Swift: Autoformat + fix test indentation.

geoffw0 · geoffw0 · commit 4a06394d51a6 · 2023-06-15T13:09:46.000+01:00
diff --git a/swift/ql/lib/codeql/swift/regex/RegexTreeView.qll b/swift/ql/lib/codeql/swift/regex/RegexTreeView.qll
@@ -207,25 +207,30 @@ private module Impl implements RegexTreeViewSig {
      */
     Location getLocation() { result = re.getLocation() }
 
-    /*pragma[noinline]
-    private predicate componentHasLocationInfo(
-      int i, string filepath, int startline, int startcolumn, int endline, int endcolumn
-    ) {
-      re.getComponent(i)
-          .getLocation()
-          .hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
-    }*/
+    /*
+     * pragma[noinline]
+     *    private predicate componentHasLocationInfo(
+     *      int i, string filepath, int startline, int startcolumn, int endline, int endcolumn
+     *    ) {
+     *      re.getComponent(i)
+     *          .getLocation()
+     *          .hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
+     *    }
+     */
 
     /** Holds if this term is found at the specified location offsets. */
     predicate hasLocationInfo(
       string filepath, int startline, int startcolumn, int endline, int endcolumn
     ) {
-      /*exists(int re_start |
-        this.componentHasLocationInfo(0, filepath, startline, re_start, _, _) and
-        this.componentHasLocationInfo(re.getNumberOfComponents() - 1, filepath, _, _, endline, _) and
-        startcolumn = re_start + start and
-        endcolumn = re_start + end - 1
-      )*/
+      /*
+       * exists(int re_start |
+       *        this.componentHasLocationInfo(0, filepath, startline, re_start, _, _) and
+       *        this.componentHasLocationInfo(re.getNumberOfComponents() - 1, filepath, _, _, endline, _) and
+       *        startcolumn = re_start + start and
+       *        endcolumn = re_start + end - 1
+       *      )
+       */
+
       filepath = re.getFile().getAbsolutePath() and
       startline = re.getLocation().getStartLine() and
       startcolumn = re.getLocation().getStartColumn() and
@@ -1197,7 +1202,7 @@ private module Impl implements RegexTreeViewSig {
    * Holds if the regular expression should not be considered.
    */
   predicate isExcluded(RegExpParent parent) {
-    none()//parent.(RegExpTerm).getRegExp().(Ast::RegExpLiteral).hasFreeSpacingFlag() // exclude free-spacing mode regexes
+    none() //parent.(RegExpTerm).getRegExp().(Ast::RegExpLiteral).hasFreeSpacingFlag() // exclude free-spacing mode regexes
   }
 
   /**
diff --git a/swift/ql/lib/codeql/swift/regex/internal/ParseRegex.qll b/swift/ql/lib/codeql/swift/regex/internal/ParseRegex.qll
@@ -255,9 +255,7 @@ abstract class RegExp extends Expr {
   /**
    * Gets the text of this regex.
    */
-  string getText() {
-    result = this.(StringLiteralExpr).getValue()
-  }
+  string getText() { result = this.(StringLiteralExpr).getValue() }
 
   /** Gets the `i`th character of this regex */
   string getChar(int i) { result = this.getText().charAt(i) }
diff --git a/swift/ql/test/library-tests/regex/redos_variants.swift b/swift/ql/test/library-tests/regex/redos_variants.swift
@@ -2,7 +2,7 @@
 // --- stubs ---
 
 struct URL {
-	init?(string: String) {}
+    init?(string: String) {}
 }
 
 struct AnyRegexOutput {
@@ -12,20 +12,20 @@ protocol RegexComponent {
 }
 
 struct Regex<Output> : RegexComponent {
-	struct Match {
-	}
+    struct Match {
+    }
 
-	init(_ pattern: String) throws where Output == AnyRegexOutput { }
+    init(_ pattern: String) throws where Output == AnyRegexOutput { }
 
-	func firstMatch(in string: String) throws -> Regex<Output>.Match? { return nil}
-	func prefixMatch(in string: String) throws -> Regex<Output>.Match? { return nil}
-	func wholeMatch(in string: String) throws -> Regex<Output>.Match? { return nil}
+    func firstMatch(in string: String) throws -> Regex<Output>.Match? { return nil}
+    func prefixMatch(in string: String) throws -> Regex<Output>.Match? { return nil}
+    func wholeMatch(in string: String) throws -> Regex<Output>.Match? { return nil}
 
