p>In Go, the <code>context</code> package is not just an annoying extra parameter we are forced to pass around.</p> <p>It is the lifecycle control system of a request.</p> <p>In this article, I want to skip the boring textbook definition and look at <code>context</code> from a practical engineering perspective:</p> <blockquote> <p>When does <code>context</code> save your system, and when can it become an architectural trap?</p> </blockquote> <h2> Why Context Exists: Beyond a Simple Timeout </h2> <p>In a distributed architecture, a single incoming HTTP request might trigger a cascade of operations:</p> <ul> <li>an authentication check</li> <li>a database query</li> <li>a Redis lookup</li> <li>a call to another internal service</li> <li>a gRPC request</li> <li>a message published to a queue</li> <li>a third-party API call</li> </ul> <p>Now imagine the client closes the browser tab, the mobile app loses network connection, or the upstream service cancels the request.</p> <p>Should your backend continue doing all that work?</p> <p>Usually, no.</p> <p>Continuing heavy work for a response nobody is waiting for is just burning CPU, memory, database connections, and network bandwidth.</p> <p>This is where <code>context</code> becomes important.</p> <p>We pass <code>context</code> down the call stack to support <strong>cancellation propagation</strong>. It allows the whole request tree to receive the same signal:</p> <blockquote> <p>This work is no longer needed. Stop as soon as possible.</p> </blockquote> <p>That one idea becomes extremely powerful in real-world backend systems.</p> <h2> The Mental Model: Context Is a Request Lifecycle Signal </h2> <p>A good way to think about <code>context.Context</code> is this:</p> <blockquote> <p>Context is not business data. Context is a lifecycle signal.</p> </blockquote> <p>It can tell your code:</p> <ul> <li>the request was cancelled</li> <li>the deadline expired</li> <li>the timeout was reached</li> <li>the caller does not need the result anymore</li> <li>some request-scoped metadata is available</li> </ul> <p>But it should not become a hidden container for everything your function needs.</p> <p>That distinction is where many Go codebases either stay clean or slowly become painful to maintain.</p> <h2> Battle-Tested Patterns: Coding Like a Senior </h2> <h3> 1. Bulletproofing Against Goroutine Leaks </h3> <p>One common mistake I have seen in Go services is starting a goroutine without thinking about what happens if the parent request is cancelled.</p> <p>Look at this simplified example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">FetchData</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">id</span> <span class="kt">string</span><span class="p">)</span> <span class="p">(</span><span class="n">Data</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">ch</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">(</span><span class="k">chan</span> <span class="n">Data</span><span class="p">,</span> <span class="m">1</span><span class="p">)</span> <span class="n">errCh</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">(</span><span class="k">chan</span> <span class="kt">error</span><span class="p">,</span> <span class="m">1</span><span class="p">)</span> <span class="k">go</span> <span class="k">func</span><span class="p">()</span> <span class="p">{</span> <span class="c">// Imagine this is a heavy I/O operation or a slow DB query.</span> <span class="n">data</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">expensiveDatabaseCall</span><span class="p">(</span><span class="n">id</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">errCh</span> <span class="o">&lt;-</span> <span class="n">err</span> <span class="k">return</span> <span class="p">}</span> <span class="n">ch</span> <span class="o">&lt;-</span> <span class="n">data</span> <span class="p">}()</span> <span class="k">select</span> <span class="p">{</span> <span class="k">case</span> <span class="o">&lt;-</span><span class="n">ctx</span><span class="o">.</span><span class="n">Done</span><span class="p">()</span><span class="o">:</span> <span class="c">// If the client aborts or a timeout occurs,</span> <span class="c">// the caller can return immediately.</span> <span class="k">return</span> <span class="n">Data</span><span class="p">{},</span> <span class="n">ctx</span><span class="o">.</span><span class="n">Err</span><span class="p">()</span> <span class="k">case</span> <span class="n">err</span> <span class="o">:=</span> <span class="o">&lt;-</span><span class="n">errCh</span><span class="o">:</span> <span class="k">return</span> <span class="n">Data</span><span class="p">{},</span> <span class="n">err</span> <span class="k">case</span> <span class="n">result</span> <span class="o">:=</span> <span class="o">&lt;-</span><span class="n">ch</span><span class="o">:</span> <span class="k">return</span> <span class="n">result</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>The important detail here is this line:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">ch</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">(</span><span class="k">chan</span> <span class="n">Data</span><span class="p">,</span> <span class="m">1</span><span class="p">)</span> </code></pre> </div> <p>The channel is buffered with capacity <code>1</code>.</p> <p>Why does this matter?</p> <p>Because if <code>ctx.Done()</code> is triggered and <code>FetchData</code> returns early, the internal goroutine might still finish later and try to send the result into the channel.</p> <p>If the channel is unbuffered, that goroutine may block forever because nobody is receiving anymore.</p> <p>That is a classic goroutine leak.</p> <p>The buffer gives the goroutine enough room to send the result, finish execution, and be garbage collected.</p> <p>This is one of those small details that does not look important in a tutorial, but it matters a lot in production systems.</p> <h2> 2. Prefer Context-Aware APIs </h2> <p>The previous example is useful to understand the pattern, but in real code, you should prefer APIs that already accept <code>context.Context</code>.</p> <p>For example, database calls should usually look like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">FindUser</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">db</span> <span class="o">*</span><span class="n">sql</span><span class="o">.</span><span class="n">DB</span><span class="p">,</span> <span class="n">userID</span> <span class="kt">int64</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">User</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">row</span> <span class="o">:=</span> <span class="n">db</span><span class="o">.</span><span class="n">QueryRowContext</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="s">` SELECT id, name, email FROM users WHERE id = $1 `</span><span class="p">,</span> <span class="n">userID</span><span class="p">)</span> <span class="k">var</span> <span class="n">user</span> <span class="n">User</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">row</span><span class="o">.</span><span class="n">Scan</span><span class="p">(</span><span class="o">&amp;</span><span class="n">user</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="o">&amp;</span><span class="n">user</span><span class="o">.</span><span class="n">Name</span><span class="p">,</span> <span class="o">&amp;</span><span class="n">user</span><span class="o">.</span><span class="n">Email</span><span class="p">);</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">err</span> <span class="p">}</span> <span class="k">return</span> <span class="o">&amp;</span><span class="n">user</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>This is better than wrapping a blocking database call inside your own goroutine.</p> <p>Why?</p> <p>Because <code>QueryRowContext</code> gives the database driver a chance to stop the work when the context is cancelled or the deadline expires.</p> <p>That means cancellation is not just happening in your Go code. It can also propagate to the I/O layer.</p> <p>That is what you want.</p> <h2> 3. Timeout Everything That Talks to the Outside World </h2> <p>Any operation that depends on the outside world can hang longer than expected:</p> <ul> <li>database queries</li> <li>HTTP calls</li> <li>gRPC calls</li> <li>Redis commands</li> <li>file storage requests</li> <li>third-party APIs</li> </ul> <p>A senior mindset is simple:</p> <blockquote> <p>If it crosses a process or network boundary, it needs a timeout.</p> </blockquote> <p>Example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">CallPaymentService</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">client</span> <span class="o">*</span><span class="n">http</span><span class="o">.</span><span class="n">Client</span><span class="p">,</span> <span class="n">url</span> <span class="kt">string</span><span class="p">)</span> <span class="kt">error</span> <span class="p">{</span> <span class="n">ctx</span><span class="p">,</span> <span class="n">cancel</span> <span class="o">:=</span> <span class="n">context</span><span class="o">.</span><span class="n">WithTimeout</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="m">2</span><span class="o">*</span><span class="n">time</span><span class="o">.</span><span class="n">Second</span><span class="p">)</span> <span class="k">defer</span> <span class="n">cancel</span><span class="p">()</span> <span class="n">req</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">http</span><span class="o">.</span><span class="n">NewRequestWithContext</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">http</span><span class="o">.</span><span class="n">MethodGet</span><span class="p">,</span> <span class="n">url</span><span class="p">,</span> <span class="no">nil</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="n">err</span> <span class="p">}</span> <span class="n">resp</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">client</span><span class="o">.</span><span class="n">Do</span><span class="p">(</span><span class="n">req</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="n">err</span> <span class="p">}</span> <span class="k">defer</span> <span class="n">resp</span><span class="o">.</span><span class="n">Body</span><span class="o">.</span><span class="n">Close</span><span class="p">()</span> <span class="k">if</span> <span class="n">resp</span><span class="o">.</span><span class="n">StatusCode</span> <span class="o">&gt;=</span> <span class="m">500</span> <span class="p">{</span> <span class="k">return</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"payment service returned status: %d"</span><span class="p">,</span> <span class="n">resp</span><span class="o">.</span><span class="n">StatusCode</span><span class="p">)</span> <span class="p">}</span> <span class="k">return</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>This gives the operation a clear budget.</p> <p>Without timeouts, a slow downstream dependency can slowly consume your worker pool, database pool, or goroutines until the whole service becomes unstable.</p> <h2> 4. Always Call Cancel </h2> <p>When you create a context with <code>WithCancel</code>, <code>WithTimeout</code>, or <code>WithDeadline</code>, always call the returned <code>cancel</code> function.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">ctx</span><span class="p">,</span> <span class="n">cancel</span> <span class="o">:=</span> <span class="n">context</span><span class="o">.</span><span class="n">WithTimeout</span><span class="p">(</span><span class="n">parentCtx</span><span class="p">,</span> <span class="m">3</span><span class="o">*</span><span class="n">time</span><span class="o">.</span><span class="n">Second</span><span class="p">)</span> <span class="k">defer</span> <span class="n">cancel</span><span class="p">()</span> </code></pre> </div> <p>Even if the timeout will eventually expire, calling <code>cancel()</code> releases resources associated with that context earlier.</p> <p>This is especially important in hot paths where functions are called many times per second.</p> <p>A missing <code>cancel()</code> may not break your service immediately, but it can create unnecessary resource pressure over time.</p> <h2> The Dark Side of <code>context.WithValue</code> </h2> <p>One of the features of <code>context</code> is the ability to carry values across the request lifecycle.</p> <p>This is useful, but it is also one of the easiest ways to make a Go codebase messy.</p> <p>The golden rule is:</p> <blockquote> <p>Use <code>context.Value</code> only for request-scoped data.</p> </blockquote> <p>Good examples:</p> <ul> <li>request ID</li> <li>trace ID</li> <li>user ID parsed from a JWT</li> <li>tenant ID</li> <li>client IP</li> <li>correlation ID</li> </ul> <p>Bad examples:</p> <ul> <li>database connections</li> <li>loggers as hidden dependencies</li> <li>configuration objects</li> <li>service clients</li> <li>repositories</li> <li>feature flag clients</li> </ul> <p>Do not use <code>context</code> as a dependency injection container.</p> <p>When dependencies are hidden inside context, your function signature lies. The function looks simple, but it secretly depends on multiple things. That hurts readability, testing, and type safety.</p> <h2> Safe Context Values with Custom Key Types </h2> <p>Another mistake is using raw strings as context keys.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">ctx</span> <span class="o">=</span> <span class="n">context</span><span class="o">.</span><span class="n">WithValue</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="s">"userID"</span><span class="p">,</span> <span class="n">userID</span><span class="p">)</span> </code></pre> </div> <p>This can cause collisions between packages.