-
Notifications
You must be signed in to change notification settings - Fork 553
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
net/tls_probe: Introduce "trust_file_crc32c" metric #17539
Conversation
Compute the crc32c checksum on the complete binary contents of the trust file on certificate creation and reload. Export this value on the metric iff a trust file is present AND certs are otherwise valid. Otherwise export 0. This will be particularly useful for cloud clients who want to verify the contents of the trust store but don't have direct access to the filesystem of the host.
Build will stay broken until https://github.com/redpanda-data/vtools/pull/2616 lands (supporting seastar change), but I've built the vtools PR against this stack and everything seems to be in order. |
Is there a documentation update that will be requested from this pr? |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
lgtm
good point. threw the |
/backport v23.3.x |
@oleiman best way to move things forward is to create a doc issue at https://github.com/redpanda-data/documentation-private I've created one for this task, but need some details |
Ah, thank you @Deflaimun 👀 |
Compute the crc32c checksum on the complete binary contents of the
trust file on certificate creation and reload. Export this value on
the metric iff a trust file is present AND certs are otherwise valid.
Otherwise export 0.
This will be particularly useful for cloud clients who want to verify
the contents of the trust store but don't have direct access to the
filesystem of the host.
Closes https://github.com/redpanda-data/core-internal/issues/1184
Backports Required
Release Notes
Features