From 46c34b6a2576353a4e3f00a23d7e299870caff71 Mon Sep 17 00:00:00 2001
From: ncabatoff <ncabatoff@hashicorp.com>
Date: Tue, 22 Oct 2019 09:57:24 -0400
Subject: [PATCH] Fix a nil map pointer in mergeEntity. (#7711)

---
 vault/identity_store_entities.go | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/vault/identity_store_entities.go b/vault/identity_store_entities.go
index 1ff68f1d246e..388b52fc446c 100644
--- a/vault/identity_store_entities.go
+++ b/vault/identity_store_entities.go
@@ -10,6 +10,7 @@ import (
 	"github.com/hashicorp/errwrap"
 	memdb "github.com/hashicorp/go-memdb"
 	"github.com/hashicorp/vault/helper/identity"
+	"github.com/hashicorp/vault/helper/identity/mfa"
 	"github.com/hashicorp/vault/helper/namespace"
 	"github.com/hashicorp/vault/helper/storagepacker"
 	"github.com/hashicorp/vault/sdk/framework"
@@ -649,6 +650,9 @@ func (i *IdentityStore) mergeEntity(ctx context.Context, txn *memdb.Txn, toEntit
 			if ok && !force {
 				return nil, fmt.Errorf("conflicting MFA config ID %q in entity ID %q", configID, fromEntity.ID)
 			} else {
+				if toEntity.MFASecrets == nil {
+					toEntity.MFASecrets = make(map[string]*mfa.Secret)
+				}
 				toEntity.MFASecrets[configID] = configSecret
 			}
 		}