krd/vault-redux
1
0
Fork 0
Code
0726bad8dc
vault-redux/Makefile

265 lines
10 KiB
Makefile
Raw Normal View History

Sync makefile
2017-10-23 19:38:30 +03:00
# Determine this makefile's path.
# Be sure to place this BEFORE `include` directives, if any.
THIS_FILE := $(lastword $(MAKEFILE_LIST))
Allow easier swapping of Go version (#8102)
2020-01-09 20:35:32 +03:00
TEST?=$$($(GO_CMD) list ./... | grep -v /vendor/ | grep -v /integ)
Sync some changes that weren't properly pulled over
2019-07-22 20:11:00 +03:00
TEST_TIMEOUT?=45m
EXTENDED_TEST_TIMEOUT=60m
INTEG_TEST_TIMEOUT=120m
scripts
2015-03-04 10:14:18 +03:00
VETARGS?=-asmdecl -atomic -bool -buildtags -copylocks -methods -nilfunc -printf -rangeloops -shift -structtags -unsafeptr
Use a more minimal bootstrap target when running in CI: just what we need to satisfy our job needs. Also remove govendor which we no longer use. (#8808)
2020-04-22 22:05:49 +03:00
EXTERNAL_TOOLS_CI=\
Add Makefile/Dockerfile UI bits
2018-04-03 17:46:45 +03:00
github.com/elazarl/go-bindata-assetfs/... \
github.com/hashicorp/go-bindata/... \
Fix Makefile
2020-04-30 03:01:03 +03:00
github.com/mitchellh/gox \
Makefile: delete old stage/publish targets
2020-08-12 13:09:15 +03:00
golang.org/x/tools/cmd/goimports
Makefile: add goimports to CI tools - This is needed for building the final release.
2020-04-29 23:35:13 +03:00
EXTERNAL_TOOLS=\
fix: removes broken golangci-lint external tool from bootstrap (#8846)
2020-04-25 03:52:23 +03:00
github.com/client9/misspell/cmd/misspell
revert a change introduced 13dbb3aac (#7979)
2019-12-08 05:01:11 +03:00
GOFMT_FILES?=$$(find . -name '*.go' | grep -v pb.go | grep -v vendor)
scripts
2015-03-04 10:14:18 +03:00
Update Go to 1.16.2 for the 1.8-dev cycle (#11267) * Update to Go 1.16.2 for build/dev * Update SDK version_base * Update docker images * make packages
2021-04-07 23:46:42 +03:00
GO_VERSION_MIN=1.16.2
Allow easier swapping of Go version (#8102)
2020-01-09 20:35:32 +03:00
GO_CMD?=go
Build: Respect the CGO_ENABLED environment variable (#6766)
2019-05-22 15:17:55 +03:00
CGO_ENABLED?=0
FoundationDB physical backend (#4900)
2018-07-16 17:18:09 +03:00
ifneq ($(FDB_ENABLED), )
CGO_ENABLED=1
BUILD_TAGS+=foundationdb
endif
Add quickdev to Makefile
2017-02-06 04:30:40 +03:00
default: dev
scripts
2015-03-04 10:14:18 +03:00
Spelling (#4119)
2018-03-20 21:54:10 +03:00
# bin generates the releasable binaries for Vault
Sync makefile
2017-10-23 19:38:30 +03:00
bin: prep
FoundationDB physical backend (#4900)
2018-07-16 17:18:09 +03:00
@CGO_ENABLED=$(CGO_ENABLED) BUILD_TAGS='$(BUILD_TAGS) ui' sh -c "'$(CURDIR)/scripts/build.sh'"
scripts
2015-03-04 10:14:18 +03:00
# dev creates binaries for testing Vault locally. These are put
Remove quickdev from Makefile
2018-04-10 00:36:05 +03:00
# into ./bin/ as well as $GOPATH/bin
Sync makefile
2017-10-23 19:38:30 +03:00
dev: prep
FoundationDB physical backend (#4900)
2018-07-16 17:18:09 +03:00
@CGO_ENABLED=$(CGO_ENABLED) BUILD_TAGS='$(BUILD_TAGS)' VAULT_DEV_BUILD=1 sh -c "'$(CURDIR)/scripts/build.sh'"
Add UI asset file checks to Makefile (#6428)
2019-03-25 20:07:14 +03:00
dev-ui: assetcheck prep
FoundationDB physical backend (#4900)
2018-07-16 17:18:09 +03:00
@CGO_ENABLED=$(CGO_ENABLED) BUILD_TAGS='$(BUILD_TAGS) ui' VAULT_DEV_BUILD=1 sh -c "'$(CURDIR)/scripts/build.sh'"
Add pre-push hook
2017-09-05 02:16:11 +03:00
dev-dynamic: prep
Add dev-dynamic makefile target
2016-05-10 06:17:38 +03:00
@CGO_ENABLED=1 BUILD_TAGS='$(BUILD_TAGS)' VAULT_DEV_BUILD=1 sh -c "'$(CURDIR)/scripts/build.sh'"
Add memory profiling for custom builds (#5584)
2018-10-31 21:11:45 +03:00
# *-mem variants will enable memory profiling which will write snapshots of heap usage
# to $TMP/vaultprof every 5 minutes. These can be analyzed using `$ go tool pprof <profile_file>`.
# Note that any build can have profiling added via: `$ BUILD_TAGS=memprofiler make ...`
dev-mem: BUILD_TAGS+=memprofiler
dev-mem: dev
dev-ui-mem: BUILD_TAGS+=memprofiler
Add UI asset file checks to Makefile (#6428)
2019-03-25 20:07:14 +03:00
dev-ui-mem: assetcheck dev-ui
Add memory profiling for custom builds (#5584)
2018-10-31 21:11:45 +03:00
dev-dynamic-mem: BUILD_TAGS+=memprofiler
dev-dynamic-mem: dev-dynamic
Add docker dev build targets (#9426) * Add docker dev build target * Update scripts/docker/Dockerfile Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com> * Add multi-stage build * Add comment about multi-stage * Add docker-dev-ui Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
2020-07-20 21:11:34 +03:00
# Creates a Docker image by adding the compiled linux/amd64 binary found in ./bin.
docker-dev: add go version as build arg (#10117)
2020-10-08 21:30:31 +03:00
# The resulting image is tagged "vault:dev".
Add docker dev build targets (#9426) * Add docker dev build target * Update scripts/docker/Dockerfile Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com> * Add multi-stage build * Add comment about multi-stage * Add docker-dev-ui Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
2020-07-20 21:11:34 +03:00
docker-dev: prep
docker-dev: add go version as build arg (#10117)
2020-10-08 21:30:31 +03:00
docker build --build-arg VERSION=$(GO_VERSION_MIN) -f scripts/docker/Dockerfile -t vault:dev .
