reliability-toolkit 0.1.1

Async reliability primitives for Rust: rate limiter, circuit breaker, retry with jitter, bulkhead. Optional audit-stream-py integration via the `audit-stream` feature.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138

//! Token-bucket rate limiter.
//!
//! Tokens accrue at `rate_per_second` up to `burst`. Acquiring a token blocks
//! until one is available. Bursts are absorbed up to the bucket capacity, which
//! is the right shape for protecting downstreams that can briefly tolerate
//! traffic spikes but reject sustained overload.
//!
//! The implementation is lock-free for the read path (one `Mutex` guarding a
//! tiny token count + last-refill timestamp). For workloads >> 10k rps consider
//! a sharded variant.
//!
//! ```
//! # use std::time::Duration;
//! # use reliability_toolkit::RateLimiter;
//! # async fn demo() {
//! let limiter = RateLimiter::new(10.0, 5); // 10 rps, burst 5
//! for _ in 0..3 {
//!     limiter.acquire().await;
//! }
//! # }
//! ```

use std::sync::Arc;
use std::time::Duration;

use tokio::sync::Mutex;
use tokio::time::{sleep, Instant};

/// Token-bucket rate limiter. Cheap to `clone`; the inner state is `Arc<Mutex<_>>`.
#[derive(Clone, Debug)]
pub struct RateLimiter {
    inner: Arc<Inner>,
}

#[derive(Debug)]
struct Inner {
    rate_per_second: f64,
    burst: f64,
    state: Mutex<State>,
}

#[derive(Debug)]
struct State {
    tokens: f64,
    last_refill: Instant,
}

impl RateLimiter {
    /// Build a limiter that produces `rate_per_second` tokens, capped at `burst`.
    ///
    /// # Panics
    ///
    /// Panics if `rate_per_second` is not positive or `burst` is zero.
    pub fn new(rate_per_second: f64, burst: u32) -> Self {
        assert!(rate_per_second > 0.0, "rate_per_second must be positive");
        assert!(burst > 0, "burst must be non-zero");
        let burst_f = f64::from(burst);
        Self {
            inner: Arc::new(Inner {
                rate_per_second,
                burst: burst_f,
                state: Mutex::new(State {
                    tokens: burst_f,
                    last_refill: Instant::now(),
                }),
            }),
        }
    }

    /// Wait until a token is available, then consume it.
    pub async fn acquire(&self) {
        self.acquire_n(1).await;
    }

    /// Wait until `n` tokens are available, then consume them.
    ///
    /// # Panics
    ///
    /// Panics if `n` exceeds the configured burst (it could never be granted).
    pub async fn acquire_n(&self, n: u32) {
        let needed = f64::from(n);
        assert!(
            needed <= self.inner.burst,
            "requested {n} tokens but burst is {}",
            self.inner.burst
        );

        loop {
            let wait = {
                let mut state = self.inner.state.lock().await;
                self.refill(&mut state);
                if state.tokens >= needed {
                    state.tokens -= needed;
                    return;
                }
                let deficit = needed - state.tokens;
                let seconds = deficit / self.inner.rate_per_second;
                Duration::from_secs_f64(seconds)
            };
            sleep(wait).await;
        }
    }

    /// Try to consume one token without waiting. Returns `true` on success.
    pub async fn try_acquire(&self) -> bool {
        self.try_acquire_n(1).await
    }

    /// Try to consume `n` tokens without waiting. Returns `true` on success.
    pub async fn try_acquire_n(&self, n: u32) -> bool {
        let needed = f64::from(n);
        let mut state = self.inner.state.lock().await;
        self.refill(&mut state);
        if state.tokens >= needed {
            state.tokens -= needed;
            true
        } else {
            false
        }
    }

    /// Current bucket level (mostly useful for tests + telemetry).
    pub async fn tokens(&self) -> f64 {
        let mut state = self.inner.state.lock().await;
        self.refill(&mut state);
        state.tokens
    }

    fn refill(&self, state: &mut State) {
        let now = Instant::now();
        let elapsed = now.duration_since(state.last_refill).as_secs_f64();
        if elapsed > 0.0 {
            state.tokens =
                (state.tokens + elapsed * self.inner.rate_per_second).min(self.inner.burst);
            state.last_refill = now;
        }
    }
}