xref: /linux/fs/xfs/xfs_mru_cache.c (revision 86941382508850d58c11bdafe0fec646dfd31b09)
1 // SPDX-License-Identifier: GPL-2.0
2 /*
3  * Copyright (c) 2006-2007 Silicon Graphics, Inc.
4  * All Rights Reserved.
5  */
6 #include "xfs.h"
7 #include "xfs_mru_cache.h"
8 
9 /*
10  * The MRU Cache data structure consists of a data store, an array of lists and
11  * a lock to protect its internal state.  At initialisation time, the client
12  * supplies an element lifetime in milliseconds and a group count, as well as a
13  * function pointer to call when deleting elements.  A data structure for
14  * queueing up work in the form of timed callbacks is also included.
15  *
16  * The group count controls how many lists are created, and thereby how finely
17  * the elements are grouped in time.  When reaping occurs, all the elements in
18  * all the lists whose time has expired are deleted.
19  *
20  * To give an example of how this works in practice, consider a client that
21  * initialises an MRU Cache with a lifetime of ten seconds and a group count of
22  * five.  Five internal lists will be created, each representing a two second
23  * period in time.  When the first element is added, time zero for the data
24  * structure is initialised to the current time.
25  *
26  * All the elements added in the first two seconds are appended to the first
27  * list.  Elements added in the third second go into the second list, and so on.
28  * If an element is accessed at any point, it is removed from its list and
29  * inserted at the head of the current most-recently-used list.
30  *
31  * The reaper function will have nothing to do until at least twelve seconds
32  * have elapsed since the first element was added.  The reason for this is that
33  * if it were called at t=11s, there could be elements in the first list that
34  * have only been inactive for nine seconds, so it still does nothing.  If it is
35  * called anywhere between t=12 and t=14 seconds, it will delete all the
36  * elements that remain in the first list.  It's therefore possible for elements
37  * to remain in the data store even after they've been inactive for up to
38  * (t + t/g) seconds, where t is the inactive element lifetime and g is the
39  * number of groups.
40  *
41  * The above example assumes that the reaper function gets called at least once
42  * every (t/g) seconds.  If it is called less frequently, unused elements will
43  * accumulate in the reap list until the reaper function is eventually called.
44  * The current implementation uses work queue callbacks to carefully time the
45  * reaper function calls, so this should happen rarely, if at all.
46  *
47  * From a design perspective, the primary reason for the choice of a list array
48  * representing discrete time intervals is that it's only practical to reap
49  * expired elements in groups of some appreciable size.  This automatically
50  * introduces a granularity to element lifetimes, so there's no point storing an
51  * individual timeout with each element that specifies a more precise reap time.
52  * The bonus is a saving of sizeof(long) bytes of memory per element stored.
53  *
54  * The elements could have been stored in just one list, but an array of
55  * counters or pointers would need to be maintained to allow them to be divided
56  * up into discrete time groups.  More critically, the process of touching or
57  * removing an element would involve walking large portions of the entire list,
58  * which would have a detrimental effect on performance.  The additional memory
59  * requirement for the array of list heads is minimal.
60  *
61  * When an element is touched or deleted, it needs to be removed from its
62  * current list.  Doubly linked lists are used to make the list maintenance
63  * portion of these operations O(1).  Since reaper timing can be imprecise,
64  * inserts and lookups can occur when there are no free lists available.  When
65  * this happens, all the elements on the LRU list need to be migrated to the end
66  * of the reap list.  To keep the list maintenance portion of these operations
67  * O(1) also, list tails need to be accessible without walking the entire list.
68  * This is the reason why doubly linked list heads are used.
69  */
70 
71 /*
72  * An MRU Cache is a dynamic data structure that stores its elements in a way
73  * that allows efficient lookups, but also groups them into discrete time
74  * intervals based on insertion time.  This allows elements to be efficiently
75  * and automatically reaped after a fixed period of inactivity.
76  *
77  * When a client data pointer is stored in the MRU Cache it needs to be added to
78  * both the data store and to one of the lists.  It must also be possible to
79  * access each of these entries via the other, i.e. to:
80  *
81  *    a) Walk a list, removing the corresponding data store entry for each item.
82  *    b) Look up a data store entry, then access its list entry directly.