Add docker dev build targets (#9426) * Add docker dev build target * Update scripts/docker/Dockerfile Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com> * Add multi-stage build * Add comment about multi-stage * Add docker-dev-ui Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
2020-07-20 21:11:34 +03:00
docker-dev-ui: prep
docker-dev: add go version as build arg (#10117)
2020-10-08 21:30:31 +03:00
docker build --build-arg VERSION=$(GO_VERSION_MIN) -f scripts/docker/Dockerfile.ui -t vault:dev-ui .
Add docker dev build targets (#9426) * Add docker dev build target * Update scripts/docker/Dockerfile Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com> * Add multi-stage build * Add comment about multi-stage * Add docker-dev-ui Co-authored-by: Jim Kalafut <jkalafut@hashicorp.com>
2020-07-20 21:11:34 +03:00
scripts
2015-03-04 10:14:18 +03:00
# test runs the unit tests and vets the code
Sync makefile
2017-10-23 19:38:30 +03:00
test: prep
FoundationDB physical backend (#4900)
2018-07-16 17:18:09 +03:00
@CGO_ENABLED=$(CGO_ENABLED) \
Unset VAULT_DEV_* in tests Vault picks these values and then tests fail, and it's sad
2017-09-05 06:51:29 +03:00
VAULT_ADDR= \
VAULT_TOKEN= \
VAULT_DEV_ROOT_TOKEN_ID= \
VAULT_ACC= \
Allow easier swapping of Go version (#8102)
2020-01-09 20:35:32 +03:00
$(GO_CMD) test -tags='$(BUILD_TAGS)' $(TEST) $(TESTARGS) -timeout=$(TEST_TIMEOUT) -parallel=20
scripts
2015-03-04 10:14:18 +03:00
Sync makefile
2017-10-23 19:38:30 +03:00
testcompile: prep
Port some replication bits to OSS (#2386)
2017-02-16 23:15:02 +03:00
@for pkg in $(TEST) ; do \
Allow easier swapping of Go version (#8102)
2020-01-09 20:35:32 +03:00
$(GO_CMD) test -v -c -tags='$(BUILD_TAGS)' $$pkg -parallel=4 ; \
Port some replication bits to OSS (#2386)
2017-02-16 23:15:02 +03:00
done
logical/aws
2015-03-20 19:59:48 +03:00
# testacc runs acceptance tests
Sync makefile
2017-10-23 19:38:30 +03:00
testacc: prep
logical/aws
2015-03-20 19:59:48 +03:00
@if [ "$(TEST)" = "./..." ]; then \
echo "ERROR: Set TEST to a specific package"; \
exit 1; \
fi
Allow easier swapping of Go version (#8102)
2020-01-09 20:35:32 +03:00
VAULT_ACC=1 $(GO_CMD) test -tags='$(BUILD_TAGS)' $(TEST) -v $(TESTARGS) -timeout=$(EXTENDED_TEST_TIMEOUT)
logical/aws
2015-03-20 19:59:48 +03:00
scripts
2015-03-04 10:14:18 +03:00
# testrace runs the race checker
Sync makefile
2017-10-23 19:38:30 +03:00
testrace: prep
Unset VAULT_DEV_* in tests Vault picks these values and then tests fail, and it's sad
2017-09-05 06:51:29 +03:00
@CGO_ENABLED=1 \
VAULT_ADDR= \
VAULT_TOKEN= \
VAULT_DEV_ROOT_TOKEN_ID= \
VAULT_ACC= \
Allow easier swapping of Go version (#8102)
2020-01-09 20:35:32 +03:00
$(GO_CMD) test -tags='$(BUILD_TAGS)' -race $(TEST) $(TESTARGS) -timeout=$(EXTENDED_TEST_TIMEOUT) -parallel=20
scripts
2015-03-04 10:14:18 +03:00
cover:
Add a script to handle coverage go test cannot gather coverage numbers for multiple packages https://github.com/golang/go/issues/6909 This script wraps go test to generate report for each package and then combine them in one file
2015-04-29 05:02:46 +03:00
./scripts/coverage.sh --html
scripts
2015-03-04 10:14:18 +03:00
# vet runs the Go source code static analysis tool `vet` to find
# any common errors.
vet:
Allow easier swapping of Go version (#8102)
2020-01-09 20:35:32 +03:00
@$(GO_CMD) list -f '{{.Dir}}' ./... | grep -v /vendor/ \
Makefile: don't vet Godeps Only vet the actual vault packages; skip the Godeps directory.
2015-04-28 23:18:55 +03:00
| grep -v '.*github.com/hashicorp/vault$$' \
Allow easier swapping of Go version (#8102)
2020-01-09 20:35:32 +03:00
| xargs $(GO_CMD) vet ; if [ $$? -eq 1 ]; then \
Makefile: don't vet Godeps Only vet the actual vault packages; skip the Godeps directory.
