test: test null bytes for String and Buffer

Author: geeksilva97

src/node_sqlite.cc

@@ -7,6 +7,7 @@
 #include "node.h"
 #include "node_errors.h"
 #include "node_mem-inl.h"
+#include "node_url.h"
 #include "sqlite3.h"
 #include "threadpoolwork-inl.h"
 #include "util-inl.h"
@@ -592,8 +593,15 @@ bool DatabaseSync::ShouldIgnoreSQLiteError() {
 std::optional<std::string> ValidateDatabasePath(Environment* env,
                                                 Local<Value> path,
                                                 const std::string& field_name) {
+  auto has_null_bytes = [](const std::string& str) {
+    return str.find('\0') != std::string::npos;
+  };
+  std::string location;
   if (path->IsString()) {
-    return Utf8Value(env->isolate(), path.As<String>()).ToString();
+    location = Utf8Value(env->isolate(), path.As<String>()).ToString();
+    if (!has_null_bytes(location)) {
+      return location;
+    }
   }
 
   if (path->IsUint8Array()) {
@@ -623,14 +631,12 @@ std::optional<std::string> ValidateDatabasePath(Environment* env,
         href->IsString() &&
         url->Get(env->context(), env->protocol_string()).ToLocal(&protocol) &&
         protocol->IsString()) {
-      std::string url_protocol =
-          Utf8Value(env->isolate(), protocol.As<String>()).ToString();
-      if (url_protocol != "" && url_protocol != "file:") {
-        THROW_ERR_INVALID_URL_SCHEME(env->isolate());
-        return std::nullopt;
+      location = Utf8Value(env->isolate(), href.As<String>()).ToString();
+      if (!has_null_bytes(location)) {
+        auto file_url = ada::parse(location);
+        CHECK(file_url);
+        return url::FileURLToPath(env, *file_url);
       }
-
-      return Utf8Value(env->isolate(), href.As<String>()).ToString();
     }
   }
 
@@ -1130,9 +1136,9 @@ void Backup(const FunctionCallbackInfo<Value>& args) {
   BackupJob* job = new BackupJob(env,
                                  db,
                                  resolver,
-                                 source_db,
+                                 std::move(source_db),
                                  dest_path.value(),
-                                 dest_db,
+                                 std::move(dest_db),
                                  rate,
                                  progressFunc);
   db->AddBackup(job);

test/parallel/test-sqlite-backup.mjs

@@ -61,6 +61,24 @@ describe('backup()', () => {
     });
   });
 
+  test('throws if the database destination contains null bytes', (t) => {
+    const database = makeSourceDb();
+
+    t.assert.throws(() => {
+      backup(database, Buffer.from('l\0cation'));
+    }, {
+      code: 'ERR_INVALID_ARG_TYPE',
+      message: 'The "destination" argument must be a string, Uint8Array, or URL without null bytes.'
+    });
+
+    t.assert.throws(() => {
+      backup(database, 'l\0cation');
+    }, {
+      code: 'ERR_INVALID_ARG_TYPE',
+      message: 'The "destination" argument must be a string, Uint8Array, or URL without null bytes.'
+    });
+  });
+
   test('throws if options is not an object', (t) => {
     const database = makeSourceDb();
 
@@ -146,14 +164,14 @@ test('backup database using location as URL', async (t) => {
   const database = makeSourceDb();
   const destDb = pathToFileURL(nextDb());
 
-  t.after(() => {
-    database.close();
-    backupDb.close();
-  });
+  t.after(() => { database.close(); });
 
   await backup(database, destDb);
 
   const backupDb = new DatabaseSync(destDb);
+
+  t.after(() => { backupDb.close(); });
+
   const rows = backupDb.prepare('SELECT * FROM data').all();
 
   t.assert.deepStrictEqual(rows, [
@@ -166,14 +184,14 @@ test('backup database using location as Buffer', async (t) => {
   const database = makeSourceDb();
   const destDb = Buffer.from(nextDb());
 
-  t.after(() => {
-    database.close();
-    backupDb.close();
-  });
+  t.after(() => { database.close(); });
 
   await backup(database, destDb);
 
   const backupDb = new DatabaseSync(destDb);
+
+  t.after(() => { backupDb.close(); });
+
   const rows = backupDb.prepare('SELECT * FROM data').all();
 
   t.assert.deepStrictEqual(rows, [

test/parallel/test-sqlite-database-sync.js

@@ -23,7 +23,7 @@ suite('DatabaseSync() constructor', () => {
     });
   });
 
-  test('throws if database path is not a string', (t) => {
+  test('throws if database path is not a string, Uint8Array, or URL', (t) => {
     t.assert.throws(() => {
       new DatabaseSync();
     }, {
@@ -32,6 +32,24 @@ suite('DatabaseSync() constructor', () => {
     });
   });
 
+  test('throws if the database location as Buffer contains null bytes', (t) => {
+    t.assert.throws(() => {
+      new DatabaseSync(Buffer.from('l\0cation'));
+    }, {
+      code: 'ERR_INVALID_ARG_TYPE',
+      message: 'The "path" argument must be a string, Uint8Array, or URL without null bytes.',
+    });
+  });
+
+  test('throws if the database location as string contains null bytes', (t) => {
+    t.assert.throws(() => {
+      new DatabaseSync('l\0cation');
+    }, {
+      code: 'ERR_INVALID_ARG_TYPE',
+      message: 'The "path" argument must be a string, Uint8Array, or URL without null bytes.',
+    });
+  });
+
   test('throws if options is provided but is not an object', (t) => {
     t.assert.throws(() => {
       new DatabaseSync('foo', null);