feat(grpc): per nexus instance locks in grpc api

Nexus gRPC API is now protected on per-nexus basis instead of global API serialisation, which provides better scalability. Generic lock manager implemented to provide common API for protecting sensitive resources. Signed-off-by: Mikhail Tcymbaliuk <[email protected]>
openebs · Dec 1, 2022 · 0ac71d5 · 0ac71d5
1 parent 293ece8
commit 0ac71d5
Show file tree

Hide file tree

Showing 7 changed files with 1,386 additions and 711 deletions.
diff --git a/mayastor/src/bin/mayastor.rs b/mayastor/src/bin/mayastor.rs
@@ -11,6 +11,11 @@ use mayastor::{
     core::{
         device_monitor,
         diagnostics::process_diagnostics_cli,
+        lock::{
+            ProtectedSubsystems,
+            ResourceLockManager,
+            ResourceLockManagerConfig,
+        },
         reactor_monitor_loop,
         runtime,
         MayastorCliArgs,
@@ -47,6 +52,11 @@ fn start_tokio_runtime(args: &MayastorCliArgs) {
     let reactor_freeze_detection = args.reactor_freeze_detection;
     let reactor_freeze_timeout = args.reactor_freeze_timeout;
 
+    // Initialize Lock manager.
+    let cfg = ResourceLockManagerConfig::default()
+        .with_subsystem(ProtectedSubsystems::NEXUS, 512);
+    ResourceLockManager::initialize(cfg);
+
     Mthread::spawn_unaffinitized(move || {
         runtime::block_on(async move {
             let mut futures = Vec::new();

