net-mesh 0.21.0

High-performance, schema-agnostic, backend-agnostic event bus
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181

//! Phase B — [`MeshOsControl`]. The side-channel event a
//! supervised daemon receives from MeshOS, in the SDK's
//! richer form (Instant-based deadlines). The supervisor
//! integration layer converts to the WASM-friendly
//! [`crate::adapter::net::compute::DaemonControl`]
//! before invoking the daemon's `on_control` method.
//!
//! Two parallel forms intentionally:
//!
//! - `MeshOsControl` (this module): SDK-internal scheduling.
//!   Carries `Instant` deadlines so the loop's admit /
//!   stabilization layers can compare against `now` without
//!   re-computing the wall clock.
//! - `DaemonControl` (in `compute::daemon`, always available):
//!   what a `MeshDaemon::on_control` receiver sees. Carries
//!   relative-millisecond fields so a daemon running in any
//!   clock domain (including WASM) can react without an
//!   `Instant` reference.

use std::time::Instant;

use crate::adapter::net::compute::DaemonControl;

/// Supervisor → daemon control event. Delivered via the
/// per-daemon control channel (separate from the `process()`
/// event stream). The daemon implements `on_control(&mut self,
/// event: MeshOsControl)` (default impl ignores everything).
///
/// `#[non_exhaustive]` so later phases add control variants
/// without breaking implementors.
#[derive(Clone, Debug, PartialEq)]
#[non_exhaustive]
pub enum MeshOsControl {
    /// Graceful shutdown. The daemon should finish in-flight
    /// work and exit before `deadline`. Past the deadline the
    /// supervisor force-terminates.
    Shutdown {
        /// Wall-clock deadline by which the daemon should be
        /// gone. Past this, the supervisor force-terminates.
        deadline: Instant,
    },

    /// Drain start. Stop accepting new work; in-flight work
    /// continues until [`MeshOsControl::DrainFinish`] arrives or
    /// the deadline elapses.
    DrainStart {
        /// Deadline by which drain should be complete.
        deadline: Instant,
    },

    /// Drain done. All in-flight work that's still running may
    /// be abandoned; the daemon should exit.
    DrainFinish,

    /// Cluster-wide backpressure is active. The daemon should
    /// reduce optional work (cache warmup, background indexing,
    /// etc.) by roughly `level` ∈ `[0.0, 1.0]` — 1.0 means
    /// "pause optional work entirely".
    BackpressureOn {
        /// Severity in `[0.0, 1.0]`. 0 means just-barely
        /// triggered, 1 means catastrophic queue depth.
        level: f32,
    },

    /// Cluster-wide backpressure cleared. Resume normal work.
    BackpressureOff,
}

/// Sink the loop emits [`MeshOsControl`] events into when the
/// fold observes a state transition that fans out as a daemon
/// control signal (maintenance enter / exit, backpressure
/// flips). Installed via
/// [`super::event_loop::MeshOsLoop::with_control_sink`]; the
/// SDK plugs one in to route events through its per-daemon
/// channels.
///
/// Sync `emit` because the loop is on the critical path —
/// implementors must avoid blocking. The SDK's router uses
/// `mpsc::try_send` (drop on full).
pub trait ControlSink: Send + Sync + 'static {
    /// Receive a control event. Called from the loop task; must
    /// not block, must not panic.
    fn emit(&self, event: MeshOsControl);
}

impl MeshOsControl {
    /// Convert this SDK-internal event to the WASM-friendly
    /// [`DaemonControl`] form the daemon's `on_control` method
    /// receives. `now` anchors the relative-ms conversion of
    /// the `Instant` deadlines; deadlines in the past clamp to
    /// `0`.
    pub fn to_daemon_control(&self, now: Instant) -> DaemonControl {
        match self {
            MeshOsControl::Shutdown { deadline } => DaemonControl::Shutdown {
                grace_period_ms: deadline.saturating_duration_since(now).as_millis() as u64,
            },
            MeshOsControl::DrainStart { deadline } => DaemonControl::DrainStart {
                grace_period_ms: deadline.saturating_duration_since(now).as_millis() as u64,
            },
            MeshOsControl::DrainFinish => DaemonControl::DrainFinish,
            MeshOsControl::BackpressureOn { level } => {
                DaemonControl::BackpressureOn { level: *level }
            }
            MeshOsControl::BackpressureOff => DaemonControl::BackpressureOff,
        }
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use std::time::Duration;

    #[test]
    fn enum_variants_are_constructible_with_runtime_values() {
        let now = Instant::now();
        let _ = MeshOsControl::Shutdown {
            deadline: now + Duration::from_secs(5),
        };
        let _ = MeshOsControl::DrainStart {
            deadline: now + Duration::from_secs(30),
        };
        let _ = MeshOsControl::DrainFinish;
        let _ = MeshOsControl::BackpressureOn { level: 0.5 };
        let _ = MeshOsControl::BackpressureOff;
    }

    #[test]
    fn to_daemon_control_converts_instant_deadlines_to_relative_ms() {
        let now = Instant::now();
        let ev = MeshOsControl::Shutdown {
            deadline: now + Duration::from_millis(2500),
        };
        match ev.to_daemon_control(now) {
            DaemonControl::Shutdown { grace_period_ms } => {
                // Allow small slop for the Instant arithmetic.
                assert!((2400..=2500).contains(&grace_period_ms));
            }
            other => panic!("expected Shutdown, got {other:?}"),
        }
    }

    #[test]
    fn to_daemon_control_clamps_past_deadlines_to_zero() {
        let now = Instant::now();
        let ev = MeshOsControl::DrainStart {
            deadline: now - Duration::from_secs(1),
        };
        match ev.to_daemon_control(now) {
            DaemonControl::DrainStart { grace_period_ms } => {
                assert_eq!(grace_period_ms, 0);
            }
            other => panic!("expected DrainStart, got {other:?}"),
        }
    }

    #[test]
    fn to_daemon_control_passes_backpressure_level_through_unchanged() {
        let now = Instant::now();
        let ev = MeshOsControl::BackpressureOn { level: 0.75 };
        match ev.to_daemon_control(now) {
            DaemonControl::BackpressureOn { level } => {
                assert!((level - 0.75).abs() < 1e-6);
            }
            other => panic!("expected BackpressureOn, got {other:?}"),
        }
    }

    #[test]
    fn to_daemon_control_passes_drain_finish_and_backpressure_off_through() {
        let now = Instant::now();
        assert!(matches!(
            MeshOsControl::DrainFinish.to_daemon_control(now),
            DaemonControl::DrainFinish
        ));
        assert!(matches!(
            MeshOsControl::BackpressureOff.to_daemon_control(now),
            DaemonControl::BackpressureOff
        ));
    }
}