83  *
84  * To achieve both of these goals, each entry must contain both a list entry and
85  * a key, in addition to the user's data pointer.  Note that it's not a good
86  * idea to have the client embed one of these structures at the top of their own
87  * data structure, because inserting the same item more than once would most
88  * likely result in a loop in one of the lists.  That's a sure-fire recipe for
89  * an infinite loop in the code.
90  */
91 struct xfs_mru_cache {
92 	struct radix_tree_root	store;     /* Core storage data structure.  */
93 	struct list_head	*lists;    /* Array of lists, one per grp.  */
94 	struct list_head	reap_list; /* Elements overdue for reaping. */
95 	spinlock_t		lock;      /* Lock to protect this struct.  */
96 	unsigned int		grp_count; /* Number of discrete groups.    */
97 	unsigned int		grp_time;  /* Time period spanned by grps.  */
98 	unsigned int		lru_grp;   /* Group containing time zero.   */
99 	unsigned long		time_zero; /* Time first element was added. */
100 	xfs_mru_cache_free_func_t free_func; /* Function pointer for freeing. */
101 	struct delayed_work	work;      /* Workqueue data for reaping.   */
102 	unsigned int		queued;	   /* work has been queued */
103 	void			*data;
104 };
105 
106 static struct workqueue_struct	*xfs_mru_reap_wq;
107 
108 /*
109  * When inserting, destroying or reaping, it's first necessary to update the
110  * lists relative to a particular time.  In the case of destroying, that time
111  * will be well in the future to ensure that all items are moved to the reap
112  * list.  In all other cases though, the time will be the current time.
113  *
114  * This function enters a loop, moving the contents of the LRU list to the reap
115  * list again and again until either a) the lists are all empty, or b) time zero
116  * has been advanced sufficiently to be within the immediate element lifetime.
117  *
118  * Case a) above is detected by counting how many groups are migrated and
119  * stopping when they've all been moved.  Case b) is detected by monitoring the
120  * time_zero field, which is updated as each group is migrated.
121  *
122  * The return value is the earliest time that more migration could be needed, or
123  * zero if there's no need to schedule more work because the lists are empty.
124  */
125 STATIC unsigned long
126 _xfs_mru_cache_migrate(
127 	struct xfs_mru_cache	*mru,
128 	unsigned long		now)
129 {
130 	unsigned int		grp;
131 	unsigned int		migrated = 0;
132 	struct list_head	*lru_list;
133 
134 	/* Nothing to do if the data store is empty. */
135 	if (!mru->time_zero)
136 		return 0;
137 
138 	/* While time zero is older than the time spanned by all the lists. */
139 	while (mru->time_zero <= now - mru->grp_count * mru->grp_time) {
140 
141 		/*
142 		 * If the LRU list isn't empty, migrate its elements to the tail
143 		 * of the reap list.
144 		 */
145 		lru_list = mru->lists + mru->lru_grp;
146 		if (!list_empty(lru_list))
147 			list_splice_init(lru_list, mru->reap_list.prev);
148 
149 		/*
150 		 * Advance the LRU group number, freeing the old LRU list to
151 		 * become the new MRU list; advance time zero accordingly.
152 		 */
153 		mru->lru_grp = (mru->lru_grp + 1) % mru->grp_count;
154 		mru->time_zero += mru->grp_time;
155 
156 		/*
157 		 * If reaping is so far behind that all the elements on all the
158 		 * lists have been migrated to the reap list, it's now empty.
159 		 */
160 		if (++migrated == mru->grp_count) {
161 			mru->lru_grp = 0;
162 			mru->time_zero = 0;
163 			return 0;
164 		}
165 	}
166 
167 	/* Find the first non-empty list from the LRU end. */
168 	for (grp = 0; grp < mru->grp_count; grp++) {
169 
170 		/* Check the grp'th list from the LRU end. */
171 		lru_list = mru->lists + ((mru->lru_grp + grp) % mru->grp_count);
172 		if (!list_empty(lru_list))
173 			return mru->time_zero +
174 			       (mru->grp_count + grp) * mru->grp_time;
175 	}
176 
177 	/* All the lists must be empty. */
178 	mru->lru_grp = 0;
179 	mru->time_zero = 0;
180 	return 0;
181 }
182 
183 /*
184  * When inserting or doing a lookup, an element needs to be inserted into the
185  * MRU list.  The lists must be migrated first to ensure that they're
186  * up-to-date, otherwise the new element could be given a shorter lifetime in
187  * the cache than it should.
