DEV Community: Mushfiq Rahman The latest articles on DEV Community by Mushfiq Rahman (@mushfiq_rahmanmushfiq_). https://dev.to/mushfiq_rahmanmushfiq_ https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F2673135%2F479c0c48-2870-4d6a-95e3-2c4eb4d7630a.png DEV Community: Mushfiq Rahman https://dev.to/mushfiq_rahmanmushfiq_ en Building a fast LLM gateway in Go: Lua + pgvector Mushfiq Rahman Wed, 27 May 2026 13:00:00 +0000 https://dev.to/mushfiq_rahmanmushfiq_/building-a-fast-llm-gateway-in-go-lua-pgvector-1ea0 https://dev.to/mushfiq_rahmanmushfiq_/building-a-fast-llm-gateway-in-go-lua-pgvector-1ea0 <p>I open-sourced <a href="https://github.com/mrmushfiq/llm0-gateway" rel="noopener noreferrer">llm0-gateway</a> recently — a Go binary that puts one OpenAI-compatible endpoint in front of OpenAI, Anthropic, Gemini, and local Ollama. MIT licensed. Single binary plus Postgres + Redis.</p> <p>The technically interesting bits are how it stays fast: <strong>3 ms p50 cache-hit latency, ~1,672 req/s sustained throughput, 1–2 Redis round trips on the hot path</strong> on a DigitalOcean 4 vCPU / 8 GB shared Linux droplet.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fdp40dn5x41zpryhxk45n.jpeg" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fdp40dn5x41zpryhxk45n.jpeg" alt="LLM-Gateway" width="800" height="730"></a></p> <p>This post walks through the architecture decisions that got those numbers. Expect Lua scripts, a <code>pgvector</code> query, and an honest discussion of where I overstated things and got corrected by a Redis engineer.</p> <h2> The naive approach (and why it's slow) </h2> <p>A typical LLM gateway request needs to do six things:</p> <ol> <li>Authenticate the API key</li> <li>Check the per-API-key rate limit</li> <li>Check the per-project spend cap</li> <li>Look up exact-match cache</li> <li>(Maybe) check semantic cache</li> <li>(Maybe) forward to the upstream model</li> </ol> <p>The naive approach is six serial Redis GETs. At ~1 ms each in Docker on a typical cloud VM, that's 5–10 ms gone before the request leaves the gateway. Half a 50th-percentile latency budget consumed on bookkeeping.</p> <p>There's also a correctness problem. Rate-limit and spend-cap checks have a TOCTOU race:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>read counter → check threshold → write counter </code></pre> </div> <p>Two simultaneous requests can both pass the check and both increment, exceeding the cap.</p> <p>The fix to both — speed and correctness — is to move the hot work into Redis itself, as atomic Lua scripts.</p> <h2> Token-bucket rate limiting in Lua </h2> <p>Token bucket: each API key has a bucket with a capacity (say, 60 tokens) that refills at a fixed rate (say, 1 per second). Each request takes 1 token. If the bucket is empty, the request is denied.</p> <p>Here's the Lua script:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight lua"><code><span class="kd">local</span> <span class="n">now</span> <span class="o">=</span> <span class="nb">tonumber</span><span class="p">(</span><span class="n">ARGV</span><span class="p">[</span><span class="mi">1</span><span class="p">])</span> <span class="kd">local</span> <span class="n">capacity</span> <span class="o">=</span> <span class="nb">tonumber</span><span class="p">(</span><span class="n">ARGV</span><span class="p">[</span><span class="mi">2</span><span class="p">])</span> <span class="kd">local</span> <span class="n">refill_rate</span> <span class="o">=</span> <span class="nb">tonumber</span><span class="p">(</span><span class="n">ARGV</span><span class="p">[</span><span class="mi">3</span><span class="p">])</span> <span class="kd">local</span> <span class="n">requested</span> <span class="o">=</span> <span class="nb">tonumber</span><span class="p">(</span><span class="n">ARGV</span><span class="p">[</span><span class="mi">4</span><span class="p">])</span> <span class="ow">or</span> <span class="mi">1</span> <span class="kd">local</span> <span class="n">bucket</span> <span class="o">=</span> <span class="n">redis</span><span class="p">.