Skip to content

feat: custom priority validator #3

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Draft
basgys wants to merge 1 commit into
base: main
Choose a base branch
from
Draft

feat: custom priority validator #3

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
64 changes: 53 additions & 11 deletions adaptive.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -42,15 +42,21 @@ type AdaptiveThrottle struct {
k float64
minPerWindow float64

requests []windowedCounter
accepts []windowedCounter
priorities int
requests []windowedCounter
accepts []windowedCounter
validate func(p Priority, priorities int) (Priority, error)
}

// NewAdaptiveThrottle returns an AdaptiveThrottle.
//
// priorities is the number of priorities that the throttle will accept. Giving a priority outside
// of `[0, priorities)` will panic.
func NewAdaptiveThrottle(priorities int, options ...AdaptiveThrottleOption) *AdaptiveThrottle {
if priorities <= 0 {
panic("bulwark: priorities must be greater than 0")
Copy link

@ggarri ggarri Dec 20, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

No a big fan of panics. I understand the goal is to make this change backward compatible but my concern isin certain cases where NewAdaptiveThrottle() is called depending on application states (no the case atm anywhere though) it might lead to unexpected service disruptions

}

opts := adaptiveThrottleOptions{
d: time.Minute,
k: K,
Expand All @@ -70,9 +76,11 @@ func NewAdaptiveThrottle(priorities int, options ...AdaptiveThrottleOption) *Ada

return &AdaptiveThrottle{
k: opts.k,
priorities: priorities,
requests: requests,
accepts: accepts,
minPerWindow: opts.minRate * opts.d.Seconds(),
validate: OnInvalidPriorityAdjust,
}
}

Expand All @@ -93,7 +101,11 @@ func NewAdaptiveThrottle(priorities int, options ...AdaptiveThrottleOption) *Ada
func (t *AdaptiveThrottle) Throttle(
ctx context.Context, defaultPriority Priority, fn throttledFn, fallbackFn ...fallbackFn,
) error {
priority := PriorityFromContext(ctx, defaultPriority)
priority, err := t.validate(PriorityFromContext(ctx, defaultPriority), t.priorities)
if err != nil {
return err
}

now := Now()
rejectionProbability := t.rejectionProbability(priority, now)
if rand.Float64() < rejectionProbability {
Expand All @@ -112,7 +124,7 @@ func (t *AdaptiveThrottle) Throttle(
return ClientSideRejectionError
}

err := fn(ctx)
err = fn(ctx)

now = Now()
switch {
Expand Down Expand Up @@ -191,6 +203,7 @@ type adaptiveThrottleOptions struct {
minRate float64
d time.Duration
isErrorAccepted func(err error) bool
validate func(p Priority, priorities int) (Priority, error)
}

// WithAdaptiveThrottleRatio sets the ratio of the measured success rate and the rate that the throttle
Expand Down Expand Up @@ -234,14 +247,38 @@ func WithAcceptedErrors(fn func(err error) bool) AdaptiveThrottleOption {
}}
}

// WithPriorityValidator sets the function that validates input priority values.
//
// The function should return the validated priority value. If the priority is
// invalid, the function should return an error.
func WithPriorityValidator(fn func(p Priority, priorities int) (Priority, error)) AdaptiveThrottleOption {
return AdaptiveThrottleOption{func(opts *adaptiveThrottleOptions) {
opts.validate = func(p Priority, priorities int) (Priority, error) {
p, err := fn(p, priorities)
if err != nil {
return p, err
}

// This is a safeguard in case the validator function does not return a
Copy link

@ggarri ggarri Dec 20, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

it is more informative BUT it halts the entity application regular execution flow. As I see, it is up to the caller to inform "loudly" on errors which are consider critical for the regular execution of its business logic. Making a decision within a library which lacks on the context of its usage, can become highly disturbing for its usage

Copy link
Contributor Author

@basgys basgys Dec 20, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I agree. Instead of returning a panic, I will return an error. It seems like changing the default behaviour from a panic to returning an error is the best option to let the caller know that the priority is incorrect in a more graceful way.

