You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Error-handling hygiene audit — panics and silent errors
This is a tracking issue for a cluster of defects where errors are either
silently swallowed or cause a process panic instead of being surfaced to the
caller with a meaningful diagnostic.
Every item in this cluster has the same root: an absent or inadequate error
signal at a point where the code transitions from a valid state to an
unexpected one. The result is either a crash (panic at message.rs:52) or an
opaque failure that gives the operator no information to act on.
Error-handling hygiene audit — panics and silent errors
This is a tracking issue for a cluster of defects where errors are either
silently swallowed or cause a process panic instead of being surfaced to the
caller with a meaningful diagnostic.
Child issues and related items
lore/src/remote/message.rs:52—.unwrap()Internal Erroron Entra JWKSlore-server/src/auth/jwk.rs:141,146— nowarn!()beforeok_or(InternalError)?lore-server/src/auth/jwk.rs:89—desired.map(…).is_some()invariantly truelore-serverauth helpers — empty permission lists treated as authorisedShared pattern
Every item in this cluster has the same root: an absent or inadequate error
signal at a point where the code transitions from a valid state to an
unexpected one. The result is either a crash (panic at message.rs:52) or an
opaque failure that gives the operator no information to act on.
Fix directions
message.rs:52: replace.unwrap()with?— one character, no behaviour change for valid input, converts panic to propagated error. (PR lore: return an error on a malformed IPC message header #16 in flight.)jwk.rs:141,146: addwarn!()before eachok_or(InternalError)?, naming the missing field. (PR fix(auth): infer RS256 from RSA+sig when JWK alg is missing #65 in flight.)jwk.rs:89:.map→.and_then. This is a security-significant bug (key rotation is broken after startup) and has no open PR. It should be filed and merged before coordinating the adjacent auth PRs (fix(auth): infer RS256 from RSA+sig when JWK alg is missing #65, lore-server: Enforce repository write permissions #49).Background
Identified in the open-bug theme analysis (triage/2026-06-bug-theme-analysis.md,
branch
valentina2509:docs/bug-theme-analysis).