rust-tokio-supervisor 0.1.3

A Rust tokio supervisor with declarative task supervision, restart policy, shutdown coordination, and observability.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124

//! Replay protection (C4).
//!
//! Maintains a sliding window of recently-seen request identifiers.
//! A request_id appearing twice within the configured window (size + TTL)
//! is rejected as a replay attack.

use crate::config::ipc_security::ReplayProtectionConfig;
use crate::dashboard::error::DashboardError;
use std::collections::HashMap;
use std::time::{Duration, Instant};

/// Sliding window that tracks seen request_ids with expiry.
pub struct ReplayWindow {
    /// Map from request_id to insertion timestamp.
    entries: HashMap<String, Instant>,
    /// Maximum number of entries before evicting oldest.
    max_size: usize,
    /// Time-to-live for each entry.
    ttl: Duration,
}

impl ReplayWindow {
    /// Creates a new replay window.
    ///
    /// # Arguments
    ///
    /// - `max_size`: Maximum entries (oldest evicted when full).
    /// - `ttl`: Entry time-to-live.
    ///
    /// # Returns
    ///
    /// Returns an empty [`ReplayWindow`].
    pub fn new(max_size: usize, ttl: Duration) -> Self {
        Self {
            entries: HashMap::with_capacity(max_size.min(64)),
            max_size,
            ttl,
        }
    }

    /// Creates a replay window from configuration.
    ///
    /// # Arguments
    ///
    /// - `config`: Replay protection configuration.
    ///
    /// # Returns
    ///
    /// Returns a configured [`ReplayWindow`].
    pub fn from_config(config: &ReplayProtectionConfig) -> Self {
        Self::new(config.window_size, Duration::from_secs(config.ttl_seconds))
    }

    /// Checks whether a request_id is a replay and records it if not.
    ///
    /// # Arguments
    ///
    /// - `request_id`: The request identifier to check.
    ///
    /// # Returns
    ///
    /// Returns `Ok(())` for a first submission, or `Err(DashboardError)`
    /// with code `replay_detected` for a replay.
    pub fn check_and_record(&mut self, request_id: &str) -> Result<(), DashboardError> {
        self.purge_expired();

        if self.entries.contains_key(request_id) {
            return Err(DashboardError::replay_detected(request_id));
        }

        // Evict oldest if at capacity
        if self.entries.len() >= self.max_size
            && let Some(oldest_key) = self
                .entries
                .iter()
                .min_by_key(|(_, t)| **t)
                .map(|(k, _)| k.clone())
        {
            self.entries.remove(&oldest_key);
        }

        self.entries.insert(request_id.to_string(), Instant::now());
        Ok(())
    }

    /// Returns true if request_id is already in the window (replay).
    ///
    /// Does not record the entry — use [`check_and_record`] for atomic
    /// check-and-record.
    pub fn is_replay(&self, request_id: &str) -> bool {
        self.entries.contains_key(request_id)
    }

    /// Records a request_id unconditionally (for idempotency cache use).
    pub fn record(&mut self, request_id: String) {
        if self.entries.len() >= self.max_size
            && let Some(oldest_key) = self
                .entries
                .iter()
                .min_by_key(|(_, t)| **t)
                .map(|(k, _)| k.clone())
        {
            self.entries.remove(&oldest_key);
        }
        self.entries.insert(request_id, Instant::now());
    }

    /// Purges expired entries.
    pub fn purge_expired(&mut self) {
        let now = Instant::now();
        self.entries
            .retain(|_, inserted| now.duration_since(*inserted) < self.ttl);
    }

    /// Returns the current number of entries in the window.
    pub fn len(&self) -> usize {
        self.entries.len()
    }

    /// Returns true if the window is empty.
    pub fn is_empty(&self) -> bool {
        self.entries.is_empty()
    }
}