188  */
189 STATIC void
190 _xfs_mru_cache_list_insert(
191 	struct xfs_mru_cache	*mru,
192 	struct xfs_mru_cache_elem *elem)
193 {
194 	unsigned int		grp = 0;
195 	unsigned long		now = jiffies;
196 
197 	/*
198 	 * If the data store is empty, initialise time zero, leave grp set to
199 	 * zero and start the work queue timer if necessary.  Otherwise, set grp
200 	 * to the number of group times that have elapsed since time zero.
201 	 */
202 	if (!_xfs_mru_cache_migrate(mru, now)) {
203 		mru->time_zero = now;
204 		if (!mru->queued) {
205 			mru->queued = 1;
206 			queue_delayed_work(xfs_mru_reap_wq, &mru->work,
207 			                   mru->grp_count * mru->grp_time);
208 		}
209 	} else {
210 		grp = (now - mru->time_zero) / mru->grp_time;
211 		grp = (mru->lru_grp + grp) % mru->grp_count;
212 	}
213 
214 	/* Insert the element at the tail of the corresponding list. */
215 	list_add_tail(&elem->list_node, mru->lists + grp);
216 }
217 
218 /*
219  * When destroying or reaping, all the elements that were migrated to the reap
220  * list need to be deleted.  For each element this involves removing it from the
221  * data store, removing it from the reap list, calling the client's free
222  * function and deleting the element from the element cache.
223  *
224  * We get called holding the mru->lock, which we drop and then reacquire.
225  * Sparse need special help with this to tell it we know what we are doing.
226  */
227 STATIC void
228 _xfs_mru_cache_clear_reap_list(
229 	struct xfs_mru_cache	*mru)
230 		__releases(mru->lock) __acquires(mru->lock)
231 {
232 	struct xfs_mru_cache_elem *elem, *next;
233 	LIST_HEAD(tmp);
234 
235 	list_for_each_entry_safe(elem, next, &mru->reap_list, list_node) {
236 
237 		/* Remove the element from the data store. */
238 		radix_tree_delete(&mru->store, elem->key);
239 
240 		/*
241 		 * remove to temp list so it can be freed without
242 		 * needing to hold the lock
243 		 */
244 		list_move(&elem->list_node, &tmp);
245 	}
246 	spin_unlock(&mru->lock);
247 
248 	list_for_each_entry_safe(elem, next, &tmp, list_node) {
249 		list_del_init(&elem->list_node);
250 		mru->free_func(mru->data, elem);
251 	}
252 
253 	spin_lock(&mru->lock);
254 }
255 
256 /*
257  * We fire the reap timer every group expiry interval so
258  * we always have a reaper ready to run. This makes shutdown
259  * and flushing of the reaper easy to do. Hence we need to
260  * keep when the next reap must occur so we can determine
261  * at each interval whether there is anything we need to do.
262  */
263 STATIC void
264 _xfs_mru_cache_reap(
265 	struct work_struct	*work)
266 {
267 	struct xfs_mru_cache	*mru =
268 		container_of(work, struct xfs_mru_cache, work.work);
269 	unsigned long		now, next;
270 
271 	ASSERT(mru && mru->lists);
272 	if (!mru || !mru->lists)
273 		return;
274 
275 	spin_lock(&mru->lock);
276 	next = _xfs_mru_cache_migrate(mru, jiffies);
277 	_xfs_mru_cache_clear_reap_list(mru);
278 
279 	mru->queued = next;
280 	if ((mru->queued > 0)) {
281 		now = jiffies;
282 		if (next <= now)
283 			next = 0;
284 		else
285 			next -= now;
286 		queue_delayed_work(xfs_mru_reap_wq, &mru->work, next);
287 	}
288 
289 	spin_unlock(&mru->lock);
290 }
291 
292 int
293 xfs_mru_cache_init(void)
294 {
295 	xfs_mru_reap_wq = alloc_workqueue("xfs_mru_cache",
296 			XFS_WQFLAGS(WQ_MEM_RECLAIM | WQ_FREEZABLE), 1);
297 	if (!xfs_mru_reap_wq)
298 		return -ENOMEM;
299 	return 0;
300 }
301 
302 void
303 xfs_mru_cache_uninit(void)
304 {
305 	destroy_workqueue(xfs_mru_reap_wq);
306 }
307 
308 /*
309  * To initialise a struct xfs_mru_cache pointer, call xfs_mru_cache_create()
310  * with the address of the pointer, a lifetime value in milliseconds, a group
311  * count and a free function to use when deleting elements.  This function
312  * returns 0 if the initialisation was successful.