</span><span class="n">call</span><span class="p">(</span><span class="s1">'HMGET'</span><span class="p">,</span> <span class="n">KEYS</span><span class="p">[</span><span class="mi">1</span><span class="p">],</span> <span class="s1">'tokens'</span><span class="p">,</span> <span class="s1">'last_refill'</span><span class="p">)</span> <span class="kd">local</span> <span class="n">tokens</span> <span class="o">=</span> <span class="nb">tonumber</span><span class="p">(</span><span class="n">bucket</span><span class="p">[</span><span class="mi">1</span><span class="p">])</span> <span class="kd">local</span> <span class="n">last_refill</span> <span class="o">=</span> <span class="nb">tonumber</span><span class="p">(</span><span class="n">bucket</span><span class="p">[</span><span class="mi">2</span><span class="p">])</span> <span class="k">if</span> <span class="n">tokens</span> <span class="k">then</span> <span class="n">tokens</span> <span class="o">=</span> <span class="nb">math.min</span><span class="p">(</span><span class="n">capacity</span><span class="p">,</span> <span class="n">tokens</span> <span class="o">+</span> <span class="p">((</span><span class="n">now</span> <span class="o">-</span> <span class="n">last_refill</span><span class="p">)</span> <span class="o">*</span> <span class="n">refill_rate</span> <span class="o">*</span> <span class="mi">0</span><span class="p">.</span><span class="mi">001</span><span class="p">))</span> <span class="k">else</span> <span class="n">tokens</span> <span class="o">=</span> <span class="n">capacity</span> <span class="k">end</span> <span class="kd">local</span> <span class="n">allowed</span> <span class="o">=</span> <span class="mi">0</span> <span class="k">if</span> <span class="n">tokens</span> <span class="o">&gt;=</span> <span class="n">requested</span> <span class="k">then</span> <span class="n">tokens</span> <span class="o">=</span> <span class="n">tokens</span> <span class="o">-</span> <span class="n">requested</span> <span class="n">allowed</span> <span class="o">=</span> <span class="mi">1</span> <span class="k">end</span> <span class="n">redis</span><span class="p">.</span><span class="n">call</span><span class="p">(</span><span class="s1">'HMSET'</span><span class="p">,</span> <span class="n">KEYS</span><span class="p">[</span><span class="mi">1</span><span class="p">],</span> <span class="s1">'tokens'</span><span class="p">,</span> <span class="n">tokens</span><span class="p">,</span> <span class="s1">'last_refill'</span><span class="p">,</span> <span class="n">now</span><span class="p">)</span> <span class="n">redis</span><span class="p">.</span><span class="n">call</span><span class="p">(</span><span class="s1">'EXPIRE'</span><span class="p">,</span> <span class="n">KEYS</span><span class="p">[</span><span class="mi">1</span><span class="p">],</span> <span class="mi">900</span><span class="p">)</span> <span class="k">return</span> <span class="p">{</span><span class="n">allowed</span><span class="p">,</span> <span class="nb">math.floor</span><span class="p">(</span><span class="n">tokens</span><span class="p">),</span> <span class="mi">0</span><span class="p">}</span> </code></pre> </div> <p>What this gets you:</p> <ul> <li> <strong>Atomic.</strong> The entire script runs as one Redis command. No interleaving with other commands on the same instance.</li> <li> <strong>One round trip.</strong> Read state, compute new state, write state — one network call.</li> <li> <strong>No TOCTOU.</strong> Check and decrement happen in the same operation.</li> </ul> <p>Calling it from Go (using <code>go-redis</code>):<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">const</span> <span class="n">rateLimitScript</span> <span class="o">=</span> <span class="s">`[lua source above]`</span> <span class="n">result</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">rdb</span><span class="o">.</span><span class="n">Eval</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">rateLimitScript</span><span class="p">,</span> <span class="p">[]</span><span class="kt">string</span><span class="p">{</span><span class="n">key</span><span class="p">},</span> <span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">()</span><span class="o">.</span><span class="n">UnixMilli</span><span class="p">(),</span> <span class="n">capacity</span><span class="p">,</span> <span class="n">refillRate</span><span class="p">,</span> <span class="m">1</span><span class="p">)</span><span class="o">.</span><span class="n">Result</span><span class="p">()</span> </code></pre> </div> <p>But <code>Eval</code> re-parses the script on every call, which is slow. Pre-load the script once and switch to <code>EvalSha</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">sha</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">rdb</span><span class="o">.</span><span class="n">ScriptLoad</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">rateLimitScript</span><span class="p">)</span><span class="o">.</span><span class="n">Result</span><span class="p">()</span> <span class="c">// ... store sha somewhere accessible ...</span> <span class="n">result</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">rdb</span><span class="o">.</span><span class="n">EvalSha</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">sha</span><span class="p">,</span> <span class="p">[]</span><span class="kt">string</span><span class="p">{</span><span class="n">key</span><span class="p">},</span> <span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">()</span><span class="o">.</span><span class="n">UnixMilli</span><span class="p">(),</span> <span class="n">capacity</span><span class="p">,</span> <span class="n">refillRate</span><span class="p">,</span> <span class="m">1</span><span class="p">)</span><span class="o">.</span><span class="n">Result</span><span class="p">()</span> </code></pre> </div> <p>If Redis evicts the script from its script cache (rare, but possible on a <code>FLUSHALL</code>), retry with <code>Eval</code>. The <code>go-redis</code> client's <code>Run()</code> method handles this automatically — pre-load once, call <code>Run()</code>, get EVALSHA's speed with EVAL's reliability.</p> <h2> Atomic spend-cap enforcement </h2> <p>Same pattern for the per-project spend cap. Get current spend, check threshold, increment if under cap — atomically.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight lua"><code><span class="kd">local</span> <span class="n">cost_usd</span> <span class="o">=</span> <span class="nb">tonumber</span><span class="p">(</span><span class="n">ARGV</span><span class="p">[</span><span class="mi">1</span><span class="p">])</span> <span class="kd">local</span> <span class="n">monthly_cap</span> <span class="o">=</span> <span class="nb">tonumber</span><span class="p">(</span><span class="n">ARGV</span><span class="p">[</span><span class="mi">2</span><span class="p">])</span> <span class="kd">local</span> <span class="n">current_spend</span> <span class="o">=</span> <span class="nb">tonumber</span><span class="p">(</span><span class="n">redis</span><span class="p">.</span><span class="n">call</span><span class="p">(</span><span class="s1">'GET'</span><span class="p">,</span> <span class="n">KEYS</span><span class="p">[</span><span class="mi">1</span><span class="p">]))</span> <span class="ow">or</span> <span class="mi">0</span> <span class="k">if</span> <span class="n">current_spend</span> <span class="o">+</span> <span class="n">cost_usd</span> <span class="o">&gt;</span> <span class="n">monthly_cap</span> <span class="k">then</span> <span class="k">return</span> <span class="p">{</span><span class="mi">0</span><span class="p">,</span> <span class="n">current_spend</span><span class="p">,</span> <span class="n">monthly_cap</span><span class="p">}</span> <span class="c1">-- blocked</span> <span class="k">end</span> <span class="kd">local</span> <span class="n">new_spend</span> <span class="o">=</span> <span class="n">redis</span><span class="p">.</span><span class="n">call</span><span class="p">(</span><span class="s1">'INCRBYFLOAT'</span><span class="p">,</span> <span class="n">KEYS</span><span class="p">[</span><span class="mi">1</span><span class="p">],</span> <span class="n">cost_usd</span><span class="p">)</span> <span class="n">redis</span><span class="p">.