hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-27 09:45:15 +02:00
Code Issues Packages Projects Releases Wiki Activity

Move check to exlude test cases so that it also covers exponential redos

Browse Source
This commit is contained in:
Joe Farebrother
2022-03-16 16:04:48 +00:00
parent 1605d36ddf
commit 375ded4ede
1 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
java/ql/lib/semmle/code/java/regex/RegexFlowConfigs.qll
View File

@@ -17,6 +17,10 @@ private class RegexCompileFlowConf extends DataFlow2::Configuration {
override predicate isSink(DataFlow::Node node) {
sinkNode(node, ["regex-compile", "regex-compile-match", "regex-compile-find"])
}
override predicate isBarrier(DataFlow::Node node) {
node.getEnclosingCallable().getDeclaringType() instanceof NonSecurityTestClass
}
}
/**
@@ -208,10 +212,6 @@ private class RegexMatchFlowConf extends DataFlow2::Configuration {
override predicate isAdditionalFlowStep(DataFlow::Node node1, DataFlow::Node node2) {
any(RegexAdditionalFlowStep s).step(node1, node2)
}
override predicate isBarrier(DataFlow::Node node) {
node.getEnclosingCallable().getDeclaringType() instanceof NonSecurityTestClass
}
}
/**