313  */
314 int
315 xfs_mru_cache_create(
316 	struct xfs_mru_cache	**mrup,
317 	void			*data,
318 	unsigned int		lifetime_ms,
319 	unsigned int		grp_count,
320 	xfs_mru_cache_free_func_t free_func)
321 {
322 	struct xfs_mru_cache	*mru = NULL;
323 	int			grp;
324 	unsigned int		grp_time;
325 
326 	if (mrup)
327 		*mrup = NULL;
328 
329 	if (!mrup || !grp_count || !lifetime_ms || !free_func)
330 		return -EINVAL;
331 
332 	if (!(grp_time = msecs_to_jiffies(lifetime_ms) / grp_count))
333 		return -EINVAL;
334 
335 	mru = kzalloc(sizeof(*mru), GFP_KERNEL | __GFP_NOFAIL);
336 	if (!mru)
337 		return -ENOMEM;
338 
339 	/* An extra list is needed to avoid reaping up to a grp_time early. */
340 	mru->grp_count = grp_count + 1;
341 	mru->lists = kzalloc(mru->grp_count * sizeof(*mru->lists),
342 				GFP_KERNEL | __GFP_NOFAIL);
343 	if (!mru->lists) {
344 		kfree(mru);
345 		return -ENOMEM;
346 	}
347 
348 	for (grp = 0; grp < mru->grp_count; grp++)
349 		INIT_LIST_HEAD(mru->lists + grp);
350 
351 	/*
352 	 * We use GFP_KERNEL radix tree preload and do inserts under a
353 	 * spinlock so GFP_ATOMIC is appropriate for the radix tree itself.
354 	 */
355 	INIT_RADIX_TREE(&mru->store, GFP_ATOMIC);
356 	INIT_LIST_HEAD(&mru->reap_list);
357 	spin_lock_init(&mru->lock);
358 	INIT_DELAYED_WORK(&mru->work, _xfs_mru_cache_reap);
359 
360 	mru->grp_time  = grp_time;
361 	mru->free_func = free_func;
362 	mru->data = data;
363 	*mrup = mru;
364 	return 0;
365 }
366 
367 /*
368  * Call xfs_mru_cache_flush() to flush out all cached entries, calling their
369  * free functions as they're deleted.  When this function returns, the caller is
370  * guaranteed that all the free functions for all the elements have finished
371  * executing and the reaper is not running.
372  */
373 static void
374 xfs_mru_cache_flush(
375 	struct xfs_mru_cache	*mru)
376 {
377 	if (!mru || !mru->lists)
378 		return;
379 
380 	spin_lock(&mru->lock);
381 	if (mru->queued) {
382 		spin_unlock(&mru->lock);
383 		cancel_delayed_work_sync(&mru->work);
384 		spin_lock(&mru->lock);
385 	}
386 
387 	_xfs_mru_cache_migrate(mru, jiffies + mru->grp_count * mru->grp_time);
388 	_xfs_mru_cache_clear_reap_list(mru);
389 
390 	spin_unlock(&mru->lock);
391 }
392 
393 void
394 xfs_mru_cache_destroy(
395 	struct xfs_mru_cache	*mru)
396 {
397 	if (!mru || !mru->lists)
398 		return;
399 
400 	xfs_mru_cache_flush(mru);
401 
402 	kfree(mru->lists);
403 	kfree(mru);
404 }
405 
406 /*
407  * To insert an element, call xfs_mru_cache_insert() with the data store, the
408  * element's key and the client data pointer.  This function returns 0 on
409  * success or ENOMEM if memory for the data element couldn't be allocated.
410  *
411  * The passed in elem is freed through the per-cache free_func on failure.
