J01-21: Runtime IP_SALT management and guardrails

Stand: 2026-03-17

J01-21 Runtime: IP_SALT-Verwaltung und Guardrails

Type: Task
Status: Erledigt
Priority: Medium
Assignee: -
Sprint: -
Sprint role: -
Resolution: Fertig
Updated: 2026-02-17T16:15:05.743+0100
Parent: J01-5
Related issues: Blocks: J01-16 — Runtime: Concurrency, Locking und atomare Zugriffe — Erledigt

Blocks: J01-9 — Preview: Workflow wieder aktivieren — Zu erledigen

Contents key

This page

Goal
Closure state
Reference frame
Wiederverwendbarer Rahmen für J01-16
Follow-up relationship to J01-16
Provenance
Links

Canonical public work status for J01-21. This issue records the already completed reference path for runtime IP_SALT management and makes visible which parts of that frame are later rolled out to further runtime areas in J01-16.

Goal

Manage IP_SALT as a runtime-internal operating state instead of treating it as a normal active config value. At the same time, this path should provide the smallest reliable reference frame for locking, atomic writes, guardrails, and recovery in runtime operations.

Closure state

IP_SALT is managed internally in runtime under var/state
missing or inconsistent state is repaired or regenerated deterministically under lock
atomic write patterns protect state transitions through temp files plus rename()
reset and recovery use an explicit operating path instead of hidden setup switches
test evidence exists for success, guardrail, and failure paths

Reference frame

J01-21 is no longer an open sprint leftover, but the completed reference issue for the runtime frame:

locking via symfony/lock
bounded lock acquisition with polling and timeout
atomic writes for runtime state
testable guardrail and recovery path
clear separation between config origin and runtime-internal operating state

Not every detail from J01-21 is meant to transfer 1:1 to other runtime managers. Only the locking frame, atomic writes, deterministic failure paths, and a checkable lock-key shape are binding as the model.

Wiederverwendbarer Rahmen für J01-16

Der fachlich wiederverwendbare Kern aus J01-21 ist bewusst schmal. Für die Ausrollung in J01-16 sollen vor allem diese gemeinsamen Module und Regeln wiederverwendet werden:

RuntimeLockRunner als gemeinsamer Lock-Rahmen
RuntimeAtomicWriter als gemeinsamer atomischer Schreib-Helfer
LockFactory plus symfony/lock als einheitlicher Lock-Mechanismus
begrenzter Lock-Erwerb mit Polling und Timeout
Fail-Fast im kritischen Abschnitt mit sicherer Freigabe im Abschluss

Nicht als gemeinsame Pflichtbausteine wiederzuverwenden sind dagegen:

die konkrete IP_SALT-Zustandsmaschine
globale Recovery-Schritte, die an IP_SALT gebunden sind
Marker wie IN_PROGRESS und READY, sofern ein anderer Verwalter nur einfache Read-Modify-Write-Logik braucht

Der Referenzwert von J01-21 liegt damit im Rahmen, nicht in der vollständigen Kopie seines Fachverhaltens.

Follow-up relationship to J01-16

J01-16 extends this frame to further runtime models:

rate limiting under var/tmp/ratelimit
CAPTCHA paths under var/tmp/captcha
token rotation under var/state/tokens

J01-21 remains the narrow reference path here. J01-16 is the broader rollout, not a reinvention of the same base pattern.

Der schrittspezifische Zuschnitt für 16-1 wird in der eigenen 16-1-Arbeitsdoku geführt, damit J01-21 nur den wiederverwendbaren Rahmen und nicht die Detailplanung einzelner 16-*-Schritte trägt.

Provenance

The content origin of this issue lies in the earlier docs/agile track ISS-011. Publicly, however, J01-21 is now the leading identifier; the older ISS-* reference remains provenance only and no longer acts as the navigation key.