fix(status): prevent panic on invalid base64 in grpc-status-details-bin

sauravzg · sauravzg · commit 67250d1bb038 · 2026-04-30T13:00:09.000Z
Instead of panicking with `.expect()` when base64 decoding of the
`grpc-status-details-bin` header fails, fall back to setting the status
code to `Unknown` and include the decoding error in the message. This is
consistent with how Tonic handles failures to decode the `grpc-message`
header.

Added a unit test `details_invalid_base64` to verify this behavior.
diff --git a/tonic/src/status.rs b/tonic/src/status.rs
@@ -473,12 +473,11 @@ impl Status {
             None => Ok(String::new()),
         };
 
-        let details = match header_map.get(Self::GRPC_STATUS_DETAILS) {
+        let details_result = match header_map.get(Self::GRPC_STATUS_DETAILS) {
             Some(header) => crate::util::base64::STANDARD
                 .decode(header.as_bytes())
-                .expect("Invalid status header, expected base64 encoded value")
-                .into(),
-            None => Bytes::new(),
+                .map(Bytes::from),
+            None => Ok(Bytes::new()),
         };
 
         let other_headers = {
@@ -489,12 +488,17 @@ impl Status {
             header_map
         };
 
-        let (code, message) = match error_message {
-            Ok(message) => (code, message),
-            Err(e) => {
+        let (code, message, details) = match (error_message, details_result) {
+            (Ok(msg), Ok(det)) => (code, msg, det),
+            (Err(e), _) => {
                 let error_message = format!("Error deserializing status message header: {e}");
                 warn!(error_message);
-                (Code::Unknown, error_message)
+                (Code::Unknown, error_message, Bytes::new())
+            }
+            (Ok(_msg), Err(e)) => {
+                let error_message = format!("Error deserializing status details header: {e}");
+                warn!(error_message);
+                (Code::Unknown, error_message, Bytes::new())
             }
         };
 
@@ -1077,6 +1081,19 @@ mod tests {
 
         assert_eq!(status.details(), DETAILS);
     }
+
+    #[test]
+    fn details_invalid_base64() {
+        let mut header_map = HeaderMap::new();
+        header_map.insert(Status::GRPC_STATUS, HeaderValue::from_static("14")); // Unavailable
+        header_map.insert(Status::GRPC_STATUS_DETAILS, HeaderValue::from_static("invalid base64!"));
+
+        let status = Status::from_header_map(&header_map).unwrap();
+
+        assert_eq!(status.code(), Code::Unknown);
+        assert!(status.message().contains("Error deserializing status details header"));
+        assert!(status.details().is_empty());
+    }
 }
 
 /// Error returned if a request didn't complete within the configured timeout.
