System Flows

---

Purpose and scope

This document describes runtime sequencing: how work moves from Event intake through State derivation, decision-making, Execution Control, dispatch, and feedback back into the Event Stream.

It explains causal order and what runs when in the canonical model. It does not:

• redefine terms (Terminology);
• restate formal Event or State rules (Event Model, State Model);
• restate component boundaries (Logical Architecture);
• replace Intent lifecycle or Order lifecycle documents (Intent Lifecycle, Order Lifecycle).

Canonical vocabulary applies throughout.

---

Runtime flow overview

The System advances only through deterministic Event processing: each step applies Events from the Event Stream in Processing Order under Configuration and updates derived State (see Time Model).

There is one unified Runtime sequence for a given applied Event—no competing alternative flows. Queue Processing is not a second loop, tick, or scheduler phase; it is part of the same Event-processing step that updates Market, Execution (including execution-control substate), and System domains.

flowchart TB
    subgraph intake["1. Event intake"]
        E0["Next Event in Processing Order"]
    end

    subgraph core["2. Single processing step"]
        SD["State derivation"]
        ST["Strategy evaluation"]
        IG["Intent generation"]
        RK["Risk decision policy only"]
        QU["Queue update execution-control substate"]
        QP["Queue Processing deterministic Execution Control"]
        DS["Dispatch via Venue Adapter"]
    end

    subgraph boundary["3. Boundary"]
        VN["Venue"]
    end

    subgraph feedback["4. Feedback"]
        ER["New Events appended per canonical rules"]
    end

    E0 --> SD
    SD --> ST
    ST --> IG
    IG --> RK
    RK --> QU
    QU --> QP
    QP --> DS
    DS --> VN
    VN --> ER
    ER --> E0

The diagram is logical sequencing within processing, not a second concurrent pipeline. Feedback closes the loop when Events re-enter the stream; the next advance is again Event-driven.

If a step has nothing to do (e.g. no Intents, or no outbound work selected), the order of stages is unchanged; those substeps are vacuous for that application. Causal order when work exists is always as listed.

---

End-to-end event-driven sequence

The following is the single canonical order of stages when an Event is applied (names are descriptive; formal semantics remain in foundational docs).

1. Event intake

The next Event is taken in Processing Order (stream position), not by Event Time alone.

Sources include, per Event Model: Market, Execution, Intent-related, System, and Control categories—whatever the stream contains at that position.

---

2. State derivation

The Event is applied. Derived State becomes f(stream_prefix, Configuration) at the new position.

• State includes Market State, Execution State, and Control State.
• Queue (execution-control substate) is part of Execution State derivation, not a fourth top-level domain (State Model).

No Component mutates truth outside this step.

---

3. Strategy evaluation

Strategy reads projections of derived State (Market and Execution views as needed).

Strategy does not advance Events or alter State directly.

---

4. Intent generation

Strategy emits zero or more Intents—ephemeral commands (create, replace, cancel), not Events, not persistent (Terminology: Intent).

---

5. Risk decision (policy only)

For each Intent, the Risk Engine decides admissibility only:

• Allowed — passes to Execution Control.
• Denied — does not pass; policy forbids the command.

Normative exclusions: Risk does not classify Intents as “queued,” “send later,” or “immediate.” It does not own rate-limit pacing, inflight gating, or transmission ordering. It does not evaluate “execute now vs later”; delay belongs to Queue Processing (Logical Architecture: Queue Processing).

If canonical history requires a visible policy outcome, it appears through Events per Terminology: Intent visibility.

---

6. Queue update / execution-control substate update

For allowed Intents, the Queue (derived execution-control substate) is updated: reconciliation (e.g. Intent Dominance), effective pending outbound work, and related bookkeeping as defined under Configuration.

The Queue is derived execution-control substate (Queue Semantics).

---

7. Queue Processing (deterministic Execution Control)

Still within the same Event-processing step, Queue Processing computes Execution Control only:

• eligibility (e.g. inflight, validity against current Execution projection);
• ordering among eligible work;
• rate-compliant timing and sequencing using deterministic rules tied to Processing Order and derived State—not wall-clock timers as authority.

This is pure derivation from current State + Configuration unless an outcome must be recorded as an Event for canonical history (Terminology: Intent visibility).

Dominance, eligibility, and scheduling are not separate Event types unless explicitly required for canonical history; they do not need to be modeled as standalone “event kinds” in the flow narrative.

There is no separate main loop or queue-processing phase after the fact—only this stage inside Event processing.

---

8. Dispatch

Work selected for send is passed to the Venue Adapter: protocol translation and external I/O only (Logical Architecture: Venue Adapter).

Dispatch may occur only after Execution Control selects it; Risk has already allowed the underlying Intent.

---

9. Venue feedback

The Venue returns execution feedback. The Adapter surfaces this so it can enter the stream as Execution Events (and similar), per Event Model—not to be confused with ephemeral Intents.

---

10. Event re-entry into the Event Stream

Feedback (and any other required records) is appended or merged into the Event Stream according to Processing rules so that the next application step sees a canonical history.

Until those Events are applied, Execution State does not reflect new acknowledgements, fills, or rejections—Orders and positions evolve only through Events.

---

Distinct flows (event vs intent vs order)

Three notions must stay separate:

Concern	What moves	Persistence
Event flow	Events in Processing Order	Immutable stream records; sole driver of State transitions
Intent processing	Ephemeral Intents → allowed/denied → Execution Control → dispatch	Intents are not persistent; visibility via Events when required
Order evolution	Order projections in Execution State	Derived from Execution (and where applicable Intent-related) Events; lifecycle begins at submission with state Submitted

Intent lifecycle and Order lifecycle documentation define stage names; this document only fixes where they fit in Runtime sequencing—not a merged lifecycle model.

---

Execution Control within the flow

Execution Control (Queue + Queue Processing) is solely responsible for:

• holding effective allowed pending work;
• when and in what order that work is dispatched, subject to inflight and rate rules;
• deterministic reconciliation steps that do not duplicate Risk policy.

Risk stops at admissibility. “Cannot send yet” is an execution-control outcome built from derived substate and rules, not a third Risk verdict.

---

Feedback and state re-entry

After Venue (or simulator) behavior produces Execution Events:

1. Those Events enter the Event Stream.
2. On a later processing step, they derive updated Execution State (Order lifecycle transitions, fills, etc.).
3. Strategy may then emit new Intents based on new projections.

There is no parallel path where Venue updates State without Events.

---

Invariants of the flow

1. Single advancement mechanism: Processing proceeds by applying the Event Stream under Configuration; Queue Processing is inside that mechanism, not beside it.
2. State derivation: State = f(Event Stream, Configuration); Components read projections, they do not own mutable system truth.
3. Risk vs Execution Control: Allowed / denied only at Risk; timing and ordering only at Queue Processing.
4. Intent vs Event: Intents are commands during a step; they are not Events. Stream updates use Events only when canonical history requires (Terminology: Intent visibility).
5. Orders: Orders are derived in Execution State; they exist from submission onward in state Submitted as projections; Strategy does not “send Orders” as primary objects— it sends Intents; the System dispatches and Venue Execution Events refine Order state.
6. Determinism: Same stream + Configuration → same derived State at each position (including execution-control substate).

---

Relationship to other documents

• Terminology — definitions.
• Logical Architecture — component boundaries.
• Event Model, State Model — formal semantics.
• Architecture Overview — Stacks (not the focus here).