open-vault/helper
Vishal Nayak c87d34d1a4
Seal migration with Raft (#8103)
* Seal migration after unsealing

* Refactor migration fields migrationInformation in core

* Perform seal migration as part of postUnseal

* Remove the sleep logic

* Use proper seal in the unseal function

* Fix migration from Auto to Shamir

* Fix the recovery config missing issue

* Address the non-ha migration case

* Fix the multi cluster case

* Avoid re-running seal migration

* Run the post migration code in new leaders

* Fix the issue of wrong recovery being set

* Address review feedback

* Add more complete testing coverage for seal migrations.   (#8247)

* Add more complete testing coverage for seal migrations.  Also remove VAULT_ACC gate from some tests that just depend on docker, cleanup dangling recovery config in storage after migration, and fix a call in adjustCoreForSealMigration that seems broken.

* Fix the issue of wrong recovery key being set

* Adapt tests to work with multiple cores.

* Add missing line to disable raft join.

Co-authored-by: Vishal Nayak <vishalnayak@users.noreply.github.com>

* Fix all known issues

* Remove warning

* Review feedback.

* Revert my previous change that broke raft tests.  We'll need to come back and at least comment
this once we better understand why it's needed.

* Don't allow migration between same types for now

* Disable auto to auto tests for now since it uses migration between same types which is not allowed

* Update vault/core.go

Co-Authored-By: Brian Kassouf <briankassouf@users.noreply.github.com>

* Add migration logs

* Address review comments

* Add the recovery config check back

* Skip a few steps if migration is already done

* Return from waitForLeadership if migration fails

Co-authored-by: ncabatoff <nick.cabatoff@gmail.com>
Co-authored-by: Brian Kassouf <briankassouf@users.noreply.github.com>
2020-02-13 16:27:31 -05:00
..
builtinplugins Add redshift database plugin (#8299) 2020-02-13 09:42:30 -08:00
dhutil VSI (#4985) 2018-07-24 22:02:27 -04:00
flag-kv Errwrap everywhere (#4252) 2018-04-05 11:49:21 -04:00
flag-slice command/server: add config loading 2015-03-12 15:21:11 -07:00
forwarding Update protobufs, sdk changes 2019-04-12 23:13:14 -04:00
hostutil Fix build for openbsd 2019-11-11 20:10:21 -08:00
identity Add identity templating helper to sdk/framework (#8088) 2020-01-06 10:16:52 -08:00
kv-builder Create sdk/ and api/ submodules (#6583) 2019-04-12 17:54:35 -04:00
metricsutil Add Kerberos auth agent (#7999) 2020-01-09 14:56:34 -08:00
mfa Switch to go modules (#6585) 2019-04-13 03:44:06 -04:00
namespace Remove namespace.TestContext and namespace.TestNamespace (#5682) 2018-11-05 11:11:32 -05:00
pgpkeys fixed panic in #7485 (#7546) 2019-10-09 10:22:46 -04:00
policies Fix using wrong var 2016-03-24 10:23:09 -04:00
proxyutil Create sdk/ and api/ submodules (#6583) 2019-04-12 17:54:35 -04:00
storagepacker Don't return an error if storagepacker is told to delete no items (#6941) 2019-06-20 17:46:58 -04:00
testhelpers Seal migration with Raft (#8103) 2020-02-13 16:27:31 -05:00
xor Errwrap everywhere (#4252) 2018-04-05 11:49:21 -04:00