Cache bleeding between wallets in single-wallet-askar #3471
Comments
|
The other location where |
|
The TAA issue leads to subwallet controllers incorrectly thinking they are ready to create ledger artifacts (e.g. cred def) but the timing of the request may result in |
|
This likely impacts LTS releases; a fix may be required for them as well. |
|
Ugghh. This TAA issue was reported a long time ago...I never realized that the profile name wasn't unique for single wallet scenarios... Back when I looked at it I didn't understand the single-wallet vs multi-wallet differences very well. The uniqueness for the the upgrade would be significant if multiple upgrades were occurring at the same time. Edit: There also is a failing scenario test I'm looking at. So it might have more implication than I thought. |
|
The Anoncreds profile has the same issue and also needs to be updated. I don't think any issues with an upgrade are likely but this changed should be added to |
|
For the upgrade it does have a bit of a issue because profile.name was used to indicate which profiles were being upgraded. So it turned on and off the flag for just the sub_wallet profile and all of the profiles were using it, instead of the individual wallet. |
|
Reopening to use this as a place to discuss what LTS releases are needed. cc @swcurran |
|
0.12.x is the only LTS we have, so that would be what is needed. We EOL’d 0.11.x this month, so no need to include it. |
I have evidence that some cached values are being used inappropriately across subwallets when in single-wallet-askar mode. The cache collision occurs when using
profile.nameas part of a cache key where that is the sole "unique" portion of the key. My superficial scans suggest that the only place this is occurring is in TAA acceptance records but there may be other locations.To reproduce, I have the following minimal example: https://github.com/Indicio-tech/acapy-minimal-example/blob/test/mt-taa-cache-bleed/examples/mt_taa_test/example.py
The example script does the following:
taa_acceptedThe result of Bob's
GET /ledger/taarequest shows the TAA acceptance from Alice. To verify that this is definitely a cache issue, I did a very simple check: I introduced a sleep exceeding the default ttl of the cache (10 minutes). This delay can be seen commented out in the example script as committed. When this delay is introduced, the value oftaa_acceptedin the response to Bob's request correctly showsNone.Further investigation revealed that, for subwallets of a single-wallet-askar instance, the
profile.nameproperty is alwaysmultitenant_sub_wallet. This impacts the following lines:acapy/acapy_agent/ledger/indy_vdr.py
Line 990 in f30c77a
https://github.com/openwallet-foundation/acapy/blob/main/acapy_agent/ledger/indy_vdr.py#L995
These lines represent where the TAA acceptance is recorded and retrieved. The
profile.namevalue not being unique means the cache retrieval is not correctly scoped to the current profile.The text was updated successfully, but these errors were encountered: