Merge pull request #292 from github/regexp_slash_az

Don't parse `\A` and `\Z` as `RegExpConstant`
2026-04-19 05:54:00 +02:00 · 2021-09-17 16:42:13 +01:00
parent 1fd91ab9bd ebf23d00d1
commit 3d23575a38
4 changed files with 24 additions and 17 deletions
--- a/ql/test/library-tests/regexp/parse.expected
+++ b/ql/test/library-tests/regexp/parse.expected
@@ -146,10 +146,10 @@ regexp.rb:

 #   19| [RegExpConstant, RegExpNormalChar] _

-#   20| [RegExpConstant, RegExpEscape] \A
+#   20| [RegExpCaret] \A

 #   20| [RegExpSequence] \A[+-]?\d+
-#-----| 0 -> [RegExpConstant, RegExpEscape] \A
+#-----| 0 -> [RegExpCaret] \A
 #-----| 1 -> [RegExpOpt] [+-]?
 #-----| 2 -> [RegExpPlus] \d+

--- a/ql/test/query-tests/security/cwe-1333-polynomial-redos/PolynomialReDoS.rb
+++ b/ql/test/query-tests/security/cwe-1333-polynomial-redos/PolynomialReDoS.rb
@@ -33,7 +33,10 @@ class FooController < ActionController::Base

    # GOOD - guarded by a string length check
    if name.length < 1024
-	name.gsub regex, ''
+      name.gsub regex, ''
    end
+
+    # GOOD - regex does not suffer from polynomial backtracking (regression test)
+    params[:foo] =~ /\A[bc].*\Z/
  end
-end
+end