mirror of
https://github.com/jackc/pgx.git
synced 2025-04-27 13:14:32 +00:00
adbb38f298
The PostgreSQL server will reject messages greater than ~1 GB anyway. However, worse than that is that a message that is larger than 4 GB could wrap the 32-bit integer message size and be interpreted by the server as multiple messages. This could allow a malicious client to inject arbitrary protocol messages. https://github.com/jackc/pgx/security/advisories/GHSA-mrww-27vc-gghv
21 lines
586 B
Go
21 lines
586 B
Go
package pgproto3_test
|
|
|
|
import (
|
|
"testing"
|
|
|
|
"github.com/jackc/pgx/v5/pgproto3"
|
|
"github.com/stretchr/testify/assert"
|
|
"github.com/stretchr/testify/require"
|
|
)
|
|
|
|
func TestEncodeDecode(t *testing.T) {
|
|
srcBytes := []byte{'W', 0x00, 0x00, 0x00, 0x0b, 0x01, 0x00, 0x02, 0x00, 0x00, 0x00, 0x01}
|
|
dstResp := pgproto3.CopyBothResponse{}
|
|
err := dstResp.Decode(srcBytes[5:])
|
|
assert.NoError(t, err, "No errors on decode")
|
|
dstBytes := []byte{}
|
|
dstBytes, err = dstResp.Encode(dstBytes)
|
|
require.NoError(t, err)
|
|
assert.EqualValues(t, srcBytes, dstBytes, "Expecting src & dest bytes to match")
|
|
}
|