Merge pull request #6507 from tausbn/python-prevent-polynomial-redos-explosion

Python: Prevent explosion in poly-ReDoS query
2025-12-18 01:33:15 +01:00 · 2021-08-23 11:48:14 +02:00
parent eda7616a23 021e5ff510
commit 467aa647da
1 changed files with 4 additions and 0 deletions
--- a/python/ql/src/semmle/python/security/performance/RegExpTreeView.qll
+++ b/python/ql/src/semmle/python/security/performance/RegExpTreeView.qll
@@ -12,4 +12,8 @@ import semmle.python.RegexTreeView
 */
 predicate isExcluded(RegExpParent parent) {
  not exists(parent.getRegex().getLocation().getFile().getRelativePath())
+  or
+  // Regexes with many occurrences of ".*" may cause the polynomial ReDoS computation to explode, so
+  // we explicitly exclude these.
+  count(int i | exists(parent.getRegex().getText().regexpFind("\\.\\*", i, _)) | i) > 10
 }