hypercall/nats/

replay_loop.rs

use futures::StreamExt;
use std::sync::atomic::{AtomicBool, AtomicI64, AtomicU64, Ordering};
use std::sync::Arc;
use tokio::sync::broadcast::error::RecvError;
use tracing::{error, info, warn};

use super::{NatsConfig, NatsReplaySubscriber, ReplayMessage};

const CATCH_UP_TICK_INTERVAL: std::time::Duration = std::time::Duration::from_millis(250);

/// Tracks how far behind the standby is from the primary.
#[derive(Clone)]
pub struct ReplayProgress {
    commands_replayed: Arc<AtomicU64>,
    caught_up: Arc<AtomicBool>,
    replay_cursor_seq: Arc<AtomicI64>,
    last_replayed_seq: Arc<AtomicI64>,
    last_replay_unix_ms: Arc<AtomicU64>,
    latest_stream_seq: Arc<AtomicI64>,
}

impl Default for ReplayProgress {
    fn default() -> Self {
        Self::new()
    }
}

impl ReplayProgress {
    pub fn new() -> Self {
        Self {
            commands_replayed: Arc::new(AtomicU64::new(0)),
            caught_up: Arc::new(AtomicBool::new(false)),
            replay_cursor_seq: Arc::new(AtomicI64::new(-1)),
            last_replayed_seq: Arc::new(AtomicI64::new(-1)),
            last_replay_unix_ms: Arc::new(AtomicU64::new(0)),
            latest_stream_seq: Arc::new(AtomicI64::new(-1)),
        }
    }

    pub fn commands_replayed(&self) -> u64 {
        self.commands_replayed.load(Ordering::Relaxed)
    }

    pub fn is_caught_up(&self) -> bool {
        self.caught_up.load(Ordering::Relaxed)
    }

    pub fn last_replayed_seq(&self) -> Option<i64> {
        let seq = self.last_replayed_seq.load(Ordering::Relaxed);
        (seq >= 0).then_some(seq)
    }

    pub fn replay_cursor_seq(&self) -> Option<i64> {
        let seq = self.replay_cursor_seq.load(Ordering::Relaxed);
        (seq >= 0).then_some(seq)
    }

    pub fn latest_stream_seq(&self) -> Option<u64> {
        let seq = self.latest_stream_seq.load(Ordering::Relaxed);
        (seq >= 0).then_some(seq as u64)
    }

    pub fn stream_lag(&self) -> Option<u64> {
        let latest = self.latest_stream_seq()?;
        let cursor = self.replay_cursor_seq()?;
        Some(latest.saturating_sub(cursor.max(0) as u64))
    }

    pub fn last_replay_unix_ms(&self) -> Option<u64> {
        let ts = self.last_replay_unix_ms.load(Ordering::Relaxed);
        (ts > 0).then_some(ts)
    }

    fn set_replay_cursor(&self, seq: i64) {
        self.replay_cursor_seq.store(seq, Ordering::Relaxed);
    }

    fn record_replayed(&self, command_seq: u64, stream_seq: u64) {
        self.commands_replayed.fetch_add(1, Ordering::Relaxed);
        self.replay_cursor_seq
            .store(stream_seq as i64, Ordering::Relaxed);
        self.last_replayed_seq
            .store(command_seq as i64, Ordering::Relaxed);
        let now_ms = std::time::SystemTime::now()
            .duration_since(std::time::UNIX_EPOCH)
            .expect("system clock before UNIX_EPOCH")
            .as_millis() as u64;
        self.last_replay_unix_ms.store(now_ms, Ordering::Relaxed);
    }

    fn update_catch_up_state(&self, latest_stream_seq: u64, replay_cursor_seq: i64) -> bool {
        self.latest_stream_seq
            .store(latest_stream_seq as i64, Ordering::Relaxed);
        self.set_replay_cursor(replay_cursor_seq);
        let caught_up = is_caught_up_to_stream_tail(replay_cursor_seq, latest_stream_seq);
        self.caught_up.swap(caught_up, Ordering::Relaxed) != caught_up
    }

    #[cfg(test)]
    pub(crate) fn test_record_replayed(&self, command_seq: u64, stream_seq: u64) {
        self.record_replayed(command_seq, stream_seq);
    }

