d-engine-server 0.2.4

Production-ready Raft consensus engine server and runtime
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90

use async_trait::async_trait;
use dashmap::DashMap;
#[cfg(test)]
use mockall::automock;
use tokio::sync::mpsc;

#[cfg_attr(test, automock)]
#[async_trait]
pub(crate) trait HealthMonitor: Send + Sync + 'static {
    async fn record_failure(
        &self,
        peer_id: u32,
    );
    async fn record_success(
        &self,
        peer_id: u32,
    );
}

pub(crate) struct RaftHealthMonitor {
    pub(crate) failure_counts: DashMap<u32, u32>,
    pub(crate) zombie_threshold: u32,
    /// Fires node_id when failure_count first reaches zombie_threshold.
    /// Consumed by the Raft event loop (core layer) via select!.
    /// Server layer holds only Sender<u32> — zero dependency on core types.
    zombie_tx: mpsc::Sender<u32>,
}

impl RaftHealthMonitor {
    /// Returns (monitor, zombie_rx). Caller passes zombie_rx to the Raft event loop.
    pub(crate) fn new(zombie_threshold: u32) -> (Self, mpsc::Receiver<u32>) {
        let (zombie_tx, zombie_rx) = mpsc::channel(64);
        (
            RaftHealthMonitor {
                failure_counts: DashMap::new(),
                zombie_threshold,
                zombie_tx,
            },
            zombie_rx,
        )
    }
}

#[async_trait]
impl HealthMonitor for RaftHealthMonitor {
    async fn record_failure(
        &self,
        node_id: u32,
    ) {
        let new_count = {
            let mut count = self.failure_counts.entry(node_id).or_insert(0);
            *count += 1;
            *count
        };
        // Signal when the threshold is first crossed, then reset the counter to 0
        // so that a second batch of failures re-triggers if this signal is lost
        // (e.g. consumed by a non-leader no-op or dropped due to backpressure).
        if new_count == self.zombie_threshold {
            // Reset counter via a fresh get_mut (original borrow ended above).
            // Guard is dropped before the await point to avoid holding it across yield.
            if let Some(mut c) = self.failure_counts.get_mut(&node_id) {
                *c = 0;
            }
            // send().await: waits for channel space instead of silently dropping.
            // Only errors on receiver drop (node shutting down), which is harmless.
            let _ = self.zombie_tx.send(node_id).await;
        }
    }

    async fn record_success(
        &self,
        node_id: u32,
    ) {
        self.failure_counts.remove(&node_id);
    }
}

impl RaftHealthMonitor {
    /// Returns true if the zombie signal for `node_id` is still valid.
    ///
    /// A zombie is invalid once `record_success` has been called (peer recovered),
    /// which removes the entry from `failure_counts`. The bridge task uses this
    /// to drop stale zombie signals before forwarding them to the Raft event loop.
    pub(crate) fn is_zombie_valid(
        &self,
        node_id: u32,
    ) -> bool {
        self.failure_counts.contains_key(&node_id)
    }
}