-	typealias RegexOutput = Output
+    typealias RegexOutput = Output
 }
 
 extension String {
-	init(contentsOf: URL) {
+    init(contentsOf: URL) {
         let data = ""
         self.init(data)
     }
@@ -36,88 +36,88 @@ extension String {
 // the focus for these tests is different vulnerable and non-vulnerable regexp strings.
 
 func myRegexpVariantsTests(myUrl: URL) throws {
-	let tainted = String(contentsOf: myUrl) // tainted
+    let tainted = String(contentsOf: myUrl) // tainted
 
     // basic cases:
     // attack string: "a" x lots + "!"
 
-	_ = try Regex(".*").firstMatch(in: tainted) // $ regex=.* input=tainted
+    _ = try Regex(".*").firstMatch(in: tainted) // $ regex=.* input=tainted
 
-	_ = try Regex("a*b").firstMatch(in: tainted) // $ regex=a*b input=tainted
-	_ = try Regex("(a*)b").firstMatch(in: tainted) // $ regex=(a*)b input=tainted
-	_ = try Regex("(a)*b").firstMatch(in: tainted) // $ regex=(a)*b input=tainted
-	_ = try Regex("(a*)*b").firstMatch(in: tainted) // $ regex=(a*)*b input=tainted redos-vulnerable=
-	_ = try Regex("((a*)*b)").firstMatch(in: tainted) // $ regex=((a*)*b) input=tainted redos-vulnerable=
+    _ = try Regex("a*b").firstMatch(in: tainted) // $ regex=a*b input=tainted
+    _ = try Regex("(a*)b").firstMatch(in: tainted) // $ regex=(a*)b input=tainted
+    _ = try Regex("(a)*b").firstMatch(in: tainted) // $ regex=(a)*b input=tainted
+    _ = try Regex("(a*)*b").firstMatch(in: tainted) // $ regex=(a*)*b input=tainted redos-vulnerable=
+    _ = try Regex("((a*)*b)").firstMatch(in: tainted) // $ regex=((a*)*b) input=tainted redos-vulnerable=
 
-	_ = try Regex("(a|aa?)b").firstMatch(in: tainted) // $ regex=(a|aa?)b input=tainted
-	_ = try Regex("(a|aa?)*b").firstMatch(in: tainted) // $ regex=(a|aa?)*b input=tainted redos-vulnerable=
+    _ = try Regex("(a|aa?)b").firstMatch(in: tainted) // $ regex=(a|aa?)b input=tainted
+    _ = try Regex("(a|aa?)*b").firstMatch(in: tainted) // $ regex=(a|aa?)*b input=tainted redos-vulnerable=
 
     // from the qhelp:
-	// attack string: "_" x lots + "!"
+    // attack string: "_" x lots + "!"
 
-	_ = try Regex("^_(__|.)+_$").firstMatch(in: tainted) // $ regex=^_(__|.)+_$ input=tainted redos-vulnerable=
-	_ = try Regex("^_(__|[^_])+_$").firstMatch(in: tainted) // $ regex=^_(__|[^_])+_$ input=tainted
+    _ = try Regex("^_(__|.)+_$").firstMatch(in: tainted) // $ regex=^_(__|.)+_$ input=tainted redos-vulnerable=
+    _ = try Regex("^_(__|[^_])+_$").firstMatch(in: tainted) // $ regex=^_(__|[^_])+_$ input=tainted
 
     // real world cases:
 
     // Adapted from marked (https://github.com/markedjs/marked), which is licensed
     // under the MIT license; see file licenses/marked-LICENSE.
     // GOOD
-	_ = try Regex(#"^\b_((?:__|[\s\S])+?)_\b|^\*((?:\*\*|[\s\S])+?)\*(?!\*)"#).firstMatch(in: tainted) // $ SPURIOUS: redos-vulnerable=
-	// BAD
+    _ = try Regex(#"^\b_((?:__|[\s\S])+?)_\b|^\*((?:\*\*|[\s\S])+?)\*(?!\*)"#).firstMatch(in: tainted) // $ SPURIOUS: redos-vulnerable=
+    // BAD
     // attack string: "_" + "__".repeat(100)
-	_ = try Regex(#"^\b_((?:__|[\s\S])+?)_\b|^\*((?:\*\*|[\s\S])+?)\*(?!\*)"#).wholeMatch(in: tainted) // $ redos-vulnerable=
+    _ = try Regex(#"^\b_((?:__|[\s\S])+?)_\b|^\*((?:\*\*|[\s\S])+?)\*(?!\*)"#).wholeMatch(in: tainted) // $ redos-vulnerable=
 
