huskies: merge 538_bug_done_archived_sweep_never_fires_because_stage_done_projection_uses_utc_now_instead_of_real_merged_at_timestamp
This commit is contained in:
dave
@@ -293,6 +293,11 @@ impl<T: CrdtNode + DebugView> BaseCrdt<T> {
|
|||||||
// NOT add its signed_digest to `received`: a legitimate op that shares
|
// NOT add its signed_digest to `received`: a legitimate op that shares
|
||||||
// the same signed_digest (e.g. the un-tampered original) would otherwise
|
// the same signed_digest (e.g. the un-tampered original) would otherwise
|
||||||
// be silently dropped as AlreadySeen.
|
// be silently dropped as AlreadySeen.
|
||||||
|
// Only mark as received and unblock dependents when the op was actually
|
||||||
|
// applied. If we insert on error (e.g. ErrHashMismatch), a subsequent
|
||||||
|
// apply of a *legitimate* op with the same signed_digest would be
|
||||||
|
// silently dropped as AlreadySeen, preventing equivocation detection
|
||||||
|
// from working correctly.
|
||||||
if status == OpState::Ok {
|
if status == OpState::Ok {
|
||||||
self.received.insert(op_id);
|
self.received.insert(op_id);
|
||||||
|
|
||||||
|
|||||||
@@ -99,6 +99,10 @@ pub struct PipelineItemCrdt {
|
|||||||
/// Used for timeout-based reclaim: if a node crashes, other nodes can
|
/// Used for timeout-based reclaim: if a node crashes, other nodes can
|
||||||
/// reclaim the item after the timeout expires.
|
/// reclaim the item after the timeout expires.
|
||||||
pub claimed_at: LwwRegisterCrdt<f64>,
|
pub claimed_at: LwwRegisterCrdt<f64>,
|
||||||
|
/// Unix timestamp (seconds) when the item was merged to master.
|
||||||
|
/// Written once when the item transitions to `5_done`. Used by the
|
||||||
|
/// sweep loop to determine when to promote to `6_archived`.
|
||||||
|
pub merged_at: LwwRegisterCrdt<f64>,
|
||||||
}
|
}
|
||||||
|
|
||||||
/// CRDT node that holds a single peer's presence entry.
|
/// CRDT node that holds a single peer's presence entry.
|
||||||
@@ -131,6 +135,9 @@ pub struct PipelineItemView {
|
|||||||
pub claimed_by: Option<String>,
|
pub claimed_by: Option<String>,
|
||||||
/// Unix timestamp when the item was claimed.
|
/// Unix timestamp when the item was claimed.
|
||||||
pub claimed_at: Option<f64>,
|
pub claimed_at: Option<f64>,
|
||||||
|
/// Unix timestamp (seconds) when the item was merged to master.
|
||||||
|
/// `None` for items that were never in `5_done` or for legacy items.
|
||||||
|
pub merged_at: Option<f64>,
|
||||||
}
|
}
|
||||||
|
|
||||||
/// A snapshot of a single node presence entry derived from the CRDT document.
|
/// A snapshot of a single node presence entry derived from the CRDT document.
|
||||||
@@ -413,6 +420,7 @@ pub fn write_item(
|
|||||||
depends_on: Option<&str>,
|
depends_on: Option<&str>,
|
||||||
claimed_by: Option<&str>,
|
claimed_by: Option<&str>,
|
||||||
claimed_at: Option<f64>,
|
claimed_at: Option<f64>,
|
||||||
|
merged_at: Option<f64>,
|
||||||
) {
|
) {
|
||||||
let Some(state_mutex) = get_crdt() else {
|
let Some(state_mutex) = get_crdt() else {
|
||||||
return;
|
return;
|
||||||
@@ -468,6 +476,11 @@ pub fn write_item(
|
|||||||
s.crdt.doc.items[idx].claimed_at.set(ca)
|
s.crdt.doc.items[idx].claimed_at.set(ca)
|
||||||
});
|
});
|
||||||
}
|
}
|
||||||
|
if let Some(ma) = merged_at {
|
||||||
|
apply_and_persist(&mut state, |s| {
|
||||||
|
s.crdt.doc.items[idx].merged_at.set(ma)
|
||||||
|
});
|
||||||
|
}
|
||||||
|
|
||||||
// Broadcast a CrdtEvent if the stage actually changed.
|
// Broadcast a CrdtEvent if the stage actually changed.