diff --git a/mayastor/src/core/lock.rs b/mayastor/src/core/lock.rs
@@ -0,0 +1,189 @@
+use std::{
+    collections::hash_map::DefaultHasher,
+    hash::{Hash, Hasher},
+    time::Duration,
+};
+
+use futures::lock::{Mutex, MutexGuard};
+use once_cell::sync::OnceCell;
+
+/// Common IO engine resource subsystems.
+pub struct ProtectedSubsystems;
+impl ProtectedSubsystems {
+    pub const NEXUS: &'static str = "nexus";
+}
+
+/// Configuration parameters for initialization of the Lock manager.
+#[derive(Debug, Default)]
+pub struct ResourceLockManagerConfig {
+    /// Configs for subsystems: denote id and maximum amount of lockable
+    /// resources.
+    subsystems: Vec<(String, usize)>,
+}
+
+impl ResourceLockManagerConfig {
+    /// Add resource subsystem to the config.
+    /// Panics if another subsystem with the same id already exists.
+    pub fn with_subsystem<T: AsRef<str>>(
+        mut self,
+        id: T,
+        num_objects: usize,
+    ) -> Self {
+        let ids = id.as_ref();
+
+        if self.subsystems.iter().any(|(i, _)| ids.eq(i)) {
+            panic!("Subsystem {} already exists", ids);
+        }
+
+        self.subsystems.push((ids.to_owned(), num_objects));
+        self
+    }
+}
+
+/// Resource subsystem that holds locks for all resources withing this system.
+pub struct ResourceSubsystem {
+    id: String,
+    object_locks: Vec<Mutex<LockStats>>,
+    subsystem_lock: Mutex<LockStats>,
+}
+
+impl ResourceSubsystem {
+    /// Create a new resource subsystem with target id and maximum number of
+    /// objects.
+    fn new(id: String, num_objects: usize) -> Self {
+        let object_locks =
+            std::iter::repeat_with(|| Mutex::new(LockStats::default()))
+                .take(num_objects)
+                .collect::<Vec<_>>();
+
+        Self {
+            id,
+            object_locks,
+            subsystem_lock: Mutex::new(LockStats::default()),
+        }
+    }
+
+    /// Acquire the subsystem lock.
+    pub async fn lock(
+        &self,
+        wait_timeout: Option<Duration>,
+    ) -> Option<ResourceLockGuard<'_>> {
+        acquire_lock(&self.subsystem_lock, wait_timeout).await
+    }
+
+    /// Lock subsystem resource by its ID and obtain a lock guard.
+    pub async fn lock_resource<T: AsRef<str>>(
+        &self,
+        id: T,
+        wait_timeout: Option<Duration>,
+    ) -> Option<ResourceLockGuard<'_>> {
+        // Calculate hash of the object to get the mutex index.
+        let mut hasher = DefaultHasher::new();
+        id.as_ref().hash(&mut hasher);
+        let mutex_id = hasher.finish() as usize % self.object_locks.len();
+
+        acquire_lock(&self.object_locks[mutex_id], wait_timeout).await
+    }
+}
+
+/// Structure that holds per-lock statistics.
+#[derive(Debug, Default)]
+struct LockStats {
+    num_acquires: usize,
+}
+
+/// Lock manager which is used for protecting access to sensitive resources.
+/// The following hierarchical levels of resource protection are supported:
+/// 1) Global - lock manager exposes one single lock which can be used as
+/// the global lock to control access at the topmost level.
+/// 2) Subsystem - Subsystems group resources of the same type (examples are:
+/// "nexus", "pool", etc). Every subsystem exposes the global, per-subsystem
+/// lock to control resource access at the subsystem level.
+/// Example: create/delete nexus operations must be globally serialized,
+/// which can be achieved by locking the "nexus" subsystem.
+/// 3) Resource - control access at per-object level.
+/// Example: control access to a nexus instance whilst modifying nexus state.
+pub struct ResourceLockManager {
+    /// All known resource subsystems with locks.
+    subsystems: Vec<ResourceSubsystem>,
+    /// Global resource lock,
+    mgr_lock: Mutex<LockStats>,
+}
+
+/// Automatically releases the lock once dropped.
+pub struct ResourceLockGuard<'a> {
+    _lock_guard: MutexGuard<'a, LockStats>,
+}
+
+/// Global instance of the resource lock manager.
+static LOCK_MANAGER: OnceCell<ResourceLockManager> = OnceCell::new();
+
+/// Helper function to abstract common lock acquisition logic.
+async fn acquire_lock(
+    lock: &Mutex<LockStats>,
+    wait_timeout: Option<Duration>,
+) -> Option<ResourceLockGuard<'_>> {
+    let mut lock_guard = if let Some(d) = wait_timeout {
+        match tokio::time::timeout(d, lock.lock()).await {
+            Err(_) => return None,
+            Ok(g) => g,
+        }
+    } else {
+        // No timeout, wait for the lock indefinitely.
+        lock.lock().await
+    };
+
+    (*lock_guard).num_acquires += 1;
+
+    Some(ResourceLockGuard {
+        _lock_guard: lock_guard,
+    })
+}
+
+impl ResourceLockManager {
+    /// Initialize instance of the lock manager. This function must be called
+    /// prior to using the lock manager API.
+    pub fn initialize(cfg: ResourceLockManagerConfig) {
+        LOCK_MANAGER.get_or_init(|| {
+            let subsystems = cfg
+                .subsystems
+                .iter()
+                .map(|(id, n)| ResourceSubsystem::new(id.to_owned(), *n))
+                .collect::<Vec<_>>();
+
+            ResourceLockManager {
+                subsystems,
+                mgr_lock: Mutex::new(LockStats::default()),
+            }
+        });
+    }
+
+    /// Acquire the global Lock manager lock.
+    pub async fn lock(
+        &self,
+        wait_timeout: Option<Duration>,
+    ) -> Option<ResourceLockGuard<'_>> {
+        acquire_lock(&self.mgr_lock, wait_timeout).await
+    }
+
+    /// Get resource subsystem by its id.
+    pub fn get_subsystem<T: AsRef<str>>(&self, id: T) -> &ResourceSubsystem {
+        let ids = id.as_ref();
+
+        for s in &self.subsystems {
+            if s.id.eq(ids) {
+                return s;
+            }
+        }
+
+        panic!("Resource subsystem {} doesn't exist", id.as_ref());
+    }
+
+    /// Get global instance of the lock manager. Panics if Lock manager is not
+    /// initialized.
+    pub fn get_instance() -> &'static ResourceLockManager {
+        LOCK_MANAGER.get().expect("Lock Manager is not initialized")
+    }
+}
+
+impl ResourceLockGuard<'_> {}
diff --git a/mayastor/src/core/mod.rs b/mayastor/src/core/mod.rs
@@ -37,6 +37,13 @@ pub use env::{
 };
 pub use handle::BdevHandle;
 pub use io_device::IoDevice;
+pub use lock::{
+    ProtectedSubsystems,
+    ResourceLockGuard,
+    ResourceLockManager,
+    ResourceLockManagerConfig,
+    ResourceSubsystem,
+};
 pub use reactor::{
     reactor_monitor_loop,
     Reactor,
@@ -68,6 +75,7 @@ mod env;
 mod handle;
 mod io_device;
 pub mod io_driver;
+pub mod lock;
 pub mod mempool;
 mod nic;
 pub mod partition;