2015-04-28 23:18:55 +03:00
echo ""; \
echo "Vet found suspicious constructs. Please check the reported constructs"; \
echo "and fix them if necessary before submitting the code for reviewal."; \
fi
scripts
2015-03-04 10:14:18 +03:00
Sync some changes that weren't properly pulled over
2019-07-22 20:11:00 +03:00
# lint runs vet plus a number of other checkers, it is more comprehensive, but louder
lint:
Allow easier swapping of Go version (#8102)
2020-01-09 20:35:32 +03:00
@$(GO_CMD) list -f '{{.Dir}}' ./... | grep -v /vendor/ \
Sync some changes that weren't properly pulled over
2019-07-22 20:11:00 +03:00
| xargs golangci-lint run; if [ $$? -eq 1 ]; then \
echo ""; \
echo "Lint found suspicious constructs. Please check the reported constructs"; \
echo "and fix them if necessary before submitting the code for reviewal."; \
fi
# for ci jobs, runs lint against the changed packages in the commit
ci-lint:
@golangci-lint run --deadline 10m --new-from-rev=HEAD~
Add pre-push hook
2017-09-05 02:16:11 +03:00
# prep runs `go generate` to build the dynamically generated
scripts
2015-03-04 10:14:18 +03:00
# source files.
Sync makefile
2017-10-23 19:38:30 +03:00
prep: fmtcheck
Explicitly check go version in build (#3309) * Explicitly check go version in build Several GH issues have been opened by people trying to use an older version of Go to build Vault (e.g., #3307 is the most recent). This adds an explicit check to the build to hopefully make it more clear to users in the future. * Also add checking for go patch version * Up minimum go version And fix a comment * Bump travis to go1.9.1
2017-10-19 23:30:19 +03:00
@sh -c "'$(CURDIR)/scripts/goversioncheck.sh' '$(GO_VERSION_MIN)'"
Allow easier swapping of Go version (#8102)
2020-01-09 20:35:32 +03:00
@$(GO_CMD) generate $($(GO_CMD) list ./... | grep -v /vendor/)
Only copy hooks if building from a git repo Fixes #3498
2017-10-27 20:11:02 +03:00
@if [ -d .git/hooks ]; then cp .hooks/* .git/hooks/; fi
scripts
2015-03-04 10:14:18 +03:00
Use a more minimal bootstrap target when running in CI: just what we need to satisfy our job needs. Also remove govendor which we no longer use. (#8808)
2020-04-22 22:05:49 +03:00
# bootstrap the build by downloading additional tools needed to build
ci-bootstrap:
@for tool in $(EXTERNAL_TOOLS_CI) ; do \
echo "Installing/Updating $$tool" ; \
GO111MODULE=off $(GO_CMD) get -u $$tool; \
done
# bootstrap the build by downloading additional tools that may be used by devs
bootstrap: ci-bootstrap
Switch bootstrap (except CI) over to using pinned versions from go.mod (#9000)
2020-05-14 20:45:12 +03:00
go generate -tags tools tools/tools.go
Added a bootstrap target in the makefile to download required tools and updated the README.md instructions
2015-06-01 02:32:36 +03:00
Add a note about updating plugins in Makefile
2018-05-30 04:09:57 +03:00
# Note: if you have plugins in GOPATH you can update all of them via something like:
# for i in $(ls | grep vault-plugin-); do cd $i; git remote update; git reset --hard origin/master; dep ensure -update; git add .; git commit; git push; cd ..; done
Add update-plugin make target
2018-04-10 09:32:41 +03:00
update-plugins:
grep vault-plugin- vendor/vendor.json | cut -d '"' -f 4 | xargs govendor fetch
Fix UI build in fresh repo (#7865) Fixes #7863
2019-12-06 21:58:40 +03:00
static-assets-dir:
@mkdir -p ./pkg/web_ui
static-assets: static-assets-dir
Add Makefile/Dockerfile UI bits
2018-04-03 17:46:45 +03:00
@echo "--> Generating static assets"
Add ui build tag to generate assetfs file (#4413)
2018-04-20 22:47:45 +03:00
@go-bindata-assetfs -o bindata_assetfs.go -pkg http -prefix pkg -modtime 1480000000 -tags ui ./pkg/web_ui/...
Add Makefile/Dockerfile UI bits
2018-04-03 17:46:45 +03:00
@mv bindata_assetfs.go http
@$(MAKE) -f $(THIS_FILE) fmt
test-ember:
@echo "--> Installing JavaScript assets"
Update circle config
2019-10-17 22:48:45 +03:00
@cd ui && yarn --ignore-optional
Add Makefile/Dockerfile UI bits
2018-04-03 17:46:45 +03:00
@echo "--> Running ember tests"
UI update headless chrome flags to fix 'yarn run test:oss' (#8035) * UI update headless chrome flags to fix ember/chrome crash in test * UI update references from test-oss to test:oss * UI removed disable-gpu flag from headless Chrome * UI and also remove the comment
2019-12-18 20:12:44 +03:00
@cd ui && yarn run test:oss
Add Makefile/Dockerfile UI bits
2018-04-03 17:46:45 +03:00
ci: make ember-ci-test (browserstack) (#6751) * ci: make ember-ci-test (browserstack) VLTES-28 * Update .circleci/config.yml Co-Authored-By: Josh Freda <jfreda@users.noreply.github.com> * Update .circleci/config.yml Co-Authored-By: Josh Freda <jfreda@users.noreply.github.com> * ci: rename test-ember -> test-ui-browserstack * Makefile: ember-ci-test -> test-ui-browserstack - Use the same name for this test everywhere to reduce cognitive load. * browserstack: exit non-zero on failure to connect * .travis.yml: ember-ci-test -> test-ui-browserstack * browserstack: add vault bin to the path * Makefile: browserstack: fail early w/clear msgs This might save someone time later. The same checks could be applied elsewhere too trivially.
2019-05-24 15:02:51 +03:00
ember-ci-test: # Deprecated, to be removed soon.
