fix: global Lamport clock max prevents first-writer tick collisions

[flyingrobots]

Problem

First-time writers were defaulting to Tick 1 because _nextLamport() only inspected their own (empty) chain. If an existing writer had already committed at Tick 1, both writers shared the same Lamport timestamp and the LWW tiebreaker resolved to alphabetical WriterID order — silently discarding the later mutation.

Fix

Introduce a per-instance _maxObservedLamport counter (initialized to 0) that is maintained in three places:

• materialize() — scans checkpoint frontier tip commits and incremental patches to capture the global max before any new commit is issued
• _nextLamport() — returns Math.max(ownTick, _maxObservedLamport) + 1, guaranteeing a globally-monotonic tick
• _onPatchCommitted() — updates the counter after each successful commit so the instance stays current

Lint fix

The inline scanning loops pushed materialize() to complexity 38 (limit 35) and nesting depth 7 (limit 6). Extracted two module-private helpers:

• scanFrontierForMaxLamport(graph, frontier) — async, best-effort frontier scan
• scanPatchesForMaxLamport(graph, patches) — sync patch array scan

No behaviour change; same semantics, cleaner structure.

Tests

New regression suite: test/unit/domain/WarpGraph.noCoordination.test.js

• First-time writer beats existing writer after materializing global state
• _maxObservedLamport increments after each commit on the same instance
• materialize() updates _maxObservedLamport from observed patches

All 2,877 unit tests pass.

Summary by CodeRabbit

• Bug Fixes

  • Improved Lamport clock monotonicity tracking across commits to strengthen consistency in conflict resolution.

• Refactor

  • Reworked lamport calculation logic to enhance state tracking and prevent regression in distributed synchronization.

• Tests

  • Added comprehensive test suite verifying Lamport clock monotonicity and max-observed timestamp updates across multiple writers.

[coderabbitai]

📝 Walkthrough

Walkthrough

This PR enhances Lamport clock monotonicity tracking in a distributed graph system by introducing global max-lamport state tracking across the WarpGraph. It reworks lamport calculation in commit paths to preserve monotonic progression and updates materialization to synchronize observed lamport ticks from frontier patches.

Changes

Cohort / File(s)	Summary
Lamport State Tracking src/domain/WarpGraph.js	Adds private field _maxObservedLamport initialized to 0 for tracking the maximum Lamport value across the graph.
Lamport Calculation & Persistence src/domain/services/PatchBuilderV2.js	Reworks lamport initialization from this._lamport instead of 1, computes max(this._lamport, patchInfo.lamport + 1) when refs exist, and integrates patch creation, CBOR encoding, and blob persistence into the commit workflow.
Lamport Synchronization src/domain/warp/patch.methods.js, src/domain/warp/materialize.methods.js	Introduces scanFrontierForMaxLamport and scanPatchesForMaxLamport helpers; reworks _nextLamport to conditionally handle patch vs. non-patch refs and use global max-lamport; adds _onPatchCommitted to update global max-lamport on commits.
Test Coverage test/unit/domain/WarpGraph.noCoordination.test.js	Adds comprehensive test suite validating Lamport monotonicity across multiple writers and readers, including scenarios for first-time writers, per-commit increments, and materialization updates.

Sequence Diagram(s)

sequenceDiagram
    participant Writer as Writer (PatchBuilderV2)
    participant Graph as WarpGraph
    participant Patch as Patch Methods
    participant Materialize as Materialize
    participant Reader as Reader (new instance)

    Writer->>Graph: Read _maxObservedLamport
    Writer->>Patch: _nextLamport(currentRef, maxObservedLamport)
    Patch-->>Patch: Decode ref patch or compute fresh start
    Patch-->>Patch: lamport = max(ownTick, maxObservedLamport) + 1
    Patch-->>Writer: Return lamport + parentSha
    Writer->>Writer: Create PatchV2, encode CBOR, commit blob/tree
    Writer->>Patch: _onPatchCommitted(lamport)
    Patch->>Graph: Update _maxObservedLamport = max(current, lamport)
    
    Reader->>Materialize: materialize()
    Materialize->>Materialize: Load patches from storage
    Materialize->>Materialize: scanFrontierForMaxLamport(frontier)
    Materialize-->>Materialize: Decode tips, extract lamport values
    Materialize->>Graph: Update _maxObservedLamport from frontier
    Materialize->>Materialize: scanPatchesForMaxLamport(patches)
    Materialize->>Graph: Final _maxObservedLamport reflects all observed ticks

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

Possibly related PRs

• refactor: decompose WarpGraph monolith into method modules #38: Directly modifies the same WarpGraph/warp.* patch and materialize code paths, introducing and reorganizing the _maxObservedLamport field and lamport-tracking infrastructure that this PR extends.

