dag-executor 0.1.0

A production-ready DAG executor with state management and advanced patterns
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133

//! A thread-safe circuit breaker.

use parking_lot::Mutex;
use std::time::{Duration, Instant};

/// The three classic circuit-breaker states.
#[derive(Debug, Clone, Copy, PartialEq, Eq)]
pub enum CircuitState {
    /// Requests flow normally.
    Closed,
    /// Requests are rejected immediately.
    Open,
    /// A trial request is allowed to test recovery.
    HalfOpen,
}

#[derive(Debug)]
struct Inner {
    state: CircuitState,
    consecutive_failures: u32,
    opened_at: Option<Instant>,
}

/// Isolates a failing dependency by short-circuiting calls once failures cross
/// a threshold, then probing for recovery after a cooldown.
///
/// Lifecycle: `Closed` → (failures ≥ `failure_threshold`) → `Open` →
/// (after `cooldown`) → `HalfOpen` → (`success_threshold` successes) → `Closed`,
/// or back to `Open` on a failed probe.
pub struct CircuitBreaker {
    failure_threshold: u32,
    success_threshold: u32,
    cooldown: Duration,
    inner: Mutex<Inner>,
}

impl CircuitBreaker {
    /// Create a breaker.
    ///
    /// * `failure_threshold` — consecutive failures that trip the breaker open.
    /// * `success_threshold` — consecutive successes in half-open that re-close it.
    /// * `cooldown` — how long to stay open before allowing a probe.
    pub fn new(failure_threshold: u32, success_threshold: u32, cooldown: Duration) -> Self {
        CircuitBreaker {
            failure_threshold: failure_threshold.max(1),
            success_threshold: success_threshold.max(1),
            cooldown,
            inner: Mutex::new(Inner {
                state: CircuitState::Closed,
                consecutive_failures: 0,
                opened_at: None,
            }),
        }
    }

    /// The current state, accounting for an elapsed cooldown (which transitions
    /// `Open` → `HalfOpen` lazily on inspection).
    pub fn state(&self) -> CircuitState {
        let mut inner = self.inner.lock();
        self.refresh(&mut inner);
        inner.state
    }

    /// Whether a call should be permitted right now.
    ///
    /// Returns `true` in `Closed` and `HalfOpen` (allowing a probe), `false`
    /// while `Open`.
    pub fn allow_request(&self) -> bool {
        let mut inner = self.inner.lock();
        self.refresh(&mut inner);
        !matches!(inner.state, CircuitState::Open)
    }

    /// Record a successful call.
    pub fn record_success(&self) {
        let mut inner = self.inner.lock();
        match inner.state {
            CircuitState::HalfOpen => {
                // Reuse the failure counter as a success counter in half-open.
                inner.consecutive_failures += 1;
                if inner.consecutive_failures >= self.success_threshold {
                    inner.state = CircuitState::Closed;
                    inner.consecutive_failures = 0;
                    inner.opened_at = None;
                }
            }
            _ => {
                inner.state = CircuitState::Closed;
                inner.consecutive_failures = 0;
                inner.opened_at = None;
            }
        }
    }

    /// Record a failed call.
    pub fn record_failure(&self) {
        let mut inner = self.inner.lock();
        match inner.state {
            CircuitState::HalfOpen => {
                // A failed probe re-opens immediately.
                inner.state = CircuitState::Open;
                inner.consecutive_failures = 0;
                inner.opened_at = Some(Instant::now());
            }
            _ => {
                inner.consecutive_failures += 1;
                if inner.consecutive_failures >= self.failure_threshold {
                    inner.state = CircuitState::Open;
                    inner.opened_at = Some(Instant::now());
                }
            }
        }
    }

    /// Move an expired `Open` breaker into `HalfOpen`.
    fn refresh(&self, inner: &mut Inner) {
        if inner.state == CircuitState::Open {
            if let Some(opened) = inner.opened_at {
                if opened.elapsed() >= self.cooldown {
                    inner.state = CircuitState::HalfOpen;
                    // Reset counter so successes can accumulate toward closing.
                    inner.consecutive_failures = 0;
                }
            }
        }
    }
}

impl Default for CircuitBreaker {
    fn default() -> Self {
        CircuitBreaker::new(5, 2, Duration::from_secs(30))
    }
}