hoosh 1.2.0

AI inference gateway — multi-provider LLM routing, local model serving, speech-to-text, and token budget management
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115

//! Per-provider sliding-window rate limiting.

use dashmap::DashMap;
use std::collections::VecDeque;
use std::sync::Mutex;
use std::time::{Duration, Instant};

/// Registry of per-provider rate limiters.
pub struct RateLimitRegistry {
    limits: DashMap<String, RateLimiter>,
}

struct RateLimiter {
    max_rpm: u32,
    window: Mutex<VecDeque<Instant>>,
}

impl RateLimitRegistry {
    pub fn new() -> Self {
        Self {
            limits: DashMap::new(),
        }
    }

    /// Configure (or reconfigure) the RPM limit for a given provider key.
    pub fn configure(&self, provider: &str, max_rpm: u32) {
        self.limits.insert(
            provider.to_string(),
            RateLimiter {
                max_rpm,
                window: Mutex::new(VecDeque::new()),
            },
        );
    }

    /// Check whether a request to `provider` is allowed under its rate limit.
    ///
    /// Returns `true` if the request is allowed (and records it), `false` if
    /// rate-limited. Providers with no configured limit are always allowed.
    pub fn check(&self, provider: &str) -> bool {
        let entry = match self.limits.get(provider) {
            Some(e) => e,
            None => return true, // unconfigured → no limit
        };

        let limiter = entry.value();
        let now = Instant::now();
        let window_start = now - Duration::from_secs(60);

        let mut window = limiter.window.lock().unwrap_or_else(|e| e.into_inner());

        // Evict timestamps older than 60 seconds
        while window.front().is_some_and(|&t| t < window_start) {
            window.pop_front();
        }

        if (window.len() as u32) < limiter.max_rpm {
            window.push_back(now);
            true
        } else {
            false
        }
    }
}

impl Default for RateLimitRegistry {
    fn default() -> Self {
        Self::new()
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn unconfigured_provider_always_allowed() {
        let reg = RateLimitRegistry::new();
        for _ in 0..1000 {
            assert!(reg.check("unknown-provider"));
        }
    }

    #[test]
    fn requests_within_limit_allowed() {
        let reg = RateLimitRegistry::new();
        reg.configure("test", 5);
        for _ in 0..5 {
            assert!(reg.check("test"));
        }
    }

    #[test]
    fn requests_exceeding_limit_rejected() {
        let reg = RateLimitRegistry::new();
        reg.configure("test", 3);
        assert!(reg.check("test"));
        assert!(reg.check("test"));
        assert!(reg.check("test"));
        assert!(!reg.check("test")); // 4th should fail
        assert!(!reg.check("test")); // 5th should fail
    }

    #[test]
    fn different_providers_independent() {
        let reg = RateLimitRegistry::new();
        reg.configure("a", 1);
        reg.configure("b", 1);
        assert!(reg.check("a"));
        assert!(!reg.check("a"));
        // Provider b is independent
        assert!(reg.check("b"));
        assert!(!reg.check("b"));
    }
}