moonpool-sim 0.7.0

Simulation engine for the moonpool framework
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370

//! Custom `tracing` layer that captures correctness events and runs invariants.
//!
//! [`SimulationLayer`] subscribes to ordinary `tracing` events. An event is
//! captured iff it carries `capture = true` as a structured field. Required
//! companion field: `trail = "..."` selects the named stream. Optional field:
//! `source = "..."` (defaults to empty string). The typed payload is carried
//! as `event = valuable(&p)` and converted to a [`serde_json::Value`] at
//! capture time.
//!
//! Simulation time is stamped from the layer's internal clock, advanced by
//! the orchestrator via [`SimulationLayerHandle::set_sim_time_ms`] between
//! events. In production (no orchestrator), the clock stays at 0 unless the
//! user pushes wall time themselves.
//!
//! Storage is held behind a [`parking_lot::Mutex`] to satisfy the
//! `Send + Sync` bound on `tracing::Layer`. moonpool simulations run
//! single-threaded so the mutex is uncontended.
//!
//! ## Invariants are read-only by construction
//!
//! `tracing-core`'s dispatch reentrancy guard silently drops any event emitted
//! while another event is being processed. So an invariant that calls
//! `tracing::info!(capture = true, ...)` from inside `observe(...)` is a no-op,
//! not a panic — there is no deadlock risk and no need for an explicit guard
//! in the layer.

use std::cell::Cell;
use std::collections::HashMap;
use std::sync::Arc;
use std::sync::atomic::{AtomicI32, Ordering};

use parking_lot::Mutex;
use serde::de::DeserializeOwned;
use serde_json::Value;
use tracing::Subscriber;
use tracing::field::{Field, Visit};
use tracing_subscriber::Layer;
use tracing_subscriber::layer::{Context, SubscriberExt};
use tracing_subscriber::registry::LookupSpan;

use super::event::{CapturedEvent, TypedEntry};
use super::invariant::Invariant;
use super::query::TrailQuery;

#[allow(unused_imports)]
use super::query::TrailQueryExt;

/// Tracks how many [`SimulationLayer`]s are currently installed as a default
/// subscriber. Used by tests; not part of the capture path.
static INSTALL_COUNT: AtomicI32 = AtomicI32::new(0);

/// Returns true when at least one [`SimulationLayer`] is currently installed.
#[inline]
#[must_use]
pub fn layer_installed() -> bool {
    INSTALL_COUNT.load(Ordering::Relaxed) > 0
}

/// Mutable storage for captured events.
pub(crate) struct EventStore {
    /// Monotonic sequence counter assigned to each captured event.
    seq_counter: u64,
    /// Captured events grouped by their trail name.
    by_trail: HashMap<String, Vec<CapturedEvent>>,
    /// Latest known sim time. Advanced by `SimulationLayerHandle::set_sim_time_ms`
    /// (orchestrator pushes after each `sim.step()`) and read at capture time.
    last_sim_time_ms: u64,
}

impl EventStore {
    fn new() -> Self {
        Self {
            seq_counter: 0,
            by_trail: HashMap::new(),
            last_sim_time_ms: 0,
        }
    }
}

/// A `tracing::Layer` that captures `capture = true` events and pumps invariants.
pub struct SimulationLayer {
    events: Arc<Mutex<EventStore>>,
    invariants: Arc<Mutex<Vec<Box<dyn Invariant + Send>>>>,
}

impl SimulationLayer {
    /// Create a fresh layer with no events and no invariants.
    #[must_use]
    pub fn new() -> Self {
        Self {
            events: Arc::new(Mutex::new(EventStore::new())),
            invariants: Arc::new(Mutex::new(Vec::new())),
        }
    }

    /// Get a clonable handle for registering invariants and reading captured events.
    #[must_use]
    pub fn handle(&self) -> SimulationLayerHandle {
        SimulationLayerHandle {
            events: self.events.clone(),
            invariants: self.invariants.clone(),
        }
    }

    /// Install this layer as the per-thread default subscriber without any
    /// additional layers.
    #[must_use]
    pub fn install(self) -> (SimulationLayerHandle, InstallGuard) {
        let handle = self.handle();
        INSTALL_COUNT.fetch_add(1, Ordering::Relaxed);
        // Anchor: an inert, always-interested dispatcher kept alive for the
        // lifetime of the guard. `tracing` caches callsite interest globally and
        // recomputes it (against whichever dispatchers are currently live)
        // whenever that set changes. Without an anchor, a `capture = true`
        // callsite can be re-cached as `Interest::never` the moment the only
        // live capturing dispatcher's thread default is a `NoSubscriber` (a
        // sibling test on another thread, or a guard dropping mid-run), silently
        // dropping our events. Holding one dispatcher that votes "interested" for
        // every callsite guarantees the cache can never collapse to `never` while
        // a layer is installed. See issue #112.
        let interest_anchor = tracing::Dispatch::new(tracing_subscriber::registry());
        let subscriber = tracing_subscriber::registry().with(self);
        let guard = tracing::subscriber::set_default(subscriber);
        // `set_default` is thread-local and does not rebuild the interest cache,
        // so re-evaluate every callsite now against this capturing subscriber to
        // clear any stale `never` left by a callsite first hit before install.
        tracing::callsite::rebuild_interest_cache();
        (
            handle,
            InstallGuard {
                _guard: guard,
                _interest_anchor: interest_anchor,
            },
        )
    }
}

impl Default for SimulationLayer {
    fn default() -> Self {
        Self::new()
    }
}

/// Drop-guard returned by [`SimulationLayer::install`]. Restores the previous
/// subscriber and decrements the install count when dropped.
pub struct InstallGuard {
    _guard: tracing::subscriber::DefaultGuard,
    /// Inert dispatcher kept alive so tracing's global callsite-interest cache
    /// cannot collapse capture callsites to `Interest::never` while a layer is
    /// installed. See `SimulationLayer::install`.
    _interest_anchor: tracing::Dispatch,
}

impl Drop for InstallGuard {
    fn drop(&mut self) {
        INSTALL_COUNT.fetch_sub(1, Ordering::Relaxed);
    }
}

/// Cheap-to-clone handle to a [`SimulationLayer`]'s captured state.
#[derive(Clone)]
pub struct SimulationLayerHandle {
    events: Arc<Mutex<EventStore>>,
    invariants: Arc<Mutex<Vec<Box<dyn Invariant + Send>>>>,
}

impl SimulationLayerHandle {
    /// Register an invariant. Subsequently called after every captured event.
    pub fn register(&self, inv: Box<dyn Invariant + Send>) {
        self.invariants.lock().push(inv);
    }

    /// Reset captured events and invariant state for a new seed.
    ///
    /// Clears all event vectors, resets sequence counter, calls `Invariant::reset`
    /// on each registered invariant.
    pub fn reset_for_seed(&self) {
        {
            let mut store = self.events.lock();
            store.by_trail.clear();
            store.seq_counter = 0;
            store.last_sim_time_ms = 0;
        }
        let mut invs = self.invariants.lock();
        for inv in invs.iter_mut() {
            inv.reset();
        }
    }

    /// Read all events captured under `trail` as typed entries.
    ///
    /// Entries whose payload does not deserialize as `T` are skipped.
    pub fn trail<T: DeserializeOwned>(&self, trail: &str) -> Vec<TypedEntry<T>> {
        let store = self.events.lock();
        let Some(entries) = store.by_trail.get(trail) else {
            return Vec::new();
        };
        entries
            .iter()
            .filter_map(TypedEntry::<T>::deserialize)
            .collect()
    }

    /// Latest known simulation time in milliseconds.
    ///
    /// Updated by [`Self::set_sim_time_ms`] (the orchestrator pushes after
    /// each `sim.step()`). Read at capture time to stamp the captured event.
    #[must_use]
    pub fn current_sim_time_ms(&self) -> u64 {
        self.events.lock().last_sim_time_ms
    }

    /// Override the latest known simulation time. Called by the orchestrator
    /// to keep the layer's clock advancing between events.
    pub fn set_sim_time_ms(&self, ms: u64) {
        self.events.lock().last_sim_time_ms = ms;
    }
}

