Return error if credential ID is too long

Instead of panicking, we now return a RequestTooLarge error if the encrypted and serialized credential ID is longer than 255 bytes. Fixes: trussed-dev#15
robin-nitrokey · Aug 1, 2022 · 184e667 · 184e667
1 parent e399a11
commit 184e667
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/src/credential.rs b/src/credential.rs
@@ -252,7 +252,8 @@ impl Credential {
         let nonce: [u8; 12] = self.nonce.as_slice().try_into().unwrap();
         let encrypted_serialized_credential = EncryptedSerializedCredential(syscall!(trussed
             .encrypt_chacha8poly1305(key_encryption_key, message, associated_data, Some(&nonce))));
-        let credential_id: CredentialId = encrypted_serialized_credential.try_into().unwrap();
+        let credential_id: CredentialId = encrypted_serialized_credential.try_into()
+            .map_err(|_| Error::RequestTooLarge)?;
 
         Ok(credential_id)
     }