Skip to content

Commit

Permalink
Add io.CopyBuffer function to rule G110
Browse files Browse the repository at this point in the history 
Signed-off-by: Cosmin Cojocar <cosmin.cojocar@gmx.ch>
  • Loading branch information
@ccojocar
ccojocar authored and Cosmin Cojocar committed Jul 29, 2020
1 parent 6bcd89a commit 110b62b
Show file tree
Hide file tree
Showing 2 changed files with 30 additions and 1 deletion.
1 change: 1 addition & 0 deletions rules/decompression-bomb.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -95,6 +95,7 @@ func NewDecompressionBombCheck(id string, conf gosec.Config) (gosec.Rule, []ast.

copyCalls := gosec.NewCallList()
copyCalls.Add("io", "Copy")
copyCalls.Add("io", "CopyBuffer")

return &decompressionBombCheck{
MetaData: gosec.MetaData{
Expand Down
30 changes: 29 additions & 1 deletion testutils/source.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -699,8 +699,36 @@ func main() {
if err != nil {
panic(err)
}
io.Copy(os.Stdout, r)
_, err := io.Copy(os.Stdout, r)
if err != nil {
panic(err)
}
r.Close()
}`}, 1, gosec.NewConfig()}, {[]string{`
package main
import (
"bytes"
"compress/zlib"
"io"
"os"
)
func main() {
buff := []byte{120, 156, 202, 72, 205, 201, 201, 215, 81, 40, 207,
47, 202, 73, 225, 2, 4, 0, 0, 255, 255, 33, 231, 4, 147}
b := bytes.NewReader(buff)
r, err := zlib.NewReader(b)
if err != nil {
panic(err)
}
buf := make([]byte, 8)
_, err := io.CopyBuffer(os.Stdout, r, buf)
if err != nil {
panic(err)
}
r.Close()
}`}, 1, gosec.NewConfig()}, {[]string{`
package main
Expand Down

0 comments on commit 110b62b

Please sign in to comment.