Poem

🐰 A rabbit hops through lamport's dance,
Each tick and tock in perfect stance,
Max-observed now tracked with care,
Monotonic clockworks everywhere!
No discord in the graph so grand, 🕰️

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title directly and specifically summarizes the main fix: introducing a global Lamport clock max to prevent first-writer tick collisions, which is the core problem addressed across all modified files.
Docstring Coverage	✅ Passed	Docstring coverage is 100.00% which is sufficient. The required threshold is 80.00%.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing touches

• 📝 Generate docstrings

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch fix/lamport-clock-global-max

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[github-actions]

Release Preflight

• package version: 11.3.0
• prerelease: false
• npm dist-tag on release: latest
• npm pack dry-run: passed
• jsr publish dry-run: passed

If you tag this commit as v11.3.0, release workflow will publish.

[coderabbitai]

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

src/domain/warp/patch.methods.js (1)

88-122: ⚠️ Potential issue | 🟡 Minor

Document the materialize-before-patch expectation in createPatch() and patch() JSDoc.

While _nextLamport() correctly integrates the global max via Math.max(ownTick, _maxObservedLamport) + 1, the guarantee relies on a prior materialize() call to populate _maxObservedLamport. Since neither createPatch() nor patch() calls _ensureFreshState() or materialize(), a caller who uses these directly in a multi-writer graph without materializing first will issue lamports without knowledge of other writers' observed maximums—even though commits succeed and local monotonicity is preserved.

The tests and PatchBuilderV2.commit() show this is safe in practice (the builder re-reads the writer's own ref at commit time, and the join reducer handles order). However, this expectation—that materialize() should be called before committing in multi-writer scenarios, or that query methods (which auto-materialize) should be used first—is not obvious from the API. Add a note to the JSDoc of both createPatch() and patch() to clarify this precondition.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@src/domain/warp/patch.methods.js` around lines 88 - 122, The createPatch()
and patch() JSDoc must explicitly state the precondition that callers should
materialize the graph (or call _ensureFreshState()) before creating/committing
patches so that _maxObservedLamport is populated and _nextLamport() can
incorporate the global max; update the JSDoc on both createPatch() and patch()
to note that in multi-writer scenarios callers should call materialize() (or
rely on query methods that auto-materialize) prior to committing, and reference
that PatchBuilderV2.commit() already re-reads the writer ref and that
_nextLamport() uses Math.max(ownTick, this._maxObservedLamport) + 1 to compute
the next lamport.

🧹 Nitpick comments (3)

src/domain/services/PatchBuilderV2.js (2)

544-560: Nit: duplicate step number "4" in comments.

Line 544 says "4. Build PatchV2 structure" and line 560 says "4. Encode patch as CBOR". Renumber from step 4 onward.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@src/domain/services/PatchBuilderV2.js` around lines 544 - 560, The inline
comments in PatchBuilderV2.js duplicate the step number "4" (one at the start of
the PatchV2 construction and again before encoding), so update the comment
sequence after the Build step to be sequential—e.g., keep "4. Build PatchV2
structure..." and change the later "4. Encode patch as CBOR" to "5. Encode patch
as CBOR" (and increment any subsequent step numbers if present); search around
the createPatchV2 call, vvSerialize, this._ops, this._reads, and this._writes
usages to find and renumber the remaining step comments accordingly.

---

535-542: Pre-existing: decodePatchMessage will throw if the parent is a non-patch commit.

_nextLamport() in patch.methods.js correctly guards against non-patch parents by checking the message kind before decoding, but this commit() path unconditionally decodes the parent as a patch message. If a writer ref points to a checkpoint or anchor commit, decodePatchMessage will throw before the commit is persisted.

Since detectMessageKind is already exported from WarpMessageCodec.js, add the same guard here for consistency:

♻️ Add a non-patch guard to match _nextLamport()

     if (currentRefSha) {
-      // Read the current patch commit to get its lamport timestamp and take the max,
-      // so the chain stays monotonic even if the ref advanced since createPatch().
       const commitMessage = await this._persistence.showNode(currentRefSha);
+      const kind = detectMessageKind(commitMessage);
+      if (kind === 'patch') {
         const patchInfo = decodePatchMessage(commitMessage);
         lamport = Math.max(this._lamport, patchInfo.lamport + 1);
+      }
       parentCommit = currentRefSha;
     }

Update the import from WarpMessageCodec.js to include detectMessageKind:

-import { encodePatchMessage, decodePatchMessage } from './WarpMessageCodec.js';
+import { encodePatchMessage, decodePatchMessage, detectMessageKind } from './WarpMessageCodec.js';

