Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Why does this JavaScript regex crash in the browser?

Tags:

javascript

browser

regex

To my knowledge [ab] and (a|b) should be equivalent in purpose when trying to match against a set of characters. Now, look at two regex:

/^(\s|\u00A0)+|(\s|\u00A0)+$/g
/^[\s\u00A0]+|[\s\u00A0]+$/g

They should both match against whitespaces at the beginning and end of a string (See section on Polyfill here for more info on the regex itself). When using square brackets all things work well, but when you switch to parenthesis even the simplest of strings causes the browser to run seemingly indefinitely. This happens on latest Chrome and Firefox.

This jsfiddle demonstrates this:

a ="a                                                               b";

// Doesn't work
// alert(a.replace(/^(\s|\u00A0)+|(\s|\u00A0)+$/g,''));
// Works
alert(a.replace(/^[\s\u00A0]+|[\s\u00A0]+$/g,''));

Is this a crazy quirk with the browser's implementation of the regex engine or is there something else about the regex's algorithm which causes this?

like image 931
Parham Avatar asked Mar 15 '23 18:03

Parham

1 Answers

The problem you are seeing is called catastrophic backtracking, as explained here.

First of all, let me simplify and clarify your test case:

a = Array(30).join("\u00a0") + "b";  // A string with 30 consecutive \u00a0
s = Date.now();
t = a.replace(/^(\s|\u00A0)+$/g, '');
console.log(Date.now()-s, a.length);

What's happening is with the second part of the expression: ^(\s|\u00A0)+$. Note that \s matches a number of whitespace characters, including \u00A0 itself. This means both \s and \u00A0 matches each of the 30 \u00A0 characters.

Therefore if you try to match the string with /(\s|\u00A0)+/, you will find that each of the 2^30 different combinations of 30-character whitespace patterns will result in a match. When the regular expression matcher matched the first 30 characters it will try to match end of string ($) and failed, so it backtracks and ends up trying all 2^30 combinations.

Your original string (in jsfiddle, where the one in stackflow is already "normalized" to all spaces) is a \u00a0 \u00a0 ... \u00a0 b with roughly 30 \u00a0 characters, so it took the browser roughly 2^30 effort to complete. It does not hang the browser, but will take a few minutes to complete.

like image 59
Alan Tam Avatar answered Mar 24 '23 05:03

Alan Tam
Sign in to Comment

Related questions

How to check whether an image is a Broken image or not in javascript
Alternative methods for extending object.prototype when using jQuery
Why do(es) the ball(s) stick to the ground after an arbitrary amount of time?
Spit up date after converting it to a string
How does document.getElementById() search the DOM tree?
How to get attribute value in template in angularjs custom directive?
Make a timer using setInterval()
Regex match lines that are not commented
how to hide on item in a class if the following element is empty
jQuery: How do I target the clicked element when they all share the same CSS class?
Checking if any textboxes contain text
How prevent angular auto trim for fields?
Initialize Angular Service (factory) when application start
Cannot get values from JSON array object
Font-awesome class fa is not being added with JQuery
Javascript: How to create pdf file from HTML form or div
Internet Explorer Jumpy Scrolling
.css() jquery not working properly
Unexpected behavior of jquery animation
fabricjs: how to show object size after scaling

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!