Test overlong PGP signature suffix error (#212)

casey · web-flow · commit 5a62f0b65af8 · 2026-01-23T01:44:15.000Z
diff --git a/src/bech32m_type.rs b/src/bech32m_type.rs
@@ -1,6 +1,6 @@
 use super::*;
 
-#[derive(Clone, Copy, Debug)]
+#[derive(Clone, Copy, Debug, PartialEq)]
 pub enum Bech32mType {
   Fingerprint,
   PrivateKey,
diff --git a/src/signature.rs b/src/signature.rs
@@ -60,7 +60,10 @@ impl FromStr for Signature {
 
 #[cfg(test)]
 mod tests {
-  use super::*;
+  use {
+    super::*,
+    bech32::primitives::decode::{ChecksumError, CodeLengthError},
+  };
 
   #[test]
   fn error_display() {
@@ -99,6 +102,40 @@ mod tests {
     );
   }
 
+  #[test]
+  fn overlong_pgp_suffix() {
+    let bech32m = [Fe32::P, Fe32::_4, Fe32::P]
+      .into_iter()
+      .chain([0u8; 64].into_iter().chain(vec![0u8; 65536]).bytes_to_fes())
+      .with_checksum::<bech32::Bech32m>(Signature::TYPE.hrp())
+      .with_witness_version(Fe32::A)
+      .chars()
+      .collect::<String>();
+
+    let SignatureError::Bech32m { source } = bech32m.parse::<Signature>().unwrap_err() else {
+      panic!("expected bech32m error");
+    };
+
+    let Bech32mError::Decode { ty, source } = source else {
+      panic!("expected decode error");
+    };
+
+    assert_eq!(ty, Bech32mType::Signature);
+
+    let CheckedHrpstringError::Checksum(err) = source else {
+      panic!("expected checksum error");
+    };
+
+    assert_matches!(
+      err,
+      ChecksumError::CodeLength(CodeLengthError {
+        encoded_length: 104_980,
+        code_length: 1023,
+        ..
+      })
+    );
+  }
+
   #[test]
   fn parse() {
     let message = Message {
