| `concurrent_adapters` | max number of adapters to run at the same time |

    os::unix::process::ExitStatusExt,

    process::{Command, ExitStatus},

    timeoutcmd::{RealtimeLines, TimeoutCommand, TimeoutError},

        let stdout = child.stdout();

        let child = match child.spawn(cmd) {

            Ok(child) => child,

            Err(TimeoutError::Spawn(_, err)) => {

                Err(AdapterError::SpawnAdapter(self.bin.clone(), err))?

            }

            Err(err) => Err(AdapterError::TimeoutCommand(err))?,

        };

        let result = if outcome.has_error() {

            child.kill()

            child.wait()

        };

        match result {

            Ok(finished) => {

                let stderr = finished.stderr();

                self.log_stderr(stderr);

                let exit = finished.exit_code();

                logger::adapter_result(exit);

                if !exit.success() {

                    if let Some(signal) = exit.signal() {

                        outcome.set_error(AdapterError::Signal(signal));

                    } else {

                        outcome.set_error(AdapterError::Failed(exit));

                    }

                }

            }

            Err(TimeoutError::TimedOut) => {

                logger::adapter_did_not_exit_voluntarily();

                outcome.set_error(AdapterError::FailedNotExited);

            }

            Err(err) => {

                logger::adapter_did_not_exit(err);

                outcome.set_error(AdapterError::Signal(9));

            }

        mut stdout: RealtimeLines,

    fn log_stderr(&self, stderr: &[u8]) {

        for line in String::from_utf8_lossy(stderr).lines() {

            logger::adapter_stderr_line(line);

    #[error("child process failed with wait status {0:?}")]

    Failed(ExitStatus),

    /// Child process failed: didn't exit.

    #[error("child process failed without exiting")]

    FailedNotExited,

    #[error("child process terminated by signal {0}")]

    Signal(i32),

        eprintln!("Adapter::run result: {x:#?}");

        if let Err(AdapterError::Failed(x)) = x {

            use std::os::unix::process::ExitStatusExt;

            eprintln!("Adapter::run result: signal={:?}", x.signal());

        }

        assert!(matches!(x, Err(AdapterError::Signal(9))));

        eprintln!("result from run: {x:#?}");

            .concurrent_adapters(config.concurrent_adapters())

            .concurrent_adapters(config.concurrent_adapters())

        let mut stdout = to.stdout();

        let tor = if let Some(secs) = self.kill_after {

            sleep(Duration::from_secs(secs));

            running.kill()?

        } else {

            if !self.fill_buffers {

                while let Some(line) = stdout.line() {

                    stdout_bytes += line.as_bytes().len();

                    if self.verbose {

                        println!("stdout: {line:?}");

                    }

                println!("finished reading stdout");

            running.wait()?

        };

        let stderr = tor.stderr();

        for line in stderr {

            if self.verbose {

                println!("stderr: {line:?}");

        println!("finished reading stderr");

        println!("exit: {}", tor.exit_code());

    pub fn max_run_time(&self) -> Duration {

        self.max_run_time

    }

    pub fn db(&self) -> &Db {

        &self.db

    }

        &self,

        let broker = broker(&db)?;

        let broker = broker(&db)?;

#[derive(Debug, Default, Clone, Serialize, Deserialize)]

struct NonzeroCount {

    count: Option<usize>,

}

impl NonzeroCount {

    fn count(&self) -> usize {

        match self.count {

            None | Some(1) => 1,

            Some(n) => n,

        }

    }

}

    #[serde(default)]

    concurrent_adapters: NonzeroCount,

    pub fn concurrent_adapters(&self) -> usize {

        self.concurrent_adapters.count()

    }

pub mod pull_queue;

use radicle::{identity::RepoId, node::Event, patch::PatchId};

    timeoutcmd::TimeoutError,

pub fn queueproc_start(concurrent_adapters: usize) {

        concurrent_adapters,

pub fn queueproc_start_result_receiver() {

    info!(

        msg_id = ?Id::QueueProcStart,

        kind = %Kind::Startup,

        "start thread to process results of CI runs"

    );

}

pub fn queueproc_end_result_receiver() {

    info!(

        msg_id = ?Id::QueueProcStart,

        kind = %Kind::Startup,

        "end thread to process results of CI runs"

    );

}

        "running adapter on event picked from queue"

pub fn queueproc_remove_event(event: &QueuedCiEvent) {

        ?event,

pub fn queueproc_action_run(event: &CiEvent) {

        ?event,

    debug!(

pub fn adapter_result(exit: ExitStatus) {

        ?exit,

pub fn adapter_did_not_exit(error: TimeoutError) {

        ?error,

#[derive(Clone)]

use std::sync::{Arc, Condvar, Mutex};

/// A pull queue.