</p> <p>A safer pattern is to define an unexported custom type:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">contextKey</span> <span class="kt">string</span> <span class="k">const</span> <span class="n">userIDKey</span> <span class="n">contextKey</span> <span class="o">=</span> <span class="s">"userID"</span> <span class="k">func</span> <span class="n">WithUserID</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">userID</span> <span class="kt">string</span><span class="p">)</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span> <span class="p">{</span> <span class="k">return</span> <span class="n">context</span><span class="o">.</span><span class="n">WithValue</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">userIDKey</span><span class="p">,</span> <span class="n">userID</span><span class="p">)</span> <span class="p">}</span> <span class="k">func</span> <span class="n">GetUserID</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">)</span> <span class="p">(</span><span class="kt">string</span><span class="p">,</span> <span class="kt">bool</span><span class="p">)</span> <span class="p">{</span> <span class="n">userID</span><span class="p">,</span> <span class="n">ok</span> <span class="o">:=</span> <span class="n">ctx</span><span class="o">.</span><span class="n">Value</span><span class="p">(</span><span class="n">userIDKey</span><span class="p">)</span><span class="o">.</span><span class="p">(</span><span class="kt">string</span><span class="p">)</span> <span class="k">return</span> <span class="n">userID</span><span class="p">,</span> <span class="n">ok</span> <span class="p">}</span> </code></pre> </div> <p>This keeps the usage safer and prevents accidental key collisions with other packages.</p> <p>For larger systems, I usually prefer wrapping this inside a small internal package so the rest of the codebase does not directly touch raw context keys.</p> <h2> Context in HTTP Handlers </h2> <p>In HTTP services, the incoming request already has a context.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">GetUserHandler</span><span class="p">(</span><span class="n">db</span> <span class="o">*</span><span class="n">sql</span><span class="o">.</span><span class="n">DB</span><span class="p">)</span> <span class="n">http</span><span class="o">.</span><span class="n">HandlerFunc</span> <span class="p">{</span> <span class="k">return</span> <span class="k">func</span><span class="p">(</span><span class="n">w</span> <span class="n">http</span><span class="o">.</span><span class="n">ResponseWriter</span><span class="p">,</span> <span class="n">r</span> <span class="o">*</span><span class="n">http</span><span class="o">.</span><span class="n">Request</span><span class="p">)</span> <span class="p">{</span> <span class="n">ctx</span> <span class="o">:=</span> <span class="n">r</span><span class="o">.</span><span class="n">Context</span><span class="p">()</span> <span class="n">user</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">FindUser</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">db</span><span class="p">,</span> <span class="m">123</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">http</span><span class="o">.</span><span class="n">Error</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="n">err</span><span class="o">.</span><span class="n">Error</span><span class="p">(),</span> <span class="n">http</span><span class="o">.</span><span class="n">StatusInternalServerError</span><span class="p">)</span> <span class="k">return</span> <span class="p">}</span> <span class="n">_</span> <span class="o">=</span> <span class="n">json</span><span class="o">.</span><span class="n">NewEncoder</span><span class="p">(</span><span class="n">w</span><span class="p">)</span><span class="o">.</span><span class="n">Encode</span><span class="p">(</span><span class="n">user</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>The important part is this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">ctx</span> <span class="o">:=</span> <span class="n">r</span><span class="o">.</span><span class="n">Context</span><span class="p">()</span> </code></pre> </div> <p>If the client disconnects, the request context can be cancelled, and downstream operations that respect context can stop earlier.</p> <p>That is why passing <code>context.Background()</code> inside handlers is usually wrong.</p> <p>This is bad:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">user</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">FindUser</span><span class="p">(</span><span class="n">context</span><span class="o">.</span><span class="n">Background</span><span class="p">(),</span> <span class="n">db</span><span class="p">,</span> <span class="m">123</span><span class="p">)</span> </code></pre> </div> <p>Why?</p> <p>Because you just detached the database query from the request lifecycle.</p> <p>The client may be gone, but your backend keeps working.</p> <h2> Background Jobs Are Different </h2> <p>Not everything should use the request context.</p> <p>Sometimes you intentionally want work to continue after the request ends.</p> <p>For example:</p> <ul> <li>writing audit logs</li> <li>publishing analytics events</li> <li>sending async notifications</li> <li>queueing background jobs</li> </ul> <p>In those cases, using the request context may be wrong because the work would be cancelled as soon as the request ends.</p> <p>But this does not mean you should ignore context completely.</p> <p>It means you should create a new, intentional context with its own timeout:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">PublishAuditEvent</span><span class="p">(</span><span class="n">producer</span> <span class="n">EventProducer</span><span class="p">,</span> <span class="n">event</span> <span class="n">AuditEvent</span><span class="p">)</span> <span class="p">{</span> <span class="n">ctx</span><span class="p">,</span> <span class="n">cancel</span> <span class="o">:=</span> <span class="n">context</span><span class="o">.</span><span class="n">WithTimeout</span><span class="p">(</span><span class="n">context</span><span class="o">.</span><span class="n">Background</span><span class="p">(),</span> <span class="m">5</span><span class="o">*</span><span class="n">time</span><span class="o">.</span><span class="n">Second</span><span class="p">)</span> <span class="k">defer</span> <span class="n">cancel</span><span class="p">()</span> <span class="n">_</span> <span class="o">=</span> <span class="n">producer</span><span class="o">.</span><span class="n">Publish</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">event</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>The key idea is intentionality.</p> <p>Do not accidentally detach work from the request.<br> Do not accidentally bind background work to a request that may disappear.</p> <p>Choose the lifecycle explicitly.</p> <h2> The Trade-Offs: A Realistic View </h2> <p>No tool in software engineering is perfect. <code>context</code> solves real problems, but it also brings trade-offs.</p> <h3> Pros </h3> <p><strong>Standardization</strong></p> <p><code>context</code> is the common language of lifecycle management in Go. It is used across packages like <code>net/http</code>, <code>database/sql</code>, gRPC, cloud SDKs, and many third-party libraries.</p> <p><strong>Lifecycle control</strong></p> <p>With <code>context.WithTimeout</code>, <code>context.WithDeadline</code>, and <code>context.WithCancel</code>, you can build services that do not hang forever.</p> <p><strong>Cancellation propagation</strong></p> <p>One cancellation signal can flow through multiple layers of your system.</p> <p><strong>Observability support</strong></p> <p>Request IDs, trace IDs, and correlation IDs become much easier to propagate across service boundaries.</p> <h3> Cons </h3> <p><strong>Viral nature</strong></p> <p>Once you add <code>context</code> to a low-level function, you often need to pass it through every function above it.</p> <p>This can feel noisy, but in backend systems, that noise is usually worth the explicit lifecycle control.</p> <p><strong>Weak type safety for values</strong></p> <p><code>ctx.Value()</code> returns <code>any</code>, so incorrect type assertions can cause bugs or panics.</p> <p>That is why context values should be used carefully and kept small.</p> <p><strong>Easy to misuse</strong></p> <p>The biggest danger is treating context as a magic bag for dependencies.</p> <p>That creates hidden coupling and makes the code harder to understand.</p> <h2> My Code Review Checklist for Context </h2> <p>When I review Go code, these are my non-negotiable rules around <code>context</code>.</p> <h3> 1. Context Must Be the First Argument </h3> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">DoSomething</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">userID</span> <span class="kt">string</span><span class="p">)</span> <span class="kt">error</span> </code></pre> </div> <p>This is the standard Go convention.</p> <p>Do not hide it in the middle of the argument list.</p> <h3> 2. Do Not Store Context in a Struct </h3> <p>Avoid this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">Service</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span> <span class="p">}</span> </code></pre> </div> <p>Contexts should flow through function calls. They should not usually live inside structs.</p> <p>A struct normally represents a longer-lived object. A context usually represents a specific operation or request lifecycle.</p> <p>Mixing those lifetimes creates confusion.</p> <h3> 3. Never Pass Nil Context </h3> <p>This is bad:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">DoSomething</span><span class="p">(</span><span class="no">nil</span><span class="p">,</span> <span class="s">"123"</span><span class="p">)</span> </code></pre> </div> <p>If you are not sure what context to use yet, use:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">context</span><span class="o">.</span><span class="n">TODO</span><span class="p">()</span> </code></pre> </div> <p>If you are starting a root-level process, use:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">context</span><span class="o">.</span><span class="n">Background</span><span class="p">()</span> </code></pre> </div> <p><code>TODO()</code> is also useful because it makes unfinished context decisions searchable during refactoring.</p> <h3> 4. Always Defer Cancel Immediately </h3> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">ctx</span><span class="p">,</span> <span class="n">cancel</span> <span class="o">:=</span> <span class="n">context</span><span class="o">.</span><span class="n">WithTimeout</span><span class="p">(</span><span class="n">parentCtx</span><span class="p">,</span> <span class="n">time</span><span class="o">.</span><span class="n">Second</span><span class="p">)</span> <span class="k">defer</span> <span class="n">cancel</span><span class="p">()</span> </code></pre> </div> <p>Do this immediately after creating the context.</p> <p>It prevents forgetting it later when the function grows.</p> <h3> 5. Do Not Ignore <code>ctx.Err()</code> </h3> <p>When a context is cancelled, <code>ctx.Err()</code> tells you why.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">select</span> <span class="p">{</span> <span class="k">case</span> <span class="o">&lt;-</span><span class="n">ctx</span><span class="o">.</span><span class="n">Done</span><span class="p">()</span><span class="o">:</span> <span class="k">return</span> <span class="n">ctx</span><span class="o">.</span><span class="n">Err</span><span class="p">()</span> <span class="k">default</span><span class="o">:</span> <span class="p">}</span> </code></pre> </div> <p>The error is usually one of:</p> <ul> <li><code>context.Canceled</code></li> <li><code>context.DeadlineExceeded</code></li> </ul> <p>This distinction is useful for logging, metrics, and debugging.</p> <p>A timeout means the operation exceeded its budget.<br> A cancellation may simply mean the client disconnected or the caller stopped needing the result.</p> <p>Those are not always the same kind of failure.</p> <h2> A Practical Rule I Use </h2> <p>Here is the simple rule I use in production systems:</p> <blockquote> <p>Pass context for cancellation, deadlines, and request-scoped metadata. Do not pass it for business data or dependencies.</p> </blockquote> <p>That one sentence prevents many bad patterns.</p> <p>For example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// Good</span> <span class="k">func</span> <span class="n">CreateOrder</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">order</span> <span class="n">Order</span><span class="p">)</span> <span class="kt">error</span> <span class="c">// Suspicious</span> <span class="k">func</span> <span class="n">CreateOrder</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">)</span> <span class="kt">error</span> </code></pre> </div> <p>In the second version, I immediately wonder:</p> <p>Where is the order coming from?<br> Is it hidden inside context?<br> Is this function depending on invisible data?</p> <p>That is usually a design smell.</p> <h2> Final Thoughts </h2> <p>Mastering <code>context</code> means mastering your application’s control flow.</p> <p>In real backend systems, where servers handle thousands of concurrent requests and distributed services introduce unpredictable latency, using <code>context</code> correctly can be the difference between a resilient service and a 3 AM pager alert for an out-of-memory crash.</p> <p>For me, <code>context</code> is not just a Go package.</p> <p>It is a discipline.</p> <p>It forces you to think clearly about lifecycle, ownership, cancellation, timeouts, and the cost of work that no one needs anymore.</p> <p>Used correctly, it makes your systems more predictable.</p> <p>Used carelessly, it hides dependencies and creates architectural confusion.</p> <p>That is why I treat <code>context</code> as one of the most important tools in production Go programming.</p> <p>If you have worked with Go in production, I would love to hear your own experience with context, cancellation, and goroutine leaks.