host_extensions/first_party/

crdt_runtime.rs

use std::collections::HashMap;
use std::sync::Mutex;

use crate::executor_contract::CrdtJoinResult;
use crate::HostPushEvent;

/// Pluggable CRDT backend — host applications inject their own implementation
/// (e.g. Statement Store relay) while tests and headless hosts use
/// [`InMemoryCrdtRuntime`].
///
/// # Synchronous contract
///
/// All methods are synchronous because [`HostExtension::handle_message`] is
/// synchronous by design (all extensions share this constraint). Real backends
/// should accept operations synchronously (e.g., enqueue to a background task)
/// and deliver asynchronous results (remote updates, peer changes) via
/// [`drain_events`](CrdtRuntime::drain_events), which the host polls on a
/// regular tick cycle.
pub trait CrdtRuntime: Send + Sync + 'static {
    /// Join (or create) a room.  Returns a [`CrdtJoinResult`].
    fn join(&self, room_id: &str, transport: &str) -> Result<CrdtJoinResult, CrdtRuntimeError>;

    /// Apply a local CRDT update (base64-encoded binary).
    fn apply_update(&self, room_id: &str, update_base64: &str) -> Result<bool, CrdtRuntimeError>;

    /// Return the current state vector (base64-encoded).
    fn get_state_vector(&self, room_id: &str) -> Result<String, CrdtRuntimeError>;

    /// Return a full snapshot of the document (base64-encoded).
    fn get_full_state(&self, room_id: &str) -> Result<String, CrdtRuntimeError>;

    /// Set ephemeral awareness/presence state (JSON string).
    fn set_awareness(&self, room_id: &str, state: &str) -> Result<bool, CrdtRuntimeError>;

    /// Destroy a room and release its resources.
    fn destroy(&self, room_id: &str) -> Result<bool, CrdtRuntimeError>;

    /// Drain queued push events destined for the SPA.
    ///
    /// The default implementation returns an empty vec. Production runtimes
    /// should override this to deliver `crdtRemoteUpdate`, `crdtAwareness`,
    /// and `crdtPeerChange` events received from the network.
    /// [`InMemoryCrdtRuntime`] intentionally uses the default (no events)
    /// because it has no network layer.
    fn drain_events(&self) -> Vec<HostPushEvent> {
        Vec::new()
    }
}

// ── Error type ──────────────────────────────────────────────────────────

/// Structured error type for [`CrdtRuntime`] operations.
#[derive(Debug, thiserror::Error)]
pub enum CrdtRuntimeError {
    #[error("crdt room not found")]
    RoomNotFound,

    #[error("roomId is required")]
    RoomIdRequired,

    #[error("{0}")]
    Other(String),
}

// ── In-memory implementation ────────────────────────────────────────────

/// Maximum updates stored per room in the test-only [`InMemoryCrdtRuntime`].
/// Production runtimes manage their own storage; this cap prevents unbounded
/// memory growth during long-running headless-host test sessions.
const MAX_UPDATES_PER_ROOM: usize = 10_000;

/// Minimal in-memory CRDT runtime for testing and headless-host scenarios.
///
/// This implementation does **not** perform real CRDT merge/encoding. Updates
/// are stored as opaque base64 strings and returned verbatim. State vectors
/// are represented as simple update counts. Production hosts must inject a
/// real CRDT backend (e.g., Yjs/y-crdt over Statement Store relay) via
/// [`CrdtExtension::with_runtime`](super::crdt::CrdtExtension::with_runtime).
#[derive(Debug, Default)]
pub struct InMemoryCrdtRuntime {
    state: Mutex<InMemoryCrdtState>,
}

#[derive(Debug, Default)]
struct InMemoryCrdtState {
    rooms: HashMap<String, RoomState>,
}

