Fileperms (#442)

2025-07-07 00:35:35 +02:00 · 2020-02-28 06:48:18 -05:00
parent 00363edac5
commit a305f10eb9
7 changed files with 73 additions and 2 deletions
--- a/testutils/source.go
+++ b/testutils/source.go
@ -1400,6 +1400,55 @@ func unzip(archive, target string) error {
 	}

 	return nil
+}`}, 1, gosec.NewConfig()}}
+
+	// SampleCodeG306 - Poor permissions for WriteFile
+	SampleCodeG306 = []CodeSample{
+		{[]string{`package main
+
+import (
+	"bufio"
+	"fmt"
+	"io/ioutil"
+	"os"
+)
+
+func check(e error) {
+	if e != nil {
+		panic(e)
+	}
+}
+
+func main() {
+	
+	d1 := []byte("hello\ngo\n")
+	err := ioutil.WriteFile("/tmp/dat1", d1, 0744)
+	check(err)
+
+	allowed := ioutil.WriteFile("/tmp/dat1", d1, 0600)
+	check(allowed)
+	
+	f, err := os.Create("/tmp/dat2")
+	check(err)
+	
+	defer f.Close()
+	
+	d2 := []byte{115, 111, 109, 101, 10}
+	n2, err := f.Write(d2)
+	check(err)
+	fmt.Printf("wrote %d bytes\n", n2)
+	
+	n3, err := f.WriteString("writes\n")
+	fmt.Printf("wrote %d bytes\n", n3)
+	
+	f.Sync()
+	
+	w := bufio.NewWriter(f)
+	n4, err := w.WriteString("buffered\n")
+	fmt.Printf("wrote %d bytes\n", n4)
+	
+	w.Flush()
+
 }`}, 1, gosec.NewConfig()}}

 	// SampleCodeG401 - Use of weak crypto MD5