Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

kyle/keycache interface #160

Merged
merged 1 commit into from Aug 5, 2016
Merged

kyle/keycache interface #160

merged 1 commit into from Aug 5, 2016

Conversation

kisom
Copy link
Contributor

@kisom kisom commented Aug 2, 2016

Implementation of a file-backed persistence store.

This is a rather large change. It consists of the following changes:

  • Direct access to the keycache has been removed from the core package. This forces all interaction with the cache to go through the Cryptor, which is required for persistence. The Cryptor needs to know when the cache has changed, and the only way to do this effectively is to make the Cryptor responsible for managing the keycache.
  • A new persist package has been added. This provides a Store interface, for which two implementations are provided. The first is a null persister: this is used when no persistence is configured. The second is a file-backed persistence store.
  • The Cryptor now persists the cache every time it changes.

Additionally, a number of missing returns in a function in the core package have been added.

@codecov-io
Copy link

codecov-io commented Aug 2, 2016
edited

Current coverage is 57.35% (diff: 59.89%)

Merging #160 into master will increase coverage by 3.79%

@@             master       #160   diff @@
==========================================
  Files            15         18     +3   
  Lines          2048       2216   +168   
  Methods           0          0          
  Messages          0          0          
  Branches          0          0          
==========================================
+ Hits           1097       1271   +174   
+ Misses          755        731    -24   
- Partials        196        214    +18

Powered by Codecov. Last update 1cf72b1...7c95007

lziest
lziest reviewed Aug 2, 2016
View reviewed changes
cryptor/cryptor.go
}

// Refresh purges all expired or fully-used delegations in the
// crypto's key cache. It returns the number of delegations that
Copy link
Contributor

@lziest lziest Aug 2, 2016
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

"It returns ..." sounds like describing c.cache.Refresh, I think the 2nd sentence can be removed?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Updated the comment.

@kisom kisom force-pushed the kyle/keycache-interface branch 2 times, most recently from f8c3ff5 to 70e1ebe Compare August 2, 2016 23:28
lziest
lziest reviewed Aug 2, 2016
View reviewed changes
cryptor/cryptor.go
}

access := AccessStructure{
Names: persistUsers,
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

hmm, I probably missed something, this is a single user array, shall it come from the persist policy?

Copy link
Contributor Author

@kisom kisom Aug 3, 2016 via email

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lziest
lziest reviewed Aug 4, 2016
View reviewed changes
cryptor/cryptor.go

var (
persistLabels = []string{"restore"}
persistUsers = []string{"restore"}
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

so we can remove this now right?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Removed.

@lziest
Copy link
Contributor

lziest commented Aug 4, 2016

LGTM

@kisom
Implementation of a file-backed persistence store.
7c95007 
This is a rather large change. It consists of the following changes:

+ Direct access to the keycache has been removed from the core
  package. This forces all interaction with the cache to go
  through the Cryptor, which is required for persistence. The
  Cryptor needs to know when the cache has changed, and the only
  way to do this effectively is to make the Cryptor responsible
  for managing the keycache.

+ A new persist package has been added. This provides a Store
  interface, for which two implementations are provided. The
  first is a null persister: this is used when no persistence
  is configured. The second is a file-backed persistence store.

+ The Cryptor now persists the cache every time it changes.

Additionally, a number of missing returns in a function in the core
package have been added.
@kisom kisom merged commit 510b7ba into master Aug 5, 2016
@kisom kisom deleted the kyle/keycache-interface branch August 5, 2016 00:12
jkroll-cf
jkroll-cf reviewed Aug 5, 2016
View reviewed changes
cryptor/cryptor.go
return c.cache.DelegateStatus(name, labels, admins)
}

var persistLabels = []string{"restore"}
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It seems awkward to have this as a global in something other than the package it belongs to. Would it not make more sense for it to be exported from redoctober/persist?

I realize it's nitpicky, but it's already hard enough to understand what is persist and what is cryptor. Feel free to ignore unless you're opening another PR.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@kisom @codecov-io @lziest @jkroll-cf