</p> go backend microservices amir Mon, 25 May 2026 12:34:33 +0000 https://dev.to/amirsefati/memory-under-the-hood-why-go-often-feels-faster-than-python-3pb3 https://dev.to/amirsefati/memory-under-the-hood-why-go-often-feels-faster-than-python-3pb3 <p>After years of building backend systems, working with data pipelines, debugging production issues, and watching servers behave differently under load, I learned one lesson the hard way:</p> <blockquote> <p>Performance problems rarely start from syntax.<br><br> They usually start from how we think about memory.</p> </blockquote> <p>When I was earlier in my career, I used to compare languages mostly by developer experience. Python felt clean, expressive, and fast to write. Go felt simple, strict, and very practical for backend services. But once I started dealing with large files, high-throughput APIs, queues, workers, containers, and memory pressure in production, I realized that the real difference is not just language design.</p> <p>The real difference is what happens under the hood.</p> <p>Why can a small Python script suddenly consume a huge amount of RAM?</p> <p>Why can the same type of data processing in Go run with much lower memory usage?</p> <p>Why does iterating over a slice of structs in Go usually feel much cheaper than iterating over a list of Python objects?</p> <p>And why does reading a 10GB file incorrectly destroy both languages, even if one of them is “faster”?</p> <p>This article is my practical breakdown of memory layout, allocation, garbage collection, cache locality, and large-file processing in Go and Python. I am not writing this as a language war. I use both languages. Python is still one of my favorite tools for automation, scripting, data work, and fast iteration.</p> <p>But when you are building backend systems where memory, latency, and throughput matter, understanding these details can change how you write code.</p> <h2> The First Misunderstanding: Dynamic Array Is Not Linked List </h2> <p>One mistake I have seen many developers make is assuming that dynamic collections are somehow linked lists internally.</p> <p>They are not.</p> <p>A Python <code>list</code> is not a linked list.</p> <p>A Go <code>slice</code> is not a linked list.</p> <p>Both are built around the idea of a dynamic array, although their internal models are very different.</p> <p>In Python, a list is basically a resizable array of references. The list itself stores pointers to objects. Those objects live somewhere else in memory.</p> <p>In Go, a slice is a small header that points to an underlying array. That header contains three important pieces of information:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">SliceHeader</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">Data</span> <span class="kt">uintptr</span> <span class="n">Len</span> <span class="kt">int</span> <span class="n">Cap</span> <span class="kt">int</span> <span class="p">}</span> </code></pre> </div> <p>Conceptually, a Go slice contains:</p> <ul> <li>a pointer to the underlying array</li> <li>the current length</li> <li>the current capacity</li> </ul> <p>If you really need a linked list in Go, there is <code>container/list</code>, or you can implement your own node-based structure. But for most backend workloads, linked lists are not as useful as people think. They often hurt cache locality and add pointer chasing overhead.</p> <p>That is an important point: Big-O complexity is not the whole story.</p> <p>In real production systems, CPU cache behavior matters a lot.</p> <h2> Python Lists: Simple API, Expensive Objects </h2> <p>Python gives us a very clean programming model:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="n">numbers</span> <span class="o">=</span> <span class="p">[</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">,</span> <span class="mi">3</span><span class="p">,</span> <span class="mi">4</span><span class="p">,</span> <span class="mi">5</span><span class="p">]</span> <span class="k">for</span> <span class="n">n</span> <span class="ow">in</span> <span class="n">numbers</span><span class="p">:</span> <span class="nf">print</span><span class="p">(</span><span class="n">n</span><span class="p">)</span> </code></pre> </div> <p>It looks like a list of integers.</p> <p>But internally, it is not a compact array of raw integers like you might expect in C or Go.</p> <p>A Python list stores references to Python objects. Each integer is a full Python object with metadata, reference count information, type information, and value storage.</p> <p>So when you write:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="n">numbers</span> <span class="o">=</span> <span class="p">[</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">,</span> <span class="mi">3</span><span class="p">]</span> </code></pre> </div> <p>You should not imagine this as:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>[1][2][3] </code></pre> </div> <p>It is closer to:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>list ├── pointer ──&gt; PyObject(1) ├── pointer ──&gt; PyObject(2) └── pointer ──&gt; PyObject(3) </code></pre> </div> <p>This design gives Python a lot of flexibility. A single list can contain integers, strings, dictionaries, custom classes, and even functions:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="n">items</span> <span class="o">=</span> <span class="p">[</span><span class="mi">1</span><span class="p">,</span> <span class="sh">"</span><span class="s">hello</span><span class="sh">"</span><span class="p">,</span> <span class="p">{</span><span class="sh">"</span><span class="s">active</span><span class="sh">"</span><span class="p">:</span> <span class="bp">True</span><span class="p">},</span> <span class="k">lambda</span> <span class="n">x</span><span class="p">:</span> <span class="n">x</span> <span class="o">*</span> <span class="mi">2</span><span class="p">]</span> </code></pre> </div> <p>That flexibility is powerful, but it has a cost.</p> <p>Every item access can involve pointer dereferencing. The CPU may need to jump to different memory locations. This causes more cache misses, and cache misses are expensive.</p> <p>Modern CPUs are extremely fast when they can read predictable, contiguous memory. They are much slower when they constantly chase pointers across the heap.</p> <p>This is one reason why pure Python loops over large collections can be slow compared to Go, C, Rust, or even NumPy-based Python code.</p> <p>NumPy is fast not because Python magically became faster, but because NumPy stores data in compact native arrays and runs optimized native code.</p> <h2> Go Slices: Contiguous Memory and Better Cache Locality </h2> <p>Now compare that with Go:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">numbers</span> <span class="o">:=</span> <span class="p">[]</span><span class="kt">int</span><span class="p">{</span><span class="m">1</span><span class="p">,</span> <span class="m">2</span><span class="p">,</span> <span class="m">3</span><span class="p">,</span> <span class="m">4</span><span class="p">,</span> <span class="m">5</span><span class="p">}</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">n</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">numbers</span> <span class="p">{</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Println</span><span class="p">(</span><span class="n">n</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>A slice of integers in Go points to an underlying array of integers stored contiguously in memory.</p> <p>Conceptually:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>[1][2][3][4][5] </code></pre> </div> <p>That is much friendlier for the CPU.</p> <p>The CPU can load a cache line and read multiple nearby values efficiently. This is called cache locality, and it is one of those low-level concepts that directly affects high-level backend performance.</p> <p>This becomes even more interesting with structs.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">User</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">ID</span> <span class="kt">int64</span> <span class="n">Active</span> <span class="kt">bool</span> <span class="n">Score</span> <span class="kt">float64</span> <span class="p">}</span> <span class="n">users</span> <span class="o">:=</span> <span class="p">[]</span><span class="n">User</span><span class="p">{</span> <span class="p">{</span><span class="n">ID</span><span class="o">:</span> <span class="m">1</span><span class="p">,</span> <span class="n">Active</span><span class="o">:</span> <span class="no">true</span><span class="p">,</span> <span class="n">Score</span><span class="o">:</span> <span class="m">91.2</span><span class="p">},</span> <span class="p">{</span><span class="n">ID</span><span class="o">:</span> <span class="m">2</span><span class="p">,</span> <span class="n">Active</span><span class="o">:</span> <span class="no">false</span><span class="p">,</span> <span class="n">Score</span><span class="o">:</span> <span class="m">72.5</span><span class="p">},</span> <span class="p">}</span> </code></pre> </div> <p>In this case, the actual <code>User</code> values are stored in the underlying array.</p> <p>But if you write:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">users</span> <span class="o">:=</span> <span class="p">[]</span><span class="o">*</span><span class="n">User</span><span class="p">{</span> <span class="o">&amp;</span><span class="n">User</span><span class="p">{</span><span class="n">ID</span><span class="o">:</span> <span class="m">1</span><span class="p">,</span> <span class="n">Active</span><span class="o">:</span> <span class="no">true</span><span class="p">,</span> <span class="n">Score</span><span class="o">:</span> <span class="m">91.2</span><span class="p">},</span> <span class="o">&amp;</span><span class="n">User</span><span class="p">{</span><span class="n">ID</span><span class="o">:</span> <span class="m">2</span><span class="p">,</span> <span class="n">Active</span><span class="o">:</span> <span class="no">false</span><span class="p">,</span> <span class="n">Score</span><span class="o">:</span> <span class="m">72.5</span><span class="p">},</span> <span class="p">}</span> </code></pre> </div> <p>Now you have a slice of pointers. This can be useful when you need shared mutable objects or want to avoid copying large structs, but it also means more pointer chasing.</p> <p>This is why I try to be intentional with this decision.</p> <p>A slice of values:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="p">[]</span><span class="n">User</span> </code></pre> </div> <p>is not the same performance model as:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="p">[]</span><span class="o">*</span><span class="n">User</span> </code></pre> </div> <p>Both are valid. But they are not the same.</p> <p>In production systems, these small decisions start to matter when you process hundreds of thousands or millions of records.</p> <h2> Value Semantics vs Reference Semantics </h2> <p>Another major difference between Go and Python is how they treat values.</p> <p>Python is reference-oriented. Variables are names bound to objects.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="n">a</span> <span class="o">=</span> <span class="p">[</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">,</span> <span class="mi">3</span><span class="p">]</span> <span class="n">b</span> <span class="o">=</span> <span class="n">a</span> <span class="n">b</span><span class="p">.</span><span class="nf">append</span><span class="p">(</span><span class="mi">4</span><span class="p">)</span> <span class="nf">print</span><span class="p">(</span><span class="n">a</span><span class="p">)</span> <span class="c1"># [1, 2, 3, 4] </span></code></pre> </div> <p>Both <code>a</code> and <code>b</code> refer to the same list object.</p> <p>Go has stronger value semantics by default.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">a</span> <span class="o">:=</span> <span class="p">[</span><span class="m">3</span><span class="p">]</span><span class="kt">int</span><span class="p">{</span><span class="m">1</span><span class="p">,</span> <span class="m">2</span><span class="p">,</span> <span class="m">3</span><span class="p">}</span> <span class="n">b</span> <span class="o">:=</span> <span class="n">a</span> <span class="n">b</span><span class="p">[</span><span class="m">0</span><span class="p">]</span> <span class="o">=</span> <span class="m">99</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Println</span><span class="p">(</span><span class="n">a</span><span class="p">)</span> <span class="c">// [1 2 3]</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Println</span><span class="p">(</span><span class="n">b</span><span class="p">)</span> <span class="c">// [99 2 3]</span> </code></pre> </div> <p>The array is copied.</p> <p>But slices are different:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">a</span> <span class="o">:=</span> <span class="p">[]</span><span class="kt">int</span><span class="p">{</span><span class="m">1</span><span class="p">,</span> <span class="m">2</span><span class="p">,</span> <span class="m">3</span><span class="p">}</span> <span class="n">b</span> <span class="o">:=</span> <span class="n">a</span> <span class="n">b</span><span class="p">[</span><span class="m">0</span><span class="p">]</span> <span class="o">=</span> <span class="m">99</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Println</span><span class="p">(</span><span class="n">a</span><span class="p">)</span> <span class="c">// [99 2 3]</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Println</span><span class="p">(</span><span class="n">b</span><span class="p">)</span> <span class="c">// [99 2 3]</span> </code></pre> </div> <p>Why?</p> <p>Because the slice header is copied, but both slice headers still point to the same underlying array.</p> <p>This is one of the most important things every Go developer should deeply understand.</p> <p>A slice is not the array itself. It is a descriptor over an array.</p> <p>That is why bugs can happen when you pass slices around and mutate them without thinking about who else shares the same underlying array.</p> <h2> Allocation: The Hidden Cost Behind Simple Code </h2> <p>Allocation is one of the biggest silent performance costs in backend systems.</p> <p>When code allocates too much memory, the garbage collector has more work to do. More GC work means more CPU overhead and sometimes more latency.</p> <p>In Go, when a slice grows beyond its capacity, Go allocates a new underlying array and copies the existing elements into it.</p> <p>Example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">items</span> <span class="o">:=</span> <span class="p">[]</span><span class="kt">int</span><span class="p">{}</span> <span class="k">for</span> <span class="n">i</span> <span class="o">:=</span> <span class="m">0</span><span class="p">;</span> <span class="n">i</span> <span class="o">&lt;</span> <span class="m">1</span><span class="n">_000_000</span><span class="p">;</span> <span class="n">i</span><span class="o">++</span> <span class="p">{</span> <span class="n">items</span> <span class="o">=</span> <span class="nb">append</span><span class="p">(</span><span class="n">items</span><span class="p">,</span> <span class="n">i</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>This works, but the slice may grow multiple times.</p> <p>A better version:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">items</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">([]</span><span class="kt">int</span><span class="p">,</span> <span class="m">0</span><span class="p">,</span> <span class="m">1</span><span class="n">_000_000</span><span class="p">)</span> <span class="k">for</span> <span class="n">i</span> <span class="o">:=</span> <span class="m">0</span><span class="p">;</span> <span class="n">i</span> <span class="o">&lt;</span> <span class="m">1</span><span class="n">_000_000</span><span class="p">;</span> <span class="n">i</span><span class="o">++</span> <span class="p">{</span> <span class="n">items</span> <span class="o">=</span> <span class="nb">append</span><span class="p">(</span><span class="n">items</span><span class="p">,</span> <span class="n">i</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>Now Go knows the expected capacity from the beginning.</p> <p>This does not mean you should always preallocate everything. But when you know the approximate size, preallocation is one of the simplest performance wins.</p> <p>The same idea exists in many systems:</p> <ul> <li>preallocate buffers</li> <li>reuse memory when safe</li> <li>avoid unnecessary temporary objects</li> <li>avoid converting <code>[]byte</code> to <code>string</code> too early</li> <li>avoid building huge in-memory arrays when streaming is enough</li> </ul> <p>Performance engineering is often not about writing complicated code.</p> <p>It is about not forcing the runtime to clean up avoidable garbage.</p> <h2> Python Allocation and Object Overhead </h2> <p>Python has its own memory manager. For small objects, CPython uses specialized allocation strategies to make object creation faster.</p> <p>But Python still pays the cost of object-heavy design.</p> <p>A Python integer is not just a raw machine integer. A Python string is an object. A Python dict is very flexible, but it is not cheap. A Python class instance has overhead too, unless you optimize with tools like <code>__slots__</code> or use more compact structures.</p> <p>This is why Python can be very fast when the heavy work is pushed into optimized native libraries, but slower when the workload is pure Python object processing.</p> <p>For example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="n">total</span> <span class="o">=</span> <span class="mi">0</span> <span class="k">for</span> <span class="n">item</span> <span class="ow">in</span> <span class="n">huge_list</span><span class="p">:</span> <span class="n">total</span> <span class="o">+=</span> <span class="n">item</span> </code></pre> </div> <p>If <code>huge_list</code> is a normal Python list of Python integers, every iteration involves Python-level object handling.</p> <p>But with NumPy:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="kn">import</span> <span class="n">numpy</span> <span class="k">as</span> <span class="n">np</span> <span class="n">arr</span> <span class="o">=</span> <span class="n">np</span><span class="p">.</span><span class="nf">array</span><span class="p">(</span><span class="n">huge_list</span><span class="p">)</span> <span class="n">total</span> <span class="o">=</span> <span class="n">arr</span><span class="p">.</span><span class="nf">sum</span><span class="p">()</span> </code></pre> </div> <p>The expensive loop is moved into optimized native code.</p> <p>This is not just a library trick. It is a memory-layout trick.</p> <p>Compact memory layout changes everything.</p> <h2> Garbage Collection: Python vs Go </h2> <p>Garbage collection is another area where the difference matters.</p> <p>Python, specifically CPython, mainly uses reference counting. Every object tracks how many references point to it. When the reference count reaches zero, the object can be freed immediately.</p> <p>Example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="n">a</span> <span class="o">=</span> <span class="p">[]</span> <span class="n">b</span> <span class="o">=</span> <span class="n">a</span> <span class="k">del</span> <span class="n">a</span> <span class="k">del</span> <span class="n">b</span> </code></pre> </div> <p>After both references are gone, the list can be cleaned up.</p> <p>But reference counting alone cannot handle reference cycles.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="n">a</span> <span class="o">=</span> <span class="p">{}</span> <span class="n">b</span> <span class="o">=</span> <span class="p">{}</span> <span class="n">a</span><span class="p">[</span><span class="sh">"</span><span class="s">b</span><span class="sh">"</span><span class="p">]</span> <span class="o">=</span> <span class="n">b</span> <span class="n">b</span><span class="p">[</span><span class="sh">"</span><span class="s">a</span><span class="sh">"</span><span class="p">]</span> <span class="o">=</span> <span class="n">a</span> </code></pre> </div> <p>Now <code>a</code> references <code>b</code>, and <code>b</code> references <code>a</code>.</p> <p>Even if nothing else references them, their reference counts may not reach zero naturally. That is why Python also has a cyclic garbage collector.</p> <p>Go uses a concurrent mark-and-sweep garbage collector.</p> <p>At a high level, Go's GC finds reachable objects, marks them as live, and then frees unreachable memory. It is designed to keep pause times low and run concurrently with the application as much as possible.</p> <p>This is one of the reasons Go works well for backend services. You can build long-running APIs, workers, and network services with predictable latency when you write allocation-conscious code.</p> <p>But Go's GC is not magic.</p> <p>If your code allocates too much, creates too many temporary objects, or keeps references alive longer than needed, the GC still has to work harder.</p> <p>In Go, good performance often comes from writing boring code:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">buf</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">([]</span><span class="kt">byte</span><span class="p">,</span> <span class="m">64</span><span class="o">*</span><span class="m">1024</span><span class="p">)</span> </code></pre> </div> <p>Reuse buffers when appropriate.</p> <p>Avoid unnecessary conversions.</p> <p>Keep data structures simple.</p> <p>Do not create object graphs when arrays or slices are enough.</p> <h2> The 10GB File Problem </h2> <p>One of the most common backend mistakes is reading a large file into memory.</p> <p>In Python:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="k">with</span> <span class="nf">open</span><span class="p">(</span><span class="sh">"</span><span class="s">large.log</span><span class="sh">"</span><span class="p">,</span> <span class="sh">"</span><span class="s">r</span><span class="sh">"</span><span class="p">)</span> <span class="k">as</span> <span class="n">f</span><span class="p">:</span> <span class="n">data</span> <span class="o">=</span> <span class="n">f</span><span class="p">.</span><span class="nf">read</span><span class="p">()</span> </code></pre> </div> <p>In Go:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">data</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">os</span><span class="o">.</span><span class="n">ReadFile</span><span class="p">(</span><span class="s">"large.log"</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">log</span><span class="o">.</span><span class="n">Fatal</span><span class="p">(</span><span class="n">err</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>This may work for small files.</p> <p>It may work for 100MB.</p> <p>It may even work in development.</p> <p>Then production gets a 10GB file, and the process gets killed by the operating system.</p> <p>The problem is not Python or Go.</p> <p>The problem is the strategy.</p> <p>If the file is large, you should usually stream it.</p> <h2> Streaming Files in Python </h2> <p>Python gives you a very clean way to process files line by line:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="k">with</span> <span class="nf">open</span><span class="p">(</span><span class="sh">"</span><span class="s">large.log</span><span class="sh">"</span><span class="p">,</span> <span class="sh">"</span><span class="s">r</span><span class="sh">"</span><span class="p">)</span> <span class="k">as</span> <span class="n">f</span><span class="p">:</span> <span class="k">for</span> <span class="n">line</span> <span class="ow">in</span> <span class="n">f</span><span class="p">:</span> <span class="nf">process</span><span class="p">(</span><span class="n">line</span><span class="p">)</span> </code></pre> </div> <p>This does not load the whole file into memory.</p> <p>For CSV files:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="kn">import</span> <span class="n">csv</span> <span class="k">with</span> <span class="nf">open</span><span class="p">(</span><span class="sh">"</span><span class="s">large.csv</span><span class="sh">"</span><span class="p">,</span> <span class="n">newline</span><span class="o">=</span><span class="sh">""</span><span class="p">)</span> <span class="k">as</span> <span class="n">f</span><span class="p">:</span> <span class="n">reader</span> <span class="o">=</span> <span class="n">csv</span><span class="p">.</span><span class="nf">reader</span><span class="p">(</span><span class="n">f</span><span class="p">)</span> <span class="k">for</span> <span class="n">row</span> <span class="ow">in</span> <span class="n">reader</span><span class="p">:</span> <span class="nf">process</span><span class="p">(</span><span class="n">row</span><span class="p">)</span> </code></pre> </div> <p>For huge CSV files with Pandas:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="kn">import</span> <span class="n">pandas</span> <span class="k">as</span> <span class="n">pd</span> <span class="k">for</span> <span class="n">chunk</span> <span class="ow">in</span> <span class="n">pd</span><span class="p">.</span><span class="nf">read_csv</span><span class="p">(</span><span class="sh">"</span><span class="s">large.csv</span><span class="sh">"</span><span class="p">,</span> <span class="n">chunksize</span><span class="o">=</span><span class="mi">100_000</span><span class="p">):</span> <span class="nf">process</span><span class="p">(</span><span class="n">chunk</span><span class="p">)</span> </code></pre> </div> <p>For large JSON files, avoid loading everything with:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="n">json</span><span class="p">.</span><span class="nf">load</span><span class="p">(</span><span class="n">f</span><span class="p">)</span> </code></pre> </div> <p>if the file is too big.</p> <p>For stream-style JSON parsing, libraries like <code>ijson</code> can process JSON incrementally.</p> <p>Another powerful pattern in Python is generators:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="k">def</span> <span class="nf">read_lines</span><span class="p">(</span><span class="n">path</span><span class="p">):</span> <span class="k">with</span> <span class="nf">open</span><span class="p">(</span><span class="n">path</span><span class="p">,</span> <span class="sh">"</span><span class="s">r</span><span class="sh">"</span><span class="p">)</span> <span class="k">as</span> <span class="n">f</span><span class="p">:</span> <span class="k">for</span> <span class="n">line</span> <span class="ow">in</span> <span class="n">f</span><span class="p">:</span> <span class="k">yield</span> <span class="n">line</span> <span class="k">for</span> <span class="n">line</span> <span class="ow">in</span> <span class="nf">read_lines</span><span class="p">(</span><span class="sh">"</span><span class="s">large.log</span><span class="sh">"</span><span class="p">):</span> <span class="nf">process</span><span class="p">(</span><span class="n">line</span><span class="p">)</span> </code></pre> </div> <p>The benefit is simple: only a small part of the data exists in memory at a time.</p> <h2> Streaming Files in Go </h2> <p>Go is extremely practical for this kind of workload.</p> <p>For line-by-line processing:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">package</span> <span class="n">main</span> <span class="k">import</span> <span class="p">(</span> <span class="s">"bufio"</span> <span class="s">"fmt"</span> <span class="s">"log"</span> <span class="s">"os"</span> <span class="p">)</span> <span class="k">func</span> <span class="n">main</span><span class="p">()</span> <span class="p">{</span> <span class="n">file</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">os</span><span class="o">.</span><span class="n">Open</span><span class="p">(</span><span class="s">"large.log"</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">log</span><span class="o">.</span><span class="n">Fatal</span><span class="p">(</span><span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="k">defer</span> <span class="n">file</span><span class="o">.</span><span class="n">Close</span><span class="p">()</span> <span class="n">scanner</span> <span class="o">:=</span> <span class="n">bufio</span><span class="o">.</span><span class="n">NewScanner</span><span class="p">(</span><span class="n">file</span><span class="p">)</span> <span class="k">for</span> <span class="n">scanner</span><span class="o">.</span><span class="n">Scan</span><span class="p">()</span> <span class="p">{</span> <span class="n">line</span> <span class="o">:=</span> <span class="n">scanner</span><span class="o">.</span><span class="n">Text</span><span class="p">()</span> <span class="n">process</span><span class="p">(</span><span class="n">line</span><span class="p">)</span> <span class="p">}</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">scanner</span><span class="o">.</span><span class="n">Err</span><span class="p">();</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">log</span><span class="o">.</span><span class="n">Fatal</span><span class="p">(</span><span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> <span class="k">func</span> <span class="n">process</span><span class="p">(</span><span class="n">line</span> <span class="kt">string</span><span class="p">)</span> <span class="p">{</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Println</span><span class="p">(</span><span class="n">line</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>This is simple and memory efficient.</p> <p>But there is one important detail: <code>bufio.Scanner</code> has a default token size limit. For very long lines, you should increase the buffer:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">scanner</span> <span class="o">:=</span> <span class="n">bufio</span><span class="o">.</span><span class="n">NewScanner</span><span class="p">(</span><span class="n">file</span><span class="p">)</span> <span class="n">buf</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">([]</span><span class="kt">byte</span><span class="p">,</span> <span class="m">1024</span><span class="o">*</span><span class="m">1024</span><span class="p">)</span> <span class="n">scanner</span><span class="o">.</span><span class="n">Buffer</span><span class="p">(</span><span class="n">buf</span><span class="p">,</span> <span class="m">10</span><span class="o">*</span><span class="m">1024</span><span class="o">*</span><span class="m">1024</span><span class="p">)</span> </code></pre> </div> <p>For more control, I often prefer <code>bufio.Reader</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">reader</span> <span class="o">:=</span> <span class="n">bufio</span><span class="o">.</span><span class="n">NewReaderSize</span><span class="p">(</span><span class="n">file</span><span class="p">,</span> <span class="m">64</span><span class="o">*</span><span class="m">1024</span><span class="p">)</span> <span class="k">for</span> <span class="p">{</span> <span class="n">line</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">reader</span><span class="o">.</span><span class="n">ReadString</span><span class="p">(</span><span class="sc">'\n'</span><span class="p">)</span> <span class="k">if</span> <span class="nb">len</span><span class="p">(</span><span class="n">line</span><span class="p">)</span> <span class="o">&gt;</span> <span class="m">0</span> <span class="p">{</span> <span class="n">process</span><span class="p">(</span><span class="n">line</span><span class="p">)</span> <span class="p">}</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">break</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>For JSON streaming, avoid reading the full file and unmarshalling everything:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">var</span> <span class="n">items</span> <span class="p">[]</span><span class="n">Item</span> <span class="n">json</span><span class="o">.</span><span class="n">Unmarshal</span><span class="p">(</span><span class="n">data</span><span class="p">,</span> <span class="o">&amp;</span><span class="n">items</span><span class="p">)</span> </code></pre> </div> <p>For large files, use a decoder:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">decoder</span> <span class="o">:=</span> <span class="n">json</span><span class="o">.</span><span class="n">NewDecoder</span><span class="p">(</span><span class="n">file</span><span class="p">)</span> <span class="k">for</span> <span class="n">decoder</span><span class="o">.</span><span class="n">More</span><span class="p">()</span> <span class="p">{</span> <span class="k">var</span> <span class="n">item</span> <span class="n">Item</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">decoder</span><span class="o">.</span><span class="n">Decode</span><span class="p">(</span><span class="o">&amp;</span><span class="n">item</span><span class="p">);</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">log</span><span class="o">.</span><span class="n">Fatal</span><span class="p">(</span><span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="n">process</span><span class="p">(</span><span class="n">item</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>Depending on the JSON structure, you may need to manually read tokens using <code>Token()</code>.</p> <p>The main point is this:</p> <blockquote> <p>Do not make memory responsible for holding data that can be streamed.</p> </blockquote> <h2> Why Go Can Be Much Faster in File Processing </h2> <p>In one of my own experiments, I processed and filtered a large CSV log file using both Python and Go.</p> <p>The Python version used a generator and <code>csv.reader</code>.</p> <p>The Go version used buffered I/O and goroutines for parallel processing.</p> <p>The difference was significant.</p> <p>Python was clean and memory efficient, but slower because every row and cell still became Python-level objects. Go was faster because I could process bytes more directly, reduce allocations, and use multiple CPU cores more naturally.</p> <p>The exact numbers always depend on the machine, disk, file format, parsing logic, and implementation. But the pattern is very common:</p> <ul> <li>Python is excellent for developer speed.</li> <li>Go is excellent for predictable resource usage and backend throughput.</li> <li>Python becomes much faster when heavy work is moved into native libraries.</li> <li>Go performs very well when memory layout and allocations are controlled.</li> </ul> <p>This is not about saying one language is always better.</p> <p>It is about knowing where each language shines.</p> <h2> A Practical Go Pattern: Worker Pool for Large Files </h2> <p>When processing huge files, I usually avoid creating one goroutine per line. That sounds concurrent, but it can destroy memory and scheduling performance.</p> <p>Instead, I prefer a bounded worker pool.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">package</span> <span class="n">main</span> <span class="k">import</span> <span class="p">(</span> <span class="s">"bufio"</span> <span class="s">"log"</span> <span class="s">"os"</span> <span class="s">"sync"</span> <span class="p">)</span> <span class="k">func</span> <span class="n">main</span><span class="p">()</span> <span class="p">{</span> <span class="n">file</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">os</span><span class="o">.</span><span class="n">Open</span><span class="p">(</span><span class="s">"large.log"</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">log</span><span class="o">.</span><span class="n">Fatal</span><span class="p">(</span><span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="k">defer</span> <span class="n">file</span><span class="o">.</span><span class="n">Close</span><span class="p">()</span> <span class="n">lines</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">(</span><span class="k">chan</span> <span class="kt">string</span><span class="p">,</span> <span class="m">10</span><span class="n">_000</span><span class="p">)</span> <span class="k">var</span> <span class="n">wg</span> <span class="n">sync</span><span class="o">.</span><span class="n">WaitGroup</span> <span class="n">workerCount</span> <span class="o">:=</span> <span class="m">8</span> <span class="k">for</span> <span class="n">i</span> <span class="o">:=</span> <span class="m">0</span><span class="p">;</span> <span class="n">i</span> <span class="o">&lt;</span> <span class="n">workerCount</span><span class="p">;</span> <span class="n">i</span><span class="o">++</span> <span class="p">{</span> <span class="n">wg</span><span class="o">.</span><span class="n">Add</span><span class="p">(</span><span class="m">1</span><span class="p">)</span> <span class="k">go</span> <span class="k">func</span><span class="p">()</span> <span class="p">{</span> <span class="k">defer</span> <span class="n">wg</span><span class="o">.</span><span class="n">Done</span><span class="p">()</span> <span class="k">for</span> <span class="n">line</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">lines</span> <span class="p">{</span> <span class="n">process</span><span class="p">(</span><span class="n">line</span><span class="p">)</span> <span class="p">}</span> <span class="p">}()</span> <span class="p">}</span> <span class="n">scanner</span> <span class="o">:=</span> <span class="n">bufio</span><span class="o">.</span><span class="n">NewScanner</span><span class="p">(</span><span class="n">file</span><span class="p">)</span> <span class="n">scanner</span><span class="o">.</span><span class="n">Buffer</span><span class="p">(</span><span class="nb">make</span><span class="p">([]</span><span class="kt">byte</span><span class="p">,</span> <span class="m">1024</span><span class="o">*</span><span class="m">1024</span><span class="p">),</span> <span class="m">10</span><span class="o">*</span><span class="m">1024</span><span class="o">*</span><span class="m">1024</span><span class="p">)</span> <span class="k">for</span> <span class="n">scanner</span><span class="o">.</span><span class="n">Scan</span><span class="p">()</span> <span class="p">{</span> <span class="n">lines</span> <span class="o">&lt;-</span> <span class="n">scanner</span><span class="o">.</span><span class="n">Text</span><span class="p">()</span> <span class="p">}</span> <span class="nb">close</span><span class="p">(</span><span class="n">lines</span><span class="p">)</span> <span class="n">wg</span><span class="o">.</span><span class="n">Wait</span><span class="p">()</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">scanner</span><span class="o">.</span><span class="n">Err</span><span class="p">();</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">log</span><span class="o">.</span><span class="n">Fatal</span><span class="p">(</span><span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> <span class="k">func</span> <span class="n">process</span><span class="p">(</span><span class="n">line</span> <span class="kt">string</span><span class="p">)</span> <span class="p">{</span> <span class="c">// parse, filter, transform, send to DB, etc.</span> <span class="p">}</span> </code></pre> </div> <p>The important part is this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">lines</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">(</span><span class="k">chan</span> <span class="kt">string</span><span class="p">,</span> <span class="m">10</span><span class="n">_000</span><span class="p">)</span> </code></pre> </div> <p>The channel is bounded.</p> <p>That means the reader cannot infinitely push data into memory. If workers are slower than the reader, backpressure naturally happens.</p> <p>This is one of the most important backend engineering concepts:</p> <blockquote> <p>Fast producers must not be allowed to destroy slow consumers.</p> </blockquote> <p>Whether you are reading files, consuming Kafka messages, processing HTTP requests, or sending jobs to workers, you need backpressure.</p> <h2> Avoiding Unnecessary String Allocation in Go </h2> <p>One hidden cost in Go file processing is converting bytes to strings too early.</p> <p>For example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">line</span> <span class="o">:=</span> <span class="n">scanner</span><span class="o">.</span><span class="n">Text</span><span class="p">()</span> </code></pre> </div> <p>This returns a string, which may allocate.</p> <p>If you need better performance and can safely process bytes, use:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">line</span> <span class="o">:=</span> <span class="n">scanner</span><span class="o">.</span><span class="n">Bytes</span><span class="p">()</span> </code></pre> </div> <p>But be careful: the byte slice returned by <code>scanner.Bytes()</code> is only valid until the next scan. If you need to keep it, you must copy it.</p> <p>This is a classic Go tradeoff.</p> <p>You can reduce allocations, but you must understand ownership and lifetime.</p> <p>That is why I always say Go is simple, but not shallow.</p> <h2> Escape Analysis: The Invisible Performance Tool </h2> <p>One of the most powerful Go concepts is escape analysis.</p> <p>Go decides whether a variable can stay on the stack or must move to the heap.</p> <p>Example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">createUser</span><span class="p">()</span> <span class="o">*</span><span class="n">User</span> <span class="p">{</span> <span class="n">user</span> <span class="o">:=</span> <span class="n">User</span><span class="p">{</span><span class="n">Name</span><span class="o">:</span> <span class="s">"Amir"</span><span class="p">}</span> <span class="k">return</span> <span class="o">&amp;</span><span class="n">user</span> <span class="p">}</span> </code></pre> </div> <p>Here, <code>user</code> escapes because we return its address. It cannot live only on the stack.</p> <p>You can inspect escape decisions:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go build <span class="nt">-gcflags</span><span class="o">=</span><span class="s2">"-m"</span> ./... </code></pre> </div> <p>You may see output like:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>user escapes to heap </code></pre> </div> <p>This does not automatically mean the code is bad. Sometimes heap allocation is necessary.