///

/// A producer produces an item when a consumer is ready for it, not

/// before. There can be any number of consumers.

///

/// This type has interior mutability. Each thread should own

/// their clone of this, and all clones refer to the same queue.

///

/// # Example

/// ```

/// # use std::thread::spawn;

/// # use radicle_ci_broker::pull_queue::PullQueue;

/// let mut queue = PullQueue::new();

/// let mut clone = queue.clone();

/// let producer = spawn(move || {

///     for i in 0..10 {

///         queue.push(i);

///     }

/// });

/// let consumer = spawn(move ||

///     while let Ok(Some(i)) = clone.pop() {

///         println!("{i}");

///     }

/// );

/// producer.join().unwrap();

/// consumer.join().unwrap();

/// ```

pub struct PullQueue<T> {

    q: Arc<(Mutex<Unlocked<T>>, Condvar)>,

}

impl<T> Clone for PullQueue<T> {

    fn clone(&self) -> Self {

        Self { q: self.q.clone() }

    }

}

impl<T: Clone> Default for PullQueue<T> {

    fn default() -> Self {

        Self::new()

    }

}

impl<T> Drop for PullQueue<T> {

    fn drop(&mut self) {

        let (mutex, var) = &*self.q;

        let mut locked = mutex

            .lock()

            .map_err(|_| PullQueueError::Mutex)

            .expect("FATAL: mutex was poisoned");

        locked.end();

        var.notify_all();

    }

}

impl<T: Clone> PullQueue<T> {

    /// Create a new [`PullQueue`].

    pub fn new() -> Self {

        Self {

            q: Arc::new((Mutex::new(Unlocked::new()), Condvar::new())),

        }

    }

    /// Push a new item to the queue. This blocks until there is a

    /// consumer who wants the item.

    pub fn push(&mut self, i: T) -> Result<(), PullQueueError> {

        let (mutex, var) = &*self.q;

        let mut locked = mutex.lock().map_err(|_| PullQueueError::Mutex)?;

        loop {

            if locked.try_set(i.clone()) {

                var.notify_all();

                break;

            } else {

                // Wait for the previous item to be consumed.

                locked = var.wait(locked).map_err(|_| PullQueueError::Mutex)?;

            }

        }

        Ok(())

    }

    /// Consume an item, if one is available. This will block until an

    /// item is available or not more items will ever be produced.

    /// Return `None` when no more items will ever be produced.

    pub fn pop(&mut self) -> Result<Option<T>, PullQueueError> {

        let (mutex, var) = &*self.q;

        let mut locked = mutex.lock().map_err(|_| PullQueueError::Mutex)?;

        loop {

            if locked.is_ended() {

                // Queue is empty and won't get anything more. We're

                // done.

                var.notify_all();

                return Ok(None);

            } else if let Some(i) = locked.get() {

                // There was something in the queue, return it.

                var.notify_all();

                return Ok(Some(i));

            } else {

                locked = var.wait(locked).map_err(|_| PullQueueError::Mutex)?;

            }

        }

    }

}

struct Unlocked<T> {

    ended: bool,

    item: Option<T>,

}

impl<T> Unlocked<T> {

    fn new() -> Self {

        Self {

            ended: false,

            item: None,

        }

    }

    fn end(&mut self) {

        self.ended = true;

    }

    fn is_ended(&self) -> bool {

        self.ended && self.item.is_none()

    }

    fn try_set(&mut self, item: T) -> bool {

        if self.item.is_none() {

            self.item = Some(item);

            true

        } else {

            false

        }

    }

    fn get(&mut self) -> Option<T> {

        self.item.take()

    }

}

/// All possible errors from [`PullQueue`].

#[derive(Debug, thiserror::Error)]

pub enum PullQueueError {

    /// Mutex locking failed.

