quantrs2-device 0.2.0

Quantum device connectors for the QuantRS2 framework
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376

//! Token bucket rate limiter for cloud API calls.
//!
//! Prevents hitting provider rate limits (IBM: 5 jobs/min, AWS: 10 req/s, etc.)
//! by tracking token consumption per backend. The token bucket algorithm smooths
//! bursty traffic while respecting sustained-rate limits.

use std::collections::HashMap;
use std::time::{Duration, Instant};

/// A token bucket: accumulates capacity tokens at `refill_rate` tokens/second.
///
/// Starts full (all tokens available). Each API call consumes one or more tokens.
/// Tokens are replenished continuously up to `capacity`.
pub struct TokenBucket {
    capacity: f64,
    tokens: f64,
    refill_rate: f64, // tokens per second
    last_refill: Instant,
}

impl TokenBucket {
    /// Create a new token bucket with the given capacity and refill rate.
    ///
    /// # Arguments
    /// * `capacity`    — maximum number of tokens (burst ceiling)
    /// * `refill_rate` — tokens added per second (sustained throughput)
    pub fn new(capacity: f64, refill_rate: f64) -> Self {
        Self {
            capacity,
            tokens: capacity,
            refill_rate,
            last_refill: Instant::now(),
        }
    }

    /// Refill tokens based on elapsed time since the last call
    fn refill(&mut self) {
        let elapsed = self.last_refill.elapsed().as_secs_f64();
        self.tokens = (self.tokens + elapsed * self.refill_rate).min(self.capacity);
        self.last_refill = Instant::now();
    }

    /// Try to consume `tokens` from the bucket.
    ///
    /// Returns `true` if the tokens were available and consumed,
    /// `false` if the bucket is too empty (caller should wait).
    pub fn try_consume(&mut self, tokens: f64) -> bool {
        self.refill();
        if self.tokens >= tokens {
            self.tokens -= tokens;
            true
        } else {
            false
        }
    }

    /// Estimate wait time before `tokens` become available.
    ///
    /// Returns [`Duration::ZERO`] if sufficient tokens exist right now.
    pub fn wait_time(&mut self, tokens: f64) -> Duration {
        self.refill();
        if self.tokens >= tokens {
            Duration::ZERO
        } else {
            let needed = tokens - self.tokens;
            let wait_secs = needed / self.refill_rate;
            Duration::from_secs_f64(wait_secs)
        }
    }

    /// Return the current token count after applying any accumulated refill
    pub fn available_tokens(&mut self) -> f64 {
        self.refill();
        self.tokens
    }

    /// Return the configured bucket capacity (burst ceiling)
    pub fn capacity(&self) -> f64 {
        self.capacity
    }

    /// Return the configured refill rate in tokens per second
    pub fn refill_rate(&self) -> f64 {
        self.refill_rate
    }
}

impl std::fmt::Debug for TokenBucket {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        f.debug_struct("TokenBucket")
            .field("capacity", &self.capacity)
            .field("tokens", &self.tokens)
            .field("refill_rate", &self.refill_rate)
            .finish()
    }
}

/// Per-provider token-bucket rate limiter.
///
/// Maintains a separate [`TokenBucket`] for each provider key. Providers not
/// explicitly configured get a bucket with the default capacity and rate.
///
/// # Example
///
/// ```rust
/// use quantrs2_device::security::rate_limit::RateLimiter;
///
/// let mut limiter = RateLimiter::with_cloud_defaults();
///
/// // Fast path — tokens available
/// if limiter.try_consume("aws") {
///     // submit request
/// } else {
///     let delay = limiter.wait_time("aws");
///     // sleep(delay), then retry
/// }
/// ```
pub struct RateLimiter {
    buckets: HashMap<String, TokenBucket>,
    default_capacity: f64,
    default_rate: f64,
}

impl RateLimiter {
    /// Create a rate limiter with the given defaults for unconfigured providers.
    ///
    /// # Arguments
    /// * `default_capacity`         — burst limit for unknown providers
    /// * `default_rate_per_second`  — sustained rate for unknown providers
    pub fn new(default_capacity: f64, default_rate_per_second: f64) -> Self {
        Self {
            buckets: HashMap::new(),
            default_capacity,
            default_rate: default_rate_per_second,
        }
    }