@echo "ember-ci-test is deprecated in favour of test-ui-browserstack"
@exit 1
check-vault-in-path:
@VAULT_BIN=$$(command -v vault) || { echo "vault command not found"; exit 1; }; \
[ -x "$$VAULT_BIN" ] || { echo "$$VAULT_BIN not executable"; exit 1; }; \
printf "Using Vault at %s:\n\$$ vault version\n%s\n" "$$VAULT_BIN" "$$(vault version)"
check-browserstack-creds:
@[ -n "$$BROWSERSTACK_ACCESS_KEY" ] || { echo "BROWSERSTACK_ACCESS_KEY not set"; exit 1; }
@[ -n "$$BROWSERSTACK_USERNAME" ] || { echo "BROWSERSTACK_USERNAME not set"; exit 1; }
test-ui-browserstack: check-vault-in-path check-browserstack-creds
Add Browserstack for IE11 testing (#6557) * add browserstack * check for data before removing root token * fix root prefix and select by attributes for ie11 * use objectAt for ie11 * use blobs instead of files for ie11 * manually round cirucmference for ie11 * skip csp test on ie11 * skip tests in ie11 * include polyfill for CI * remove on exit hooks * update which browserstack tests are run * remove ie check since we are not running these tests in ie * remove ie check since we are not running these tests in ie
2019-05-04 01:20:14 +03:00
@echo "--> Installing JavaScript assets"
Update circle config
2019-10-17 22:48:45 +03:00
@cd ui && yarn --ignore-optional
Add Browserstack for IE11 testing (#6557) * add browserstack * check for data before removing root token * fix root prefix and select by attributes for ie11 * use objectAt for ie11 * use blobs instead of files for ie11 * manually round cirucmference for ie11 * skip csp test on ie11 * skip tests in ie11 * include polyfill for CI * remove on exit hooks * update which browserstack tests are run * remove ie check since we are not running these tests in ie * remove ie check since we are not running these tests in ie
2019-05-04 01:20:14 +03:00
@echo "--> Running ember tests in Browserstack"
@cd ui && yarn run test:browserstack
Add Makefile/Dockerfile UI bits
2018-04-03 17:46:45 +03:00
ember-dist:
@echo "--> Installing JavaScript assets"
Update circle config
2019-10-17 22:48:45 +03:00
@cd ui && yarn --ignore-optional
Add Makefile/Dockerfile UI bits
2018-04-03 17:46:45 +03:00
@cd ui && npm rebuild node-sass
@echo "--> Building Ember application"
Ember cli update to 2.15 (#4526) * update ember-cli to 2.15 * remove bower * update ivy-codemirror * update build and ci to not use bower or phantomjs
2018-05-08 18:43:20 +03:00
@cd ui && yarn run build
Add Makefile/Dockerfile UI bits
2018-04-03 17:46:45 +03:00
@rm -rf ui/if-you-need-to-delete-this-open-an-issue-async-disk-cache
UI ensure trailing slash (#4828) * add make targets to build the ui without minifying the source * add polyfill for string.prototype.endswith and move to npm version of string.prototype.startswith * replace the current history state with a / on the list secrets endpoint * add test for list with id
2018-06-25 23:30:11 +03:00
ember-dist-dev:
@echo "--> Installing JavaScript assets"
Update circle config
2019-10-17 22:48:45 +03:00
@cd ui && yarn --ignore-optional
UI ensure trailing slash (#4828) * add make targets to build the ui without minifying the source * add polyfill for string.prototype.endswith and move to npm version of string.prototype.startswith * replace the current history state with a / on the list secrets endpoint * add test for list with id
2018-06-25 23:30:11 +03:00
@cd ui && npm rebuild node-sass
@echo "--> Building Ember application"
Update circle config
2019-10-17 22:48:45 +03:00
@cd ui && yarn run build-dev
UI ensure trailing slash (#4828) * add make targets to build the ui without minifying the source * add polyfill for string.prototype.endswith and move to npm version of string.prototype.startswith * replace the current history state with a / on the list secrets endpoint * add test for list with id
2018-06-25 23:30:11 +03:00
Add Makefile/Dockerfile UI bits
2018-04-03 17:46:45 +03:00
static-dist: ember-dist static-assets
UI ensure trailing slash (#4828) * add make targets to build the ui without minifying the source * add polyfill for string.prototype.endswith and move to npm version of string.prototype.startswith * replace the current history state with a / on the list secrets endpoint * add test for list with id
2018-06-25 23:30:11 +03:00
static-dist-dev: ember-dist-dev static-assets
Add Makefile/Dockerfile UI bits
2018-04-03 17:46:45 +03:00
Add 'make proto' target
2016-10-20 19:39:19 +03:00
proto:
Create sdk/ and api/ submodules (#6583)
2019-04-13 00:54:35 +03:00
protoc vault/*.proto --go_out=plugins=grpc,paths=source_relative:.
Merge activity log work to date on enterprise back into oss. (#9900) * Added stub class for activity logging. (#1435) * Define activity fragments and starter methods for manipulating them. (#1441)
2020-09-08 22:22:09 +03:00
protoc vault/activity/activity_log.proto --go_out=plugins=grpc,paths=source_relative:.
Create sdk/ and api/ submodules (#6583)
2019-04-13 00:54:35 +03:00
protoc helper/storagepacker/types.proto --go_out=plugins=grpc,paths=source_relative:.
protoc helper/forwarding/types.proto --go_out=plugins=grpc,paths=source_relative:.
protoc sdk/logical/*.proto --go_out=plugins=grpc,paths=source_relative:.