</span><span class="n">call</span><span class="p">(</span><span class="s1">'EXPIRE'</span><span class="p">,</span> <span class="n">KEYS</span><span class="p">[</span><span class="mi">1</span><span class="p">],</span> <span class="mi">2678400</span><span class="p">)</span> <span class="c1">-- 31 days</span> <span class="k">return</span> <span class="p">{</span><span class="mi">1</span><span class="p">,</span> <span class="nb">tonumber</span><span class="p">(</span><span class="n">new_spend</span><span class="p">),</span> <span class="n">monthly_cap</span><span class="p">}</span> <span class="c1">-- allowed</span> </code></pre> </div> <p>Returns <code>{allowed, current_spend, cap}</code> so the gateway can include <code>current_spend</code> in response headers for client-side observability.</p> <p>The 31-day expiry is deliberate — <code>spend:project:{id}:{YYYY-MM}</code> keys auto-evict after a calendar month rolls over, so monthly counters reset cleanly without needing a scheduled job to clear them.</p> <p>The same pattern extends to <strong>per-end-user spend caps</strong>: pass <code>X-Customer-ID</code> on a request, and the gateway enforces daily and monthly USD limits per downstream user. Two overflow behaviors — <code>block</code> returns 429 with a <code>retry_after</code>, <code>downgrade</code> automatically routes to a cheaper model (e.g. <code>gpt-4o</code> → <code>gpt-4o-mini</code>). Same atomic Lua pattern, different key namespace.</p> <h2> Two-tier exact cache: Redis hot, Postgres warm </h2> <p>LLM responses are deterministic enough that exact-match caching pays off — same prompt + model + parameters = same answer. Why pay the upstream provider twice?</p> <p><strong>Cache key:</strong> <code>SHA256(project_id + provider + model + sorted_messages_json)</code>.<br> <strong>Cache value:</strong> the full JSON response from the model.</p> <p>Storage in two tiers:</p> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Tier</th> <th>Storage</th> <th>TTL</th> <th>Latency</th> </tr> </thead> <tbody> <tr> <td>Hot</td> <td>Redis</td> <td>configurable (default 1 hour)</td> <td>&lt;1 ms</td> </tr> <tr> <td>Warm</td> <td>Postgres</td> <td>same TTL, survives Redis eviction/restart</td> <td>~5 ms</td> </tr> </tbody> </table></div> <p>On read:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">c</span> <span class="o">*</span><span class="n">Cache</span><span class="p">)</span> <span class="n">Get</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">key</span> <span class="kt">string</span><span class="p">)</span> <span class="p">([]</span><span class="kt">byte</span><span class="p">,</span> <span class="kt">bool</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="c">// Try Redis first</span> <span class="n">cached</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">c</span><span class="o">.</span><span class="n">redis</span><span class="o">.</span><span class="n">Get</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">key</span><span class="p">)</span><span class="o">.</span><span class="n">Bytes</span><span class="p">()</span> <span class="k">if</span> <span class="n">err</span> <span class="o">==</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="n">cached</span><span class="p">,</span> <span class="no">true</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="n">redis</span><span class="o">.</span><span class="n">Nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="no">false</span><span class="p">,</span> <span class="n">err</span> <span class="p">}</span> <span class="c">// Fall back to Postgres</span> <span class="k">var</span> <span class="n">response</span> <span class="p">[]</span><span class="kt">byte</span> <span class="n">err</span> <span class="o">=</span> <span class="n">c</span><span class="o">.</span><span class="n">db</span><span class="o">.</span><span class="n">QueryRowContext</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="s">"SELECT cached_response FROM exact_cache WHERE cache_key = $1 AND expires_at &gt; NOW()"</span><span class="p">,</span> <span class="n">key</span><span class="p">)</span><span class="o">.</span><span class="n">Scan</span><span class="p">(</span><span class="o">&amp;</span><span class="n">response</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">==</span> <span class="n">sql</span><span class="o">.</span><span class="n">ErrNoRows</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="no">false</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="no">false</span><span class="p">,</span> <span class="n">err</span> <span class="p">}</span> <span class="c">// Promote to Redis on Postgres hit</span> <span class="n">c</span><span class="o">.