pubky-homeserver 0.9.1

Pubky core's homeserver.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135

//! Simple TTL cache for resolved per-user quota overrides.
//!
//! This is a dumb data structure — it stores, retrieves, and expires entries.
//! All DB resolution logic lives in [`super::UserService`].

use std::sync::Arc;
use std::time::{Duration, Instant};

use dashmap::DashMap;
use pubky_common::crypto::PublicKey;

use crate::shared::user_quota::UserQuota;

/// How long a cached limit entry is considered fresh before re-resolving from DB.
///
/// Quota changes made via the admin API are **not** actively invalidated in the
/// cache — they take effect once this TTL expires.
/// In an emergency there exists the option to use /users/{pubkey}/disable.
const CACHE_TTL: Duration = Duration::from_secs(120); // 2 minutes

/// How long a negative (user-not-found) cache entry lives before re-checking the DB.
/// Short TTL so that a subsequent signup populates limits promptly.
const NEGATIVE_CACHE_TTL: Duration = Duration::from_secs(30);

/// Maximum number of entries in the cache. Prevents unbounded memory growth.
const MAX_ENTRIES: usize = 100_000;

/// How often the background task runs to evict expired cache entries.
const CLEANUP_INTERVAL_SECS: u64 = 60;

/// A cached user quota config with an expiry timestamp.
#[derive(Debug, Clone)]
pub(super) struct CachedEntry {
    /// The resolved quota, or `None` for a negative (user-not-found) entry.
    pub config: Option<UserQuota>,
    cached_at: Instant,
    ttl: Duration,
}

impl CachedEntry {
    /// Wrap a resolved config with a fresh timestamp.
    pub fn found(config: UserQuota) -> Self {
        Self {
            config: Some(config),
            cached_at: Instant::now(),
            ttl: CACHE_TTL,
        }
    }

    /// Create a negative cache entry (user not found) with a shorter TTL.
    pub fn not_found() -> Self {
        Self {
            config: None,
            cached_at: Instant::now(),
            ttl: NEGATIVE_CACHE_TTL,
        }
    }

    fn is_expired(&self) -> bool {
        self.cached_at.elapsed() > self.ttl
    }
}

/// TTL cache for per-user quota overrides.
///
/// Stores resolved quotas with automatic expiry and background cleanup.
/// Does not access the database — cache miss resolution is handled by
/// [`super::UserService::resolve_quota`].
#[derive(Debug, Clone)]
pub(super) struct QuotaCache {
    entries: Arc<DashMap<PublicKey, CachedEntry>>,
}

impl QuotaCache {
    /// Create a new cache and spawn a background cleanup task.
    /// The cleanup task self-terminates when the cache is dropped (Weak::upgrade fails).
    pub fn new() -> Self {
        let entries: Arc<DashMap<PublicKey, CachedEntry>> = Arc::new(DashMap::new());

        let weak = Arc::downgrade(&entries);
        tokio::spawn(async move {
            let mut interval = tokio::time::interval(Duration::from_secs(CLEANUP_INTERVAL_SECS));
            interval.tick().await; // skip first immediate tick
            loop {
                interval.tick().await;
                let Some(map) = weak.upgrade() else {
                    break;
                };
                map.retain(|_, entry| !entry.is_expired());
            }
        });

        Self { entries }
    }

    /// Get a non-expired cached entry.
    pub fn get(&self, pubkey: &PublicKey) -> Option<Option<UserQuota>> {
        self.entries
            .get(pubkey)
            .filter(|entry| !entry.is_expired())
            .map(|entry| entry.config.clone())
    }

    /// Insert or replace a cache entry.
    pub fn insert(&self, pubkey: PublicKey, entry: CachedEntry) {
        self.entries.insert(pubkey, entry);
    }

    /// Evict a specific user's entry.
    pub fn remove(&self, pubkey: &PublicKey) {
        self.entries.remove(pubkey);
    }

    /// Ensure there's room for a new entry, evicting expired and overflow entries as needed.
    pub fn make_room(&self) {
        if self.entries.len() < MAX_ENTRIES {
            return;
        }

        self.entries.retain(|_, entry| !entry.is_expired());

        if self.entries.len() >= MAX_ENTRIES {
            let to_evict = MAX_ENTRIES / 10;
            let keys: Vec<_> = self
                .entries
                .iter()
                .take(to_evict.max(1))
                .map(|entry| entry.key().clone())
                .collect();
            for key in keys {
                self.entries.remove(&key);
            }
        }
    }
}