[PySecSan] Fix a bug in Regex DoS detector due to typo (#12735)

To detect Regex DoS, PySecSan installs pre_hook and post_hook of re.pattern.findall. However, due to typo, it installs `hook_pre_exec_re_pattern_findall` as pre_hook and post_hook. This leads to failure of detecting Regex DoS bugs.
google · Nov 25, 2024 · 2cc80a4 · 2cc80a4
1 parent b3ca3a8
commit 2cc80a4
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/infra/base-images/base-builder/sanitizers/pysecsan/pysecsan/redos.py b/infra/base-images/base-builder/sanitizers/pysecsan/pysecsan/redos.py
@@ -72,7 +72,7 @@ def hook_post_exec_re_compile(retval, pattern, flags=None):
   sanlib.sanitizer_log('Inside of post compile hook', sanlib.LOG_DEBUG)
   wrapper_object = sanlib.create_object_wrapper(
       findall=(hook_pre_exec_re_pattern_findall,
-               hook_pre_exec_re_pattern_findall))
+               hook_post_exec_re_pattern_findall))
   hooked_object = wrapper_object(retval)
   return hooked_object