// valid priority. It is better to panic with this functions, because
// the message is more informative.
return OnInvalidPriorityPanic(p, priorities)
}
}}
}

func Throttle[T any](
ctx context.Context,
at *AdaptiveThrottle,
defaultPriority Priority,
throttledFn throttledArgsFn[T],
fallbackFn ...fallbackArgsFn[T],
) (T, error) {
priority := PriorityFromContext(ctx, defaultPriority)
) (res T, err error) {
priority, err := at.validate(PriorityFromContext(ctx, defaultPriority), at.priorities)
if err != nil {
return res, err
}

now := Now()
rejectionProbability := at.rejectionProbability(priority, now)
if rand.Float64() < rejectionProbability {
Expand All @@ -261,7 +298,7 @@ func Throttle[T any](
return zero, ClientSideRejectionError
}

t, err := throttledFn(ctx)
res, err = throttledFn(ctx)

now = Now()
switch {
Expand All @@ -282,7 +319,7 @@ func Throttle[T any](
return fallbackFn[0](ctx, err, false)
}

return t, err
return res, err
}

// WithAdaptiveThrottle is used to send a request to a backend using the given AdaptiveThrottle for
Expand All @@ -298,7 +335,12 @@ func WithAdaptiveThrottle[T any](
at *AdaptiveThrottle,
priority Priority,
throttledFn func() (T, error),
) (T, error) {
) (res T, err error) {
priority, err = at.validate(priority, at.priorities)
if err != nil {
return res, err
}

now := Now()
rejectionProbability := at.rejectionProbability(priority, now)
if rand.Float64() < rejectionProbability {
Expand All @@ -314,7 +356,7 @@ func WithAdaptiveThrottle[T any](
return zero, ClientSideRejectionError
}

t, err := throttledFn()
res, err = throttledFn()

now = Now()
switch {
Expand All @@ -331,7 +373,7 @@ func WithAdaptiveThrottle[T any](
at.accept(priority, now)
}

return t, err
return res, err
}

// RejectedError wraps an error to indicate that the error should be considered
Expand Down
50 changes: 50 additions & 0 deletions validator.go
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,50 @@
package bulwark

import (
"fmt"
"log/slog"

"github.com/deixis/faults"
)

var (
// OnInvalidPriorityPanic panics when a priority is out of range.
// A priority is out of range when it is less than 0 or greater than or equal
// to priorities-1.
OnInvalidPriorityPanic = func(p Priority, priorities int) (Priority, error) {
if p < 0 || int(p) >= priorities-1 {
panic(fmt.Sprintf("bulwark: priority must be in the range [0, %d), but got %d", priorities, p))
}

return p, nil
}

// OnInvalidPriorityAdjust adjusts the priority to the nearest valid value.
// A negative priority will be set to the lowest priority.
// A priority is out of range when it is less than 0 or greater than or equal
// to priorities-1.
OnInvalidPriorityAdjust = func(p Priority, priorities int) (Priority, error) {
if p >= 0 && int(p) < priorities {
return p, nil
}
slog.Warn("bulwark: priority is out of range", "max", priorities-1, "priority", p)

// Receiving an invalid value is likely due to an input that was not properly
// validated, so this prevents abuse of the system.
return Priority(priorities - 1), nil
}

// OnInvalidPriorityError returns an error when a priority is out of range.
// A priority is out of range when it is less than 0 or greater than or equal
// to priorities-1.
OnInvalidPriorityError = func(p Priority, priorities int) (Priority, error) {
if p < 0 || int(p) >= priorities-1 {
return p, faults.Bad(&faults.FieldViolation{
Field: "priority",
Description: fmt.Sprintf("priority must be in the range [0, %d), but got %d", priorities, p),
})
}

return p, nil
}
)