/// `TrailQuery` view backed by an [`EventStore`]. Created on the fly inside
/// `on_event` so invariants can read from the live store without holding the
/// invariants lock during their `observe` call.
struct LayerQuery {
    events: Arc<Mutex<EventStore>>,
}

impl TrailQuery for LayerQuery {
    fn len(&self, trail: &str) -> usize {
        self.events
            .lock()
            .by_trail
            .get(trail)
            .map_or(0, std::vec::Vec::len)
    }

    fn last_seq(&self) -> u64 {
        let store = self.events.lock();
        store.seq_counter.saturating_sub(1)
    }

    fn drain_since(&self, trail: &str, cursor: &Cell<usize>) -> Vec<CapturedEvent> {
        let store = self.events.lock();
        let Some(entries) = store.by_trail.get(trail) else {
            return Vec::new();
        };
        let len = entries.len();
        let from = cursor.get();
        if from >= len {
            return Vec::new();
        }
        let result: Vec<CapturedEvent> = entries[from..].to_vec();
        cursor.set(len);
        result
    }
}

/// Visitor that scans a `tracing::Event` for the capture marker and required
/// companion fields. After visiting, the populated fields tell the layer
/// whether and how to record the event.
struct CaptureVisitor {
    capture: bool,
    trail: Option<String>,
    source: String,
    payload: Option<Value>,
}

impl CaptureVisitor {
    fn new() -> Self {
        Self {
            capture: false,
            trail: None,
            source: String::new(),
            payload: None,
        }
    }
}

impl Visit for CaptureVisitor {
    fn record_bool(&mut self, field: &Field, value: bool) {
        if field.name() == "capture" {
            self.capture = value;
        }
    }

    fn record_str(&mut self, field: &Field, value: &str) {
        match field.name() {
            "trail" => self.trail = Some(value.to_owned()),
            "source" => value.clone_into(&mut self.source),
            _ => {}
        }
    }

    fn record_value(&mut self, field: &Field, value: valuable::Value<'_>) {
        if field.name() == "event" {
            // Serialize the Valuable into a serde_json::Value. valuable-serde's
            // Serializable wrapper bridges Valuable → serde::Serialize.
            let serializable = valuable_serde::Serializable::new(value);
            if let Ok(v) = serde_json::to_value(serializable) {
                self.payload = Some(v);
            }
        }
    }

    fn record_debug(&mut self, _field: &Field, _value: &dyn std::fmt::Debug) {
        // Other fields (e.g. tracing's auto-added `message`) are ignored.
    }
}

impl<S> Layer<S> for SimulationLayer
where
    S: Subscriber + for<'a> LookupSpan<'a>,
{
    // Report `sometimes` rather than caching a static interest, so tracing
    // re-checks `enabled` per event on the actual emitting thread. This keeps
    // capture correct under thread-local installs where the interest cache would
    // otherwise be decided once, globally, by whichever thread hit the callsite
    // first.
    fn register_callsite(
        &self,
        _metadata: &'static tracing::Metadata<'static>,
    ) -> tracing::subscriber::Interest {
        tracing::subscriber::Interest::sometimes()
    }

    fn on_event(&self, event: &tracing::Event<'_>, _ctx: Context<'_, S>) {
        let mut visitor = CaptureVisitor::new();
        event.record(&mut visitor);
        if !visitor.capture {
            return;
        }
        let Some(trail) = visitor.trail else {
            return;
        };
        let Some(payload) = visitor.payload else {
            return;
        };

        // Phase 1: append the event under the events lock.
        let sim_time_ms;
        {
            let mut store = self.events.lock();
            let seq = store.seq_counter;
            store.seq_counter += 1;
            sim_time_ms = store.last_sim_time_ms;
            store
                .by_trail
                .entry(trail.clone())
                .or_default()
                .push(CapturedEvent {
                    trail,
                    time_ms: sim_time_ms,
                    source: visitor.source,
                    seq,
                    payload,
                });
        }

        // Phase 2: run each invariant. The invariants lock is held during the
        // call; the event store is released so LayerQuery can re-acquire it.
        // Any captured event an invariant tries to emit is silently dropped by
        // tracing-core's dispatch reentrancy guard.
        let query = LayerQuery {
            events: self.events.clone(),
        };
        let invariants = self.invariants.lock();
        for inv in invariants.iter() {
            inv.observe(&query, sim_time_ms);
        }
    }
}