fix: fixes race conditions in EntitlementPolicyCache #2657
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Benchmark results, click to expandBenchmark authorization.GetDecisions Results:
Benchmark authorization.v2.GetMultiResourceDecision Results:
Standard Benchmark Metrics Skipped or FailedBulk Benchmark Results
TDF3 Benchmark Results:
NANOTDF Benchmark Results:
|
Benchmark results, click to expandBenchmark authorization.GetDecisions Results:
Benchmark authorization.v2.GetMultiResourceDecision Results:
Standard Benchmark Metrics Skipped or FailedBulk Benchmark Results
TDF3 Benchmark Results:
NANOTDF Benchmark Results:
|
Benchmark results, click to expandBenchmark authorization.GetDecisions Results:
Benchmark authorization.v2.GetMultiResourceDecision Results:
Standard Benchmark Metrics Skipped or FailedBulk Benchmark Results
TDF3 Benchmark Results:
NANOTDF Benchmark Results:
|
dmihalcik-virtru
approved these changes
Aug 27, 2025
jrschumacher
requested changes
Aug 27, 2025
There was a problem hiding this comment.
@imdominicreed this feels pretty aggressive. By shifting the cache to in memory managed by policy it removes the centralized control which will have long term impact on admins from managing cache behavior across the platform.
It is true that ristretto is eventually consistent so the first few hits might be fetching from the DB until the cache is available, but this is expected. If you're encountering some unexpected behavior I'd prefer to address the defect rather than tossing the baby with the bathwater.
I think its important to consider the eviction case, but I don't think its realistic that the policy would be too large at this point unless the admin uses an extremely small cache size.
One thing we're trying to set ourselves up for is support for other cache solutions such as distributive cache via Redis. The cache manager uses https://github.com/eko/gocache so that it will be possible to give admins the option to choose the cache layer they want.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Proposed Changes
ristretto is eventually consistent.. causing a race condition on the first request, updates cache, fetches from cache, nothings there. using a cache here doesn't seem right since we are pulling these in anyways. if the policy is too big that it gets evicted from the cache then what is the cache doing.
This PR removes the ristretto cache, and just stores the entitlement policy. also, sync is added on the read write operations.
Checklist
Testing Instructions