libpetri-runtime 1.7.0

Bitmap executor runtime for libpetri Coloured Time Petri Net engine
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194

//! RAII handle for controlling executor lifecycle.
//!
//! [`ExecutorHandle`] wraps a `tokio::sync::mpsc::UnboundedSender<ExecutorSignal>`
//! and provides typed methods for event injection and lifecycle management.
//! Implements [`Drop`] to automatically send [`ExecutorSignal::Drain`] when the
//! handle goes out of scope without an explicit `drain()` or `close()` call.

use std::sync::Arc;

use libpetri_core::token::ErasedToken;
#[cfg(test)]
use libpetri_core::token::Token;

use crate::environment::{ExecutorSignal, ExternalEvent};

/// RAII handle for injecting events and controlling executor lifecycle.
///
/// Obtained by wrapping the sender half of an
/// `mpsc::unbounded_channel::<ExecutorSignal>()` before spawning the executor.
///
/// # RAII guarantee
///
/// When dropped without an explicit [`drain()`](Self::drain) or
/// [`close()`](Self::close), the handle automatically sends
/// [`ExecutorSignal::Drain`] — ensuring graceful shutdown even if the caller
/// forgets. This follows Rust's RAII convention (analogous to `MutexGuard`
/// releasing its lock on drop).
///
/// # Example
///
/// ```ignore (requires tokio runtime and executor setup)
/// let (tx, rx) = tokio::sync::mpsc::unbounded_channel();
/// let mut handle = ExecutorHandle::new(tx);
/// let mut executor = BitmapNetExecutor::new(&net, marking, opts);
///
/// tokio::spawn(async move { executor.run_async(rx).await; });
///
/// handle.inject(Arc::from("sensor"), Token::new(42).erase());
/// handle.drain(); // graceful shutdown
/// ```
pub struct ExecutorHandle {
    tx: tokio::sync::mpsc::UnboundedSender<ExecutorSignal>,
    drained: bool,
}

impl ExecutorHandle {
    /// Creates a new handle from the sender half of an executor signal channel.
    pub fn new(tx: tokio::sync::mpsc::UnboundedSender<ExecutorSignal>) -> Self {
        Self { tx, drained: false }
    }

    /// Injects an external event into the running executor.
    ///
    /// Returns `false` if the handle has been drained/closed or the channel is
    /// disconnected. O(1) — single channel send.
    pub fn inject(&mut self, place_name: Arc<str>, token: ErasedToken) -> bool {
        if self.drained {
            return false;
        }
        self.tx
            .send(ExecutorSignal::Event(ExternalEvent { place_name, token }))
            .is_ok()
    }

    /// Initiates graceful drain per \[ENV-011\].
    ///
    /// After this call:
    /// - New [`inject()`](Self::inject) calls return `false`
    /// - Already-queued events are processed normally
    /// - In-flight actions complete
    /// - Executor terminates at quiescence
    ///
    /// Returns `false` if already drained/closed.
    pub fn drain(&mut self) -> bool {
        if self.drained {
            return false;
        }
        self.drained = true;
        self.tx.send(ExecutorSignal::Drain).is_ok()
    }

    /// Initiates immediate close per \[ENV-013\].
    ///
    /// After this call:
    /// - Queued events are discarded
    /// - In-flight actions complete
    /// - Executor terminates after in-flight completion
    ///
    /// Calling `close()` after `drain()` escalates from graceful to immediate.
    pub fn close(&mut self) -> bool {
        self.drained = true;
        self.tx.send(ExecutorSignal::Close).is_ok()
    }

    /// Returns `true` if `drain()` or `close()` has been called.
    pub fn is_drained(&self) -> bool {
        self.drained
    }
}

impl Drop for ExecutorHandle {
    fn drop(&mut self) {
        if !self.drained {
            // RAII safety net: graceful drain on scope exit.
            let _ = self.tx.send(ExecutorSignal::Drain);
        }
        // Sender drops here → channel closes → executor detects None from recv()
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[tokio::test]
    async fn handle_drain_sets_drained_flag() {
        let (tx, _rx) = tokio::sync::mpsc::unbounded_channel::<ExecutorSignal>();
        let mut handle = ExecutorHandle::new(tx);
        assert!(!handle.is_drained());
        assert!(handle.drain());
        assert!(handle.is_drained());
        // Second drain returns false
        assert!(!handle.drain());
    }

    #[tokio::test]
    async fn handle_close_sets_drained_flag() {
        let (tx, _rx) = tokio::sync::mpsc::unbounded_channel::<ExecutorSignal>();
        let mut handle = ExecutorHandle::new(tx);
        assert!(handle.close());
        assert!(handle.is_drained());
    }

    #[tokio::test]
    async fn handle_inject_rejected_after_drain() {
        let (tx, mut rx) = tokio::sync::mpsc::unbounded_channel::<ExecutorSignal>();
        let mut handle = ExecutorHandle::new(tx);
        handle.drain();
        let result = handle.inject(Arc::from("p1"), ErasedToken::from_typed(&Token::new(42i32)));
        assert!(!result);
        // Only the Drain signal should be in the channel
        match rx.recv().await {
            Some(ExecutorSignal::Drain) => {}
            other => panic!("expected Drain, got {:?}", other),
        }
    }

    #[tokio::test]
    async fn handle_drop_sends_drain_automatically() {
        let (tx, mut rx) = tokio::sync::mpsc::unbounded_channel::<ExecutorSignal>();
        {
            let _handle = ExecutorHandle::new(tx);
            // handle dropped without explicit drain/close
        }
        match rx.recv().await {
            Some(ExecutorSignal::Drain) => {}
            other => panic!("expected Drain from RAII drop, got {:?}", other),
        }
        // Channel should be closed after sender dropped
        assert!(rx.recv().await.is_none());
    }

    #[tokio::test]
    async fn handle_drop_after_drain_does_not_double_send() {
        let (tx, mut rx) = tokio::sync::mpsc::unbounded_channel::<ExecutorSignal>();
        {
            let mut handle = ExecutorHandle::new(tx);
            handle.drain();
            // handle dropped — should NOT send another Drain
        }
        match rx.recv().await {
            Some(ExecutorSignal::Drain) => {}
            other => panic!("expected exactly one Drain, got {:?}", other),
        }
        // Channel closed, no more signals
        assert!(rx.recv().await.is_none());
    }

    #[tokio::test]
    async fn handle_close_after_drain_escalates() {
        let (tx, mut rx) = tokio::sync::mpsc::unbounded_channel::<ExecutorSignal>();
        let mut handle = ExecutorHandle::new(tx);
        handle.drain();
        handle.close(); // escalate
        match rx.recv().await {
            Some(ExecutorSignal::Drain) => {}
            other => panic!("expected Drain first, got {:?}", other),
        }
        match rx.recv().await {
            Some(ExecutorSignal::Close) => {}
            other => panic!("expected Close second, got {:?}", other),
        }
    }
}