Raft Storage Backend (#6888) * Work on raft backend * Add logstore locally * Add encryptor and unsealable interfaces * Add clustering support to raft * Remove client and handler * Bootstrap raft on init * Cleanup raft logic a bit * More raft work * Work on TLS config * More work on bootstrapping * Fix build * More work on bootstrapping * More bootstrapping work * fix build * Remove consul dep * Fix build * merged oss/master into raft-storage * Work on bootstrapping * Get bootstrapping to work * Clean up FMS and node-id * Update local node ID logic * Cleanup node-id change * Work on snapshotting * Raft: Add remove peer API (#906) * Add remove peer API * Add some comments * Fix existing snapshotting (#909) * Raft get peers API (#912) * Read raft configuration * address review feedback * Use the Leadership Transfer API to step-down the active node (#918) * Raft join and unseal using Shamir keys (#917) * Raft join using shamir * Store AEAD instead of master key * Split the raft join process to answer the challenge after a successful unseal * get the follower to standby state * Make unseal work * minor changes * Some input checks * reuse the shamir seal access instead of new default seal access * refactor joinRaftSendAnswer function * Synchronously send answer in auto-unseal case * Address review feedback * Raft snapshots (#910) * Fix existing snapshotting * implement the noop snapshotting * Add comments and switch log libraries * add some snapshot tests * add snapshot test file * add TODO * More work on raft snapshotting * progress on the ConfigStore strategy * Don't use two buckets * Update the snapshot store logic to hide the file logic * Add more backend tests * Cleanup code a bit * [WIP] Raft recovery (#938) * Add recovery functionality * remove fmt.Printfs * Fix a few fsm bugs * Add max size value for raft backend (#942) * Add max size value for raft backend * Include physical.ErrValueTooLarge in the message * Raft snapshot Take/Restore API (#926) * Inital work on raft snapshot APIs * Always redirect snapshot install/download requests * More work on the snapshot APIs * Cleanup code a bit * On restore handle special cases * Use the seal to encrypt the sha sum file * Add sealer mechanism and fix some bugs * Call restore while state lock is held * Send restore cb trigger through raft log * Make error messages nicer * Add test helpers * Add snapshot test * Add shamir unseal test * Add more raft snapshot API tests * Fix locking * Change working to initalize * Add underlying raw object to test cluster core * Move leaderUUID to core * Add raft TLS rotation logic (#950) * Add TLS rotation logic * Cleanup logic a bit * Add/Remove from follower state on add/remove peer * add comments * Update more comments * Update request_forwarding_service.proto * Make sure we populate all nodes in the followerstate obj * Update times * Apply review feedback * Add more raft config setting (#947) * Add performance config setting * Add more config options and fix tests * Test Raft Recovery (#944) * Test raft recovery * Leave out a node during recovery * remove unused struct * Update physical/raft/snapshot_test.go * Update physical/raft/snapshot_test.go * fix vendoring * Switch to new raft interface * Remove unused files * Switch a gogo -> proto instance * Remove unneeded vault dep in go.sum * Update helper/testhelpers/testhelpers.go Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com> * Update vault/cluster/cluster.go * track active key within the keyring itself (#6915) * track active key within the keyring itself * lookup and store using the active key ID * update docstring * minor refactor * Small text fixes (#6912) * Update physical/raft/raft.go Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com> * review feedback * Move raft logical system into separate file * Update help text a bit * Enforce cluster addr is set and use it for raft bootstrapping * Fix tests * fix http test panic * Pull in latest raft-snapshot library * Add comment
2019-06-20 22:14:58 +03:00
protoc physical/raft/types.proto --go_out=plugins=grpc,paths=source_relative:.
Create sdk/ and api/ submodules (#6583)
2019-04-13 00:54:35 +03:00
protoc helper/identity/mfa/types.proto --go_out=plugins=grpc,paths=source_relative:.
protoc helper/identity/types.proto --go_out=plugins=grpc,paths=source_relative:.
Update to api 1.0.1 and sdk 0.1.8
2019-04-15 21:10:07 +03:00
protoc sdk/database/dbplugin/*.proto --go_out=plugins=grpc,paths=source_relative:.
DBPW - Copy `newdbplugin` package to `dbplugin/v5` (#10151) This is part 1 of 4 for renaming the `newdbplugin` package. This copies the existing package to the new location but keeps the current one in place so we can migrate the existing references over more easily.
2020-10-15 22:20:12 +03:00
protoc sdk/database/dbplugin/v5/proto/*.proto --go_out=plugins=grpc,paths=source_relative:.
Create sdk/ and api/ submodules (#6583)
2019-04-13 00:54:35 +03:00
protoc sdk/plugin/pb/*.proto --go_out=plugins=grpc,paths=source_relative:.
Raft Storage Backend (#6888) * Work on raft backend * Add logstore locally * Add encryptor and unsealable interfaces * Add clustering support to raft * Remove client and handler * Bootstrap raft on init * Cleanup raft logic a bit * More raft work * Work on TLS config * More work on bootstrapping * Fix build * More work on bootstrapping * More bootstrapping work * fix build * Remove consul dep * Fix build * merged oss/master into raft-storage * Work on bootstrapping * Get bootstrapping to work * Clean up FMS and node-id * Update local node ID logic * Cleanup node-id change * Work on snapshotting * Raft: Add remove peer API (#906) * Add remove peer API * Add some comments * Fix existing snapshotting (#909) * Raft get peers API (#912) * Read raft configuration * address review feedback * Use the Leadership Transfer API to step-down the active node (#918) * Raft join and unseal using Shamir keys (#917) * Raft join using shamir * Store AEAD instead of master key * Split the raft join process to answer the challenge after a successful unseal * get the follower to standby state * Make unseal work * minor changes * Some input checks * reuse the shamir seal access instead of new default seal access * refactor joinRaftSendAnswer function * Synchronously send answer in auto-unseal case * Address review feedback * Raft snapshots (#910) * Fix existing snapshotting * implement the noop snapshotting * Add comments and switch log libraries * add some snapshot tests * add snapshot test file * add TODO * More work on raft snapshotting * progress on the ConfigStore strategy * Don't use two buckets * Update the snapshot store logic to hide the file logic * Add more backend tests * Cleanup code a bit * [WIP] Raft recovery (#938) * Add recovery functionality * remove fmt.Printfs * Fix a few fsm bugs * Add max size value for raft backend (#942) * Add max size value for raft backend * Include physical.ErrValueTooLarge in the message * Raft snapshot Take/Restore API (#926) * Inital work on raft snapshot APIs * Always redirect snapshot install/download requests * More work on the snapshot APIs * Cleanup code a bit * On restore handle special cases * Use the seal to encrypt the sha sum file * Add sealer mechanism and fix some bugs * Call restore while state lock is held * Send restore cb trigger through raft log * Make error messages nicer * Add test helpers * Add snapshot test * Add shamir unseal test * Add more raft snapshot API tests * Fix locking * Change working to initalize * Add underlying raw object to test cluster core * Move leaderUUID to core * Add raft TLS rotation logic (#950) * Add TLS rotation logic * Cleanup