created initial rust based design draft for mw::diag

[MonikaKumari26]

• I have tested my changes locally
• I have added or updated documentation
• I have linked related issues or discussions
• I have added or updated tests

Related

Notes for Reviewers

[stmuench]

since we were discussing async APIs, maybe it would make sense here to use one

[MonikaKumari26]

Makes sense to be async since applying a diagnostic mode might take time. supported_modes() could be also async if querying supported modes requires reading from vehicle systems.

[lh-sag]

@MonikaKumari26 thanks for your contribution!

[lh-sag]

@MonikaKumari26 I suggest to move this PR out of draft status to get more feedback.

[darkwisebear]

Not done, but maybe these comments are helpful still. One general comment: This library allocates a lot. We need to see whether we can cut back on allocations (or avoid them somehow?) and we need to introduce an Allocator trait, as the canonical one from std isn't stabilized yet.

[darkwisebear]

What's the reason for these types to be Sync?

[MonikaKumari26]

My understanding is that these references must be Sync to allow concurrent read access from multiple threads, ensuring safe shared diagnostic operations and no compiler errors when shared via &T.

[darkwisebear]

But that'd only be relevant if I wanted to execute the same operation concurrently. Is that really the case? Imo executing an operation should be exclusive, which means that T needs to be Send (so that an instance of T can be executed in different threads), but not Sync (because no concurrent execution is required).

[MonikaKumari26]

Regarding the concurrency constraints, I initially used uniform Send + Sync requirement for simplicity, but I have now refined this to be more precise based on resource behavior:

1. Operation Trait: Retained Send + Sync. Since it exposes both &self and &mut self methods, Sync is required to allow concurrent status queries via immutable references.
2. Write-only resources/services, RoutineControl and UdsService to be Send only, as they don't benefit from concurrent access.
3. Read-only Resources: Retained Send + Sync to explicitly support concurrent reads.

Design may need further adjustments if these Sync requirements conflict with specific downstream use cases.

[darkwisebear]

&self / &mut self are static ownership properties that help the compiler to find out whether it's possible to allow for modifications of the instance state in a certain context (imo &mut should have been called &unique).

In conjunction with concurrency traits, it helps the compiler to know whether copying a reference across thread boundaries preserves these properties. However, in case of e.g. Operation types, even if they're Sync, the method signature of e.g. execute requires &mut self, so you statically demand a unique ownership. This either requires a mutex or something similar to go from shared to unique ownership if this exclusivity is enforced at runtime, or even a static unique ownership, which is hard to obtain unless you completely handle all diag events in a single thread. But since you already demand unique ownership, requiring the type to be Sync is asked too much as you do not need to synchronize anyway if ownership is already unique.

The bottom line for me is that if we have &mut self methods, requiring Sync doesn't help at all. Sync only makes sense if most / all methods are &self so that you can call them from multiple threads truly concurrently. Deciding this means to think whether synchronization shall be done by all implementors of Operation and the like (which makes these types Sync, but allows for fine grained synchronization if required), or whether the framework will take care, which makes implementing the diagnostic structs easier, but the synchronization will be more coarse grained.

[lh-sag]

@MonikaKumari26 if you want broader feedback I would advise you to move this PR from draft to final.

[lh-sag]

IMHO it is easier to have async fn first and support blocking on top. What is the rational to start with sync first?

[darkwisebear]

I think that the original statement in the document is too generic. We need to look at the methods one by one and determine their nature:

Operation

Most methods query state; these methods are nonblocking and there is imo no reason to make them async, not even in a second step, as such data acquisition should not require any long running activities. The same is true for the execute method: This one also isn't supposed to block. If it does need to do something that takes longer, it is supposed to spawn a concurrent task or thread and return with a pending state.

The only notable exception in my eyes is stop, because I could imagine that stopping a task might incur some waiting. I'd need to check the SOVD spec whether or not we'd need to delay the response of this method until the task really stopped.

ReadableDataResource

I think it makes sense to make the get call async, as it is absolutely thinkable that data acquisition will be done asynchronously by the implementation.

WritableDataResource

Here, the same argumentation as for the execute call holds, unless it is required by the spec to also tell whether setting the data actually happened (aka a positive response not just confirms data reception but also confirms proper changing of the inner state). In that case, the put method also needs to be async.

[lh-sag]

Your implications about the system might fit for yours but we need an async interface for ours. It is just a matter of how we implement it.

[darkwisebear]

I don't think so. Let's take Operation: If you opt for an API design (and that's how it looks) where you map SOVD requests 1:1 to API calls, the resulting API and the way how you implement the trait should give you an idea about what color your function is.

If you disagree with my assessments, please give your view of that particular method and why it should or shouldn't be async, or you also mention why the suggested API design philosophy (have a thin layer above the REST calls) is not the correct one.

[lh-sag]

Yes. And our operations/API is fully async this does not mean write will work differently as you suggested but our core is async. This is completely orthogonal to SOVD.

Please note that I do not enforce either way sync or async, just that we have an async interface as our system underneath work differently than yours.

[darkwisebear]

Imo the API should already be usable for you as well without having to jump through hoops; either we will have a truly async method anyway (e.g. get of ReadableDataResource), or the methods are ordinary ones without suspension points, but these shall be (see my comment above) nonblocking, so that they can also be called in an async context. So even if you are fully async, this shouldn't prevent you from being able to implement this API.

On a side note, we shouldn't actually talk about "your system" or "our system". In the end we want to build something that can be used in many different contexts, and if there are contexts where the API is not a good fit, I'd need to understand what exactly isn't fitting so that we can develop a common solution that fits.

[lh-sag]

On a side note, we shouldn't actually talk about "your system" or "our system". In the end we want to build something that can be used in many different contexts, and if there are contexts where the API is not a good fit, I'd need to understand what exactly isn't fitting so that we can develop a common solution that fits.

We do agree here. But since our systems differs we are biased, I doubt we would have argued if this is not the case. Therefore my initial remark was whether we have a fully sync and async interface.

Where we differ is having a mixed one e.g. I do not see why for example Operation::status should not be colored async. The question about async/sync interface is independent of how SOVD works.

I will join next weeks UDS2SOVD meeting in case you want to discuss this outside of this PR.

[MonikaKumari26]

The API must follow synchronous non-blocking pattern here. The implementation should avoid the overhead of a multi-threaded async runtime while also ensuring functions do not halt execution while waiting. Instead, operations should return immediately with a status (WouldBlock or InProgress), requiring the caller to poll for completion.

[MonikaKumari26]

Keeping info() and status() as async makes sense because info may involve remote metadata fetches and status polling aligns with the REST async‑polling pattern and works naturally as async.

[MonikaKumari26]

Write should return status immediately and long‑running operations should expose a status that callers can poll. Convert write to a synchronous, non‑blocking API that returns a status enum.

Suggested change

	{abstract} +async put(&mut self, request: DiagnosticRequest) -> Result<()>
	fn write(&mut self, request: DiagnosticRequest) -> Result<WriteStatus>
	enum WriteStatus {
	Completed, // Write finished successfully
	InProgress, // Write initiated, still processing
	WouldBlock, // Cannot start now, retry later
	}

[lh-sag]

Who would consume/poll the write status?

I would also like to understand why we drop async. It can have the same semantic as you mentioned here but allows for async i/o. We will have a sync meeting tomorrow. feel free to discuss this further.