Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Move location of quit channel closing in exp manager #3638

Merged
merged 3 commits into from
Dec 1, 2017
Merged
Show file tree
Hide file tree
Changes from 2 commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
7 changes: 3 additions & 4 deletions vault/core.go
Original file line number Diff line number Diff line change
Expand Up @@ -1498,8 +1498,6 @@ func (c *Core) sealInternal() error {
// Signal the standby goroutine to shutdown, wait for completion
close(c.standbyStopCh)

c.requestContext = nil

// Release the lock while we wait to avoid deadlocking
c.stateLock.Unlock()
<-c.standbyDoneCh
Expand Down Expand Up @@ -1536,9 +1534,8 @@ func (c *Core) postUnseal() (retErr error) {
defer metrics.MeasureSince([]string{"core", "post_unseal"}, time.Now())
defer func() {
if retErr != nil {
c.requestContextCancelFunc()
c.preSeal()
} else {
c.requestContext, c.requestContextCancelFunc = context.WithCancel(context.Background())
}
}()
c.logger.Info("core: post-unseal setup starting")
Expand All @@ -1559,6 +1556,8 @@ func (c *Core) postUnseal() (retErr error) {
c.seal.SetRecoveryConfig(nil)
}

c.requestContext, c.requestContextCancelFunc = context.WithCancel(context.Background())

if err := enterprisePostUnseal(c); err != nil {
return err
}
Expand Down
42 changes: 32 additions & 10 deletions vault/expiration.go
Original file line number Diff line number Diff line change
Expand Up @@ -12,6 +12,7 @@ import (

"github.com/armon/go-metrics"
log "github.com/mgutz/logxi/v1"
context "golang.org/x/net/context"

"github.com/hashicorp/errwrap"
multierror "github.com/hashicorp/go-multierror"
Expand Down Expand Up @@ -68,29 +69,36 @@ type ExpirationManager struct {
restoreLocks []*locksutil.LockEntry
restoreLoaded sync.Map
quitCh chan struct{}

coreStateLock *sync.RWMutex
quitContext context.Context
}

// NewExpirationManager creates a new ExpirationManager that is backed
// using a given view, and uses the provided router for revocation.
func NewExpirationManager(router *Router, view *BarrierView, ts *TokenStore, logger log.Logger) *ExpirationManager {
if logger == nil {
logger = log.New("expiration_manager")
}

func NewExpirationManager(c *Core, view *BarrierView) *ExpirationManager {
exp := &ExpirationManager{
router: router,
router: c.router,
idView: view.SubView(leaseViewPrefix),
tokenView: view.SubView(tokenViewPrefix),
tokenStore: ts,
logger: logger,
tokenStore: c.tokenStore,
logger: c.logger,
pending: make(map[string]*time.Timer),

// new instances of the expiration manager will go immediately into
// restore mode
restoreMode: 1,
restoreLocks: locksutil.CreateLocks(),
quitCh: make(chan struct{}),

coreStateLock: &c.stateLock,
quitContext: c.requestContext,
}

if exp.logger == nil {
exp.logger = log.New("expiration_manager")
}

return exp
}

Expand All @@ -103,7 +111,7 @@ func (c *Core) setupExpiration() error {
view := c.systemBarrierView.SubView(expirationSubPath)

// Create the manager
mgr := NewExpirationManager(c.router, view, c.tokenStore, c.logger)
mgr := NewExpirationManager(c, view)
c.expiration = mgr

// Link the token store to this
Expand Down Expand Up @@ -430,14 +438,17 @@ func (m *ExpirationManager) Stop() error {
m.logger.Debug("expiration: stop triggered")
defer m.logger.Debug("expiration: finished stopping")

// Do this before stopping pending timers to avoid potential races with
// expiring timers
close(m.quitCh)

m.pendingLock.Lock()
for _, timer := range m.pending {
timer.Stop()
}
m.pending = make(map[string]*time.Timer)
m.pendingLock.Unlock()

close(m.quitCh)
if m.inRestoreMode() {
for {
if !m.inRestoreMode() {
Expand Down Expand Up @@ -969,13 +980,24 @@ func (m *ExpirationManager) expireID(leaseID string) {
return
default:
}

m.coreStateLock.RLock()
if m.quitContext.Err() == context.Canceled {
Copy link
Contributor

@briankassouf briankassouf Dec 1, 2017

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Small nit, but this might be a better way of handling this case:

select {
case <- m.quitContext.Done():
	m.logger.Error("expiration: core context canceled, not attempting further revocation of lease", "lease_id", leaseID)
	m.coreStateLock.RUnlock()
	return
default:
}

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This should be safe; see https://golang.org/pkg/context/#pkg-variables

Canceled is the error returned by Context.Err when the context is canceled.

It's defined behavior so should be reliable.

m.logger.Error("expiration: core context canceled, not attempting further revocation of lease", "lease_id", leaseID)
m.coreStateLock.RUnlock()
return
}

err := m.Revoke(leaseID)
if err == nil {
if m.logger.IsInfo() {
m.logger.Info("expiration: revoked lease", "lease_id", leaseID)
}
m.coreStateLock.RUnlock()
return
}

m.coreStateLock.RUnlock()
m.logger.Error("expiration: failed to revoke lease", "lease_id", leaseID, "error", err)
time.Sleep((1 << attempt) * revokeRetryBase)
}
Expand Down