    #[error("failed to lock mutex for pull queue")]

    Mutex,

}

    collections::HashSet,

    sync::{

        mpsc::{sync_channel, Receiver, RecvTimeoutError, SyncSender},

        Arc, Mutex,

    },

use radicle::{identity::RepoId, Profile};

    db::{Db, DbError, QueuedCiEvent},

    pull_queue::{PullQueue, PullQueueError},

    concurrent_adapters: Option<usize>,

        let profile = Profile::load().map_err(QueueError::Profile)?;

        let broker = self.broker.ok_or(QueueError::Missing("broker"))?;

        let filters = self.filters.ok_or(QueueError::Missing("filters"))?;

        let triggers = self.triggers.ok_or(QueueError::Missing("triggers"))?;

        let adapters = self.adapters.ok_or(QueueError::Missing("adapters"))?;

        let run_tx = self.run_tx.ok_or(QueueError::Missing("run_tx"))?;

        let concurrent_adapters = self

            .concurrent_adapters

            .ok_or(QueueError::Missing("concurrent_adapters"))?;

        let (procssed_tx, processed_rx) = sync_channel(1);

        let picked_events = PullQueue::new();

        let mut descs = vec![];

        for _ in 0..concurrent_adapters {

            let broker = Broker::new(broker.db().filename(), broker.max_run_time())

                .map_err(QueueError::NewBroker)?;

            let event_procssor = EventProcessor::new(

                profile.clone(),

                filters.clone(),

                triggers.clone(),

                adapters.clone(),

                broker,

                run_tx.clone(),

                procssed_tx.clone(),

            );

            descs.push(ProcessorDescription::new(

                event_procssor,

                picked_events.clone(),

            ));

        }

            processors: descs,

            processed_rx: Some(processed_rx),

            picked_events: Some(picked_events),

            current: CurrentlyPicked::default(),

    pub fn concurrent_adapters(mut self, n: usize) -> Self {

        self.concurrent_adapters = Some(n);

        self

    }

    picked_events: Option<PullQueue<Picked>>,

    processors: Vec<ProcessorDescription>,

    processed_rx: Option<Receiver<RepoId>>,

    current: CurrentlyPicked,

            logger::queueproc_start(self.processors.len());

            // Spawn a thread to process results from running adapters.

            #[allow(clippy::unwrap_used)]

            let rx = self.processed_rx.take().unwrap();

            let mut current = self.current.clone();

            let results = spawn(move || {

                logger::queueproc_start_result_receiver();

                while let Ok(repoid) = rx.recv() {

                    current.remove(repoid);

                    logger::queueproc_end_result_receiver();

                }

            });

            // Pick events from queue, send to worker threads that run

            // adapters. Results are processed by thread above.

            // Wait for worker threads to terminate. This closes all

            // sender ends for results channel.

            for proc in self.processors {

                proc.join().ok();

            }

            // Wait for results processing thread to terminate.

            results.join().ok();

            Ok(())

    #[allow(clippy::unwrap_used)]

        let mut picked_events = self.picked_events.take().unwrap();

            // Process all events currently in the event queue, if a

            // filter allows it.

            loop {

                if let Some(qe) = self.pick_event()? {

                    let picked = Picked::new(qe.clone());

                    self.current.insert(picked.qe.event().repository());

                    picked_events.push(picked).map_err(QueueError::PullQueue)?;

                    // We always drop the picked event as soon as it has

                    // been pushed to a processing thread, so that if

                    // anything goes wrong, we're less likely try to

                    // process the same event again. It's better for the

                    // failure to be logged and let the humans deal with

                    // whatever complicated failure situation is

                    // happening.

                    self.drop_event(&qe)?;

                } else if self.current.is_empty() {

                    break;

            // Wait for a notification of new events in the queue.

            // This prevents the loop from being a busy loop.

