fix: handle date_bin negative subsecond and overflow cases

[kumarUjjawal]

Which issue does this PR close?

• Closes date_bin scalar & array paths have different error behaviours #22528

Rationale for this change

date_bin had a few edge cases that could return the wrong result, return an error only on array inputs, or panic/wrap when scaling timestamp and time values to nanoseconds.

What changes are included in this PR?

• Fix negative sub-second timestamp conversion before the epoch.
• Make scalar and array paths return NULL consistently for per-row binning errors.
• Use checked scaling when converting timestamp and time values to nanoseconds.
• Return an error for invalid shared origin values that overflow during scaling.
• Simplify duplicated stride and scale handling.

Are these changes tested?

Yes

Are there any user-facing changes?

No public API changes.

[kosiew]

@kumarUjjawal
#22315 has been merged.

[kumarUjjawal]

Thank you @kosiew I will resolve the issues now.

[kosiew]

@kumarUjjawal
Thanks for the update. I did not find any blocking issues. I left a couple of small suggestions that could help maintainability and future-proofing.

[kosiew]

Nice cleanup overall. One thought: the four scalar timestamp arms now have the same control flow and only differ by the ScalarValue variant and Arrow timestamp type. It might be worth introducing a small typed helper or macro here so the scalar path mirrors transform_array_with_stride. That would make it easier to keep the scalar and array paths in sync and reduce the chance of them drifting apart in a future change.

[kosiew]

Small test suggestion: test_date_bin_scale_overflow_returns_null currently creates a single return_field with Timestamp(Second) while also exercising millisecond and microsecond source cases. The test passes today because the implementation does not use return_field, but it might be a little more robust to build the field from each case's expected_type. That way the test stays accurate if invoke_with_args ever starts validating or using the return field.

[kumarUjjawal]

Thanks @kosiew I have addressed the comments

[Jefffrey]

so do we only explicitly error on the origin check now? all other errors are converted to nulls?

[Jefffrey]

whats the significance of changing to div_euclid/rem_euclid here?

[kumarUjjawal]

This fixes negative sub second timestamps. Normal / and % can produce a negative nanosecond remainder, but DateTime::from_timestamp requires nanos to be non-negative.div_euclid / rem_euclid normalize the timestamp into valid seconds + nanos.

[Jefffrey]

i think only rem_euclid does this? div_euclid just seems to decide which way to round up/down

[kumarUjjawal]

so do we only explicitly error on the origin check now? all other errors are converted to nulls?

row-level data problems -> NULL while query-level invalid inputs -> error.

[Jefffrey]

row-level data problems -> NULL while query-level invalid inputs -> error.

this is a succinct way of putting it, thanks 👍

[Jefffrey]

doesnt need to be an arrowerror anymore, can just be datafusion error

[alamb]

run benchmark date_bin

[adriangbot]

🤖 Benchmark running (GKE) | trigger
Instance: c4a-highmem-16 (12 vCPU / 65 GiB) | Linux bench-c4683778323-541-lrs59 6.12.68+ #1 SMP Sat May 2 07:49:07 UTC 2026 aarch64 GNU/Linux

CPU Details (lscpu)

Architecture:                            aarch64
CPU op-mode(s):                          64-bit
Byte Order:                              Little Endian
CPU(s):                                  16
On-line CPU(s) list:                     0-15
Vendor ID:                               ARM
Model name:                              Neoverse-V2
Model:                                   1
Thread(s) per core:                      1
Core(s) per cluster:                     16
Socket(s):                               -
Cluster(s):                              1
Stepping:                                r0p1
BogoMIPS:                                2000.00
Flags:                                   fp asimd evtstrm aes pmull sha1 sha2 crc32 atomics fphp asimdhp cpuid asimdrdm jscvt fcma lrcpc dcpop sha3 sm3 sm4 asimddp sha512 sve asimdfhm dit uscat ilrcpc flagm sb paca pacg dcpodp sve2 sveaes svepmull svebitperm svesha3 svesm4 flagm2 frint svei8mm svebf16 i8mm bf16 dgh rng bti
L1d cache:                               1 MiB (16 instances)
L1i cache:                               1 MiB (16 instances)
L2 cache:                                32 MiB (16 instances)
L3 cache:                                80 MiB (1 instance)
NUMA node(s):                            1
NUMA node0 CPU(s):                       0-15
Vulnerability Gather data sampling:      Not affected
Vulnerability Indirect target selection: Not affected
Vulnerability Itlb multihit:             Not affected
Vulnerability L1tf:                      Not affected
Vulnerability Mds:                       Not affected
Vulnerability Meltdown:                  Not affected
Vulnerability Mmio stale data:           Not affected
Vulnerability Reg file data sampling:    Not affected
Vulnerability Retbleed:                  Not affected
Vulnerability Spec rstack overflow:      Not affected
Vulnerability Spec store bypass:         Mitigation; Speculative Store Bypass disabled via prctl
Vulnerability Spectre v1:                Mitigation; __user pointer sanitization
Vulnerability Spectre v2:                Mitigation; CSV2, BHB
Vulnerability Srbds:                     Not affected
Vulnerability Tsa:                       Not affected
Vulnerability Tsx async abort:           Not affected
Vulnerability Vmscape:                   Not affected

