Skip to content

Add LUKS recovery key to vault #59

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
sorenisanerd merged 2 commits into from
Jan 13, 2026
Merged

Add LUKS recovery key to vault #59

sorenisanerd merged 2 commits into from
Jan 13, 2026

Conversation

@hkumarmk
Copy link
Collaborator

@hkumarmk hkumarmk commented Nov 24, 2025
edited
Loading

Add LUKS recovery key to vault
* Add LUKS recovery key to vault as part of mangoctl bootstrap or enroll
for LUKS volumes in each node
* added validation steps in self_test.sh
* Added additional recovery_test.sh to run as part of integration test
within run_tests.sh

@hkumarmk hkumarmk force-pushed the t1 branch 2 times, most recently from 1448093 to 1ccdc7a Compare November 26, 2025 13:50
@hkumarmk hkumarmk changed the title just for testing Add LUKS recovery key to vault Nov 26, 2025
@hkumarmk hkumarmk force-pushed the t1 branch 22 times, most recently from 105cc96 to adfde15 Compare December 2, 2025 19:53
sorenisanerd
sorenisanerd reviewed Dec 5, 2025
View reviewed changes
@sorenisanerd
Copy link
Collaborator

sorenisanerd commented Dec 20, 2025

Sorry about the wait. My dev branch was waaay out of date with main, and my local working tree had a lot of changes, too. It's all pretty well aligned now and the tests should be passing. If you can rebase on top of main now, we should be in good shape 🤞🏻

@hkumarmk hkumarmk closed this Jan 2, 2026
@hkumarmk hkumarmk force-pushed the t1 branch 2 times, most recently from d52020e to 9b79967 Compare January 2, 2026 18:12
@hkumarmk
Copy link
Collaborator Author

hkumarmk commented Jan 3, 2026

@sorenisanerd can you pls review this?

sorenisanerd
sorenisanerd requested changes Jan 7, 2026
View reviewed changes
@hkumarmk hkumarmk force-pushed the t1 branch 10 times, most recently from 8ffdea8 to 3b39e7e Compare January 8, 2026 15:04
Add LUKS recovery key to vault
3e72c7f 
* Add LUKS recovery key to vault as part of mangoctl bootstrap or enroll
  for LUKS volumes in each node
* added validation steps in self_test.sh
* Added additional recovery_test.sh to run as part of integration test
  within run_tests.sh
* add machine id entity metadata for a node in the vault
* Add policy so node token can write (not update or read) recovery key
  in vault kv
@hkumarmk hkumarmk force-pushed the t1 branch 10 times, most recently from 154463b to 2901862 Compare January 9, 2026 17:16
sorenisanerd
sorenisanerd reviewed Jan 12, 2026
View reviewed changes
sorenisanerd
sorenisanerd approved these changes Jan 13, 2026
View reviewed changes
Copy link
Collaborator

@sorenisanerd sorenisanerd left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm!

Congrats on your first PR getting merged :)

@sorenisanerd sorenisanerd merged commit 30b6b54 into Mastercard:main Jan 13, 2026
1 check passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sorenisanerd sorenisanerd sorenisanerd approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@hkumarmk @sorenisanerd