luxolus/open-vault
2
0
Fork 0
Code Issues 1 Pull requests Releases Activity
open-vault/vault
History
Jeff Mitchell 12c00b97ef Allow backends to see taint status. 
This can be seen via System(). In the PKI backend, if the CA is
reconfigured but not fully (e.g. an intermediate CSR is generated but no
corresponding cert set) and there are already leases (issued certs), the
CRL is unable to be built. As a result revocation fails. But in this
case we don't actually need revocation to be successful since the CRL is
useless after unmounting. By checking taint status we know if we can
simply fast-path out of revocation with a success in this case.

Fixes #946
2016-01-22 17:01:22 -05:00
..
acl.go Use logical operations instead of strings for comparison 2016-01-12 21:16:31 -05:00
acl_test.go Create more granular ACL capabilities. 2016-01-08 13:05:14 -05:00
audit.go Update deps, and adjust usage of go-uuid to match new return values 2016-01-13 13:40:08 -05:00
audit_test.go Reintroduce the ability to look up obfuscated values in the audit log 2015-11-18 20:26:03 -05:00
auth.go Update deps, and adjust usage of go-uuid to match new return values 2016-01-13 13:40:08 -05:00
auth_test.go Run preSeal if postUnseal fails. 2015-11-02 13:29:33 -05:00
barrier.go vault: adding ability to reload master key 2015-05-29 14:29:55 -07:00
barrier_aes_gcm.go Bump AESGCM version; include path in the GCM tags. 2015-09-19 17:04:37 -04:00
barrier_aes_gcm_test.go Bump AESGCM version; include path in the GCM tags. 2015-09-19 17:04:37 -04:00
barrier_test.go vault: adding ability to reload master key 2015-05-29 14:29:55 -07:00
barrier_view.go vault: Split SecurityBarrier interface to BarrierStorage 2015-04-10 16:43:35 -07:00
barrier_view_test.go vault: Adding ClearView method 2015-04-02 11:18:05 -07:00
core.go Add some commenting 2016-01-22 10:13:49 -05:00
core_test.go Move rekey to its own files for cleanliness 2016-01-14 17:01:04 -05:00
dynamic_system_view.go Allow backends to see taint status. 2016-01-22 17:01:22 -05:00
expiration.go Update deps, and adjust usage of go-uuid to match new return values 2016-01-13 13:40:08 -05:00
expiration_test.go Pull out setting the root token ID; use the new ParseUUID method in 2016-01-19 19:44:33 -05:00
generate_root.go Pull out setting the root token ID; use the new ParseUUID method in 2016-01-19 19:44:33 -05:00
generate_root_test.go RootGeneration->GenerateRoot 2016-01-19 18:28:10 -05:00
keyring.go Fixed comment spelling mistake and removed unnecessary variable allocation 2015-10-15 14:51:30 -04:00
keyring_test.go vault: attempt to resolve #303 2015-06-02 22:55:18 +02:00
logical_cubbyhole.go Address more list feedback 2016-01-22 10:07:32 -05:00
logical_cubbyhole_test.go Update deps, and adjust usage of go-uuid to match new return values 2016-01-13 13:40:08 -05:00
logical_passthrough.go Address more list feedback 2016-01-22 10:07:32 -05:00
logical_passthrough_test.go WriteOperation -> UpdateOperation 2016-01-08 13:03:03 -05:00
logical_system.go Create more granular ACL capabilities. 2016-01-08 13:05:14 -05:00
logical_system_helpers.go Fix a logic bug around setting both a mount default and max at the same time. Ping #688. 2015-10-12 14:57:43 -04:00
logical_system_test.go Create more granular ACL capabilities. 2016-01-08 13:05:14 -05:00
mount.go Update deps, and adjust usage of go-uuid to match new return values 2016-01-13 13:40:08 -05:00
mount_test.go Move more cubby logic outside of router into auth setup 2015-09-15 13:50:37 -04:00
policy.go Convert map to bitmap 2016-01-12 17:08:10 -05:00
policy_store.go Use capabilities rather than policies in default policy. Also add cubbyhole to it. 2016-01-16 18:02:31 -05:00
policy_store_test.go Fix warnings returned by make vet 2015-09-26 21:17:39 -07:00
policy_test.go Convert map to bitmap 2016-01-12 17:08:10 -05:00
rekey.go Fix lost code after rebase 2016-01-19 19:19:07 -05:00
rekey_test.go Move rekey to its own files for cleanliness 2016-01-14 17:01:04 -05:00
rollback.go Address feedback from review 2015-11-15 17:32:57 -05:00
rollback_test.go Update deps, and adjust usage of go-uuid to match new return values 2016-01-13 13:40:08 -05:00
router.go Address some more review feedback 2016-01-12 15:09:16 -05:00
router_test.go Update deps, and adjust usage of go-uuid to match new return values 2016-01-13 13:40:08 -05:00
testing.go RootGeneration->GenerateRoot 2016-01-19 18:28:10 -05:00
token_store.go Pull out setting the root token ID; use the new ParseUUID method in 2016-01-19 19:44:33 -05:00
token_store_test.go Pull out setting the root token ID; use the new ParseUUID method in 2016-01-19 19:44:33 -05:00
util.go helper/uuid: single generateUUID definition 2015-06-30 12:38:32 -07:00
util_test.go helper/uuid: single generateUUID definition 2015-06-30 12:38:32 -07:00