rust-tokio-supervisor 0.1.3

A Rust tokio supervisor with declarative task supervision, restart policy, shutdown coordination, and observability.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74

//! Group isolation strategy module.
//!
//! Implements group-level fault boundary enforcement
//! with dependency edge propagation rules (US2: group fault stays within boundary).
//!
//! [`GroupDependencyEdge`] declares a directed failure propagation relationship
//! between two groups. [`PropagationPolicy`] controls the propagation semantics:
//! `None` (fully isolated), `EscalateOnly` (notify parent, don't block children),
//! or `Full` (mark all children in the dependent group as non-restartable).
//!
//! [`GroupIsolationPolicy`] evaluates whether a failure in one group affects
//! another, based on the declared DAG of dependency edges. Cyclic dependencies
//! are rejected at config load time.

use schemars::JsonSchema;
use serde::{Deserialize, Serialize};

/// Failure propagation policy across group boundaries.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Serialize, Deserialize, JsonSchema)]
pub enum PropagationPolicy {
    /// No propagation — groups are fully isolated.
    None,
    /// Escalate to parent supervisor only, do not affect current group.
    EscalateOnly,
    /// Full propagation — all children in the current group are marked
    /// non-restartable and the group enters meltdown.
    /// Propagation direction: fault flows from `to_group` to `from_group`
    /// (one-way), never reversed.
    Full,
}

/// Declares a failure propagation dependency between groups.
#[derive(Debug, Clone, PartialEq, Eq, Serialize, Deserialize, JsonSchema)]
pub struct GroupDependencyEdge {
    /// The group that depends on another group.
    pub from_group: String,
    /// The group that is depended on.
    pub to_group: String,
    /// How failures propagate from `to_group` to `from_group`.
    pub propagation: PropagationPolicy,
}

/// Evaluates whether a failure in one group affects another group.
///
/// Dependency edges form a directed acyclic graph (DAG). Cyclic dependencies
/// are detected at config load time and rejected with a structured error
/// listing the group names on the cycle.
#[derive(Debug, Clone, PartialEq, Eq)]
pub struct GroupIsolationPolicy {
    /// Declared cross-group dependency edges.
    dependencies: Vec<GroupDependencyEdge>,
}

impl GroupIsolationPolicy {
    /// Creates an isolation policy from declared dependency edges.
    pub fn new(dependencies: Vec<GroupDependencyEdge>) -> Self {
        Self { dependencies }
    }

    /// Checks whether `my_group` is affected by a failure in `failed_group`.
    ///
    /// Returns `true` when a dependency edge explicitly allows propagation,
    /// or when `my_group` is the same as `failed_group`.
    pub fn affected_by(&self, my_group: &str, failed_group: &str) -> bool {
        if my_group == failed_group {
            return true;
        }
        self.dependencies.iter().any(|edge| {
            edge.from_group == my_group
                && edge.to_group == failed_group
                && edge.propagation == PropagationPolicy::Full
        })
    }
}