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@src/domain/services/PatchBuilderV2.js` around lines 535 - 542, The code
unconditionally calls decodePatchMessage on the parent commit in the commit()
path (when currentRefSha is set), which will throw if the parent is not a patch;
fix it by importing and using detectMessageKind from WarpMessageCodec.js and
guard the decode with a check similar to _nextLamport(): call
this._persistence.showNode(currentRefSha), run detectMessageKind on the returned
commitMessage, and only call decodePatchMessage and update lamport/parentCommit
when detectMessageKind indicates a patch; otherwise skip decoding and leave
lamport/parentCommit as-is (or handle non-patch parents the same way
_nextLamport() does).

src/domain/warp/patch.methods.js (1)

99-102: Minor style inconsistency in the non-patch early return.

Line 101 computes Math.max(1, this._maxObservedLamport + 1), which is equivalent to this._maxObservedLamport + 1 (since _maxObservedLamport >= 0). The standard return path on line 119 uses Math.max(ownTick, this._maxObservedLamport) + 1. For the non-patch case, ownTick is effectively 0 (fresh start), so Math.max(0, _maxObservedLamport) + 1 would produce the same result and be stylistically consistent.

♻️ Optional: unify with the standard return

     if (kind !== 'patch') {
       // Writer ref doesn't point to a patch commit - treat as fresh start
-      return { lamport: Math.max(1, this._maxObservedLamport + 1), parentSha: currentRefSha };
+      return { lamport: Math.max(0, this._maxObservedLamport) + 1, parentSha: currentRefSha };
     }

Or simply fall through to the standard return at line 118–121 (since ownTick is already 0).

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@src/domain/warp/patch.methods.js` around lines 99 - 102, The non-patch early
return uses Math.max(1, this._maxObservedLamport + 1) which is equivalent but
inconsistent with the standard path; update the early-return to compute lamport
the same way as the normal branch by returning { lamport: Math.max(ownTick,
this._maxObservedLamport) + 1, parentSha: currentRefSha } (or simply remove the
early return so execution falls through and uses the existing Math.max(ownTick,
this._maxObservedLamport) + 1 logic), referencing kind, ownTick,
this._maxObservedLamport, parentSha and currentRefSha to locate and change the
code.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Outside diff comments:
In `@src/domain/warp/patch.methods.js`:
- Around line 88-122: The createPatch() and patch() JSDoc must explicitly state
the precondition that callers should materialize the graph (or call
_ensureFreshState()) before creating/committing patches so that
_maxObservedLamport is populated and _nextLamport() can incorporate the global
max; update the JSDoc on both createPatch() and patch() to note that in
multi-writer scenarios callers should call materialize() (or rely on query
methods that auto-materialize) prior to committing, and reference that
PatchBuilderV2.commit() already re-reads the writer ref and that _nextLamport()
uses Math.max(ownTick, this._maxObservedLamport) + 1 to compute the next
lamport.

---

Nitpick comments:
In `@src/domain/services/PatchBuilderV2.js`:
- Around line 544-560: The inline comments in PatchBuilderV2.js duplicate the
step number "4" (one at the start of the PatchV2 construction and again before
encoding), so update the comment sequence after the Build step to be
sequential—e.g., keep "4. Build PatchV2 structure..." and change the later "4.
Encode patch as CBOR" to "5. Encode patch as CBOR" (and increment any subsequent
step numbers if present); search around the createPatchV2 call, vvSerialize,
this._ops, this._reads, and this._writes usages to find and renumber the
remaining step comments accordingly.
- Around line 535-542: The code unconditionally calls decodePatchMessage on the
parent commit in the commit() path (when currentRefSha is set), which will throw
if the parent is not a patch; fix it by importing and using detectMessageKind
from WarpMessageCodec.js and guard the decode with a check similar to
_nextLamport(): call this._persistence.showNode(currentRefSha), run
detectMessageKind on the returned commitMessage, and only call
decodePatchMessage and update lamport/parentCommit when detectMessageKind
indicates a patch; otherwise skip decoding and leave lamport/parentCommit as-is
(or handle non-patch parents the same way _nextLamport() does).

In `@src/domain/warp/patch.methods.js`:
- Around line 99-102: The non-patch early return uses Math.max(1,
this._maxObservedLamport + 1) which is equivalent but inconsistent with the
standard path; update the early-return to compute lamport the same way as the
normal branch by returning { lamport: Math.max(ownTick,
this._maxObservedLamport) + 1, parentSha: currentRefSha } (or simply remove the
early return so execution falls through and uses the existing Math.max(ownTick,
this._maxObservedLamport) + 1 logic), referencing kind, ownTick,
this._maxObservedLamport, parentSha and currentRefSha to locate and change the
code.