Instrument Control

Building Async Command Queues with asyncio for Lab Devices

Deterministic command sequencing is the foundational requirement for reliable instrument control. When multiple subsystems share a physical bus or require strict temporal ordering, synchronous blocking calls introduce race conditions, unbounded latency, and unrecoverable state drift. An asyncio-backed command queue resolves these issues by decoupling command submission from I/O execution, enforcing strict FIFO semantics, and isolating failure domains. This guide details a production-ready implementation pattern focused on deterministic execution, explicit error boundaries, and robust protocol parsing.

Physical Bus Constraints & Queue Topology

Hardware instrument interfaces impose hard limits on throughput, latency, and statefulness. As documented in Serial, USB, and GPIB Communication Workflows, three baseline constraints dictate queue architecture: (1) hardware buffers are finite and often non-preemptive, (2) command-response handshakes are strictly sequential with no native multiplexing, and (3) device firmware may silently drop or reorder packets under bus contention. Any queue implementation must absorb these constraints at the I/O boundary rather than propagating them upstream to experiment orchestration layers.

The queue must guarantee that a single malformed response or timeout does not corrupt subsequent commands or leave the instrument in an undefined state. This requires explicit backpressure handling, deterministic retry boundaries, and strict separation between the submission thread (or task) and the serialized I/O worker.

Envelope Design & State Tracking

Each command is wrapped in an envelope containing a unique identifier, raw payload, timeout budget, retry policy, and an asyncio.Future for callback resolution. This design ensures that command submission remains non-blocking while execution stays strictly serialized at the hardware interface.

import asyncio
import logging
from dataclasses import dataclass, field
from typing import Optional, Callable, Awaitable
from enum import Enum

logger = logging.getLogger(__name__)

class CommandStatus(Enum):
    PENDING = "pending"
    EXECUTING = "executing"
    COMPLETED = "completed"
    FAILED = "failed"
    TIMEOUT = "timeout"

@dataclass
class CommandEnvelope:
    cmd_id: str
    payload: bytes
    timeout: float
    max_retries: int = 1
    status: CommandStatus = CommandStatus.PENDING
    response_future: Optional[asyncio.Future] = None
    _attempts: int = field(default=0, init=False)

    @property
    def can_retry(self) -> bool:
        return self._attempts < self.max_retries

    def record_attempt(self) -> None:
        self._attempts += 1

The envelope isolates command metadata from the I/O transport layer. By deferring Future creation to the queue manager, we avoid event-loop binding issues during module import and ensure thread-safe submission across synchronous and asynchronous contexts.

Deterministic Worker Implementation

The worker coroutine drains the queue sequentially. It enforces strict FIFO execution, applies timeout budgets via asyncio.wait_for, and implements bounded retry logic. Crucially, it never allows an exception to escape the execution boundary; all failures are captured, logged, and routed to the originating Future.

class AsyncDeviceQueue:
    def __init__(
        self,
        max_queue_size: int = 128,
        default_timeout: float = 5.0,
        inter_command_delay: float = 0.0,
        read_callback: Optional[Callable[[], Awaitable[bytes]]] = None,
        write_callback: Optional[Callable[[bytes], Awaitable[None]]] = None,
    ):
        self.queue = asyncio.Queue(maxsize=max_queue_size)
        self.default_timeout = default_timeout
        self.inter_command_delay = inter_command_delay
        self._read = read_callback
        self._write = write_callback
        self._worker_task: Optional[asyncio.Task] = None
        self._shutdown_event = asyncio.Event()
        self._logger = logging.getLogger(f"{__name__}.AsyncDeviceQueue")

    async def start(self) -> None:
        if self._worker_task and not self._worker_task.done():
            raise RuntimeError("Queue worker is already running")
        if not self._read or not self._write:
            raise ValueError("Read and write callbacks must be provided before starting")
        self._shutdown_event.clear()
        self._worker_task = asyncio.create_task(self._worker_loop(), name="device_queue_worker")

    async def stop(self, wait: bool = True) -> None:
        self._shutdown_event.set()
        if self._worker_task:
            if wait:
                await self._worker_task
            else:
                self._worker_task.cancel()
            try:
                await self._worker_task
            except asyncio.CancelledError:
                pass

    async def submit(
        self,
        cmd_id: str,
        payload: bytes,
        timeout: Optional[float] = None,
        max_retries: int = 1,
    ) -> asyncio.Future:
        if self._shutdown_event.is_set():
            raise RuntimeError("Queue is shutting down")
        
        loop = asyncio.get_running_loop()
        envelope = CommandEnvelope(
            cmd_id=cmd_id,
            payload=payload,
            timeout=timeout or self.default_timeout,
            max_retries=max_retries,
            response_future=loop.create_future(),
        )
        await self.queue.put(envelope)
        return envelope.response_future

    async def _worker_loop(self) -> None:
        self._logger.info("Queue worker started")
        while not self._shutdown_event.is_set():
            try:
                envelope = await asyncio.wait_for(self.queue.get(), timeout=0.1)
            except asyncio.TimeoutError:
                continue
            except asyncio.CancelledError:
                break