#[derive(Debug, Default)]
struct RoomState {
    transport: String,
    /// Accumulated updates (base64 chunks), simulating a document.
    updates: Vec<String>,
    awareness: Option<String>,
}

impl InMemoryCrdtRuntime {
    pub fn new() -> Self {
        Self {
            state: Mutex::new(InMemoryCrdtState::default()),
        }
    }
}

fn room_not_found() -> CrdtRuntimeError {
    CrdtRuntimeError::RoomNotFound
}

impl CrdtRuntime for InMemoryCrdtRuntime {
    fn join(&self, room_id: &str, transport: &str) -> Result<CrdtJoinResult, CrdtRuntimeError> {
        let mut state = self.state.lock().unwrap_or_else(|e| e.into_inner());
        let room = state
            .rooms
            .entry(room_id.to_string())
            .or_insert_with(|| RoomState {
                transport: transport.to_string(),
                ..Default::default()
            });
        Ok(CrdtJoinResult {
            room_id: room_id.to_string(),
            transport: room.transport.clone(),
        })
    }

    fn apply_update(&self, room_id: &str, update_base64: &str) -> Result<bool, CrdtRuntimeError> {
        let mut state = self.state.lock().unwrap_or_else(|e| e.into_inner());
        let room = state.rooms.get_mut(room_id).ok_or_else(room_not_found)?;
        if room.updates.len() >= MAX_UPDATES_PER_ROOM {
            return Err(CrdtRuntimeError::Other(
                "in-memory update buffer full (test-only runtime)".into(),
            ));
        }
        room.updates.push(update_base64.to_string());
        Ok(true)
    }

    fn get_state_vector(&self, room_id: &str) -> Result<String, CrdtRuntimeError> {
        let state = self.state.lock().unwrap_or_else(|e| e.into_inner());
        let room = state.rooms.get(room_id).ok_or_else(room_not_found)?;
        // Test stand-in: returns the count of updates, not a real CRDT state vector.
        Ok(format!("{}", room.updates.len()))
    }

    fn get_full_state(&self, room_id: &str) -> Result<String, CrdtRuntimeError> {
        let state = self.state.lock().unwrap_or_else(|e| e.into_inner());
        let room = state.rooms.get(room_id).ok_or_else(room_not_found)?;
        // Test stand-in: concatenates base64 chunks, not a real CRDT snapshot.
        Ok(room.updates.join(","))
    }

    fn set_awareness(
        &self,
        room_id: &str,
        awareness_state: &str,
    ) -> Result<bool, CrdtRuntimeError> {
        let mut state = self.state.lock().unwrap_or_else(|e| e.into_inner());
        let room = state.rooms.get_mut(room_id).ok_or_else(room_not_found)?;
        room.awareness = Some(awareness_state.to_string());
        Ok(true)
    }

    fn destroy(&self, room_id: &str) -> Result<bool, CrdtRuntimeError> {
        let mut state = self.state.lock().unwrap_or_else(|e| e.into_inner());
        state
            .rooms
            .remove(room_id)
            .map(|_| true)
            .ok_or_else(room_not_found)
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn join_creates_room() {
        let rt = InMemoryCrdtRuntime::new();
        let result = rt.join("doc-1", "relay").unwrap();
        assert_eq!(result.room_id, "doc-1");
        assert_eq!(result.transport, "relay");
    }

    #[test]
    fn join_is_idempotent_and_preserves_state() {
        let rt = InMemoryCrdtRuntime::new();
        rt.join("doc-1", "relay").unwrap();
        rt.apply_update("doc-1", "AQID").unwrap();
        let result = rt.join("doc-1", "relay").unwrap();
        assert_eq!(result.room_id, "doc-1");
        assert_eq!(rt.get_full_state("doc-1").unwrap(), "AQID");
    }

    #[test]
    fn join_returns_stored_transport_on_rejoin() {
        let rt = InMemoryCrdtRuntime::new();
        rt.join("doc-1", "relay").unwrap();
        let result = rt.join("doc-1", "p2p").unwrap();
        assert_eq!(result.transport, "relay");
    }

    #[test]
    fn apply_update_stores_data() {
        let rt = InMemoryCrdtRuntime::new();
        rt.join("doc-1", "relay").unwrap();
        assert!(rt.apply_update("doc-1", "AQID").unwrap());
        assert_eq!(rt.get_full_state("doc-1").unwrap(), "AQID");
    }

    #[test]
    fn apply_update_rejects_missing_room() {
        let rt = InMemoryCrdtRuntime::new();
        assert!(matches!(
            rt.apply_update("missing", "AQID").unwrap_err(),
            CrdtRuntimeError::RoomNotFound
        ));
    }

