File: unserialize_large.phpt

package info (click to toggle)
php8.4 8.4.11-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid, trixie
  • size: 208,108 kB
  • sloc: ansic: 1,060,628; php: 35,345; sh: 11,866; cpp: 7,201; pascal: 4,913; javascript: 3,091; asm: 2,810; yacc: 2,411; makefile: 689; xml: 446; python: 301; awk: 148
file content (25 lines) | stat: -rw-r--r-- 730 bytes parent folder | download
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
--TEST--
Unserializing payload with unrealistically large element counts
--FILE--
<?php

var_dump(unserialize("a:1000000000:{}"));
var_dump(unserialize("O:1000000000:\"\":0:{}"));
var_dump(unserialize("O:1:\"X\":1000000000:{}"));
var_dump(unserialize("C:1:\"X\":1000000000:{}"));

?>
--EXPECTF--
Warning: unserialize(): Error at offset 14 of 15 bytes in %s on line %d
bool(false)

Warning: unserialize(): Error at offset 2 of 20 bytes in %s on line %d
bool(false)

Warning: unserialize(): Error at offset 18 of 21 bytes in %s on line %d
bool(false)

Warning: Insufficient data for unserializing - 1000000000 required, 1 present in %s on line %d

Warning: unserialize(): Error at offset 20 of 21 bytes in %s on line %d
bool(false)