From 7a37a7c0c8dfece51bb7fdcb171d74ab04ef2736 Mon Sep 17 00:00:00 2001
From: Georgi Kodinov <Georgi.Kodinov@Oracle.com>
Date: Tue, 15 Mar 2011 13:19:30 +0200
Subject: Bug #11765023: 57934: DOS POSSIBLE SINCE BINARY CASTING DOESN'T
 ADHERE TO MAX_ALLOWED_PACKET

Added a check for max_packet_length in CONVERT(, BINARY|CHAR).
Added a test case.
---
 mysql-test/r/cast.result | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

(limited to 'mysql-test/r/cast.result')

diff --git a/mysql-test/r/cast.result b/mysql-test/r/cast.result
index dd61396e485..974a6bee63f 100644
--- a/mysql-test/r/cast.result
+++ b/mysql-test/r/cast.result
@@ -451,4 +451,19 @@ SELECT CONVERT(t2.a USING UTF8) FROM t1, t1 t2 LIMIT 1
 1
 1
 DROP TABLE t1;
+#
+# Bug #11765023: 57934: DOS POSSIBLE SINCE BINARY CASTING 
+#   DOESN'T ADHERE TO MAX_ALLOWED_PACKET
+SET @@GLOBAL.max_allowed_packet=2048;
+SELECT CONVERT('a', BINARY(2049));
+CONVERT('a', BINARY(2049))
+NULL
+Warnings:
+Warning	1301	Result of cast_as_binary() was larger than max_allowed_packet (2048) - truncated
+SELECT CONVERT('a', CHAR(2049));
+CONVERT('a', CHAR(2049))
+NULL
+Warnings:
+Warning	1301	Result of cast_as_char() was larger than max_allowed_packet (2048) - truncated
+SET @@GLOBAL.max_allowed_packet=default;
 End of 5.1 tests
-- 
cgit v1.2.1


From 8028a1043c6a7662594d6d465f11e30a846df534 Mon Sep 17 00:00:00 2001
From: Georgi Kodinov <Georgi.Kodinov@Oracle.com>
Date: Thu, 7 Apr 2011 14:44:26 +0300
Subject: fixed a missing warning

---
 mysql-test/r/cast.result | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'mysql-test/r/cast.result')

diff --git a/mysql-test/r/cast.result b/mysql-test/r/cast.result
index 974a6bee63f..44d57055e7f 100644
--- a/mysql-test/r/cast.result
+++ b/mysql-test/r/cast.result
@@ -455,6 +455,8 @@ DROP TABLE t1;
 # Bug #11765023: 57934: DOS POSSIBLE SINCE BINARY CASTING 
 #   DOESN'T ADHERE TO MAX_ALLOWED_PACKET
 SET @@GLOBAL.max_allowed_packet=2048;
+Warnings:
+Warning	1105	The value of 'max_allowed_packet' should be no less than the value of 'net_buffer_length'
 SELECT CONVERT('a', BINARY(2049));
 CONVERT('a', BINARY(2049))
 NULL
-- 
cgit v1.2.1