Make CI refs matching to to use UntrustedRegexp

This makes ref validation to use always `UntrustedRegexp`. This also splits the existing RubySyntax into separate class.
author: Kamil Trzciński <ayufan@ayufan.eu> 2019-02-25 17:41:52 +0300
committer: Kamil Trzciński <ayufan@ayufan.eu> 2019-03-15 16:38:28 +0300
commit: b22287f00fc10800486510c64139b4fefb38ac4c (patch)
tree: abcc545f4dafe74b9338a351dc3e095b1c82bef8 /lib/gitlab/ci
parent: 80fea82f3ab6afd486884020710eb01c06b048d9 (diff)
2 files changed, 4 insertions, 4 deletions
diff --git a/lib/gitlab/ci/build/policy/refs.rb b/lib/gitlab/ci/build/policy/refs.rb
index df5f5ffc253..360424bec11 100644
--- a/lib/gitlab/ci/build/policy/refs.rb
+++ b/lib/gitlab/ci/build/policy/refs.rb
@@ -35,8 +35,8 @@ module Gitlab
             # patterns can be matched only when branch or tag is used
             # the pattern matching does not work for merge requests pipelines
             if pipeline.branch? || pipeline.tag?
-              if pattern.first == "/" && pattern.last == "/"
-                Regexp.new(pattern[1...-1]) =~ pipeline.ref
+              if regexp = Gitlab::UntrustedRegexp::RubySyntax.fabricate(pattern)
+                regexp.match?(pipeline.ref)
               else
                 pattern == pipeline.ref
               end
diff --git a/lib/gitlab/ci/pipeline/expression/lexeme/pattern.rb b/lib/gitlab/ci/pipeline/expression/lexeme/pattern.rb
index d7e6dacf068..2b719c9c6fc 100644
--- a/lib/gitlab/ci/pipeline/expression/lexeme/pattern.rb
+++ b/lib/gitlab/ci/pipeline/expression/lexeme/pattern.rb
@@ -13,13 +13,13 @@ module Gitlab
             def initialize(regexp)
               @value = regexp
 
-              unless Gitlab::UntrustedRegexp.valid?(@value)
+              unless Gitlab::UntrustedRegexp::RubySyntax.valid?(@value)
                 raise Lexer::SyntaxError, 'Invalid regular expression!'
               end
             end
 
             def evaluate(variables = {})
-              Gitlab::UntrustedRegexp.fabricate(@value)
+              Gitlab::UntrustedRegexp::RubySyntax.fabricate!(@value)
             rescue RegexpError
               raise Expression::RuntimeError, 'Invalid regular expression!'
             end
author	Kamil Trzciński <ayufan@ayufan.eu>	2019-02-25 17:41:52 +0300
committer	Kamil Trzciński <ayufan@ayufan.eu>	2019-03-15 16:38:28 +0300
commit	b22287f00fc10800486510c64139b4fefb38ac4c (patch)
tree	abcc545f4dafe74b9338a351dc3e095b1c82bef8 /lib/gitlab/ci
parent	80fea82f3ab6afd486884020710eb01c06b048d9 (diff)