</span><span class="n">redis</span><span class="o">.</span><span class="n">Set</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">key</span><span class="p">,</span> <span class="n">response</span><span class="p">,</span> <span class="n">time</span><span class="o">.</span><span class="n">Hour</span><span class="p">)</span> <span class="k">return</span> <span class="n">response</span><span class="p">,</span> <span class="no">true</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>On write: Redis SET synchronous, Postgres INSERT async (off the hot path) so writes don't slow down the response.</p> <p>This gives you Redis-fast hits for recent prompts and Postgres-durable hits for older ones. Restart-survivable too: rebuilding the warm tier from production traffic happens naturally as users repeat queries.</p> <h2> Semantic cache: pgvector catches paraphrases </h2> <p>Exact-match caching catches <code>"what is the capital of france?"</code> twice. It misses <code>"tell me france's capital city"</code> — same question, different hash.</p> <p>For that, you need vectors.</p> <p>The gateway runs <code>all-MiniLM-L6-v2</code> in a sidecar container — 22M-param model, 384 dimensions, CPU-only, ~20–40 ms per embedding. Storage is <code>pgvector</code> — the Postgres extension. No separate vector database to operate.</p> <p>Schema:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">CREATE</span> <span class="n">EXTENSION</span> <span class="n">vector</span><span class="p">;</span> <span class="k">CREATE</span> <span class="k">TABLE</span> <span class="n">semantic_cache</span> <span class="p">(</span> <span class="n">id</span> <span class="n">UUID</span> <span class="k">PRIMARY</span> <span class="k">KEY</span><span class="p">,</span> <span class="n">project_id</span> <span class="n">UUID</span> <span class="k">NOT</span> <span class="k">NULL</span><span class="p">,</span> <span class="n">provider</span> <span class="nb">TEXT</span> <span class="k">NOT</span> <span class="k">NULL</span><span class="p">,</span> <span class="n">model</span> <span class="nb">TEXT</span> <span class="k">NOT</span> <span class="k">NULL</span><span class="p">,</span> <span class="n">embedding</span> <span class="n">vector</span><span class="p">(</span><span class="mi">384</span><span class="p">),</span> <span class="n">cached_response</span> <span class="n">JSONB</span><span class="p">,</span> <span class="n">expires_at</span> <span class="n">TIMESTAMPTZ</span> <span class="p">);</span> <span class="k">CREATE</span> <span class="k">INDEX</span> <span class="n">semantic_cache_hnsw_idx</span> <span class="k">ON</span> <span class="n">semantic_cache</span> <span class="k">USING</span> <span class="n">hnsw</span> <span class="p">(</span><span class="n">embedding</span> <span class="n">vector_cosine_ops</span><span class="p">);</span> </code></pre> </div> <p>Lookup query (configurable similarity threshold per project, default 0.95):<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">SELECT</span> <span class="n">cached_response</span><span class="p">,</span> <span class="mi">1</span> <span class="o">-</span> <span class="p">(</span><span class="n">embedding</span> <span class="o">&lt;=&gt;</span> <span class="err">$</span><span class="mi">1</span><span class="p">)</span> <span class="k">AS</span> <span class="n">similarity</span> <span class="k">FROM</span> <span class="n">semantic_cache</span> <span class="k">WHERE</span> <span class="n">project_id</span> <span class="o">=</span> <span class="err">$</span><span class="mi">2</span> <span class="k">AND</span> <span class="n">provider</span> <span class="o">=</span> <span class="err">$</span><span class="mi">3</span> <span class="k">AND</span> <span class="n">model</span> <span class="o">=</span> <span class="err">$</span><span class="mi">4</span> <span class="k">AND</span> <span class="n">expires_at</span> <span class="o">&gt;</span> <span class="n">NOW</span><span class="p">()</span> <span class="k">AND</span> <span class="mi">1</span> <span class="o">-</span> <span class="p">(</span><span class="n">embedding</span> <span class="o">&lt;=&gt;</span> <span class="err">$</span><span class="mi">1</span><span class="p">)</span> <span class="o">&gt;</span> <span class="err">$</span><span class="mi">5</span> <span class="k">ORDER</span> <span class="k">BY</span> <span class="n">embedding</span> <span class="o">&lt;=&gt;</span> <span class="err">$</span><span class="mi">1</span> <span class="k">LIMIT</span> <span class="mi">1</span><span class="p">;</span> </code></pre> </div> <p><code>&lt;=&gt;</code> is pgvector's cosine distance operator. <code>1 - (embedding &lt;=&gt; $1)</code> converts that to similarity for the threshold comparison.