apply review comments

Jami Cogswell · Jami Cogswell · commit bada9864336f · 2022-11-08T15:29:33.000-05:00
diff --git a/java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll b/java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll
@@ -40,11 +40,10 @@ private class PatternQuoteCall extends RegexInjectionSanitizer {
  */
 private class PatternLiteralFlag extends RegexInjectionSanitizer {
   PatternLiteralFlag() {
-    exists(MethodAccess ma, Method m, Field field | m = ma.getMethod() |
+    exists(MethodAccess ma, Method m, PatternLiteralField field | m = ma.getMethod() |
       ma.getArgument(0) = this.asExpr() and
       m.getDeclaringType() instanceof TypeRegexPattern and
       m.hasName("compile") and
-      field instanceof PatternLiteralField and
       ma.getArgument(1) = field.getAnAccess()
     )
   }
diff --git a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.ql b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.ql
@@ -2,7 +2,6 @@ import java
 import TestUtilities.InlineExpectationsTest
 import semmle.code.java.security.regexp.RegexInjectionQuery
 
-//import semmle.code.java.security.regexp.PolynomialReDoSQuery
 class RegexInjectionTest extends InlineExpectationsTest {
   RegexInjectionTest() { this = "RegexInjectionTest" }
 

Original file line number	Diff line number	Diff line change
`@@ -40,11 +40,10 @@ private class PatternQuoteCall extends RegexInjectionSanitizer {`
`40`	`40`	`*/`
`41`	`41`	`private class PatternLiteralFlag extends RegexInjectionSanitizer {`
`42`	`42`	`PatternLiteralFlag() {`
`43`		`- exists(MethodAccess ma, Method m, Field field \| m = ma.getMethod() \|`
	`43`	`+ exists(MethodAccess ma, Method m, PatternLiteralField field \| m = ma.getMethod() \|`
`44`	`44`	`ma.getArgument(0) = this.asExpr() and`
`45`	`45`	`m.getDeclaringType() instanceof TypeRegexPattern and`
`46`	`46`	`m.hasName("compile") and`
`47`		`- field instanceof PatternLiteralField and`
`48`	`47`	`ma.getArgument(1) = field.getAnAccess()`
`49`	`48`	`)`
`50`	`49`	`}`