Reject non-positive resampling_interval in LogicalMeterActor::try_new

shsms · o7e3nim4d · commit 9f732c7600e6 · 2026-04-30T14:12:28.000Z
Signed-off-by: Sahas Subramanian &lt;sahas.subramanian@proton.me&gt;
diff --git a/src/error.rs b/src/error.rs
@@ -59,6 +59,7 @@ ErrorKind!(
     (DroppedUnusedFormulas, dropped_unused_formulas),
     (FormulaEngineError, formula_engine_error),
     (InvalidComponent, invalid_component),
+    (InvalidConfig, invalid_config),
     (Internal, internal),
     (APIServerError, api_server_error),
 );
diff --git a/src/logical_meter/logical_meter_actor.rs b/src/logical_meter/logical_meter_actor.rs
@@ -274,6 +274,18 @@ impl<C: Clock> LogicalMeterActor<C> {
         config: LogicalMeterConfig,
         clock: C,
     ) -> Result<Self, Error> {
+        if config.resampling_interval <= chrono::TimeDelta::zero() {
+            return Err(Error::invalid_config(format!(
+                "resampling_interval must be positive, got {:?}",
+                config.resampling_interval
+            )));
+        }
+        if config.max_age_in_intervals > i32::MAX as u32 {
+            return Err(Error::invalid_config(format!(
+                "max_age_in_intervals must fit in i32, got {}",
+                config.max_age_in_intervals
+            )));
+        }
         let timer = WallClockTimer::try_new(config.resampling_interval, clock)?;
         // Resamplers created before the first tick use `resampler_ts` as
         // their start; setting it one interval before the first scheduled
@@ -400,9 +412,8 @@ impl<C: Clock> LogicalMeterActor<C> {
         frequenz_resampling::Resampler::new(
             self.config.resampling_interval,
             function,
-            // The resampler expects max age to be i32, so we cap it if
-            // the user provided a higher value.
-            self.config.max_age_in_intervals.min(i32::MAX as u32) as i32,
+            // Validated at construction to fit in `i32`.
+            self.config.max_age_in_intervals as i32,
             start,
             false,
         )
@@ -704,6 +715,39 @@ mod tests {
         );
     }
 
+    #[tokio::test]
+    async fn test_nonpositive_resampling_interval_rejected() {
+        let api_client = MockMicrogridApiClient::new(MockComponent::grid(1));
+        let client = MicrogridClientHandle::new_from_client(api_client);
+        for bad in [TimeDelta::zero(), -TimeDelta::try_milliseconds(1).unwrap()] {
+            let (_tx, rx) = mpsc::channel(1);
+            let result = LogicalMeterActor::try_new(
+                rx,
+                client.clone(),
+                LogicalMeterConfig::new(bad),
+                TokioSyncedClock::new(),
+            );
+            match result {
+                Err(e) => assert_eq!(e.kind(), crate::ErrorKind::InvalidConfig),
+                Ok(_) => panic!("expected error for interval {bad:?}"),
+            }
+        }
+    }
+
+    #[tokio::test]
+    async fn test_max_age_in_intervals_overflow_rejected() {
+        let api_client = MockMicrogridApiClient::new(MockComponent::grid(1));
+        let client = MicrogridClientHandle::new_from_client(api_client);
+        let (_tx, rx) = mpsc::channel(1);
+        let config = LogicalMeterConfig::new(TimeDelta::try_seconds(1).unwrap())
+            .with_max_age_in_intervals(i32::MAX as u32 + 1);
+        let result = LogicalMeterActor::try_new(rx, client, config, TokioSyncedClock::new());
+        match result {
+            Err(e) => assert_eq!(e.kind(), crate::ErrorKind::InvalidConfig),
+            Ok(_) => panic!("expected error for over-i32::MAX max_age_in_intervals"),
+        }
+    }
+
     async fn next_sample(stream: &mut BroadcastStream<Sample<Power>>) -> Option<Sample<Power>> {
         loop {
             match tokio::time::timeout(std::time::Duration::from_secs(10), stream.next()).await {
