Andrew Chernow <ac@esilo.com> writes:
> I think a range check is needed in timetz_recv & time_recv.
I think that the design philosophy for the binary I/O code is to be as
fast as safely possible, and accordingly range-checks are present only
where needed for the backend to defend itself. Is there anything that
goes horribly wrong if a client shoves a bad zone offset at us?
(If we want to change this philosophy, I won't necessarily quibble,
but I don't think these two recv routines are the only ones that
would need to be tightened up.)
regards, tom lane