</p> <p>In Go (using <code>pgvector-go</code>):<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">embedding</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">embeddingClient</span><span class="o">.</span><span class="n">GenerateEmbedding</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">prompt</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="no">false</span><span class="p">,</span> <span class="n">err</span> <span class="p">}</span> <span class="n">pgvec</span> <span class="o">:=</span> <span class="n">pgvector</span><span class="o">.</span><span class="n">NewVector</span><span class="p">(</span><span class="n">embedding</span><span class="p">)</span> <span class="k">var</span> <span class="n">cached</span> <span class="n">json</span><span class="o">.</span><span class="n">RawMessage</span> <span class="k">var</span> <span class="n">sim</span> <span class="kt">float32</span> <span class="n">err</span> <span class="o">=</span> <span class="n">db</span><span class="o">.</span><span class="n">QueryRowContext</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">query</span><span class="p">,</span> <span class="n">pgvec</span><span class="p">,</span> <span class="n">projectID</span><span class="p">,</span> <span class="n">provider</span><span class="p">,</span> <span class="n">model</span><span class="p">,</span> <span class="n">threshold</span><span class="p">)</span><span class="o">.</span> <span class="n">Scan</span><span class="p">(</span><span class="o">&amp;</span><span class="n">cached</span><span class="p">,</span> <span class="o">&amp;</span><span class="n">sim</span><span class="p">)</span> </code></pre> </div> <p>Numbers: paraphrased queries hit at ~0.95 similarity in <strong>~40 ms, $0 cost</strong>. The bulk of that 40 ms is the embedding inference — pgvector itself is 5–8 ms.</p> <h3> Want a different embedder? </h3> <p>The embedding service contract is intentionally small:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>POST /embed request: { "texts": ["..."] } response: { "embeddings": [[...]], "dimensions": 384 } </code></pre> </div> <p>You can swap in OpenAI's <code>text-embedding-3-small</code> with a tiny adapter shim (OpenAI's endpoint is <code>/v1/embeddings</code> with a different request shape, so it's not literally a one-line change, but it's ~30 lines of Go). At $0.02 per million tokens, that's essentially free at any sane traffic level.</p> <h3> A note on Redis Search vs pgvector </h3> <p>When I first wrote about this, I claimed Redis vector search would block rate-limit Lua because Redis is single-threaded. <strong>A Redis engineer correctly pointed out this is wrong</strong> — RediSearch runs indexing and query execution off the main thread (worker thread pool since 2.4+, multi-threaded vector search since 2.6+). It won't block.</p> <p>The defensible reasons to default to pgvector for the gateway are different ones:</p> <ol> <li> <strong>The latency floor is the embedding (~30 ms), not the vector search (5–8 ms).</strong> Even if RediSearch were instant, you'd save 5–8 ms — a 1.2x improvement on the cache-hit path, not a 10x one.</li> <li> <strong>Operational footprint.</strong> The gateway already operates Postgres for metadata/logs. Adding a Redis Stack instance just for vectors means a separate datastore, separate licensing considerations (post-2024 SSPL/RSAL), separate config.</li> <li> <strong>Migration is decoupled.</strong> The <code>POST /embed</code> contract abstracts the embedder, and the vector-store layer is similarly abstracted. Switching to RediSearch later if pgvector becomes a bottleneck is a swap, not a rewrite.</li> </ol> <p>I'm benchmarking this for a follow-up post.