logic a bit * Add/Remove from follower state on add/remove peer * add comments * Update more comments * Update request_forwarding_service.proto * Make sure we populate all nodes in the followerstate obj * Update times * Apply review feedback * Add more raft config setting (#947) * Add performance config setting * Add more config options and fix tests * Test Raft Recovery (#944) * Test raft recovery * Leave out a node during recovery * remove unused struct * Update physical/raft/snapshot_test.go * Update physical/raft/snapshot_test.go * fix vendoring * Switch to new raft interface * Remove unused files * Switch a gogo -> proto instance * Remove unneeded vault dep in go.sum * Update helper/testhelpers/testhelpers.go Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com> * Update vault/cluster/cluster.go * track active key within the keyring itself (#6915) * track active key within the keyring itself * lookup and store using the active key ID * update docstring * minor refactor * Small text fixes (#6912) * Update physical/raft/raft.go Co-Authored-By: Calvin Leung Huang <cleung2010@gmail.com> * review feedback * Move raft logical system into separate file * Update help text a bit * Enforce cluster addr is set and use it for raft bootstrapping * Fix tests * fix http test panic * Pull in latest raft-snapshot library * Add comment
2019-06-20 22:14:58 +03:00
sed -i -e 's/Id/ID/' vault/request_forwarding_service.pb.go
Merge activity log work to date on enterprise back into oss. (#9900) * Added stub class for activity logging. (#1435) * Define activity fragments and starter methods for manipulating them. (#1441)
2020-09-08 22:22:09 +03:00
sed -i -e 's/Idp/IDP/' -e 's/Url/URL/' -e 's/Id/ID/' -e 's/IDentity/Identity/' -e 's/EntityId/EntityID/' -e 's/Api/API/' -e 's/Qr/QR/' -e 's/Totp/TOTP/' -e 's/Mfa/MFA/' -e 's/Pingid/PingID/' -e 's/protobuf:"/sentinel:"" protobuf:"/' -e 's/namespaceId/namespaceID/' -e 's/Ttl/TTL/' -e 's/BoundCidrs/BoundCIDRs/' helper/identity/types.pb.go helper/identity/mfa/types.pb.go helper/storagepacker/types.pb.go sdk/plugin/pb/backend.pb.go sdk/logical/identity.pb.go vault/activity/activity_log.pb.go
Add 'make proto' target
2016-10-20 19:39:19 +03:00
add gofmt checks to Vault and format existing code (#2745)
2017-05-19 15:34:17 +03:00
fmtcheck:
Don't echo true on fake fmtcheck
2018-09-01 18:10:29 +03:00
@true
Also don't echo the commented command, sigh
2018-09-01 18:17:02 +03:00
#@sh -c "'$(CURDIR)/scripts/gofmtcheck.sh'"
add gofmt checks to Vault and format existing code (#2745)
2017-05-19 15:34:17 +03:00
fmt:
Run a more strict formatter over the code (#11312) * Update tooling * Run gofumpt * go mod vendor
2021-04-08 19:43:39 +03:00
find . -name '*.go' | grep -v pb.go | grep -v vendor | xargs gofumpt -w
add gofmt checks to Vault and format existing code (#2745)
2017-05-19 15:34:17 +03:00
Add UI asset file checks to Makefile (#6428)
2019-03-25 20:07:14 +03:00
assetcheck:
@echo "==> Checking compiled UI assets..."
@sh -c "'$(CURDIR)/scripts/assetcheck.sh'"
Added spellcheck target to makefile (#3398) * Added spellcheck target to makefile * address review comments
2017-10-19 19:55:39 +03:00
spellcheck:
@echo "==> Spell checking website..."
@misspell -error -source=text website/source
Fix MySQL legacy username regression (#3141) * Fix the mysql legacy username length * Remove boolean parameter * Add a MySQL 5.6 container to test the legacy MySQL plugin against * Add database plugins to the make file * Fix credsutil test
2017-08-11 04:28:18 +03:00
mysql-database-plugin:
Allow easier swapping of Go version (#8102)
2020-01-09 20:35:32 +03:00
@CGO_ENABLED=0 $(GO_CMD) build -o bin/mysql-database-plugin ./plugins/database/mysql/mysql-database-plugin
Fix MySQL legacy username regression (#3141) * Fix the mysql legacy username length * Remove boolean parameter * Add a MySQL 5.6 container to test the legacy MySQL plugin against * Add database plugins to the make file * Fix credsutil test
2017-08-11 04:28:18 +03:00
mysql-legacy-database-plugin:
Allow easier swapping of Go version (#8102)
2020-01-09 20:35:32 +03:00
@CGO_ENABLED=0 $(GO_CMD) build -o bin/mysql-legacy-database-plugin ./plugins/database/mysql/mysql-legacy-database-plugin
Fix MySQL legacy username regression (#3141) * Fix the mysql legacy username length * Remove boolean parameter * Add a MySQL 5.6 container to test the legacy MySQL plugin against * Add database plugins to the make file * Fix credsutil test
2017-08-11 04:28:18 +03:00
cassandra-database-plugin:
Allow easier swapping of Go version (#8102)
2020-01-09 20:35:32 +03:00
@CGO_ENABLED=0 $(GO_CMD) build -o bin/cassandra-database-plugin ./plugins/database/cassandra/cassandra-database-plugin
Fix MySQL legacy username regression (#3141) * Fix the mysql legacy username length * Remove boolean parameter * Add a MySQL 5.6 container to test the legacy MySQL plugin against * Add database plugins to the make file * Fix credsutil test
2017-08-11 04:28:18 +03:00
small fixes to docs and indexes
2019-01-18 04:14:57 +03:00
influxdb-database-plugin:
Allow easier swapping of Go version (#8102)
2020-01-09 20:35:32 +03:00
@CGO_ENABLED=0 $(GO_CMD) build -o bin/influxdb-database-plugin ./plugins/database/influxdb/influxdb-database-plugin
small fixes to docs and indexes
2019-01-18 04:14:57 +03:00
Fix MySQL legacy username regression (#3141) * Fix the mysql legacy username length * Remove boolean parameter * Add a MySQL 5.6 container to test the legacy MySQL plugin against * Add database plugins to the make file * Fix credsutil test
2017-08-11 04:28:18 +03:00
postgresql-database-plugin:
Allow easier swapping of Go version (#8102)
2020-01-09 20:35:32 +03:00
@CGO_ENABLED=0 $(GO_CMD) build -o bin/postgresql-database-plugin ./plugins/database/postgresql/postgresql-database-plugin
Fix MySQL legacy username regression (#3141) * Fix the mysql legacy username length * Remove boolean parameter * Add a MySQL 5.6 container to test the legacy MySQL plugin against * Add database plugins to the make file * Fix credsutil test
2017-08-11 04:28:18 +03:00
mssql-database-plugin:
Allow easier swapping of Go version (#8102)
2020-01-09 20:35:32 +03:00
@CGO_ENABLED=0 $(GO_CMD) build -o bin/mssql-database-plugin ./plugins/database/mssql/mssql-database-plugin
Fix MySQL legacy username regression (#3141) * Fix the mysql legacy username length * Remove boolean parameter * Add a MySQL 5.6 container to test the legacy MySQL plugin against * Add database plugins to the make file * Fix credsutil test
2017-08-11 04:28:18 +03:00
hana-database-plugin:
Allow easier swapping of Go version (#8102)
2020-01-09 20:35:32 +03:00
@CGO_ENABLED=0 $(GO_CMD) build -o bin/hana-database-plugin ./plugins/database/hana/hana-database-plugin
Fix MySQL legacy username regression (#3141) * Fix the mysql legacy username length * Remove boolean parameter * Add a MySQL 5.6 container to test the legacy MySQL plugin against * Add database plugins to the make file * Fix credsutil test
2017-08-11 04:28:18 +03:00
mongodb-database-plugin:
Allow easier swapping of Go version (#8102)
2020-01-09 20:35:32 +03:00
@CGO_ENABLED=0 $(GO_CMD) build -o bin/mongodb-database-plugin ./plugins/database/mongodb/mongodb-database-plugin
Fix MySQL legacy username regression (#3141) * Fix the mysql legacy username length * Remove boolean parameter * Add a MySQL 5.6 container to test the legacy MySQL plugin against * Add database plugins to the make file * Fix credsutil test
2017-08-11 04:28:18 +03:00
Packagespec v0.1.2/master (#9995) * packagespec v0.1.2 - prep: remove unneeded code * packagespec v0.1.2 - packagespec init * packagespec v0.1.2 - make packages * packagespec v0.1.3 - make packages