     // GOOD
     // Adapted from marked (https://github.com/markedjs/marked), which is licensed
     // under the MIT license; see file licenses/marked-LICENSE.
-	_ = try Regex(#"^\b_((?:__|[^_])+?)_\b|^\*((?:\*\*|[^*])+?)\*(?!\*)"#).firstMatch(in: tainted)
+    _ = try Regex(#"^\b_((?:__|[^_])+?)_\b|^\*((?:\*\*|[^*])+?)\*(?!\*)"#).firstMatch(in: tainted)
 
     // GOOD - there is no witness in the end that could cause the regexp to not match
     // Adapted from brace-expansion (https://github.com/juliangruber/brace-expansion),
     // which is licensed under the MIT license; see file licenses/brace-expansion-LICENSE.
-	_ = try Regex("(.*,)+.+").firstMatch(in: tainted)
+    _ = try Regex("(.*,)+.+").firstMatch(in: tainted)
 
     // BAD
     // attack string: " '" + "\\\\".repeat(100)
     // Adapted from CodeMirror (https://github.com/codemirror/codemirror),
     // which is licensed under the MIT license; see file licenses/CodeMirror-LICENSE.
-	_ = try Regex(#"^(?:\s+(?:"(?:[^"\\]|\\\\|\\.)+"|'(?:[^'\\]|\\\\|\\.)+'|\((?:[^)\\]|\\\\|\\.)+\)))?"#).firstMatch(in: tainted) // $ redos-vulnerable=
+    _ = try Regex(#"^(?:\s+(?:"(?:[^"\\]|\\\\|\\.)+"|'(?:[^'\\]|\\\\|\\.)+'|\((?:[^)\\]|\\\\|\\.)+\)))?"#).firstMatch(in: tainted) // $ redos-vulnerable=
 
     // GOOD
     // Adapted from jest (https://github.com/facebook/jest), which is licensed
     // under the MIT license; see file licenses/jest-LICENSE.
-	_ = try Regex(#"^ *(\S.*\|.*)\n *([-:]+ *\|[-| :]*)\n((?:.*\|.*(?:\n|$))*)\n*"#).firstMatch(in: tainted)
+    _ = try Regex(#"^ *(\S.*\|.*)\n *([-:]+ *\|[-| :]*)\n((?:.*\|.*(?:\n|$))*)\n*"#).firstMatch(in: tainted)
 
     // BAD
     // attack string: "/" + "\\/a".repeat(100)
     // Adapted from ANodeBlog (https://github.com/gefangshuai/ANodeBlog),
     // which is licensed under the Apache License 2.0; see file licenses/ANodeBlog-LICENSE.
-	_ = try Regex(#"\/(?![ *])(\\\/|.)*?\/[gim]*(?=\W|$)"#).firstMatch(in: tainted) // $ redos-vulnerable=
+    _ = try Regex(#"\/(?![ *])(\\\/|.)*?\/[gim]*(?=\W|$)"#).firstMatch(in: tainted) // $ redos-vulnerable=
 
     // BAD
     // attack string: "##".repeat(100) + "\na"
     // Adapted from CodeMirror (https://github.com/codemirror/codemirror),
     // which is licensed under the MIT license; see file licenses/CodeMirror-LICENSE.
-	_ = try Regex(#"^([\s\[\{\(]|#.*)*$"#).firstMatch(in: tainted) // $ redos-vulnerable=
+    _ = try Regex(#"^([\s\[\{\(]|#.*)*$"#).firstMatch(in: tainted) // $ redos-vulnerable=
 
     // BAD
     // attack string: "a" + "[]".repeat(100) + ".b\n"
     // Adapted from Knockout (https://github.com/knockout/knockout), which is
     // licensed under the MIT license; see file licenses/knockout-LICENSE
-	_ = try Regex(#"^[\_$a-z][\_$a-z0-9]*(\[.*?\])*(\.[\_$a-z][\_$a-z0-9]*(\[.*?\])*)*$"#).firstMatch(in: tainted) // $ redos-vulnerable=
+    _ = try Regex(#"^[\_$a-z][\_$a-z0-9]*(\[.*?\])*(\.[\_$a-z][\_$a-z0-9]*(\[.*?\])*)*$"#).firstMatch(in: tainted) // $ redos-vulnerable=
 