</p> <h2> EVALSHA pre-loading </h2> <p>There's one more optimization worth calling out. Redis caches Lua scripts by SHA hash. Calling via <code>EVALSHA(hash)</code> is faster than <code>EVAL(full_script)</code> because Redis doesn't have to re-parse the script every call.</p> <p>On gateway startup, I pre-load all three scripts and store their SHAs:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">RedisClient</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">rdb</span> <span class="o">*</span><span class="n">redis</span><span class="o">.</span><span class="n">Client</span> <span class="n">rateLimitSHA</span> <span class="kt">string</span> <span class="n">spendCheckSHA</span> <span class="kt">string</span> <span class="n">customerSpendSHA</span> <span class="kt">string</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">c</span> <span class="o">*</span><span class="n">RedisClient</span><span class="p">)</span> <span class="n">loadScripts</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">)</span> <span class="kt">error</span> <span class="p">{</span> <span class="n">sha</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">c</span><span class="o">.</span><span class="n">rdb</span><span class="o">.</span><span class="n">ScriptLoad</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">rateLimitLuaScript</span><span class="p">)</span><span class="o">.</span><span class="n">Result</span><span class="p">()</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="n">err</span> <span class="p">}</span> <span class="n">c</span><span class="o">.</span><span class="n">rateLimitSHA</span> <span class="o">=</span> <span class="n">sha</span> <span class="c">// ... repeat for the other two ...</span> <span class="k">return</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>If a script gets evicted (which can happen on <code>SCRIPT FLUSH</code> or restart), the call fails and the client retries with <code>EVAL</code>, which re-loads it. This is fully automatic with <code>go-redis</code>'s <code>Run()</code> method.</p> <h2> Putting it together: 1–2 round trips on the hot path </h2> <p>A fully-configured cache-hit request runs through:</p> <ol> <li> <strong>Auth lookup</strong> — Redis GET (cached for the API-key TTL): 1 round trip.</li> <li> <strong>Rate-limit + spend-cap</strong> — one or two Lua scripts depending on which checks are configured: 1–2 round trips.</li> <li> <strong>Exact cache GET</strong> — Redis: 1 round trip.</li> <li> <strong>Response write</strong> — stream out.</li> </ol> <p>On the <strong>fast-fail path</strong> (rate-limited or over the spend cap), we short-circuit at step 2 with a 429 — no exact cache lookup, no upstream call, no response generation. That's the property that keeps a single gateway instance stable during abuse bursts: a runaway client or credential leak can't meaningfully consume gateway CPU because each <code>DENY</code> takes ~2 ms of work and 0 provider cost.</p> <h2> Numbers </h2> <p>Measured on a <strong>DigitalOcean 4 vCPU / 8 GB shared Linux droplet</strong>, server-side from <code>gateway_logs.latency_ms</code> (excludes client RTT):</p> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Response</th> <th>p50</th> <th>p95</th> <th>p99</th> </tr> </thead> <tbody> <tr> <td>200 cache hit</td> <td><strong>3 ms</strong></td> <td>12 ms</td> <td>23 ms</td> </tr> <tr> <td>429 rate-limit</td> <td><strong>~2 ms</strong></td> <td>~6 ms</td> <td>—</td> </tr> </tbody> </table></div> <p>Sustained throughput: <strong>~1,672 req/s</strong> on a single instance.</p> <p>Methodology: <code>hey</code> at concurrency 20, 200 requests, pre-warmed cache, then SQL query against the gateway's own log table for the actual server-side distribution. Bench script in the repo at <code>bench/load_test.sh</code> — reproducible in ~5 minutes with <code>docker compose up -d postgres redis</code> + <code>go run ./cmd/gateway</code> + the bench script.</p> <p>The reason I quote server-side numbers and not <code>hey</code> numbers is that <code>hey</code> includes network RTT, OS scheduler noise, and TCP overhead that doesn't reflect how the gateway itself performs. The README has the full breakdown including 2 vCPU and MacBook M4 comparisons — short version: <strong>Docker Desktop on macOS is slower than a 4 vCPU Linux droplet</strong> because every Redis round trip pays a 1–2 ms VM-network tax. Production numbers match the droplet rows, not the laptop row.