alee/relicario
1
0
Fork 0
Code Issues Pull Requests 4 Actions Packages Projects Releases Wiki Activity

feat(ext/setup): refuse to overwrite existing vault files (Step 3a clobber guard)

Browse Source 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
adlee-was-taken
2026-04-27 18:24:16 -04:00
parent f44aedfa76
commit 399a276fdd
1 changed files with 9 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
extension/src/setup/setup.ts
View File

@@ -775,19 +775,14 @@ function attachStep3New(): void {
const host = createGitHost(state.hostType, hostUrl, state.repoPath, state.apiToken); const host = createGitHost(state.hostType, hostUrl, state.repoPath, state.apiToken);
log('write .relicario/salt'); log('write .relicario/salt');
await host.writeFile('.relicario/salt', salt, 'init: vault salt'); await host.writeFileCreateOnly('.relicario/salt', salt, 'init: vault salt');
log('write .relicario/params.json'); log('write .relicario/params.json');
const paramsBytes = new TextEncoder().encode(paramsJson); const paramsBytes = new TextEncoder().encode(paramsJson);
await host.writeFile('.relicario/params.json', paramsBytes, 'init: KDF parameters'); await host.writeFileCreateOnly('.relicario/params.json', paramsBytes, 'init: KDF parameters');
log('write .relicario/devices.json');
const devicesJson = '{"devices":[]}';
const devicesBytes = new TextEncoder().encode(devicesJson);
await host.writeFile('.relicario/devices.json', devicesBytes, 'init: device registry');
log('write manifest.enc'); log('write manifest.enc');
await host.writeFile( await host.writeFileCreateOnly(
'manifest.enc', 'manifest.enc',
new Uint8Array(encryptedManifest), new Uint8Array(encryptedManifest),
'init: encrypted manifest', 'init: encrypted manifest',
@@ -806,7 +801,12 @@ function attachStep3New(): void {
console.error(`[relicario setup] vault creation FAILED during "${stage}":`, err); console.error(`[relicario setup] vault creation FAILED during "${stage}":`, err);
state.creating = false; state.creating = false;
const detail = err instanceof Error ? err.message : String(err); const detail = err instanceof Error ? err.message : String(err);
state.error = `Vault creation failed at "${stage}": ${detail}`; if (/already exists/.test(detail)) {
const path = detail.replace(/^.*?writeFileCreateOnly: /, '').replace(/ already exists$/, '');
state.error = `A file at ${path} already exists on the remote — refusing to overwrite. Re-run setup; the wizard will offer to attach to the existing vault.`;
} else {
state.error = `Vault creation failed at "${stage}": ${detail}`;
}
render(); render();
} }
}); });