        // If we can access the set of repositories for which CI is

        // currently running, remove those repositories from the list.

        let ids = self.current.list();

        queue = queue

            .iter()

            .filter(|qe| {

                if let Some(repoid) = qe.event().repository() {

                    !ids.contains(repoid)

                } else {

                    true

                }

            })

            .cloned()

            .collect();

    fn drop_event(&mut self, qe: &QueuedCiEvent) -> Result<(), QueueError> {

        logger::queueproc_remove_event(qe);

        self.db

            .remove_queued_ci_event(qe.id())

            .map_err(QueueError::db)?;

        Ok(())

    }

}

#[derive(Default, Clone)]

struct CurrentlyPicked {

    set: Arc<Mutex<HashSet<RepoId>>>,

}

impl CurrentlyPicked {

    fn insert(&mut self, repoid: Option<&RepoId>) {

        if let Some(repoid) = repoid {

            if let Ok(mut set) = self.set.lock() {

                set.insert(*repoid);

            }

        }

    }

    fn remove(&mut self, repoid: RepoId) {

        if let Ok(mut set) = self.set.lock() {

            set.remove(&repoid);

        }

    }

    fn list(&self) -> Vec<RepoId> {

        if let Ok(set) = self.set.lock() {

            set.iter().copied().collect()

        } else {

            vec![]

        }

    }

    fn is_empty(&self) -> bool {

        if let Ok(set) = self.set.lock() {

            set.is_empty()

        } else {

            false

        }

    }

}

struct ProcessorDescription {

    processing_thread: JoinHandle<Result<bool, QueueError>>,

}

impl ProcessorDescription {

    fn new(processor: EventProcessor, mut picked_events: PullQueue<Picked>) -> Self {

        Self {

            processing_thread: spawn(move || {

                while let Ok(Some(picked)) = picked_events.pop() {

                    processor.process_picked_event(picked);

                }

                Ok(false)

            }),

        }

    }

    fn join(self) -> Result<bool, QueueError> {

        self.processing_thread

            .join()

            .map_err(|_| QueueError::JoinAdapterThread)?

    }

}

struct EventProcessor {

    profile: Profile,

    filters: Vec<EventFilter>,

    triggers: Vec<Trigger>,

    adapters: Adapters,

    broker: Broker,

    run_tx: NotificationSender,

    processed_tx: SyncSender<RepoId>,

}

impl EventProcessor {

    #[allow(clippy::too_many_arguments)]

    fn new(

        profile: Profile,

        filters: Vec<EventFilter>,

        triggers: Vec<Trigger>,

        adapters: Adapters,

        broker: Broker,

        run_tx: NotificationSender,

        processed_tx: SyncSender<RepoId>,

    ) -> Self {

        Self {

            profile,

            filters,

            triggers,

            adapters,

            broker,

            run_tx,

            processed_tx,

        }

    }

    fn process_picked_event(&self, picked: Picked) {

        if let Some(adapters) = self.matching_adapters(picked.qe.event()).ok().flatten() {

            for adapter in adapters {

                self.run_adapter(&picked.qe, &adapter).ok();

            }

        }

        if let Some(repoid) = picked.qe.event().repository() {

            self.processed_tx.send(*repoid).ok();

        }

    }

    fn matching_adapters(&self, e: &CiEvent) -> Result<Option<Vec<Adapter>>, QueueError> {

    fn run_adapter(&self, qe: &QueuedCiEvent, adapter: &Adapter) -> Result<bool, QueueError> {

        let mut done = false;

        self.run_tx.notify()?;

        logger::queueproc_picked_event(qe.id(), qe, adapter);

        let res = self.process_event(qe.event(), adapter);

        logger::queueproc_processed_event(&res);

        match res {

            Ok(shut_down) => done = shut_down,

            Err(QueueError::BuildTrigger(_, _)) => done = false,

            Err(err) => Err(err)?,

        self.run_tx.notify()?;

        Ok(done)

    fn process_event(&self, event: &CiEvent, adapter: &Adapter) -> Result<bool, QueueError> {

        if matches!(event, CiEvent::V1(CiEventV1::Shutdown)) {

            logger::queueproc_action_shutdown();

            Ok(true)

        } else {

            logger::queueproc_action_run(event);

            let trigger = RequestBuilder::default()

                .profile(&self.profile)

                .ci_event(event)

                .build_trigger_from_ci_event()

                .map_err(|e| QueueError::build_trigger(event, e));

            logger::queueproc_trigger(&trigger);

            let trigger = trigger?;

            self.broker

                .execute_ci(adapter, &trigger, &self.run_tx)

                .map_err(QueueError::execute_ci)?;

            Ok(false)

        }

    }

}

#[derive(Debug, Clone)]

struct Picked {

    qe: QueuedCiEvent,

}

impl Picked {

    fn new(qe: QueuedCiEvent) -> Self {

        Self { qe }

    #[error("failed to send to channel for picked events")]