    #[test]
    fn apply_update_rejects_when_buffer_full() {
        let rt = InMemoryCrdtRuntime::new();
        rt.join("doc-1", "relay").unwrap();
        for i in 0..MAX_UPDATES_PER_ROOM {
            rt.apply_update("doc-1", &format!("u{i}")).unwrap();
        }
        let err = rt.apply_update("doc-1", "overflow").unwrap_err();
        assert!(
            matches!(err, CrdtRuntimeError::Other(ref msg) if msg.contains("buffer full")),
            "expected buffer full error, got: {err}"
        );
    }

    #[test]
    fn get_state_vector_reflects_update_count() {
        let rt = InMemoryCrdtRuntime::new();
        rt.join("doc-1", "relay").unwrap();
        assert_eq!(rt.get_state_vector("doc-1").unwrap(), "0");
        rt.apply_update("doc-1", "AQID").unwrap();
        assert_eq!(rt.get_state_vector("doc-1").unwrap(), "1");
        rt.apply_update("doc-1", "BAUE").unwrap();
        assert_eq!(rt.get_state_vector("doc-1").unwrap(), "2");
    }

    #[test]
    fn get_state_vector_rejects_missing_room() {
        let rt = InMemoryCrdtRuntime::new();
        assert!(matches!(
            rt.get_state_vector("missing").unwrap_err(),
            CrdtRuntimeError::RoomNotFound
        ));
    }

    #[test]
    fn get_full_state_concatenates_updates() {
        let rt = InMemoryCrdtRuntime::new();
        rt.join("doc-1", "relay").unwrap();
        rt.apply_update("doc-1", "AQID").unwrap();
        rt.apply_update("doc-1", "BAUE").unwrap();
        assert_eq!(rt.get_full_state("doc-1").unwrap(), "AQID,BAUE");
    }

    #[test]
    fn get_full_state_rejects_missing_room() {
        let rt = InMemoryCrdtRuntime::new();
        assert!(matches!(
            rt.get_full_state("missing").unwrap_err(),
            CrdtRuntimeError::RoomNotFound
        ));
    }

    #[test]
    fn set_awareness_stores_state() {
        let rt = InMemoryCrdtRuntime::new();
        rt.join("doc-1", "relay").unwrap();
        assert!(rt.set_awareness("doc-1", r#"{"cursor":5}"#).unwrap());
    }

    #[test]
    fn set_awareness_rejects_missing_room() {
        let rt = InMemoryCrdtRuntime::new();
        assert!(matches!(
            rt.set_awareness("missing", "{}").unwrap_err(),
            CrdtRuntimeError::RoomNotFound
        ));
    }

    #[test]
    fn destroy_removes_room() {
        let rt = InMemoryCrdtRuntime::new();
        rt.join("doc-1", "relay").unwrap();
        assert!(rt.destroy("doc-1").unwrap());
        // All operations should fail after destroy.
        assert!(matches!(
            rt.apply_update("doc-1", "AQID").unwrap_err(),
            CrdtRuntimeError::RoomNotFound
        ));
    }

    #[test]
    fn destroy_rejects_missing_room() {
        let rt = InMemoryCrdtRuntime::new();
        assert!(matches!(
            rt.destroy("missing").unwrap_err(),
            CrdtRuntimeError::RoomNotFound
        ));
    }

    #[test]
    fn double_destroy_returns_error() {
        let rt = InMemoryCrdtRuntime::new();
        rt.join("doc-1", "relay").unwrap();
        assert!(rt.destroy("doc-1").unwrap());
        assert!(matches!(
            rt.destroy("doc-1").unwrap_err(),
            CrdtRuntimeError::RoomNotFound
        ));
    }

    #[test]
    fn drain_events_returns_empty_by_default() {
        let rt = InMemoryCrdtRuntime::new();
        assert!(rt.drain_events().is_empty());
    }

    #[test]
    fn crdt_runtime_error_display_matches_contract() {
        assert_eq!(
            CrdtRuntimeError::RoomNotFound.to_string(),
            crate::executor_contract::ERR_CRDT_ROOM_NOT_FOUND
        );
        assert_eq!(
            CrdtRuntimeError::RoomIdRequired.to_string(),
            crate::executor_contract::ERR_CRDT_ROOM_ID_REQUIRED
        );
    }
}