</p> <p>But when you are optimizing hot paths, escape analysis helps you understand why your GC pressure is high.</p> <p>In backend systems, this matters in places like:</p> <ul> <li>request parsing</li> <li>JSON encoding/decoding</li> <li>logging</li> <li>metrics</li> <li>queue consumers</li> <li>data transformation pipelines</li> <li>tight loops</li> <li>large batch processing</li> </ul> <p>If a function runs millions of times, a small allocation becomes a production problem.</p> <h2> Memory Is Not Just a Language Problem </h2> <p>A senior engineer should not only ask:</p> <blockquote> <p>Which language is faster?</p> </blockquote> <p>A better question is:</p> <blockquote> <p>What memory model does this workload need?</p> </blockquote> <p>For example:</p> <p>If I am building an internal script, Python is probably perfect.</p> <p>If I am writing data analysis code, Python with Pandas, Polars, DuckDB, or NumPy can be excellent.</p> <p>If I am building a high-throughput API service with predictable latency, Go is often a strong choice.</p> <p>If I am processing huge files and need simple deployment, Go gives me a very practical balance.</p> <p>If I am building machine learning workflows, Python still has the ecosystem advantage.</p> <p>The language is only one layer.</p> <p>The real engineering decision is about workload, memory behavior, concurrency model, ecosystem, deployment, and operational cost.</p> <h2> Practical Rules I Use in Production </h2> <p>Here are some rules I personally follow when working with memory-heavy backend systems.</p> <h3> 1. Never load a huge file fully unless you really need to </h3> <p>Stream it.</p> <p>Line by line.</p> <p>Chunk by chunk.</p> <p>Token by token.</p> <h3> 2. Preallocate when you know the size </h3> <p>In Go:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">items</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">([]</span><span class="n">Item</span><span class="p">,</span> <span class="m">0</span><span class="p">,</span> <span class="n">expectedSize</span><span class="p">)</span> </code></pre> </div> <p>This can reduce allocations and copying.</p> <h3> 3. Be careful with slices sharing the same underlying array </h3> <p>This can create subtle bugs and unexpected memory retention.</p> <p>For example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">small</span> <span class="o">:=</span> <span class="n">big</span><span class="p">[</span><span class="o">:</span><span class="m">10</span><span class="p">]</span> </code></pre> </div> <p>If <code>big</code> is huge, <code>small</code> may keep the whole underlying array alive.</p> <p>If you only need the small part, copy it:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">smallCopy</span> <span class="o">:=</span> <span class="nb">append</span><span class="p">([]</span><span class="kt">byte</span><span class="p">(</span><span class="no">nil</span><span class="p">),</span> <span class="n">big</span><span class="p">[</span><span class="o">:</span><span class="m">10</span><span class="p">]</span><span class="o">...</span><span class="p">)</span> </code></pre> </div> <h3> 4. Avoid unnecessary pointer-heavy structures </h3> <p>A slice of pointers is not always better.</p> <p>Sometimes a slice of values is faster and simpler.</p> <h3> 5. Measure before and after optimization </h3> <p>Use tools:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go <span class="nb">test</span> <span class="nt">-bench</span><span class="o">=</span><span class="nb">.</span> <span class="nt">-benchmem</span> go tool pprof </code></pre> </div> <p>For Python:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>python <span class="nt">-m</span> cProfile app.py </code></pre> </div> <p>Also check memory profiling tools when memory matters.</p> <h3> 6. Design with backpressure </h3> <p>Bound your queues.</p> <p>Limit your workers.</p> <p>Do not let fast input destroy your service.</p> <h3> 7. Optimize hot paths, not everything </h3> <p>Readable code still matters.</p> <p>Do not turn the whole codebase into a low-level memory puzzle.</p> <p>Find the hot path, measure it, then optimize it.</p> <h2> Final Thoughts </h2> <p>The deeper I go into backend engineering, the more I respect memory.</p> <p>Not because every developer needs to become a systems programmer, but because every production system eventually becomes a resource management problem.</p> <p>CPU is limited.</p> <p>Memory is limited.</p> <p>Disk I/O is limited.</p> <p>Network bandwidth is limited.</p> <p>The job of a backend engineer is not just writing business logic. It is building software that behaves well under pressure.</p> <p>Python gives us speed of development and a massive ecosystem.</p> <p>Go gives us simplicity, strong concurrency, predictable deployment, and great performance for many backend workloads.</p> <p>Both are useful.</p> <p>But if you want to build scalable backend systems, process large files, reduce memory pressure, and understand why your service behaves the way it does, you need to look under the hood.</p> <p>My personal rule is simple:</p> <blockquote> <p>Write clean code first.<br><br> Understand memory second.<br><br> Measure everything.<br><br> Then optimize only what matters.</p> </blockquote> <p>That mindset has helped me more than any single framework, library, or language feature.</p> <h2> Discussion </h2> <p>Have you ever had a service crash because it loaded too much data into memory?</p> <p>Or have you used Go escape analysis, pprof, or Python profiling tools to debug a real production issue?</p> <p>I would love to hear your experience.</p> go python performance backend amir Sun, 24 May 2026 17:15:55 +0000 https://dev.to/amirsefati/the-silent-killers-of-go-concurrency-mutexes-semaphores-and-goroutine-leaks-177i https://dev.to/amirsefati/the-silent-killers-of-go-concurrency-mutexes-semaphores-and-goroutine-leaks-177i <p>Go makes concurrency look simple.</p> <p>You write:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">go</span> <span class="k">func</span><span class="p">()</span> <span class="p">{</span> <span class="c">// do something concurrently</span> <span class="p">}()</span> </code></pre> </div> <p>And suddenly your code is running in another goroutine.</p> <p>That simplicity is one of the reasons I like Go so much. But after working on backend systems, notification pipelines, high-traffic APIs, and production services under real load, I learned something important:</p> <blockquote> <p>Most concurrency problems in Go do not come from not using concurrency.<br><br> They come from using concurrency without understanding where the bottleneck actually is.</p> </blockquote> <p>Sometimes the issue is a missing lock.</p> <p>But very often, especially in production Go services, the issue is the opposite:</p> <ul> <li>too much locking</li> <li>locks held for too long</li> <li>network I/O inside critical sections</li> <li>goroutines that never exit</li> <li>unbounded goroutine creation</li> <li>WaitGroups copied by value</li> <li>channels used without a cancellation strategy</li> </ul> <p>In this article, I want to walk through the concurrency problems I have seen in real systems, how I reason about mutexes and semaphores, and how I usually debug these issues before they become production incidents.</p> <h2> The Real Problem: Concurrency That Accidentally Becomes Sequential </h2> <p>A service can look concurrent from the outside and still behave like a single-threaded application internally.</p> <p>This usually happens when a large part of the request flow is hidden behind one shared lock.</p> <p>A pattern like this is more common than many developers admit:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">mu</span><span class="o">.</span><span class="n">Lock</span><span class="p">()</span> <span class="n">user</span><span class="o">.</span><span class="n">Name</span> <span class="o">=</span> <span class="s">"Test User"</span> <span class="n">sendEmail</span><span class="p">(</span><span class="n">user</span><span class="p">)</span> <span class="n">callDatabase</span><span class="p">(</span><span class="n">user</span><span class="p">)</span> <span class="n">mu</span><span class="o">.</span><span class="n">Unlock</span><span class="p">()</span> </code></pre> </div> <p>At first glance, it may look safe.</p> <p>The developer wanted to protect shared state. That part is reasonable. But the lock is now protecting much more than shared memory. It is protecting the entire flow:</p> <ol> <li>update a field</li> <li>send an email</li> <li>call the database</li> <li>maybe wait on network I/O</li> <li>maybe retry</li> <li>maybe block other goroutines for a long time</li> </ol> <p>That is not just a mutex anymore.</p> <p>That is a traffic jam.</p> <p>Every goroutine that needs the same lock must wait until the whole flow finishes. So even if your service has hundreds or thousands of goroutines, a big part of the system becomes sequential.</p> <p>The dangerous part is that CPU usage may still look normal or even low. Memory may also look fine. But latency increases, throughput drops, and p95/p99 response times become unstable.</p> <p>This is why lock contention is sometimes difficult to notice from basic infrastructure metrics alone.</p> <h2> A Production-Style Example: Email Inside a Mutex </h2> <p>Imagine we have a service that updates user state and sends notifications.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">Service</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">mu</span> <span class="n">sync</span><span class="o">.</span><span class="n">Mutex</span> <span class="n">state</span> <span class="k">map</span><span class="p">[</span><span class="kt">int</span><span class="p">]</span><span class="kt">string</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">s</span> <span class="o">*</span><span class="n">Service</span><span class="p">)</span> <span class="n">ProcessUsers</span><span class="p">(</span><span class="n">users</span> <span class="p">[]</span><span class="n">User</span><span class="p">)</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">mu</span><span class="o">.</span><span class="n">Lock</span><span class="p">()</span> <span class="k">defer</span> <span class="n">s</span><span class="o">.</span><span class="n">mu</span><span class="o">.</span><span class="n">Unlock</span><span class="p">()</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">user</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">users</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">state</span><span class="p">[</span><span class="n">user</span><span class="o">.</span><span class="n">ID</span><span class="p">]</span> <span class="o">=</span> <span class="s">"processed"</span> <span class="n">sendEmail</span><span class="p">(</span><span class="n">user</span><span class="p">)</span> <span class="c">// slow network I/O inside the lock</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>This code is safe from a data race perspective.</p> <p>But it is dangerous from a performance perspective.</p> <p>A mutex should protect the smallest possible shared memory operation. It should not protect slow external work like:</p> <ul> <li>sending email</li> <li>calling another microservice</li> <li>database queries</li> <li>HTTP requests</li> <li>file uploads</li> <li>logging to a slow external sink</li> <li>waiting on a third-party API</li> </ul> <p>The memory update may take nanoseconds or microseconds. The email call may take milliseconds or seconds.</p> <p>That difference matters.</p> <p>If the lock is held while <code>sendEmail</code> runs, every other goroutine that needs <code>s.mu</code> is blocked behind a network call.</p> <p>A better version separates shared-state mutation from slow work:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">s</span> <span class="o">*</span><span class="n">Service</span><span class="p">)</span> <span class="n">ProcessUsers</span><span class="p">(</span><span class="n">users</span> <span class="p">[]</span><span class="n">User</span><span class="p">)</span> <span class="p">{</span> <span class="n">emails</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">([]</span><span class="n">User</span><span class="p">,</span> <span class="m">0</span><span class="p">,</span> <span class="nb">len</span><span class="p">(</span><span class="n">users</span><span class="p">))</span> <span class="n">s</span><span class="o">.</span><span class="n">mu</span><span class="o">.</span><span class="n">Lock</span><span class="p">()</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">user</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">users</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">state</span><span class="p">[</span><span class="n">user</span><span class="o">.</span><span class="n">ID</span><span class="p">]</span> <span class="o">=</span> <span class="s">"processed"</span> <span class="n">emails</span> <span class="o">=</span> <span class="nb">append</span><span class="p">(</span><span class="n">emails</span><span class="p">,</span> <span class="n">user</span><span class="p">)</span> <span class="p">}</span> <span class="n">s</span><span class="o">.</span><span class="n">mu</span><span class="o">.</span><span class="n">Unlock</span><span class="p">()</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">user</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">emails</span> <span class="p">{</span> <span class="n">sendEmail</span><span class="p">(</span><span class="n">user</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>This is already better because the lock only protects the shared map.