Detect wrong password in webrtc?

Is there a canonical way to detect a wrong password when using the webrtc connector? I realize there’s some potential ambiguity about what “wrong” means in a P2P context, but I’d like to at least detect and notify users of a potential mismatch. It appears that a call to cryptoutils.decrypt will throw an OperationError if it tries to decrypt ciphertext that was encrypted with a different key (or at least I think it will since AES-GCM includes an auth tag for this purpose?). What I’m not clear on is where this error should be handled: in the update handler? Somewhere else? It seems important to be able to provide the user some feedback that they may have entered the wrong password if they are having trouble connecting to peers.