Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Log, don't err, on unified delta WAL write failure #20057

Merged
merged 2 commits into from
Apr 11, 2023
Merged

Log, don't err, on unified delta WAL write failure #20057

merged 2 commits into from
Apr 11, 2023

Conversation

cipherboy
Copy link
Contributor

When the PBPWF fails on the Active node of a PR Secondary cluster with a read-only failure, there is no value in forwarding this request up to the Active node of the PR Primary cluster: it does not have the local revocation context necessary to write a Delta WAL entry for this request, and would likely end up writing a cross-cluster revocation entry (if it is enabled) or else erring completely.

Instead, log this error like we do when failing to write unified CRL entries. Switch both to using Error instead of Debug for this type of failure.

@cipherboy
Log, don't err, on unified delta WAL write failure
e1481cc 
When the PBPWF fails on the Active node of a PR Secondary cluster with a
read-only failure, there is no value in forwarding this request up to
the Active node of the PR Primary cluster: it does not have the local
revocation context necessary to write a Delta WAL entry for this
request, and would likely end up writing a cross-cluster revocation
entry (if it is enabled) or else erring completely.

Instead, log this error like we do when failing to write unified CRL
entries. Switch both to using Error instead of Debug for this type of
failure.

Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>
@cipherboy cipherboy added bug Used to indicate a potential bug secret/pki backport/1.13.x labels Apr 10, 2023
@cipherboy cipherboy added this to the 1.14 milestone Apr 10, 2023
@cipherboy cipherboy requested review from kitography, stevendpclark and a team April 10, 2023 12:54
@cipherboy
Add changelog entry
5cf7993 
Signed-off-by: Alexander Scheel <alex.scheel@hashicorp.com>
@cipherboy cipherboy mentioned this pull request Apr 10, 2023
Merged
@cipherboy
Copy link
Contributor Author

Thanks @stevendpclark! Merging...

@cipherboy cipherboy merged commit ee40ffc into main Apr 11, 2023
This was referenced Apr 11, 2023
Merged
Merged
@cipherboy cipherboy deleted the cipherboy-log-on-delta-wal-failure branch April 21, 2023 13:08
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@stevendpclark stevendpclark stevendpclark approved these changes

@kitography kitography Awaiting requested review from kitography

Assignees
No one assigned
Labels
bug Used to indicate a potential bug secret/pki
Projects
None yet
Milestone
1.14
Development

Successfully merging this pull request may close these issues.
2 participants
@cipherboy @stevendpclark