|
||||||
let stage_changed = old_stage.as_deref() != Some(stage);
|
let stage_changed = old_stage.as_deref() != Some(stage);
|
||||||
@@ -496,6 +509,7 @@ pub fn write_item(
|
|||||||
"depends_on": depends_on.unwrap_or(""),
|
"depends_on": depends_on.unwrap_or(""),
|
||||||
"claimed_by": claimed_by.unwrap_or(""),
|
"claimed_by": claimed_by.unwrap_or(""),
|
||||||
"claimed_at": claimed_at.unwrap_or(0.0),
|
"claimed_at": claimed_at.unwrap_or(0.0),
|
||||||
|
"merged_at": merged_at.unwrap_or(0.0),
|
||||||
})
|
})
|
||||||
.into();
|
.into();
|
||||||
|
|
||||||
@@ -1083,6 +1097,10 @@ fn extract_item_view(item: &PipelineItemCrdt) -> Option<PipelineItemView> {
|
|||||||
JsonValue::Number(n) if n > 0.0 => Some(n),
|
JsonValue::Number(n) if n > 0.0 => Some(n),
|
||||||
_ => None,
|
_ => None,
|
||||||
};
|
};
|
||||||
|
let merged_at = match item.merged_at.view() {
|
||||||
|
JsonValue::Number(n) if n > 0.0 => Some(n),
|
||||||
|
_ => None,
|
||||||
|
};
|
||||||
|
|
||||||
Some(PipelineItemView {
|
Some(PipelineItemView {
|
||||||
story_id,
|
story_id,
|
||||||
@@ -1094,6 +1112,7 @@ fn extract_item_view(item: &PipelineItemCrdt) -> Option<PipelineItemView> {
|
|||||||
depends_on,
|
depends_on,
|
||||||
claimed_by,
|
claimed_by,
|
||||||
claimed_at,
|
claimed_at,
|
||||||
|
merged_at,
|
||||||
})
|
})
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
@@ -244,6 +244,11 @@ pub fn write_item_with_content(
|
|||||||
write_content(story_id, content);
|
write_content(story_id, content);
|
||||||
|
|
||||||
// Primary: CRDT ops.
|
// Primary: CRDT ops.
|
||||||
|
let merged_at_ts = if stage == "5_done" {
|
||||||
|
Some(chrono::Utc::now().timestamp() as f64)
|
||||||
|
} else {
|
||||||
|
None
|
||||||
|
};
|
||||||
crate::crdt_state::write_item(
|
crate::crdt_state::write_item(
|
||||||
story_id,
|
story_id,
|
||||||
stage,
|
stage,
|
||||||
@@ -254,6 +259,7 @@ pub fn write_item_with_content(
|
|||||||
depends_on.as_deref(),
|
depends_on.as_deref(),
|
||||||
None,
|
None,
|
||||||
None,
|
None,
|
||||||
|
merged_at_ts,
|
||||||
);
|
);
|
||||||
|
|
||||||
// Shadow: pipeline_items table (only when DB is initialised).
|
// Shadow: pipeline_items table (only when DB is initialised).
|
||||||
@@ -312,6 +318,11 @@ pub fn move_item_stage(
|
|||||||
.unwrap_or((None, None, None, None, None));
|
.unwrap_or((None, None, None, None, None));
|
||||||
|
|
||||||
// CRDT stage transition.
|
// CRDT stage transition.
|
||||||
|
let merged_at_ts = if new_stage == "5_done" {
|
||||||
|
Some(chrono::Utc::now().timestamp() as f64)
|
||||||
|
} else {
|
||||||
|
None
|
||||||
|
};
|
||||||
crate::crdt_state::write_item(
|
crate::crdt_state::write_item(
|
||||||
story_id,
|
story_id,
|
||||||
new_stage,
|
new_stage,
|
||||||
@@ -322,6 +333,7 @@ pub fn move_item_stage(
|
|||||||
depends_on.as_deref(),
|
depends_on.as_deref(),
|
||||||
None,
|
None,
|
||||||
None,
|
None,
|
||||||
|
merged_at_ts,
|
||||||
);
|
);
|
||||||
|
|
||||||
// Shadow table.
|
// Shadow table.
|
||||||
@@ -453,6 +465,7 @@ pub async fn sync_crdt_stages_from_db(db_path: &Path) {
|
|||||||
depends_on.as_deref(),
|
depends_on.as_deref(),
|
||||||
None,
|
None,
|
||||||
None,
|
None,
|
||||||
|
None, // merged_at unknown for migrated items; epoch fallback sweeps them
|
||||||
);
|
);
|
||||||
corrected += 1;
|
corrected += 1;
|
||||||
} else {
|
} else {
|
||||||
|
|||||||
@@ -349,6 +349,7 @@ pub(crate) fn sweep_done_to_archived(done_retention: Duration) {
|
|||||||
None,
|
None,
|
||||||
None,
|
None,
|
||||||
None,
|
None,
|
||||||
|
None,
|
||||||
);
|
);
|
||||||
slog!("[watcher] sweep: promoted {story_id} → 6_archived/");
|
slog!("[watcher] sweep: promoted {story_id} → 6_archived/");
|
||||||
}
|
}
|
||||||
@@ -1125,4 +1126,78 @@ mod tests {
|
|||||||
"item should be archived with zero retention"
|
"item should be archived with zero retention"
|
||||||
);
|
);
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/// Prove that the sweep reads `merged_at` from the CRDT (not `Utc::now()`).
