-
Notifications
You must be signed in to change notification settings - Fork 4.1k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Don't race for CRL rebuilding capability check (#17185)
* Don't race for CRL rebuilding capability check Core has recently seen some data races during SystemView/replication updates between them and the PKI subsystem. This is because this SystemView access occurs outside of a request (during invalidation handling) and thus the proper lock isn't held. Because replication status cannot change within the lifetime of a plugin (and instead, if a node switches replication status, the entire plugin instance will be torn down and recreated), it is safe to cache this once, at plugin startup, and use it throughout its lifetime. Thus, we replace this SystemView access with a stored boolean variable computed ahead of time. Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com> * Update builtin/logical/pki/backend.go Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>
- Loading branch information
Showing
3 changed files
with
11 additions
and
7 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters