PostHog · ellie · Dec 13, 2023 · Dec 13, 2023 · Dec 13, 2023 · xvello
diff --git a/capture/src/partition_limits.rs b/capture/src/partition_limits.rs
@@ -12,6 +12,7 @@ use std::sync::Arc;
 
 use governor::{clock, state::keyed::DefaultKeyedStateStore, Quota, RateLimiter};
 use metrics::gauge;
+use rand::Rng;
 
 // See: https://docs.rs/governor/latest/governor/_guide/index.html#usage-in-multiple-threads
 #[derive(Clone)]
@@ -49,6 +50,23 @@ impl PartitionLimiter {
             gauge!("partition_limits_key_count", self.limiter.len() as f64);
         }
     }
+
+    /// Clean up the rate limiter state, once per minute. Ensure we don't use more memory than
+    /// necessary.
+    pub async fn clean_state(&self) {
+        // Give a small amount of randomness to the interval to ensure we don't have all replicas
+        // locking at the same time. The lock isn't going to be held for long, but this will reduce
+        // impact regardless.
+        let interval_secs = rand::thread_rng().gen_range(60..70);
+
+        let mut interval = tokio::time::interval(tokio::time::Duration::from_secs(interval_secs));
+        loop {
+            interval.tick().await;
+
+            self.limiter.retain_recent();
+            self.limiter.shrink_to_fit();
+        }
+    }
 }
 
 #[cfg(test)]

diff --git a/capture/src/server.rs b/capture/src/server.rs
@@ -55,6 +55,17 @@ where
                 partition.report_metrics().await;
             });
         }
+
+        {
+            // Ensure that the rate limiter state does not grow unbounded
+
+            let partition = partition.clone();
+
+            tokio::spawn(async move {
+                partition.clean_state().await;
+            });
+        }
+
         let sink = sink::KafkaSink::new(config.kafka, sink_liveness, partition)
             .expect("failed to start Kafka sink");