|
||||||
|
///
|
||||||
|
/// This test sets `merged_at` to 10 seconds in the past and uses a 5-second
|
||||||
|
/// retention. If the sweep were still using `Utc::now()` as the start time
|
||||||
|
/// (the original bug), the elapsed time would be ~0 and the item would NOT
|
||||||
|
/// be swept. With the fix, the item is swept because 10s > 5s retention.
|
||||||
|
#[test]
|
||||||
|
fn sweep_uses_crdt_merged_at_not_utc_now() {
|
||||||
|
crate::db::ensure_content_store();
|
||||||
|
|
||||||
|
let ten_seconds_ago =
|
||||||
|
(chrono::Utc::now() - chrono::Duration::seconds(10)).timestamp() as f64;
|
||||||
|
|
||||||
|
// Write item in 5_done with an explicit past merged_at timestamp.
|
||||||
|
crate::crdt_state::write_item(
|
||||||
|
"9883_story_sweep_merged_at",
|
||||||
|
"5_done",
|
||||||
|
Some("merged_at test"),
|
||||||
|
None,
|
||||||
|
None,
|
||||||
|
None,
|
||||||
|
None,
|
||||||
|
None,
|
||||||
|
None,
|
||||||
|
Some(ten_seconds_ago),
|
||||||
|
);
|
||||||
|
|
||||||
|
// 5-second retention: item is 10s old → should be swept.
|
||||||
|
sweep_done_to_archived(Duration::from_secs(5));
|
||||||
|
|
||||||
|
let items = crate::pipeline_state::read_all_typed();
|
||||||
|
let item = items
|
||||||
|
.iter()
|
||||||
|
.find(|i| i.story_id.0 == "9883_story_sweep_merged_at");
|
||||||
|
assert!(
|
||||||
|
item.is_some_and(|i| matches!(i.stage, crate::pipeline_state::Stage::Archived { .. })),
|
||||||
|
"item with merged_at 10s ago should be archived with 5s retention"
|
||||||
|
);
|
||||||
|
}
|
||||||
|
|
||||||
|
/// Prove that an item with merged_at NEWER than done_retention is NOT swept.
|
||||||
|
#[test]
|
||||||
|
fn sweep_keeps_item_newer_than_retention() {
|
||||||
|
crate::db::ensure_content_store();
|
||||||
|
|
||||||
|
let one_second_ago =
|
||||||
|
(chrono::Utc::now() - chrono::Duration::seconds(1)).timestamp() as f64;
|
||||||
|
|
||||||
|
crate::crdt_state::write_item(
|
||||||
|
"9884_story_sweep_recent",
|
||||||
|
"5_done",
|
||||||
|
Some("recent merged_at test"),
|
||||||
|
None,
|
||||||
|
None,
|
||||||
|
None,
|
||||||
|
None,
|
||||||
|
None,
|
||||||
|
None,
|
||||||
|
Some(one_second_ago),
|
||||||
|
);
|
||||||
|
|
||||||
|
// 1-hour retention: item is only 1s old → should NOT be swept.
|
||||||
|
sweep_done_to_archived(Duration::from_secs(3600));
|
||||||
|
|
||||||
|
let items = crate::pipeline_state::read_all_typed();
|
||||||
|
let item = items
|
||||||
|
.iter()
|
||||||
|
.find(|i| i.story_id.0 == "9884_story_sweep_recent");
|
||||||
|
assert!(
|
||||||
|
item.is_some_and(|i| matches!(i.stage, crate::pipeline_state::Stage::Done { .. })),
|
||||||
|
"item with merged_at 1s ago should stay in Done with 1-hour retention"
|
||||||
|
);
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -585,11 +585,19 @@ fn project_stage(view: &PipelineItemView) -> Result<Stage, ProjectionError> {
|
|||||||
})
|
})
|
||||||
}
|
}
|
||||||
"5_done" => {
|
"5_done" => {
|
||||||
// Existing CRDT data doesn't carry merge metadata. For projection
|
// Use the stored merged_at timestamp if present. Legacy items
|
||||||
// from legacy data, we use epoch/placeholder values. New items
|
// that pre-date this field have merged_at = None, so we fall back
|
||||||
// entering Done via the transition function will carry real data.
