Matthias/conduit
1
0
Fork 0
Code Issues 179 Pull requests 44 Projects Releases 5 Packages Wiki Activity

Merge branch 'error-leak-fix' into 'next'

Browse source 
sanitise potentially sensitive errors

See merge request famedly/conduit!523
This commit is contained in:
Timo Kösters 2023-08-01 11:25:06 +00:00
commit d2bfcb018e
2 changed files with 23 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
src/api/server_server.rs
View file

@ -927,7 +927,7 @@ pub async fn send_transaction_message_route(
Ok(send_transaction_message::v1::Response { Ok(send_transaction_message::v1::Response {
pdus: resolved_map pdus: resolved_map
.into_iter() .into_iter()
.map(|(e, r)| (e, r.map_err(|e| e.to_string()))) .map(|(e, r)| (e, r.map_err(|e| e.sanitized_error())))
.collect(), .collect(),
}) })
} }

22
src/utils/error.rs
View file

@ -138,6 +138,28 @@ impl Error {
status_code, status_code,
})) }))
} }
/// Sanitizes public-facing errors that can leak sensitive information.
pub fn sanitized_error(&self) -> String {
let db_error = String::from("Database or I/O error occurred.");
match self {
#[cfg(feature = "sled")]
Self::SledError { .. } => db_error,
#[cfg(feature = "sqlite")]
Self::SqliteError { .. } => db_error,
#[cfg(feature = "persy")]
Self::PersyError { .. } => db_error,
#[cfg(feature = "heed")]
Self::HeedError => db_error,
#[cfg(feature = "rocksdb")]
Self::RocksDbError { .. } => db_error,
Self::IoError { .. } => db_error,
Self::BadConfig { .. } => db_error,
Self::BadDatabase { .. } => db_error,
_ => self.to_string(),
}
}
} }
#[cfg(feature = "persy")] #[cfg(feature = "persy")]