412  */
413 int
414 xfs_mru_cache_insert(
415 	struct xfs_mru_cache	*mru,
416 	unsigned long		key,
417 	struct xfs_mru_cache_elem *elem)
418 {
419 	int			error = -EINVAL;
420 
421 	error = -ENOMEM;
422 	if (radix_tree_preload(GFP_KERNEL))
423 		goto out_free;
424 
425 	INIT_LIST_HEAD(&elem->list_node);
426 	elem->key = key;
427 
428 	spin_lock(&mru->lock);
429 	error = radix_tree_insert(&mru->store, key, elem);
430 	radix_tree_preload_end();
431 	if (!error)
432 		_xfs_mru_cache_list_insert(mru, elem);
433 	spin_unlock(&mru->lock);
434 
435 	if (error)
436 		goto out_free;
437 	return 0;
438 
439 out_free:
440 	mru->free_func(mru->data, elem);
441 	return error;
442 }
443 
444 /*
445  * To remove an element without calling the free function, call
446  * xfs_mru_cache_remove() with the data store and the element's key.  On success
447  * the client data pointer for the removed element is returned, otherwise this
448  * function will return a NULL pointer.
449  */
450 struct xfs_mru_cache_elem *
451 xfs_mru_cache_remove(
452 	struct xfs_mru_cache	*mru,
453 	unsigned long		key)
454 {
455 	struct xfs_mru_cache_elem *elem;
456 
457 	ASSERT(mru && mru->lists);
458 	if (!mru || !mru->lists)
459 		return NULL;
460 
461 	spin_lock(&mru->lock);
462 	elem = radix_tree_delete(&mru->store, key);
463 	if (elem)
464 		list_del(&elem->list_node);
465 	spin_unlock(&mru->lock);
466 
467 	return elem;
468 }
469 
470 /*
471  * To remove and element and call the free function, call xfs_mru_cache_delete()
472  * with the data store and the element's key.
473  */
474 void
475 xfs_mru_cache_delete(
476 	struct xfs_mru_cache	*mru,
477 	unsigned long		key)
478 {
479 	struct xfs_mru_cache_elem *elem;
480 
481 	elem = xfs_mru_cache_remove(mru, key);
482 	if (elem)
483 		mru->free_func(mru->data, elem);
484 }
485 
486 /*
487  * To look up an element using its key, call xfs_mru_cache_lookup() with the
488  * data store and the element's key.  If found, the element will be moved to the
489  * head of the MRU list to indicate that it's been touched.
490  *
491  * The internal data structures are protected by a spinlock that is STILL HELD
492  * when this function returns.  Call xfs_mru_cache_done() to release it.  Note
493  * that it is not safe to call any function that might sleep in the interim.
494  *
495  * The implementation could have used reference counting to avoid this
496  * restriction, but since most clients simply want to get, set or test a member
497  * of the returned data structure, the extra per-element memory isn't warranted.
498  *
499  * If the element isn't found, this function returns NULL and the spinlock is
500  * released.  xfs_mru_cache_done() should NOT be called when this occurs.
501  *
502  * Because sparse isn't smart enough to know about conditional lock return
503  * status, we need to help it get it right by annotating the path that does
504  * not release the lock.
505  */
506 struct xfs_mru_cache_elem *
507 xfs_mru_cache_lookup(
508 	struct xfs_mru_cache	*mru,
509 	unsigned long		key)
510 {
511 	struct xfs_mru_cache_elem *elem;
512 
513 	ASSERT(mru && mru->lists);
514 	if (!mru || !mru->lists)
515 		return NULL;
516 
517 	spin_lock(&mru->lock);
518 	elem = radix_tree_lookup(&mru->store, key);
519 	if (elem) {
520 		list_del(&elem->list_node);
521 		_xfs_mru_cache_list_insert(mru, elem);
522 		__release(mru_lock); /* help sparse not be stupid */
523 	} else
524 		spin_unlock(&mru->lock);
525 
526 	return elem;
527 }
528 
529 /*
530  * To release the internal data structure spinlock after having performed an
531  * xfs_mru_cache_lookup() or an xfs_mru_cache_peek(), call xfs_mru_cache_done()
532  * with the data store pointer.
533  */
534 void
535 xfs_mru_cache_done(
536 	struct xfs_mru_cache	*mru)
537 		__releases(mru->lock)
538 {
539 	spin_unlock(&mru->lock);
540 }
541