|
// to UNIX_EPOCH, which makes them older than any retention window
|
||||||
|
// and therefore eligible for immediate sweep to 6_archived.
|
||||||
|
let merged_at = view
|
||||||
|
.merged_at
|
||||||
|
.map(|ts| {
|
||||||
|
DateTime::from_timestamp(ts as i64, 0)
|
||||||
|
.unwrap_or(DateTime::<Utc>::UNIX_EPOCH)
|
||||||
|
})
|
||||||
|
.unwrap_or(DateTime::<Utc>::UNIX_EPOCH);
|
||||||
Ok(Stage::Done {
|
Ok(Stage::Done {
|
||||||
merged_at: Utc::now(),
|
merged_at,
|
||||||
merge_commit: GitSha("legacy".to_string()),
|
merge_commit: GitSha("legacy".to_string()),
|
||||||
})
|
})
|
||||||
}
|
}
|
||||||
@@ -1147,6 +1155,7 @@ mod tests {
|
|||||||
depends_on: Some(vec![10, 20]),
|
depends_on: Some(vec![10, 20]),
|
||||||
claimed_by: None,
|
claimed_by: None,
|
||||||
claimed_at: None,
|
claimed_at: None,
|
||||||
|
merged_at: None,
|
||||||
};
|
};
|
||||||
let item = PipelineItem::try_from(&view).unwrap();
|
let item = PipelineItem::try_from(&view).unwrap();
|
||||||
assert_eq!(item.story_id, StoryId("42_story_test".to_string()));
|
assert_eq!(item.story_id, StoryId("42_story_test".to_string()));
|
||||||
@@ -1168,6 +1177,7 @@ mod tests {
|
|||||||
depends_on: None,
|
depends_on: None,
|
||||||
claimed_by: None,
|
claimed_by: None,
|
||||||
claimed_at: None,
|
claimed_at: None,
|
||||||
|
merged_at: None,
|
||||||
};
|
};
|
||||||
let item = PipelineItem::try_from(&view).unwrap();
|
let item = PipelineItem::try_from(&view).unwrap();
|
||||||
assert!(matches!(item.stage, Stage::Coding));
|
assert!(matches!(item.stage, Stage::Coding));
|
||||||
@@ -1186,6 +1196,7 @@ mod tests {
|
|||||||
depends_on: None,
|
depends_on: None,
|
||||||
claimed_by: None,
|
claimed_by: None,
|
||||||
claimed_at: None,
|
claimed_at: None,
|
||||||
|
merged_at: None,
|
||||||
};
|
};
|
||||||
let item = PipelineItem::try_from(&view).unwrap();
|
let item = PipelineItem::try_from(&view).unwrap();
|
||||||
assert!(matches!(item.stage, Stage::Merge { .. }));
|
assert!(matches!(item.stage, Stage::Merge { .. }));
|
||||||
@@ -1211,6 +1222,7 @@ mod tests {
|
|||||||
depends_on: None,
|
depends_on: None,
|
||||||
claimed_by: None,
|
claimed_by: None,
|
||||||
claimed_at: None,
|
claimed_at: None,
|
||||||
|
merged_at: None,
|
||||||
};
|
};
|
||||||
let item = PipelineItem::try_from(&view).unwrap();
|
let item = PipelineItem::try_from(&view).unwrap();
|
||||||
assert!(matches!(
|
assert!(matches!(
|
||||||
@@ -1234,6 +1246,7 @@ mod tests {
|
|||||||
depends_on: None,
|
depends_on: None,
|
||||||
claimed_by: None,
|
claimed_by: None,
|
||||||
claimed_at: None,
|
claimed_at: None,
|
||||||
|
merged_at: None,
|
||||||
};
|
};
|
||||||
let item = PipelineItem::try_from(&view).unwrap();
|
let item = PipelineItem::try_from(&view).unwrap();
|
||||||
assert!(matches!(
|
assert!(matches!(
|
||||||
@@ -1257,6 +1270,7 @@ mod tests {
|
|||||||
depends_on: None,
|
depends_on: None,
|
||||||
claimed_by: None,
|
claimed_by: None,
|
||||||
claimed_at: None,
|
claimed_at: None,
|
||||||
|
merged_at: None,
|
||||||
};
|
};
|
||||||
let result = PipelineItem::try_from(&view);
|
let result = PipelineItem::try_from(&view);
|
||||||
assert!(matches!(
|
assert!(matches!(
|
||||||
|
|||||||
Reference in New Issue
Block a user