2020-09-28 15:53:39 +03:00
# Tell packagespec where to write its CircleCI config.
PACKAGESPEC_CIRCLECI_CONFIG := .circleci/config/@build-release.yml
ci/packagespec (#9653) * add packagespec build system - The majority of changes in this commit are files generated by packagespec (everything in the packages-oss.lock directory). * add .yamllint * update to packagespec@fd54aea4 * ci: bust packagespec cache - Change to packagespec results in package IDs that can use git tag refs, not just commit refs. * update to packagepsec@5fc121d0 - This busts all caches, because of a change to the way we no longer traverse from tag refs to commit refs, due to the potential confusion this can cause. - See https://github.com/hashicorp/packagespec/commit/fd54aea4827bb6cfd637c78a2ab6274111605330 for the original change to packagespec necessitating this. * update to packagespec@5e6c87b6 - This completes the change to allowing git tag refs to be used for source IDs, begun in f130b940a8fbe3e9398225b08ea1d63420bef7b6 * update to packagespec@4d3c9e8b - This busts cache, needed to apply previous change. * remove RELEASE_BUILD_WORKFLOW_NAME * update packagespec, add watch-ci target * fix package names (do not refer to EDITION) * remove EDITION input from packages-oss.yml * bump package cache, update packagespec * update packagespec, add 'aliases' target * update packagespec; less output noise * ci: give release bundle file a better name - When performing a release build, this will include the build ID as part of the name, making it easier to distinguish from other builds. * ci: create aliases tarball artifact * ci: cache package metadata files * ci: add metadata artifact * ci: bust circleci package cache * Revert "ci: bust circleci package cache" This reverts commit 1320d182613466f0999d63f5742db12ac17f8e92. * ci: remove aliases artifact * ci: use buildID not workflowName to id artifacts * packages: add BUNDLE_NAME metadata * do not cache package metadata with binaries * ci: bump package cache * ci: debugging * ci: fix package cache; update packagespec * ci: update packagespec to 10e7beb2 * ci: write package metadata and aliases * ci: switch to .zip artifacts * switch package bundle back to tar.gz (from zip) - Because of the way zip works, the zip archive was over 2GB rather than under 750MB as with tar.gz. * bump packagespec, adds list-staged-builds * update packagespec * add publish stub + general tidy up * bump packagespec * bump packagespec; add make publish-config * Makefile: tidy up packagespec targets * pass PRODUCT_REPO_ROOT to packagespec * bump go to 1.14.6 * packages-oss.yml: use more explicit base image * bump packagespec to b899b7c1 * bump packagespec to f040ce8f * packages-oss.yml: pin base image to digest - This digest is pointed to by debian:buster-20200720 - Using a specific digest ensures that builds use the same base image in all contexts * add release-repo; bump packagespec * remove BUILD_TAGS and -tags flag * bump packagespec to e444f742 * bump to go1.14.7 * ci: bump to go1.14.7
2020-08-11 12:00:59 +03:00
Packagespec v0.1.2/master (#9995) * packagespec v0.1.2 - prep: remove unneeded code * packagespec v0.1.2 - packagespec init * packagespec v0.1.2 - make packages * packagespec v0.1.3 - make packages
