From db375687f8158bcbf4d23d1c5966ec7f589c91dd Mon Sep 17 00:00:00 2001 From: Tim Gross Date: Fri, 21 Oct 2022 18:33:22 +0000 Subject: [PATCH] backport of commit 86b01de5ffc74f5942347580c64ae18a853bd608 --- .changelog/14987.txt | 15 +++++++++++++++ .changelog/15009.txt | 7 +++++++ 2 files changed, 22 insertions(+) create mode 100644 .changelog/14987.txt create mode 100644 .changelog/15009.txt diff --git a/.changelog/14987.txt b/.changelog/14987.txt new file mode 100644 index 00000000000..5a99d877366 --- /dev/null +++ b/.changelog/14987.txt @@ -0,0 +1,15 @@ +```release-note:bug +keyring: Fixed a bug where the root keyring replicator's rate limiting would be skipped if the keyring replication exceeded the burst rate. +``` + +```release-note:bug +keyring: Fixed a bug where root keyring replication could make incorrectly stale queries and exit early if those queries did not return the expected key. +``` + +```release-note:bug +keyring: Fixed a bug where root keyring initialization could occur before the raft FSM on the leader was verified to be up-to-date. +``` + +```release-note:bug +keyring: Fixed a bug where if a key is rotated immediately following a leader election, plans that are in-flight may get signed before the new leader has the key. Allow for a short timeout-and-retry to avoid rejecting plans. +``` diff --git a/.changelog/15009.txt b/.changelog/15009.txt new file mode 100644 index 00000000000..dfac8da24b3 --- /dev/null +++ b/.changelog/15009.txt @@ -0,0 +1,7 @@ +```release-note:bug +keyring: Fixed a bug where root keyring garbage collection configuration values were not respected. +``` + +```release-note:bug +keyring: Fixed a bug where `nomad system gc` forced a root keyring rotation. +```