</p> <p>But in a real production system, I usually prefer pushing the slow work to a queue or bounded worker pool:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">s</span> <span class="o">*</span><span class="n">Service</span><span class="p">)</span> <span class="n">ProcessUsers</span><span class="p">(</span><span class="n">users</span> <span class="p">[]</span><span class="n">User</span><span class="p">,</span> <span class="n">jobs</span> <span class="k">chan</span><span class="o">&lt;-</span> <span class="n">EmailJob</span><span class="p">)</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">mu</span><span class="o">.</span><span class="n">Lock</span><span class="p">()</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">user</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">users</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">state</span><span class="p">[</span><span class="n">user</span><span class="o">.</span><span class="n">ID</span><span class="p">]</span> <span class="o">=</span> <span class="s">"processed"</span> <span class="p">}</span> <span class="n">s</span><span class="o">.</span><span class="n">mu</span><span class="o">.</span><span class="n">Unlock</span><span class="p">()</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">user</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">users</span> <span class="p">{</span> <span class="n">jobs</span> <span class="o">&lt;-</span> <span class="n">EmailJob</span><span class="p">{</span><span class="n">UserID</span><span class="o">:</span> <span class="n">user</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="n">Email</span><span class="o">:</span> <span class="n">user</span><span class="o">.</span><span class="n">Email</span><span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>Now the request path does not directly depend on the email provider latency.</p> <p>That is the real fix.</p> <p>Not just “use goroutines.”</p> <p>The fix is designing the boundary between shared memory, external I/O, and backpressure.</p> <h2> Mutexes Are Not Bad. Large Critical Sections Are Bad. </h2> <p>I sometimes see developers become afraid of mutexes.</p> <p>That is the wrong lesson.</p> <p><code>sync.Mutex</code> is simple, fast, and perfectly fine when used correctly. The problem is not the mutex. The problem is the size of the critical section.</p> <p>This is what I try to keep in mind:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">mu</span><span class="o">.</span><span class="n">Lock</span><span class="p">()</span> <span class="c">// only touch shared memory here</span> <span class="n">mu</span><span class="o">.</span><span class="n">Unlock</span><span class="p">()</span> </code></pre> </div> <p>Not this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">mu</span><span class="o">.</span><span class="n">Lock</span><span class="p">()</span> <span class="c">// shared memory</span> <span class="c">// database call</span> <span class="c">// HTTP call</span> <span class="c">// email call</span> <span class="c">// JSON encoding</span> <span class="c">// logging</span> <span class="c">// metrics push</span> <span class="n">mu</span><span class="o">.</span><span class="n">Unlock</span><span class="p">()</span> </code></pre> </div> <p>A good critical section should be boring.</p> <p>It should usually do one of these:</p> <ul> <li>read shared state</li> <li>update shared state</li> <li>copy shared state into a local variable</li> <li>swap a pointer</li> <li>increment a counter</li> <li>append to a protected slice/map</li> </ul> <p>Then unlock.</p> <p>After that, do the expensive work outside the lock.</p> <h2> Under the Hood: What a Mutex Gives You </h2> <p>At a high level, a mutex gives you mutual exclusion: only one goroutine can enter a protected section at a time.</p> <p>But it also gives you memory ordering guarantees.</p> <p>In Go's memory model, an unlock operation synchronizes before a later lock operation on the same mutex. In practical terms, that means if one goroutine updates shared data and unlocks, another goroutine that later locks the same mutex can safely observe that update.</p> <p>That is the part many developers forget.</p> <p>A mutex is not just about “blocking other goroutines.” It is also about creating a safe visibility boundary between goroutines.</p> <p>Without that boundary, different goroutines may read and write the same memory at the same time, and now you have a data race. Once you have a data race, your program is no longer something you can reason about confidently.</p> <p>This is why I do not like “clever” lock-free code unless there is a very strong reason for it.</p> <p>Most backend services do not need clever concurrency.</p> <p>They need clear concurrency.</p> <h2> Semaphore: Controlling Capacity, Not Ownership </h2> <p>A mutex is usually about ownership of shared memory.</p> <p>A semaphore is about capacity.</p> <p>For example, suppose you want to process 10,000 users, but you do not want to send 10,000 emails at the same time.</p> <p>A naive version might do this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">user</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">users</span> <span class="p">{</span> <span class="k">go</span> <span class="n">sendEmail</span><span class="p">(</span><span class="n">user</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>This is dangerous because it creates unbounded concurrency.</p> <p>If <code>users</code> has 10,000 items, you create 10,000 goroutines. If each goroutine performs network I/O, opens connections, allocates memory, and waits on an external provider, you can overload your own service before you overload the email provider.</p> <p>A simple semaphore pattern fixes this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">sem</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">(</span><span class="k">chan</span> <span class="k">struct</span><span class="p">{},</span> <span class="m">20</span><span class="p">)</span> <span class="c">// allow only 20 concurrent email sends</span> <span class="k">var</span> <span class="n">wg</span> <span class="n">sync</span><span class="o">.</span><span class="n">WaitGroup</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">user</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">users</span> <span class="p">{</span> <span class="n">user</span> <span class="o">:=</span> <span class="n">user</span> <span class="n">sem</span> <span class="o">&lt;-</span> <span class="k">struct</span><span class="p">{}{}</span> <span class="n">wg</span><span class="o">.</span><span class="n">Add</span><span class="p">(</span><span class="m">1</span><span class="p">)</span> <span class="k">go</span> <span class="k">func</span><span class="p">()</span> <span class="p">{</span> <span class="k">defer</span> <span class="n">wg</span><span class="o">.</span><span class="n">Done</span><span class="p">()</span> <span class="k">defer</span> <span class="k">func</span><span class="p">()</span> <span class="p">{</span> <span class="o">&lt;-</span><span class="n">sem</span> <span class="p">}()</span> <span class="n">sendEmail</span><span class="p">(</span><span class="n">user</span><span class="p">)</span> <span class="p">}()</span> <span class="p">}</span> <span class="n">wg</span><span class="o">.</span><span class="n">Wait</span><span class="p">()</span> </code></pre> </div> <p>Now the code still uses concurrency, but concurrency is bounded.</p> <p>That one detail is huge in production.</p> <p>Unbounded concurrency is not scalability.</p> <p>It is delayed failure.</p> <h2> A Better Worker Pool for Production Code </h2> <p>The semaphore pattern is useful, but for services that run continuously, I often prefer a worker pool.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">EmailJob</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">UserID</span> <span class="kt">int</span> <span class="n">Email</span> <span class="kt">string</span> <span class="p">}</span> <span class="k">func</span> <span class="n">startEmailWorkers</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">workerCount</span> <span class="kt">int</span><span class="p">,</span> <span class="n">jobs</span> <span class="o">&lt;-</span><span class="k">chan</span> <span class="n">EmailJob</span><span class="p">)</span> <span class="p">{</span> <span class="k">var</span> <span class="n">wg</span> <span class="n">sync</span><span class="o">.</span><span class="n">WaitGroup</span> <span class="k">for</span> <span class="n">i</span> <span class="o">:=</span> <span class="m">0</span><span class="p">;</span> <span class="n">i</span> <span class="o">&lt;</span> <span class="n">workerCount</span><span class="p">;</span> <span class="n">i</span><span class="o">++</span> <span class="p">{</span> <span class="n">wg</span><span class="o">.</span><span class="n">Add</span><span class="p">(</span><span class="m">1</span><span class="p">)</span> <span class="k">go</span> <span class="k">func</span><span class="p">(</span><span class="n">workerID</span> <span class="kt">int</span><span class="p">)</span> <span class="p">{</span> <span class="k">defer</span> <span class="n">wg</span><span class="o">.</span><span class="n">Done</span><span class="p">()</span> <span class="k">for</span> <span class="p">{</span> <span class="k">select</span> <span class="p">{</span> <span class="k">case</span> <span class="o">&lt;-</span><span class="n">ctx</span><span class="o">.</span><span class="n">Done</span><span class="p">()</span><span class="o">:</span> <span class="k">return</span> <span class="k">case</span> <span class="n">job</span><span class="p">,</span> <span class="n">ok</span> <span class="o">:=</span> <span class="o">&lt;-</span><span class="n">jobs</span><span class="o">:</span> <span class="k">if</span> <span class="o">!</span><span class="n">ok</span> <span class="p">{</span> <span class="k">return</span> <span class="p">}</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">sendEmailJob</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">job</span><span class="p">);</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="c">// In real systems: log, retry, dead-letter, or expose metrics.</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Printf</span><span class="p">(</span><span class="s">"worker=%d failed to send email user_id=%d err=%v</span><span class="se">\n</span><span class="s">"</span><span class="p">,</span> <span class="n">workerID</span><span class="p">,</span> <span class="n">job</span><span class="o">.</span><span class="n">UserID</span><span class="p">,</span> <span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}(</span><span class="n">i</span><span class="p">)</span> <span class="p">}</span> <span class="k">go</span> <span class="k">func</span><span class="p">()</span> <span class="p">{</span> <span class="n">wg</span><span class="o">.</span><span class="n">Wait</span><span class="p">()</span> <span class="p">}()</span> <span class="p">}</span> </code></pre> </div> <p>This gives you much better operational control:</p> <ul> <li>fixed concurrency</li> <li>easier metrics</li> <li>easier shutdown</li> <li>easier retry strategy</li> <li>easier backpressure</li> <li>easier rate limiting</li> </ul> <p>This is the difference between “I used goroutines” and “I designed a concurrent system.”</p> <h2> Goroutine Leak: The Bug That Does Not Explode Immediately </h2> <p>Goroutine leaks are one of the most common production problems in Go.</p> <p>They are dangerous because the service may not crash immediately. It may slowly become worse over hours or days.</p> <p>Here is a classic example:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">process</span><span class="p">()</span> <span class="kt">error</span> <span class="p">{</span> <span class="n">ch</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">(</span><span class="k">chan</span> <span class="n">result</span><span class="p">)</span> <span class="k">go</span> <span class="k">func</span><span class="p">()</span> <span class="p">{</span> <span class="n">ch</span> <span class="o">&lt;-</span> <span class="n">heavyComputation</span><span class="p">()</span> <span class="p">}()</span> <span class="k">select</span> <span class="p">{</span> <span class="k">case</span> <span class="n">res</span> <span class="o">:=</span> <span class="o">&lt;-</span><span class="n">ch</span><span class="o">:</span> <span class="k">return</span> <span class="n">handle</span><span class="p">(</span><span class="n">res</span><span class="p">)</span> <span class="k">case</span> <span class="o">&lt;-</span><span class="n">time</span><span class="o">.</span><span class="n">After</span><span class="p">(</span><span class="m">1</span> <span class="o">*</span> <span class="n">time</span><span class="o">.</span><span class="n">Second</span><span class="p">)</span><span class="o">:</span> <span class="k">return</span> <span class="n">errors</span><span class="o">.</span><span class="n">New</span><span class="p">(</span><span class="s">"timeout"</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>The problem is subtle.</p> <p><code>ch</code> is unbuffered.</p> <p>If the timeout happens first, <code>process</code> returns. After that, there is no receiver waiting on <code>ch</code>.</p> <p>When <code>heavyComputation()</code> finishes, the goroutine tries to send into <code>ch</code> and blocks forever.</p> <p>That goroutine is now leaked.</p> <p>One leaked goroutine may not matter.</p> <p>Thousands of leaked goroutines matter.</p> <p>A safer version uses a buffered channel:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">process</span><span class="p">()</span> <span class="kt">error</span> <span class="p">{</span> <span class="n">ch</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">(</span><span class="k">chan</span> <span class="n">result</span><span class="p">,</span> <span class="m">1</span><span class="p">)</span> <span class="k">go</span> <span class="k">func</span><span class="p">()</span> <span class="p">{</span> <span class="n">ch</span> <span class="o">&lt;-</span> <span class="n">heavyComputation</span><span class="p">()</span> <span class="p">}()</span> <span class="k">select</span> <span class="p">{</span> <span class="k">case</span> <span class="n">res</span> <span class="o">:=</span> <span class="o">&lt;-</span><span class="n">ch</span><span class="o">:</span> <span class="k">return</span> <span class="n">handle</span><span class="p">(</span><span class="n">res</span><span class="p">)</span> <span class="k">case</span> <span class="o">&lt;-</span><span class="n">time</span><span class="o">.</span><span class="n">After</span><span class="p">(</span><span class="m">1</span> <span class="o">*</span> <span class="n">time</span><span class="o">.</span><span class="n">Second</span><span class="p">)</span><span class="o">:</span> <span class="k">return</span> <span class="n">errors</span><span class="o">.</span><span class="n">New</span><span class="p">(</span><span class="s">"timeout"</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>This prevents the goroutine from blocking on send after the timeout.</p> <p>But in real services, I prefer context-based cancellation:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">process</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">)</span> <span class="kt">error</span> <span class="p">{</span> <span class="n">ctx</span><span class="p">,</span> <span class="n">cancel</span> <span class="o">:=</span> <span class="n">context</span><span class="o">.</span><span class="n">WithTimeout</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="m">1</span><span class="o">*</span><span class="n">time</span><span class="o">.</span><span class="n">Second</span><span class="p">)</span> <span class="k">defer</span> <span class="n">cancel</span><span class="p">()</span> <span class="n">ch</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">(</span><span class="k">chan</span> <span class="n">result</span><span class="p">,</span> <span class="m">1</span><span class="p">)</span> <span class="k">go</span> <span class="k">func</span><span class="p">()</span> <span class="p">{</span> <span class="n">res</span> <span class="o">:=</span> <span class="n">heavyComputation</span><span class="p">(</span><span class="n">ctx</span><span class="p">)</span> <span class="k">select</span> <span class="p">{</span> <span class="k">case</span> <span class="n">ch</span> <span class="o">&lt;-</span> <span class="n">res</span><span class="o">:</span> <span class="k">case</span> <span class="o">&lt;-</span><span class="n">ctx</span><span class="o">.</span><span class="n">Done</span><span class="p">()</span><span class="o">:</span> <span class="p">}</span> <span class="p">}()</span> <span class="k">select</span> <span class="p">{</span> <span class="k">case</span> <span class="n">res</span> <span class="o">:=</span> <span class="o">&lt;-</span><span class="n">ch</span><span class="o">:</span> <span class="k">return</span> <span class="n">handle</span><span class="p">(</span><span class="n">res</span><span class="p">)</span> <span class="k">case</span> <span class="o">&lt;-</span><span class="n">ctx</span><span class="o">.</span><span class="n">Done</span><span class="p">()</span><span class="o">:</span> <span class="k">return</span> <span class="n">ctx</span><span class="o">.</span><span class="n">Err</span><span class="p">()</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>The important lesson:</p> <blockquote> <p>Every goroutine needs an exit path.</p> </blockquote> <p>If you cannot explain how a goroutine stops, you probably have a leak waiting to happen.</p> <h2> WaitGroup by Value: A Small Mistake With a Big Impact </h2> <p>This mistake is very easy to miss in code review:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">worker</span><span class="p">(</span><span class="n">wg</span> <span class="n">sync</span><span class="o">.</span><span class="n">WaitGroup</span><span class="p">)</span> <span class="p">{</span> <span class="c">// wrong: copied by value</span> <span class="k">defer</span> <span class="n">wg</span><span class="o">.</span><span class="n">Done</span><span class="p">()</span> <span class="c">// do work</span> <span class="p">}</span> </code></pre> </div> <p><code>sync.WaitGroup</code> must not be copied after first use.</p> <p>When you pass it by value, you copy its internal state. The worker calls <code>Done()</code> on the copy, not on the original WaitGroup that the main goroutine is waiting on.</p> <p>That can cause a deadlock.</p> <p>Correct version:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">worker</span><span class="p">(</span><span class="n">wg</span> <span class="o">*</span><span class="n">sync</span><span class="o">.</span><span class="n">WaitGroup</span><span class="p">)</span> <span class="p">{</span> <span class="k">defer</span> <span class="n">wg</span><span class="o">.</span><span class="n">Done</span><span class="p">()</span> <span class="c">// do work</span> <span class="p">}</span> </code></pre> </div> <p>And usage:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">var</span> <span class="n">wg</span> <span class="n">sync</span><span class="o">.</span><span class="n">WaitGroup</span> <span class="k">for</span> <span class="n">i</span> <span class="o">:=</span> <span class="m">0</span><span class="p">;</span> <span class="n">i</span> <span class="o">&lt;</span> <span class="m">10</span><span class="p">;</span> <span class="n">i</span><span class="o">++</span> <span class="p">{</span> <span class="n">wg</span><span class="o">.</span><span class="n">Add</span><span class="p">(</span><span class="m">1</span><span class="p">)</span> <span class="k">go</span> <span class="n">worker</span><span class="p">(</span><span class="o">&amp;</span><span class="n">wg</span><span class="p">)</span> <span class="p">}</span> <span class="n">wg</span><span class="o">.</span><span class="n">Wait</span><span class="p">()</span> </code></pre> </div> <p>This rule also applies to other synchronization primitives like <code>sync.Mutex</code>.</p> <p>Do not copy them after first use.</p> <h2> The Loop Variable Trap </h2> <p>This used to be one of the most famous Go concurrency bugs:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">user</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">users</span> <span class="p">{</span> <span class="k">go</span> <span class="k">func</span><span class="p">()</span> <span class="p">{</span> <span class="n">sendEmail</span><span class="p">(</span><span class="n">user</span><span class="p">)</span> <span class="p">}()</span> <span class="p">}</span> </code></pre> </div> <p>Depending on the Go version and context, capturing loop variables incorrectly could lead to goroutines using the wrong value.</p> <p>The defensive pattern is still simple and clear:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">user</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">users</span> <span class="p">{</span> <span class="n">user</span> <span class="o">:=</span> <span class="n">user</span> <span class="k">go</span> <span class="k">func</span><span class="p">()</span> <span class="p">{</span> <span class="n">sendEmail</span><span class="p">(</span><span class="n">user</span><span class="p">)</span> <span class="p">}()</span> <span class="p">}</span> </code></pre> </div> <p>Even with improvements in newer Go versions, I still like this style in production code because it makes the ownership of the variable obvious to the reader.</p> <p>Readable concurrency is maintainable concurrency.</p> <h2> How I Debug Lock Contention in Go </h2> <p>When I suspect a concurrency bottleneck, I do not start by guessing.</p> <p>I start by measuring.</p> <h3> 1. Enable pprof </h3> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">import</span> <span class="n">_</span> <span class="s">"net/http/pprof"</span> <span class="k">func</span> <span class="n">main</span><span class="p">()</span> <span class="p">{</span> <span class="k">go</span> <span class="k">func</span><span class="p">()</span> <span class="p">{</span> <span class="n">log</span><span class="o">.</span><span class="n">Println</span><span class="p">(</span><span class="n">http</span><span class="o">.</span><span class="n">ListenAndServe</span><span class="p">(</span><span class="s">"localhost:6060"</span><span class="p">,</span> <span class="no">nil</span><span class="p">))</span> <span class="p">}()</span> <span class="c">// start application</span> <span class="p">}</span> </code></pre> </div> <p>Then collect profiles:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go tool pprof http://localhost:6060/debug/pprof/profile?seconds<span class="o">=</span>30 </code></pre> </div> <p>For mutex contention, enable mutex profiling:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">runtime</span><span class="o">.</span><span class="n">SetMutexProfileFraction</span><span class="p">(</span><span class="m">1</span><span class="p">)</span> </code></pre> </div> <p>Then inspect:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go tool pprof http://localhost:6060/debug/pprof/mutex </code></pre> </div> <h3> 2. Check goroutine count </h3> <p>A rising goroutine count is often a signal of blocked goroutines or leaks.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">fmt</span><span class="o">.</span><span class="n">Println</span><span class="p">(</span><span class="s">"goroutines:"</span><span class="p">,</span> <span class="n">runtime</span><span class="o">.</span><span class="n">NumGoroutine</span><span class="p">())</span> </code></pre> </div> <p>For production, expose it as a metric:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">prometheus</span><span class="o">.</span><span class="n">NewGaugeFunc</span><span class="p">(</span> <span class="n">prometheus</span><span class="o">.</span><span class="n">GaugeOpts</span><span class="p">{</span> <span class="n">Name</span><span class="o">:</span> <span class="s">"go_goroutines_current"</span><span class="p">,</span> <span class="n">Help</span><span class="o">:</span> <span class="s">"Current number of goroutines."</span><span class="p">,</span> <span class="p">},</span> <span class="k">func</span><span class="p">()</span> <span class="kt">float64</span> <span class="p">{</span> <span class="k">return</span> <span class="kt">float64</span><span class="p">(</span><span class="n">runtime</span><span class="o">.</span><span class="n">NumGoroutine</span><span class="p">())</span> <span class="p">},</span> <span class="p">)</span> </code></pre> </div> <h3> 3. Dump goroutine stacks </h3> <p>When the service is stuck, goroutine dumps are gold.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>curl http://localhost:6060/debug/pprof/goroutine?debug<span class="o">=</span>2 </code></pre> </div> <p>Look for many goroutines blocked on the same line:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>sync.(*Mutex).Lock chan send chan receive net/http.(*Transport).RoundTrip </code></pre> </div> <p>If 5,000 goroutines are blocked on the same lock or channel, you found your bottleneck.</p> <h3> 4. Use the race detector in tests </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>go <span class="nb">test</span> <span class="nt">-race</span> ./... </code></pre> </div> <p>The race detector is not free, and you usually do not run it in production, but it is extremely useful in CI and local debugging.</p> <h2> My Practical Rules for Production Go Concurrency </h2> <p>These are the rules I try to follow when writing or reviewing concurrent Go code:</p> <h3> 1. Keep locks small </h3> <p>Lock only the data that needs protection.</p> <p>Do not lock the whole request lifecycle.</p> <h3> 2. Never put slow I/O inside a mutex </h3> <p>Avoid database calls, HTTP calls, email sending, file uploads, and third-party API calls inside critical sections.</p> <h3> 3. Bound concurrency </h3> <p>Do not create unlimited goroutines.</p> <p>Use worker pools, semaphores, queues, or rate limiters.</p> <h3> 4. Every goroutine needs a shutdown path </h3> <p>Use <code>context.Context</code>, channel close, or explicit cancellation.</p> <h3> 5. Do not copy synchronization primitives </h3> <p>Pass <code>*sync.WaitGroup</code>, <code>*sync.Mutex</code>, and similar primitives by pointer when sharing them.</p> <h3> 6. Measure before optimizing </h3> <p>Use <code>pprof</code>, runtime metrics, traces, logs, and goroutine dumps.</p> <p>Guessing is not debugging.</p> <h3> 7. Prefer boring concurrency </h3> <p>The best concurrent code is usually not clever.</p> <p>It is clear, measurable, and easy to shut down.</p> <h2> Final Thoughts </h2> <p>Go gives us powerful concurrency tools, but it does not automatically give us good concurrent design.</p> <p>A goroutine is cheap, but it is not free.</p> <p>A mutex is fast, but it can destroy throughput if you hold it around slow work.</p> <p>A channel is elegant, but it can leak goroutines if nobody is receiving.</p> <p>A WaitGroup is simple, but copying it can break your entire flow.</p> <p>For me, senior Go engineering is not about using every concurrency primitive. It is about knowing when not to use them, where the real boundary is, and how the system behaves under load.</p> <p>The next time you write this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">mu</span><span class="o">.</span><span class="n">Lock</span><span class="p">()</span> </code></pre> </div> <p>Ask one question before moving on:</p> <blockquote> <p>What exactly am I protecting, and how fast can I release this lock?</p> </blockquote> <p>That one question can save your service from a silent production bottleneck.</p> <h2> References </h2> <ul> <li>Go Memory Model: <a href="https://go.dev/ref/mem" rel="noopener noreferrer">https://go.dev/ref/mem</a> </li> <li>Go <code>sync</code> package documentation: <a href="https://pkg.go.dev/sync" rel="noopener noreferrer">https://pkg.go.dev/sync</a> </li> <li>Go diagnostics and profiling tools: <a href="https://go.dev/doc/diagnostics" rel="noopener noreferrer">https://go.dev/doc/diagnostics</a> </li> <li>Go blog: Go scheduler and runtime notes: <a href="https://go.dev/blog/" rel="noopener noreferrer">https://go.dev/blog/</a> </li> </ul> go backend concurrency performance