From 99c60d4b25040d712fbed2ffcc8e1044c5e0fe07 Mon Sep 17 00:00:00 2001
From: Nobuyoshi Nakada <nobu@ruby-lang.org>
Date: Sat, 30 Oct 2021 00:40:21 +0900
Subject: Get rid of exponential backtracks found by CodeQL

Since these regexps are used at build/installation, they are not
vulnerabilities.
---
 tool/mkconfig.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'tool/mkconfig.rb')

diff --git a/tool/mkconfig.rb b/tool/mkconfig.rb
index 6db60724e9..6e23af5185 100755
--- a/tool/mkconfig.rb
+++ b/tool/mkconfig.rb
@@ -88,7 +88,7 @@ File.foreach "config.status" do |line|
       unless $install_name
         $install_name = "ruby"
         val.gsub!(/\$\$/, '$')
-        val.scan(%r[\G[\s;]*(/(?:\\.|[^/])*/)?([sy])(\\?\W)((?:(?!\3)(?:\\.|.))*)\3((?:(?!\3)(?:\\.|.))*)\3([gi]*)]) do
+        val.scan(%r[\G[\s;]*(/(?:\\.|[^/])*+/)?([sy])(\\?\W)((?:(?!\3)(?:\\.|.))*+)\3((?:(?!\3)(?:\\.|.))*+)\3([gi]*)]) do
           |addr, cmd, sep, pat, rep, opt|
           if addr
             Regexp.new(addr[/\A\/(.*)\/\z/, 1]) =~ $install_name or next
-- 
cgit v1.2.1