            try:
                await self._execute_envelope(envelope)
            except Exception as exc:
                self._logger.critical("Worker loop crashed: %s", exc, exc_info=True)
                break
            finally:
                self.queue.task_done()
        self._logger.info("Queue worker terminated")

    async def _execute_envelope(self, envelope: CommandEnvelope) -> None:
        while envelope.can_retry:
            envelope.record_attempt()
            envelope.status = CommandStatus.EXECUTING
            try:
                await self._write(envelope.payload)
                if self.inter_command_delay > 0:
                    await asyncio.sleep(self.inter_command_delay)
                
                raw_response = await asyncio.wait_for(
                    self._read(), timeout=envelope.timeout
                )
                envelope.response_future.set_result(raw_response)
                envelope.status = CommandStatus.COMPLETED
                return
            except asyncio.TimeoutError:
                envelope.status = CommandStatus.TIMEOUT
                self._logger.warning(
                    "Timeout on %s (attempt %d/%d)",
                    envelope.cmd_id,
                    envelope._attempts,
                    envelope.max_retries,
                )
                if not envelope.can_retry:
                    envelope.response_future.set_exception(
                        asyncio.TimeoutError(f"Command {envelope.cmd_id} timed out after {envelope.max_retries} attempts")
                    )
                    return
            except Exception as exc:
                envelope.status = CommandStatus.FAILED
                envelope.response_future.set_exception(exc)
                return

This implementation maps directly to Async Command Queuing Systems by enforcing strict serialization, bounded memory via maxsize, and explicit lifecycle control. The worker loop uses a short queue.get() timeout to remain responsive to shutdown signals without blocking indefinitely on an empty queue.

Pipeline Dependency Mapping

When integrating this queue into broader control systems, upstream and downstream boundaries must be explicitly defined:

  • Upstream Orchestration: Experiment sequencers should submit commands via await queue.submit(...) and await future. Never poll queue.empty() or inspect internal state from outside the async context.
  • Transport Layer: Raw I/O callbacks must be pre-configured with appropriate line terminators and buffer sizes. Refer to PySerial Configuration & Tuning for baud rate, parity, and flow control alignment before attaching read_callback/write_callback.
  • Error Routing: Instrument firmware often returns non-zero status bytes. Implement Error Code Categorization at the response parsing stage before resolving the Future. Do not treat protocol-level errors as transport failures.
  • Hardware Stability: USB-to-Serial Bridge Stability dictates that the queue worker must gracefully handle OSError: [Errno 5] Input/output error or sudden SerialException without propagating them to the orchestration layer. Catch, log, and trigger a controlled queue drain or device reset routine.
  • Timeout Handling & Retry Logic: The envelope’s max_retries and timeout fields should be tuned per-command class. Query commands typically require shorter timeouts and zero retries; actuation commands require longer budgets and at least one retry.

Immediate Diagnostic Steps

When queue behavior deviates from deterministic expectations, apply these targeted diagnostics:

Symptom Root Cause Immediate Remediation
TimeoutError storms on valid commands Bus contention or firmware command queue saturation Increase inter_command_delay, verify hardware RTS/CTS flow control, reduce concurrent submission rate
Future never resolves, worker hangs Blocking I/O callback or unhandled CancelledError in transport layer Wrap _read/_write in asyncio.to_thread if using synchronous drivers, or migrate to native async I/O
Commands execute out of order Multiple workers or bypassing the queue Enforce single _worker_task instantiation, audit codebase for direct await _write() calls
OSError: [Errno 22] Invalid argument on USB bridge Cable disconnect or power management sleep Implement hardware watchdog polling, disable OS USB autosuspend, add reconnection logic before queue restart
Memory leak during long runs Unresolved Future objects or abandoned envelopes Attach future.add_done_callback() to clear references, monitor queue.qsize() and gc.get_referrers()

For transport-level debugging, enable asyncio debug mode (PYTHONASYNCIODEBUG=1) to trace coroutine scheduling latency, and instrument the queue with Prometheus counters for commands_submitted, commands_completed, commands_failed, and queue_depth. This provides immediate visibility into backpressure accumulation and worker throughput degradation.

Production Integration Notes

  1. Graceful Shutdown: Always call await queue.stop(wait=True) during application teardown. This allows in-flight commands to complete or timeout cleanly before closing the serial/USB handle.
  2. Idempotency: Lab instruments rarely support transactional rollbacks. Design payloads to be idempotent where possible, or implement explicit state reconciliation after queue recovery.
  3. Event Loop Isolation: Run the queue in a dedicated event loop if the control system mixes CPU-bound analysis with I/O-bound device control. Use asyncio.run_in_executor() for heavy parsing to prevent worker starvation.
  4. Standards Compliance: For SCPI-compliant instruments, enforce *OPC? polling after critical actuation commands. The queue’s deterministic execution guarantees that *OPC? will only return 1 after all preceding commands have physically completed.

This architecture provides a hardened foundation for scientific instrument control, isolating hardware volatility from experiment logic while maintaining strict temporal guarantees.