    SendPicked,

    #[error("failed to receive from channel for picked events")]

    RecvPicked,

    #[error("failed to send to channel for results of processed events")]

    SendProcessResult,

    #[error("failed to receive from channel for results of processed events")]

    RecvProcessResult,

    #[error("failed to wait for thread to run adapters to finish")]

    JoinAdapterThread,

    #[error("failed to wait for thread to process results from adapters to finish")]

    JoinResultThread,

    #[error("failed to create a new broker instance")]

    NewBroker(#[source] BrokerError),

    #[error("failure when using a pull queue")]

    PullQueue(#[source] PullQueueError),

//! # use radicle_ci_broker::timeoutcmd::{ChildProcess, TimeoutCommand, RealtimeLines};

//! let mut stdout: RealtimeLines = to.stdout();

//! let finished = running.wait()?;

//! assert_eq!(finished.exit_code().code(), Some(0));

    io::{Read, Seek, Write},

        mpsc::{

            channel, sync_channel, Receiver, RecvTimeoutError, Sender, SyncSender, TryRecvError,

        },

        Arc, Condvar, Mutex,

use tempfile::tempfile;

    stdout: RealtimeLines,

            stdout: RealtimeLines::default(),

    /// stdin will be fed no data. If this method is not used, the

    /// effect is that stdin comes from an empty file.

    pub fn stdout(&self) -> RealtimeLines {

        self.stdout.clone()

    }

    pub fn spawn(&self, command: Command) -> Result<ChildProcess, TimeoutError> {

        ChildProcess::new(command, &self.stdin_data, self.stdout(), self.max_duration)

/// Represent a finished process.

/// This allows retrieval of the process's standard error output and

/// the exit code. The standard output is captured via the

/// [`RealtimeLines`] buffer given to [`ChildProcess`].

#[derive(Debug)]

pub struct FinishedProcess {

    exit: ExitStatus,

    stderr: Vec<u8>,

impl FinishedProcess {

    /// Exit code of the finished process.

    pub fn exit_code(&self) -> ExitStatus {

        self.exit

    /// The captured output from the process's standard error.

    pub fn stderr(&self) -> &[u8] {

        &self.stderr

/// Represent a running child process.

///

/// The child gets some data fed to it via its standard input. The

/// child is terminated if it runs for too long.

pub struct ChildProcess {

    deadline: Option<Instant>,

    child: Child,

    stdout: RealtimeLines,

    stdout_rx: Receiver<()>,

    stdout_thread: JoinHandle<Result<(), TimeoutError>>,

    stderr_thread: JoinHandle<Result<Vec<u8>, TimeoutError>>,

    arc: Arc<Mutex<RealtimeLines>>,

impl ChildProcess {

    /// Create a new [`ChildProcess`].

    pub fn new(

        mut cmd: Command,

        stdin: &[u8],

        stdout_lines: RealtimeLines,

        timeout: Duration,

    ) -> Result<Self, TimeoutError> {

        // Write data to be fed to child's stdin to a temporary

        // file that automatically gets deleted when we exit this

        // function. Using a file instead of a pipe means our

        // logic can be simpler as we don't need to worry about

        // the pipe buffer filling up.

        let mut file = tempfile::tempfile()?;

        file.write_all(stdin)?;

        file.rewind()?;

        // Redirect child stdin/stdout/stderr and start the child

        // process.

        let mut child = cmd

            .stdin(file)

            .stdout(Stdio::piped())

            .stderr(Stdio::piped())

            .spawn()

            .map_err(|err| TimeoutError::Spawn(cmd, err))?;

        // Create the mutex around the line buffer we're given and

        // a condition variable to signal end of input. The mutex

        // is used to wait on the condition variable, not so much

        // to protect the line buffer, but mutex is a convenient

        // way to transfer the buffer to the thread.

        let (stdout_tx, stdout_rx) = channel::<()>();

        let arc = Arc::new(Mutex::new(stdout_lines.clone()));

        // Start thread to read from stdout, using the line buffer

        // we just created and hid in `arc`.

        let stdout = child

            .stdout

            .take()

            .ok_or(TimeoutError::TakeHandle("stdout"))?;

        let stdout_thread = {

            let arc = arc.clone();

            spawn(move || Self::line_reader(arc, stdout_tx, stdout))

        };