nodedb 0.2.1

Local-first, real-time, edge-to-cloud hybrid database for multi-modal workloads
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67

// SPDX-License-Identifier: BUSL-1.1

//! Regression coverage: RequestTracker must apply bounded backpressure to
//! streaming responses.
//!
//! Today `register` returns `mpsc::UnboundedReceiver`. A slow Control-Plane
//! session (TLS back-pressure, slow TCP consumer) lets streaming `partial`
//! chunks accumulate in RAM without bound — RSS grows as
//! `(producer_rate - consumer_rate) * duration`.
//!
//! After the fix, `register` returns a bounded receiver; `complete` signals
//! backpressure (returns false, drops-with-sentinel, or similar) once the
//! buffer is full rather than silently expanding forever.

use nodedb::bridge::envelope::{Payload, Response, Status};
use nodedb::control::request_tracker::RequestTracker;
use nodedb::types::{Lsn, RequestId};
use tokio::sync::mpsc;

fn partial(id: u64, data: &[u8]) -> Response {
    Response {
        request_id: RequestId::new(id),
        status: Status::Partial,
        attempt: 1,
        partial: true,
        payload: Payload::from_vec(data.to_vec()),
        watermark_lsn: Lsn::ZERO,
        error_code: None,
    }
}

#[test]
fn register_returns_bounded_receiver() {
    // Compile-gate: the mpsc type must be the bounded `Receiver`, not
    // `UnboundedReceiver`. This is the single largest guarantee — bounded
    // type is what forces backpressure through the rest of the pipeline.
    let tracker = RequestTracker::new();
    let _rx: mpsc::Receiver<Response> = tracker.register(RequestId::new(1));
}

#[test]
fn complete_signals_backpressure_when_session_buffer_fills() {
    // Register a request but never poll the receiver — simulates a slow
    // session whose TCP write buffer is full.
    let tracker = RequestTracker::new();
    let _rx = tracker.register(RequestId::new(42));

    // Flood partials. With the bounded channel, one of two observable
    // behaviors is acceptable:
    //   (a) `complete` returns false once the session buffer fills, OR
    //   (b) the oldest partial is dropped with a sentinel error code.
    //
    // The current (buggy) behavior accepts 10k+ partials without any
    // signal — that is the class of bug being captured.
    let mut rejected = 0usize;
    for i in 0u32..10_000 {
        if !tracker.complete(partial(42, &i.to_le_bytes())) {
            rejected += 1;
        }
    }

    assert!(
        rejected > 0,
        "RequestTracker must signal backpressure for never-polled receivers; \
         unbounded buffering grows RSS without bound under slow consumers"
    );
}