> How can I rewrite the while loop securely (and preferably avoiding
> tmpfiles), such that any bad exit status or failure will result in
> immediate termination of the script with an error status?

Wrap your calls of do_umount_all in if blocks:
if do_umount_all "$CHROOT_MOUNT_LOCATION"; then
  exit 1

And so on.