</p> <h3> Caveats worth reading </h3> <ul> <li> <strong>Sample size is small</strong> (~80 samples per run for p99). Enough to be directionally right, not tight enough to publish ±0.5 ms. Quote a range, not a single point.</li> <li> <strong>p99 is GC- and connection-warmup-bound, not CPU-bound.</strong> Throwing more hardware at it won't reliably push p99 below ~15 ms without GC tuning (<code>GOGC=200+</code>) and pool pre-warming.</li> <li> <strong>These are cache-hit numbers.</strong> Cache misses are dominated by upstream provider latency (<code>gpt-4o-mini</code> ≈ 300–800 ms to OpenAI). That's not gateway overhead.</li> </ul> <h2> What's shipping today (v0.1.x) </h2> <ul> <li>OpenAI-compatible <code>/v1/chat/completions</code> and <code>/v1/models</code> </li> <li> <strong>SSE streaming across all four providers</strong> — OpenAI, Anthropic, Gemini, Ollama. Chunks normalized to a single OpenAI-compatible shape regardless of upstream, with a trailing metadata frame carrying rounded <code>cost_usd</code>, <code>usage</code>, <code>latency_ms</code>, and <code>provider</code> before <code>[DONE]</code>. Ollama's empty role-only chunks are filtered by default.</li> <li> <strong>Automatic cross-provider failover</strong> on 429/5xx/timeout/connection errors. Four modes (<code>cloud_first</code>, <code>local_first</code>, <code>local_only</code>, <code>cloud_only</code>) — same env var flips between them.</li> <li> <strong>Per-API-key token-bucket rate limits</strong> (atomic Redis Lua).</li> <li> <strong>Per-project hard monthly spend caps</strong> with pre-request cost estimation — blocks runaway prompts before the LLM call.</li> <li> <strong>Per-customer spend caps</strong> with <code>block</code> or <code>downgrade</code> behavior on overflow.</li> <li> <strong>Local Ollama support</strong> — any pulled model auto-routable, $0 cost, full tier substitution for cloud failover.</li> <li>Exact + semantic caching with per-project toggles and thresholds.</li> <li>Customer labels (<code>X-LLM0-*</code>) stored as JSONB on every log row for downstream analytics.</li> </ul> <h2> What's not done yet </h2> <ul> <li> <strong>Only four providers.</strong> Bedrock, Azure OpenAI, Groq, Together, DeepSeek, xAI are on the roadmap.</li> <li> <strong>No Prometheus <code>/metrics</code> endpoint yet.</strong> Observability today is <code>gateway_logs</code> in Postgres + response headers.</li> <li> <strong>No structured logging yet</strong> — <code>log/slog</code> is planned.</li> <li> <strong>No hosted/managed version yet.</strong> Self-hosted works today; a managed product gets built only if there's enough real demand (waitlist is for validation, not gating).</li> <li> <strong>Handler-level tests incomplete.</strong> Benchmarks cover the hot path; mock-based handler tests are in progress.</li> </ul> <h2> Why I built this </h2> <p>I wanted something fast, where I owned the provider keys, with per-user or ai agents spend limits, automatic failover across providers, and real cost savings from caching — both exact-match and semantic.</p> <p>There are plenty of LLM gateways out there — OpenRouter, Helicone, Portkey, LiteLLM, Bifrost. They're good. But each one I evaluated was missing at least one of those, and the self-hosted BYOK angle in particular wasn't well covered: your own provider keys, your data never touches a third-party cloud, no markup, no shared rate limits with other tenants.</p> <p>The performance work above is what makes the self-hosted story actually viable. If your gateway adds 50 ms of overhead, you're not really shipping a "lightweight" anything.</p> <h2> Code &amp; links </h2> <ul> <li> <strong>Repo:</strong> <a href="https://github.com/mrmushfiq/llm0-gateway" rel="noopener noreferrer">https://github.com/mrmushfiq/llm0-gateway</a> </li> <li> <strong>Site:</strong> <a href="https://llm0.ai" rel="noopener noreferrer">https://llm0.ai</a> </li> </ul> <p>MIT licensed. Runs from <code>docker compose up</code>.</p> <p>If you spot something wrong, open an issue or comment below.</p> llm go redis systemdesign