    #[cfg(test)]
    pub(crate) fn test_update_catch_up_state(
        &self,
        latest_stream_seq: u64,
        replay_cursor_seq: i64,
    ) {
        self.update_catch_up_state(latest_stream_seq, replay_cursor_seq);
    }
}

fn is_caught_up_to_stream_tail(replay_cursor_seq: i64, latest_stream_seq: u64) -> bool {
    replay_cursor_seq >= latest_stream_seq as i64
}

async fn refresh_catch_up_state(subscriber: &NatsReplaySubscriber, progress: &ReplayProgress) {
    let latest_stream_seq = match subscriber.latest_stream_sequence().await {
        Ok(seq) => seq,
        Err(error) => {
            warn!(
                error = %error,
                "Cannot determine standby catch-up status while stream state is unavailable"
            );
            return;
        }
    };
    let replay_cursor_seq = subscriber.last_stream_sequence_processed().await;
    let changed = progress.update_catch_up_state(latest_stream_seq, replay_cursor_seq);

    if changed && progress.is_caught_up() {
        info!(
            commands_replayed = progress.commands_replayed(),
            replay_cursor_seq,
            latest_stream_seq,
            "Standby caught up with primary after replaying through stream tail"
        );
    } else if changed {
        info!(
            commands_replayed = progress.commands_replayed(),
            replay_cursor_seq,
            latest_stream_seq,
            stream_lag = progress.stream_lag().unwrap_or(0),
            "Standby replay fell behind stream tail"
        );
    }
}

/// Callback that the replay loop calls for each command.
/// The implementation should deserialize and call apply() on the standby engine.
pub trait ReplayHandler: Send + 'static {
    fn handle_command(
        &mut self,
        seq: u64,
        command_type: super::CommandType,
        command_version: u8,
        command_data: Vec<u8>,
    ) -> impl std::future::Future<Output = anyhow::Result<()>> + Send;
}

async fn apply_replay_message<H: ReplayHandler>(
    subscriber: &NatsReplaySubscriber,
    progress: &ReplayProgress,
    handler: &mut H,
    msg: ReplayMessage,
) -> anyhow::Result<()> {
    let ReplayMessage {
        stream_seq,
        seq,
        command_type,
        command_version,
        command_data,
        msg,
    } = msg;
    handler
        .handle_command(seq, command_type, command_version, command_data)
        .await
        .map_err(|error| anyhow::anyhow!("failed to replay command seq={}: {}", seq, error))?;
    msg.ack().await.map_err(|error| {
        anyhow::anyhow!("NATS ack failed for stream_seq={}: {}", stream_seq, error)
    })?;
    subscriber.mark_processed(stream_seq).await;
    progress.record_replayed(seq, stream_seq);
    Ok(())
}

/// Check if the shutdown signal is a real promote (Ok) vs sender dropped (Err).
/// Only returns true for an explicit promote signal.
fn is_promote_signal(result: Result<(), RecvError>) -> bool {
    match result {
        Ok(()) => true,
        Err(RecvError::Closed) => {
            warn!("Shutdown channel closed (sender dropped) — not a promote signal, ignoring");
            false
        }
        Err(RecvError::Lagged(_)) => {
            warn!("Shutdown channel lagged — treating as promote signal");
            true
        }
    }
}

/// Runs the standby replay loop: subscribes to NATS JetStream and
/// continuously replays engine commands to keep the standby engine
/// caught up with the primary.
///
/// Returns the handler ONLY when an explicit promote signal fires.
/// Ignores sender drops and stream disconnects — only POST /admin/promote
/// can cause this function to return.
pub async fn run_replay_loop<H: ReplayHandler>(
    config: &NatsConfig,
    start_from_seq: i64,
    mut handler: H,
    progress: ReplayProgress,
    mut shutdown: tokio::sync::broadcast::Receiver<()>,
) -> anyhow::Result<H> {
    let subscriber = NatsReplaySubscriber::connect(config, start_from_seq).await?;
    let mut stream = subscriber.subscribe().await?;
    progress.set_replay_cursor(start_from_seq);

    info!(start_from_seq, "Standby replay loop started");

    let mut last_log = std::time::Instant::now();
    let mut batch_count: u64 = 0;
    let mut shutdown_active = true;
    let mut catch_up_tick = tokio::time::interval(CATCH_UP_TICK_INTERVAL);
    catch_up_tick.set_missed_tick_behavior(tokio::time::MissedTickBehavior::Skip);

