open-vault

History

Jeff Mitchell 5f7321dcc7 Fix a case where mounts could be duplicated (#6771 ) When unmounting, the router entry would be tainted, preventing routing. However, we would then unmount the router before clearing storage, so if an error occurred the router would have forgotten the path. For auth mounts this isn't a problem since they had a secondary check, but regular mounts didn't (not sure why, but this is true back to at least 0.2.0). This meant you could then create a duplicate mount using the same path which would then not conflict in the router until postUnseal. This adds the extra check to regular mounts, and also moves the location of the router unmount. This also ensures that on the next router.Mount, tainted is set to the mount entry's tainted status. Fixes #6769	2019-06-04 10:33:36 -07:00
..
router_ext_test.go	Fix a case where mounts could be duplicated (#6771 )	2019-06-04 10:33:36 -07:00

Jeff Mitchell 5f7321dcc7 Fix a case where mounts could be duplicated (#6771 )

When unmounting, the router entry would be tainted, preventing routing.
However, we would then unmount the router before clearing storage, so if
an error occurred the router would have forgotten the path. For auth
mounts this isn't a problem since they had a secondary check, but
regular mounts didn't (not sure why, but this is true back to at least
0.2.0). This meant you could then create a duplicate mount using the
same path which would then not conflict in the router until postUnseal.

This adds the extra check to regular mounts, and also moves the location
of the router unmount.

This also ensures that on the next router.Mount, tainted is set to the
mount entry's tainted status.

Fixes #6769

2019-06-04 10:33:36 -07:00

router_ext_test.go

Fix a case where mounts could be duplicated (#6771 )

2019-06-04 10:33:36 -07:00