[Freeipa-devel] [PATCH 0065] vault: Limit size of data stored in vault
Petr Vobornik
pvoborni at redhat.com
Wed Aug 26 13:45:59 UTC 2015
On 08/26/2015 02:13 PM, David Kupka wrote:
> https://fedorahosted.org/freeipa/ticket/5231
>
>
Attaching updated patch. With changes discussed offline.
Not related to the patch:
This patch limits the size to 1MB instead of proposed 10MB. Testing
showed that even 10MB raises a MemoryError in archive_encrypted_data
which is AFAIK a KraClient method - Endi, this sounds as something which
should be also handled in PKI.
Especially when it happens the subsequent vault-archive command ends
with HTTPError: 503 Server Error: Service Unavailable. After restart of
pki, subsequent vault-archive with 1M file took about 4mins (in
vault_retrieve_internal). Next archive command with 1M file took "only" 18s.
10k file took 9s.
Why is it so slow?
--
Petr Vobornik
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-dkupka-0065-2-vault-Limit-size-of-data-stored-in-vault.patch
Type: text/x-patch
Size: 2081 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20150826/46dca3b4/attachment.bin>
More information about the Freeipa-devel
mailing list