2020-09-28 15:53:39 +03:00
# Tell packagespec to re-run 'make ci-config' whenever updating its own CI config.
PACKAGESPEC_HOOK_POST_CI_CONFIG := $(MAKE) ci-config
ci/packagespec (#9653) * add packagespec build system - The majority of changes in this commit are files generated by packagespec (everything in the packages-oss.lock directory). * add .yamllint * update to packagespec@fd54aea4 * ci: bust packagespec cache - Change to packagespec results in package IDs that can use git tag refs, not just commit refs. * update to packagepsec@5fc121d0 - This busts all caches, because of a change to the way we no longer traverse from tag refs to commit refs, due to the potential confusion this can cause. - See https://github.com/hashicorp/packagespec/commit/fd54aea4827bb6cfd637c78a2ab6274111605330 for the original change to packagespec necessitating this. * update to packagespec@5e6c87b6 - This completes the change to allowing git tag refs to be used for source IDs, begun in f130b940a8fbe3e9398225b08ea1d63420bef7b6 * update to packagespec@4d3c9e8b - This busts cache, needed to apply previous change. * remove RELEASE_BUILD_WORKFLOW_NAME * update packagespec, add watch-ci target * fix package names (do not refer to EDITION) * remove EDITION input from packages-oss.yml * bump package cache, update packagespec * update packagespec, add 'aliases' target * update packagespec; less output noise * ci: give release bundle file a better name - When performing a release build, this will include the build ID as part of the name, making it easier to distinguish from other builds. * ci: create aliases tarball artifact * ci: cache package metadata files * ci: add metadata artifact * ci: bust circleci package cache * Revert "ci: bust circleci package cache" This reverts commit 1320d182613466f0999d63f5742db12ac17f8e92. * ci: remove aliases artifact * ci: use buildID not workflowName to id artifacts * packages: add BUNDLE_NAME metadata * do not cache package metadata with binaries * ci: bump package cache * ci: debugging * ci: fix package cache; update packagespec * ci: update packagespec to 10e7beb2 * ci: write package metadata and aliases * ci: switch to .zip artifacts * switch package bundle back to tar.gz (from zip) - Because of the way zip works, the zip archive was over 2GB rather than under 750MB as with tar.gz. * bump packagespec, adds list-staged-builds * update packagespec * add publish stub + general tidy up * bump packagespec * bump packagespec; add make publish-config * Makefile: tidy up packagespec targets * pass PRODUCT_REPO_ROOT to packagespec * bump go to 1.14.6 * packages-oss.yml: use more explicit base image * bump packagespec to b899b7c1 * bump packagespec to f040ce8f * packages-oss.yml: pin base image to digest - This digest is pointed to by debian:buster-20200720 - Using a specific digest ensures that builds use the same base image in all contexts * add release-repo; bump packagespec * remove BUILD_TAGS and -tags flag * bump packagespec to e444f742 * bump to go1.14.7 * ci: bump to go1.14.7
2020-08-11 12:00:59 +03:00
.PHONY: ci-config
Packagespec0.1.5/master (#10090) * packagespec upgrade -version 0.1.5 * remove meta.POST_PROCESSORS - no longer needed * make ci-config: remove old prereq
2020-10-07 11:35:26 +03:00
ci-config:
ci/packagespec (#9653) * add packagespec build system - The majority of changes in this commit are files generated by packagespec (everything in the packages-oss.lock directory). * add .yamllint * update to packagespec@fd54aea4 * ci: bust packagespec cache - Change to packagespec results in package IDs that can use git tag refs, not just commit refs. * update to packagepsec@5fc121d0 - This busts all caches, because of a change to the way we no longer traverse from tag refs to commit refs, due to the potential confusion this can cause. - See https://github.com/hashicorp/packagespec/commit/fd54aea4827bb6cfd637c78a2ab6274111605330 for the original change to packagespec necessitating this. * update to packagespec@5e6c87b6 - This completes the change to allowing git tag refs to be used for source IDs, begun in f130b940a8fbe3e9398225b08ea1d63420bef7b6 * update to packagespec@4d3c9e8b - This busts cache, needed to apply previous change. * remove RELEASE_BUILD_WORKFLOW_NAME * update packagespec, add watch-ci target * fix package names (do not refer to EDITION) * remove EDITION input from packages-oss.yml * bump package cache, update packagespec * update packagespec, add 'aliases' target * update packagespec; less output noise * ci: give release bundle file a better name - When performing a release build, this will include the build ID as part of the name, making it easier to distinguish from other builds. * ci: create aliases tarball artifact * ci: cache package metadata files * ci: add metadata artifact * ci: bust circleci package cache * Revert "ci: bust circleci package cache" This reverts commit 1320d182613466f0999d63f5742db12ac17f8e92. * ci: remove aliases artifact * ci: use buildID not workflowName to id artifacts * packages: add BUNDLE_NAME metadata * do not cache package metadata with binaries * ci: bump package cache * ci: debugging * ci: fix package cache; update packagespec * ci: update packagespec to 10e7beb2 * ci: write package metadata and aliases * ci: switch to .zip artifacts * switch package bundle back to tar.gz (from zip) - Because of the way zip works, the zip archive was over 2GB rather than under 750MB as with tar.gz. * bump packagespec, adds list-staged-builds * update packagespec * add publish stub + general tidy up * bump packagespec * bump packagespec; add make publish-config * Makefile: tidy up packagespec targets * pass PRODUCT_REPO_ROOT to packagespec * bump go to 1.14.6 * packages-oss.yml: use more explicit base image * bump packagespec to b899b7c1 * bump packagespec to f040ce8f * packages-oss.yml: pin base image to digest - This digest is pointed to by debian:buster-20200720 - Using a specific digest ensures that builds use the same base image in all contexts * add release-repo; bump packagespec * remove BUILD_TAGS and -tags flag * bump packagespec to e444f742 * bump to go1.14.7 * ci: bump to go1.14.7
2020-08-11 12:00:59 +03:00
@$(MAKE) -C .circleci ci-config
.PHONY: ci-verify
ci-verify:
@$(MAKE) -C .circleci ci-verify
Makefile: delete old stage/publish targets
2020-08-12 13:09:15 +03:00
.PHONY: bin default prep test vet bootstrap ci-bootstrap fmt fmtcheck mysql-database-plugin mysql-legacy-database-plugin cassandra-database-plugin influxdb-database-plugin postgresql-database-plugin mssql-database-plugin hana-database-plugin mongodb-database-plugin static-assets ember-dist ember-dist-dev static-dist static-dist-dev assetcheck check-vault-in-path check-browserstack-creds test-ui-browserstack packages build build-ci
Makefile: do not execute static-assets in parallel with deps (#6057) The static-assets target has a dependency on *either* ember-dist or ember-dist-dev, so these targets must not execute in parallel. Since this is an either/or dependency, it cannot be expressed as a regular dependency unless the targets are refactored somehow. Fixes: 7a312d7c37bb ("Add Makefile/Dockerfile UI bits")
2019-01-18 02:19:54 +03:00
.NOTPARALLEL: ember-dist ember-dist-dev static-assets
Packagespec v0.1.2/master (#9995) * packagespec v0.1.2 - prep: remove unneeded code * packagespec v0.1.2 - packagespec init * packagespec v0.1.2 - make packages * packagespec v0.1.3 - make packages
2020-09-28 15:53:39 +03:00
Packagespec0.1.5/master (#10090) * packagespec upgrade -version 0.1.5 * remove meta.POST_PROCESSORS - no longer needed * make ci-config: remove old prereq
2020-10-07 11:35:26 +03:00
-include packagespec.mk
Copy Permalink