SP-679 Adds file size limit filter on local cryptography scanning

agustingroh · francostramana · commit 51cea14a7333 · 2024-05-10T08:58:23.000-03:00
diff --git a/package.json b/package.json
@@ -1,6 +1,6 @@
 {
   "name": "scanoss",
-  "version": "0.12.1",
+  "version": "0.12.2",
   "description": "The SCANOSS JS package provides a simple, easy to consume module for interacting with SCANOSS APIs/Engine.",
   "main": "build/main/index.js",
   "typings": "build/main/index.d.ts",
diff --git a/src/cli/commands/crypto.ts b/src/cli/commands/crypto.ts
@@ -35,7 +35,7 @@ export async function cryptoHandler(rootPath: string, options: any){
   console.log("Searching for local cryptography...")
   const results = await cryptoScanner.scan(fileList);
 
-  if(options.output) {
+  if (options.output) {
     await fs.promises.writeFile(options.output, JSON.stringify(results, null, 2));
     console.log(`Results found in ${options.output}`);
   } else {
diff --git a/src/sdk/Cryptography/CryptoProvider/LocalCrypto.ts b/src/sdk/Cryptography/CryptoProvider/LocalCrypto.ts
@@ -14,6 +14,8 @@ export class LocalCrypto {
 
   private cryptoRules: Map<string, RegExp>;
 
+  private readonly MAX_FILE_SIZE = 2 * 1024 * 1024 * 1024;
+
   /**
    * Constructs a new LocalCrypto.
    * @param cryptoRules An array of CryptoAlgorithmRules used to create the search rules.
@@ -30,9 +32,11 @@ export class LocalCrypto {
   public async search(files: Array<string>): Promise<Array<CryptoItem>> {
     if (files.length <= 0) return [];
     const cryptoItems = files.map((f)=> { return new CryptoItem(f) });
-    await Promise.all(cryptoItems.map(async (c) => {
+
+    for(let c of cryptoItems) {
       await this.searchCrypto(c);
-    }));
+    }
+
     return cryptoItems;
   }
 
@@ -43,7 +47,12 @@ export class LocalCrypto {
    */
   private async searchCrypto(cryptoItem: CryptoItem){
     const cryptoFound = new Array<string>();
-    let content =  await fs.promises.readFile(cryptoItem.getPath(), 'utf-8');
+    const stats = await fs.promises.stat(cryptoItem.getPath());
+    if (stats.size > this.MAX_FILE_SIZE) {
+      cryptoItem.setAlgorithms([]);
+      return;
+    }
+    let content = await fs.promises.readFile(cryptoItem.getPath(), 'utf-8');
     this.cryptoRules.forEach((value, key) => {
       try {
         const matches = content.match(value);
@@ -54,10 +63,15 @@ export class LocalCrypto {
         console.error(e);
       }
     });
+    // Release memory
+    content = null;
     const results: Array<CryptoAlgorithm> = [];
     cryptoFound.forEach((cf)=>{
       results.push(this.cryptoMapper.get(cf));
     });
     cryptoItem.setAlgorithms(results);
   }
+
 }
+
+

Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,6 @@`
`1`	`1`	`{`
`2`	`2`	`"name": "scanoss",`
`3`		`- "version": "0.12.1",`
	`3`	`+ "version": "0.12.2",`
`4`	`4`	`"description": "The SCANOSS JS package provides a simple, easy to consume module for interacting with SCANOSS APIs/Engine.",`
`5`	`5`	`"main": "build/main/index.js",`
`6`	`6`	`"typings": "build/main/index.d.ts",`