From b2fad5d503b34ab59f310b16d09f9e864291f78e Mon Sep 17 00:00:00 2001 From: Calvin Leung Huang Date: Thu, 26 Apr 2018 13:19:31 -0400 Subject: [PATCH] Optimize revokeSalted by not calling view.List twice --- vault/token_store.go | 13 ++++++++++--- 1 file changed, 10 insertions(+), 3 deletions(-) diff --git a/vault/token_store.go b/vault/token_store.go index ab85283791ce..341599f92069 100644 --- a/vault/token_store.go +++ b/vault/token_store.go @@ -1214,9 +1214,16 @@ func (ts *TokenStore) revokeSalted(ctx context.Context, saltedID string) (ret er return errwrap.Wrapf("failed to update child token: {{err}}", err) } lock.Unlock() - } - if err = logical.ClearView(ctx, ts.view.SubView(parentPath)); err != nil { - return errwrap.Wrapf("failed to delete entry: {{err}}", err) + + // Delete the the child storage entry after we update the token entry Since + // paths are not deeply nested (i.e. they are simply + // parenPrefix//), we can simply call view.Delete instead + // of view.ClearView + index := parentPath + child + err = ts.view.Delete(ctx, index) + if err != nil { + return errwrap.Wrapf("failed to delete child entry: {{err}}", err) + } } // Now that the entry is not usable for any revocation tasks, nuke it