    /// Register a provider-specific bucket, overriding the defaults.
    pub fn with_provider(mut self, provider: impl Into<String>, capacity: f64, rate: f64) -> Self {
        self.buckets
            .insert(provider.into(), TokenBucket::new(capacity, rate));
        self
    }

    /// Try to consume one token for the given provider key.
    ///
    /// Creates a default bucket for the provider if it has not been seen before.
    /// Returns `true` if the request can proceed immediately.
    pub fn try_consume(&mut self, provider: &str) -> bool {
        let (cap, rate) = (self.default_capacity, self.default_rate);
        let bucket = self
            .buckets
            .entry(provider.to_string())
            .or_insert_with(|| TokenBucket::new(cap, rate));
        bucket.try_consume(1.0)
    }

    /// Estimate the wait time before a token is available for the given provider.
    ///
    /// Returns [`Duration::ZERO`] if a token is available immediately.
    pub fn wait_time(&mut self, provider: &str) -> Duration {
        let (cap, rate) = (self.default_capacity, self.default_rate);
        let bucket = self
            .buckets
            .entry(provider.to_string())
            .or_insert_with(|| TokenBucket::new(cap, rate));
        bucket.wait_time(1.0)
    }

    /// Return the number of available tokens for a provider (after refill).
    ///
    /// Creates a default bucket if the provider has not been seen before.
    pub fn available_tokens(&mut self, provider: &str) -> f64 {
        let (cap, rate) = (self.default_capacity, self.default_rate);
        let bucket = self
            .buckets
            .entry(provider.to_string())
            .or_insert_with(|| TokenBucket::new(cap, rate));
        bucket.available_tokens()
    }

    /// Pre-configured limiter with typical cloud provider limits:
    ///
    /// | Provider | Burst | Sustained       |
    /// |----------|-------|-----------------|
    /// | IBM      | 5     | 5 / 60s         |
    /// | AWS      | 10    | 10/s            |
    /// | Azure    | 10    | 10/s            |
    ///
    /// Unknown providers get a 10-token bucket at 1 token/second.
    pub fn with_cloud_defaults() -> Self {
        Self::new(10.0, 1.0)
            .with_provider("ibm", 5.0, 5.0 / 60.0)
            .with_provider("aws", 10.0, 10.0)
            .with_provider("azure", 10.0, 10.0)
    }

    /// Return the list of currently tracked provider keys
    pub fn tracked_providers(&self) -> Vec<&str> {
        self.buckets.keys().map(|s| s.as_str()).collect()
    }
}

impl std::fmt::Debug for RateLimiter {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        f.debug_struct("RateLimiter")
            .field("providers", &self.buckets.keys().collect::<Vec<_>>())
            .field("default_capacity", &self.default_capacity)
            .field("default_rate", &self.default_rate)
            .finish()
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use std::time::Duration;

    #[test]
    fn test_token_bucket_starts_full() {
        let mut bucket = TokenBucket::new(10.0, 1.0);
        assert!((bucket.available_tokens() - 10.0).abs() < 1e-9);
    }

    #[test]
    fn test_token_bucket_consume_success() {
        let mut bucket = TokenBucket::new(5.0, 1.0);
        assert!(bucket.try_consume(3.0));
        // ~2 tokens remain
        assert!(bucket.available_tokens() < 3.0);
    }

    #[test]
    fn test_token_bucket_consume_fails_when_empty() {
        let mut bucket = TokenBucket::new(3.0, 0.001); // very slow refill
                                                       // Drain all tokens
        assert!(bucket.try_consume(3.0));
        // Next consume should fail immediately
        assert!(!bucket.try_consume(1.0));
    }

    #[test]
    fn test_token_bucket_wait_time_zero_when_full() {
        let mut bucket = TokenBucket::new(10.0, 1.0);
        let wait = bucket.wait_time(1.0);
        assert_eq!(wait, Duration::ZERO);
    }

    #[test]
    fn test_token_bucket_wait_time_nonzero_when_empty() {
        let mut bucket = TokenBucket::new(3.0, 0.001); // very slow refill
        assert!(bucket.try_consume(3.0));
        let wait = bucket.wait_time(1.0);
        // wait should be positive (≈ 1000s at 0.001 t/s)
        assert!(wait > Duration::ZERO);
    }