     // BAD
     // attack string: "[" + "][".repeat(100) + "]!"
     // Adapted from Prototype.js (https://github.com/prototypejs/prototype), which
     // is licensed under the MIT license; see file licenses/Prototype.js-LICENSE.
-	_ = try Regex(#"(([\w#:.~>+()\s-]+|\*|\[.*?\])+)\s*(,|$)"#).firstMatch(in: tainted) // $ redos-vulnerable=
+    _ = try Regex(#"(([\w#:.~>+()\s-]+|\*|\[.*?\])+)\s*(,|$)"#).firstMatch(in: tainted) // $ redos-vulnerable=
 
     // BAD
     // attack string: "'" + "\\a".repeat(100) + '"'
     // Adapted from Prism (https://github.com/PrismJS/prism), which is licensed
     // under the MIT license; see file licenses/Prism-LICENSE.
-	_ = try Regex(#"("|')(\\?.)*?\1"#).firstMatch(in: tainted) // $ redos-vulnerable=
+    _ = try Regex(#"("|')(\\?.)*?\1"#).firstMatch(in: tainted) // $ redos-vulnerable=
 
     // more cases:
 
@@ -148,7 +148,7 @@ func myRegexpVariantsTests(myUrl: URL) throws {
 
     // GOOD
     _ = try Regex(#"([\w.]+)*"#).firstMatch(in: tainted)
-	// BAD
+    // BAD
     // attack string: "a" x lots + "!"
     _ = try Regex(#"([\w.]+)*"#).wholeMatch(in: tainted) // $ MISSING: redos-vulnerable=
 
@@ -214,7 +214,7 @@ func myRegexpVariantsTests(myUrl: URL) throws {
 
     // BAD
     // attack string: "5" x lots + "!"
-	_ = try Regex(#"((\d|\d)*)""#).firstMatch(in: tainted) // $ redos-vulnerable=
+    _ = try Regex(#"((\d|\d)*)""#).firstMatch(in: tainted) // $ redos-vulnerable=
 
     // BAD
     // attack string: "0" x lots + "!"
@@ -262,7 +262,7 @@ func myRegexpVariantsTests(myUrl: URL) throws {
 
     // GOOD - there is no witness in the end that could cause the regexp to not match
     _ = try Regex(#"(\d+(X\d+)?)+"#).firstMatch(in: tainted)
-	// BAD
+    // BAD
     // attack string: "0" x lots + "!"
     _ = try Regex(#"(\d+(X\d+)?)+"#).wholeMatch(in: tainted) // $ MISSING: redos-vulnerable=
 
@@ -305,7 +305,7 @@ func myRegexpVariantsTests(myUrl: URL) throws {
 
     // GOOD
     _ = try Regex("(a+)+aaaaa*a+").firstMatch(in: tainted)
-	// BAD
+    // BAD
     // attack string: "a" x lots + "!"
     _ = try Regex("(a+)+aaaaa*a+").wholeMatch(in: tainted) // $ MISSING: redos-vulnerable=
 
@@ -333,7 +333,7 @@ func myRegexpVariantsTests(myUrl: URL) throws {
 
     // GOOD
     _ = try Regex("(([^X]b)+)*($|[^X]b)").firstMatch(in: tainted)
-	// BAD
+    // BAD
     // attack string: "b" x lots + "!"
     _ = try Regex("(([^X]b)+)*($|[^X]b)").wholeMatch(in: tainted) // $ MISSING: redos-vulnerable=
 
@@ -544,7 +544,7 @@ func myRegexpVariantsTests(myUrl: URL) throws {
 
     // GOOD
     _ = try Regex(#"("[^"]*?"|[^"\s]+)+(?=\s*|\s*$)"#).firstMatch(in: tainted)
-	// BAD
+    // BAD
     // attack string: "##" x lots + "\na"
     _ = try Regex(#"("[^"]*?"|[^"\s]+)+(?=\s*|\s*$)"#).wholeMatch(in: tainted) // $ MISSING: redos-vulnerable=
 