    loop {
        // If shutdown channel closed (sender dropped), only poll the stream.
        // This prevents biased select from spinning on Err(Closed).
        if !shutdown_active {
            tokio::select! {
                msg = stream.next() => {
                    match msg {
                        Some(Ok(msg)) => {
                            apply_replay_message(&subscriber, &progress, &mut handler, msg).await?;
                            batch_count += 1;
                        }
                        Some(Err(e)) => {
                            error!(error = %e, "NATS stream error");
                            tokio::time::sleep(std::time::Duration::from_secs(1)).await;
                        }
                        None => {
                            warn!("NATS stream ended, reconnecting in 1s");
                            tokio::time::sleep(std::time::Duration::from_secs(1)).await;
                            match subscriber.subscribe().await {
                                Ok(new_stream) => {
                                    stream = new_stream;
                                    info!("NATS stream reconnected");
                                }
                                Err(e) => {
                                    error!(error = %e, "Failed to reconnect NATS stream, retrying in 5s");
                                    tokio::time::sleep(std::time::Duration::from_secs(5)).await;
                                }
                            }
                        }
                    }
                }
                _ = catch_up_tick.tick() => {
                    refresh_catch_up_state(&subscriber, &progress).await;
                }
            }
        } else {
            tokio::select! {
                biased;

                result = shutdown.recv() => {
                    if is_promote_signal(result) {
                        info!(
                            commands_replayed = progress.commands_replayed(),
                            "Standby replay loop shutting down (promote signal received)"
                        );
                        break;
                    }
                    shutdown_active = false;
                }

                msg = stream.next() => {
                    match msg {
                        Some(Ok(msg)) => {
                            apply_replay_message(&subscriber, &progress, &mut handler, msg).await?;
                            batch_count += 1;
                        }
                        Some(Err(e)) => {
                            error!(error = %e, "NATS stream error");
                            tokio::time::sleep(std::time::Duration::from_secs(1)).await;
                        }
                        None => {
                            warn!("NATS stream ended, reconnecting in 1s");
                            tokio::time::sleep(std::time::Duration::from_secs(1)).await;
                            match subscriber.subscribe().await {
                                Ok(new_stream) => {
                                    stream = new_stream;
                                    info!("NATS stream reconnected");
                                }
                                Err(e) => {
                                    error!(error = %e, "Failed to reconnect NATS stream, retrying in 5s");
                                    tokio::time::sleep(std::time::Duration::from_secs(5)).await;
                                }
                            }
                        }
                    }
                }

                _ = catch_up_tick.tick() => {
                    refresh_catch_up_state(&subscriber, &progress).await;
                }
            }
        } // else shutdown_active

        if last_log.elapsed() >= std::time::Duration::from_secs(10) {
            info!(
                commands_replayed = progress.commands_replayed(),
                batch_since_last_log = batch_count,
                caught_up = progress.is_caught_up(),
                "Standby replay progress"
            );
            batch_count = 0;
            last_log = std::time::Instant::now();
        }
    }

    Ok(handler)
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_sender_drop_is_not_promote() {
        assert!(!is_promote_signal(Err(RecvError::Closed)));
    }

    #[test]
    fn test_explicit_send_is_promote() {
        assert!(is_promote_signal(Ok(())));
    }

    #[test]
    fn test_lagged_is_promote() {
        assert!(is_promote_signal(Err(RecvError::Lagged(1))));
    }

    #[test]
    fn test_caught_up_when_replay_cursor_reaches_stream_tail() {
        assert!(is_caught_up_to_stream_tail(10, 10));
    }

    #[test]
    fn test_caught_up_allows_empty_tail_at_start_cursor() {
        assert!(is_caught_up_to_stream_tail(0, 0));
    }

    #[test]
    fn test_caught_up_waits_for_stream_tail() {
        assert!(!is_caught_up_to_stream_tail(9, 10));
    }

    #[test]
    fn test_progress_can_move_from_caught_up_to_behind() {
        let progress = ReplayProgress::new();
        progress.update_catch_up_state(10, 10);
        assert!(progress.is_caught_up());
        assert_eq!(progress.stream_lag(), Some(0));

        progress.update_catch_up_state(12, 10);
        assert!(!progress.is_caught_up());
        assert_eq!(progress.stream_lag(), Some(2));
    }

    #[tokio::test]
    async fn test_replay_loop_ignores_sender_drop() {
        let (tx, rx) = tokio::sync::broadcast::channel::<()>(1);
        let _progress = ReplayProgress::new();

        // Drop the sender — this should NOT cause the replay loop to exit
        drop(tx);

        // The recv should return Err(Closed), which is_promote_signal rejects
        let result = rx.resubscribe().recv().await;
        assert!(!is_promote_signal(result));
    }

    #[tokio::test]
    async fn test_replay_loop_exits_on_explicit_promote() {
        let (tx, mut rx) = tokio::sync::broadcast::channel::<()>(1);
        let _progress = ReplayProgress::new();

        // Send explicit promote signal
        tx.send(()).unwrap();

        let result = rx.recv().await;
        assert!(is_promote_signal(result));
    }
}