    #[test]
    fn test_token_bucket_capacity_ceiling() {
        // Even after a long wait the bucket won't exceed capacity
        let mut bucket = TokenBucket::new(5.0, 100.0);
        // Force-set tokens as if a long time passed — by consuming 0 and then refilling
        // Simulate by constructing with a past Instant
        let tokens = bucket.available_tokens();
        assert!(tokens <= 5.0 + 1e-9); // never exceeds capacity
    }

    #[test]
    fn test_token_bucket_accessors() {
        let bucket = TokenBucket::new(10.0, 2.5);
        assert!((bucket.capacity() - 10.0).abs() < 1e-9);
        assert!((bucket.refill_rate() - 2.5).abs() < 1e-9);
    }

    #[test]
    fn test_rate_limiter_new_provider_gets_defaults() {
        let mut limiter = RateLimiter::new(5.0, 1.0);
        // "unknown" provider should start with full bucket
        let tokens = limiter.available_tokens("unknown_provider");
        assert!((tokens - 5.0).abs() < 1e-9);
    }

    #[test]
    fn test_rate_limiter_try_consume_success() {
        let mut limiter = RateLimiter::new(10.0, 1.0);
        assert!(limiter.try_consume("aws"));
    }

    #[test]
    fn test_rate_limiter_exhaustion() {
        let mut limiter = RateLimiter::new(3.0, 0.001);
        assert!(limiter.try_consume("test"));
        assert!(limiter.try_consume("test"));
        assert!(limiter.try_consume("test"));
        // 4th should fail
        assert!(!limiter.try_consume("test"));
    }

    #[test]
    fn test_rate_limiter_cloud_defaults_ibm() {
        let mut limiter = RateLimiter::with_cloud_defaults();
        // IBM bucket has capacity 5
        for _ in 0..5 {
            assert!(limiter.try_consume("ibm"));
        }
        // 6th should fail (very slow refill)
        assert!(!limiter.try_consume("ibm"));
    }

    #[test]
    fn test_rate_limiter_cloud_defaults_aws() {
        let mut limiter = RateLimiter::with_cloud_defaults();
        // AWS bucket has capacity 10
        for _ in 0..10 {
            assert!(limiter.try_consume("aws"));
        }
        assert!(!limiter.try_consume("aws"));
    }

    #[test]
    fn test_rate_limiter_wait_time_zero_when_available() {
        let mut limiter = RateLimiter::new(10.0, 1.0);
        let wait = limiter.wait_time("any_provider");
        assert_eq!(wait, Duration::ZERO);
    }

    #[test]
    fn test_rate_limiter_wait_time_positive_when_exhausted() {
        let mut limiter = RateLimiter::new(1.0, 0.001);
        assert!(limiter.try_consume("provider"));
        let wait = limiter.wait_time("provider");
        assert!(wait > Duration::ZERO);
    }

    #[test]
    fn test_rate_limiter_independent_providers() {
        let mut limiter = RateLimiter::new(2.0, 0.001);
        // Exhaust "provider_a"
        assert!(limiter.try_consume("provider_a"));
        assert!(limiter.try_consume("provider_a"));
        assert!(!limiter.try_consume("provider_a"));

        // "provider_b" should be unaffected
        assert!(limiter.try_consume("provider_b"));
        assert!(limiter.try_consume("provider_b"));
    }

    #[test]
    fn test_rate_limiter_tracked_providers() {
        let mut limiter = RateLimiter::with_cloud_defaults();
        // Pre-configured providers are already tracked
        let providers = limiter.tracked_providers();
        assert!(providers.contains(&"ibm"));
        assert!(providers.contains(&"aws"));
        assert!(providers.contains(&"azure"));

        // Accessing a new provider adds it to the tracked set
        limiter.try_consume("ionq");
        let providers = limiter.tracked_providers();
        assert!(providers.contains(&"ionq"));
    }

    #[test]
    fn test_token_bucket_debug() {
        let bucket = TokenBucket::new(5.0, 1.0);
        let s = format!("{:?}", bucket);
        assert!(s.contains("TokenBucket"));
    }

    #[test]
    fn test_rate_limiter_debug() {
        let limiter = RateLimiter::with_cloud_defaults();
        let s = format!("{:?}", limiter);
        assert!(s.contains("RateLimiter"));
    }
}