Comparing fix/date-bin-error-change (38c4c6a) to c83a981 (merge-base) diff using: date_bin
Results will be posted here when complete

---

File an issue against this benchmark runner

[adriangbot]

🤖 Benchmark completed (GKE) | trigger

Instance: c4a-highmem-16 (12 vCPU / 65 GiB)

CPU Details (lscpu)

Architecture:                            aarch64
CPU op-mode(s):                          64-bit
Byte Order:                              Little Endian
CPU(s):                                  16
On-line CPU(s) list:                     0-15
Vendor ID:                               ARM
Model name:                              Neoverse-V2
Model:                                   1
Thread(s) per core:                      1
Core(s) per cluster:                     16
Socket(s):                               -
Cluster(s):                              1
Stepping:                                r0p1
BogoMIPS:                                2000.00
Flags:                                   fp asimd evtstrm aes pmull sha1 sha2 crc32 atomics fphp asimdhp cpuid asimdrdm jscvt fcma lrcpc dcpop sha3 sm3 sm4 asimddp sha512 sve asimdfhm dit uscat ilrcpc flagm sb paca pacg dcpodp sve2 sveaes svepmull svebitperm svesha3 svesm4 flagm2 frint svei8mm svebf16 i8mm bf16 dgh rng bti
L1d cache:                               1 MiB (16 instances)
L1i cache:                               1 MiB (16 instances)
L2 cache:                                32 MiB (16 instances)
L3 cache:                                80 MiB (1 instance)
NUMA node(s):                            1
NUMA node0 CPU(s):                       0-15
Vulnerability Gather data sampling:      Not affected
Vulnerability Indirect target selection: Not affected
Vulnerability Itlb multihit:             Not affected
Vulnerability L1tf:                      Not affected
Vulnerability Mds:                       Not affected
Vulnerability Meltdown:                  Not affected
Vulnerability Mmio stale data:           Not affected
Vulnerability Reg file data sampling:    Not affected
Vulnerability Retbleed:                  Not affected
Vulnerability Spec rstack overflow:      Not affected
Vulnerability Spec store bypass:         Mitigation; Speculative Store Bypass disabled via prctl
Vulnerability Spectre v1:                Mitigation; __user pointer sanitization
Vulnerability Spectre v2:                Mitigation; CSV2, BHB
Vulnerability Srbds:                     Not affected
Vulnerability Tsa:                       Not affected
Vulnerability Tsx async abort:           Not affected
Vulnerability Vmscape:                   Not affected

Details

group            HEAD                                   fix_date-bin-error-change
-----            ----                                   -------------------------
date_bin_1000    1.37      9.4±0.07µs        ? ?/sec    1.00      6.9±0.10µs        ? ?/sec

Resource Usage

date_bin — base (merge-base)

Metric	Value
Wall time	150.0s
Peak memory	5.8 MiB
Avg memory	454.2 KiB
CPU user	9.7s
CPU sys	0.0s
Peak spill	0 B

date_bin — branch

Metric	Value
Wall time	145.0s
Peak memory	21.6 MiB
Avg memory	506.8 KiB
CPU user	10.6s
CPU sys	0.0s
Peak spill	0 B

---

File an issue against this benchmark runner

[Jefffrey]

thanks all