npm - re2js - Versions diffs - 2.7.1 → 2.8.0 - Mend

re2js 2.7.1 → 2.8.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (10) hide show

package/build/index.umd.js CHANGED Viewed

@@ -2,7 +2,7 @@
  * re2js
  * RE2JS is the JavaScript port of RE2, a regular expression engine that provides linear time matching
  *
- * @version v2.7.1
+ * @version v2.8.0
  * @author Oleksii Vasyliev
  * @homepage https://github.com/le0pard/re2js#readme
  * @repository github:le0pard/re2js
@@ -1415,6 +1415,13 @@
    */
   class Matcher {
+    /**
+     * V8 and WebKit have historical hard limits on the number of arguments
+     * that can be passed to a function. We cap replacer arguments to prevent
+     * Call Stack Overflow (DoS) vulnerabilities on massive ASTs.
+     */
+    static MAX_REPLACER_ARGS = 65535;
     /**
      * Quotes '\' and '$' in {@code s}, so that the returned string could be used in
      * {@link #appendReplacement} as a literal replacement of {@code s}.
@@ -1711,16 +1718,14 @@
      * @private
      */
     genMatch(startByte, anchor) {
-      const hasLookbehinds = this.patternInput.re2().prog.numLb > 0;
-      const ngroup = hasLookbehinds ? 1 + this.patternGroupCount : 1;
-      const res = this.patternInput.re2().matchMachineInput(this.matcherInput, startByte, this.matcherInputLength, anchor, ngroup);
+      const res = this.patternInput.re2().matchMachineInput(this.matcherInput, startByte, this.matcherInputLength, anchor, 1);
       const ok = res[0];
       if (!ok) {
         return false;
       }
       this.groups = res[1];
       this.hasMatch = true;
-      this.hasGroups = hasLookbehinds || this.patternGroupCount === 0;
+      this.hasGroups = this.patternGroupCount === 0;
       this.anchorFlag = anchor;
       return true;
     }
@@ -1973,7 +1978,7 @@
      * Returns the input with all matches replaced by {@code replacement}, interpreted as for
      * {@code appendReplacement}.
      *
-     * @param {string} replacement - the replacement string
+     * @param {string|Function} replacement - the replacement string or a replacer function
      * @param {boolean} [javaMode=false] - activate java mode (different behaviour for capture groups and special characters)
      * @returns {string} the input string with the matches replaced
      * @throws IndexOutOfBoundsException if replacement refers to an invalid group and javaMode is true
@@ -1986,7 +1991,7 @@
      * Returns the input with the first match replaced by {@code replacement}, interpreted as for
      * {@code appendReplacement}.
      *
-     * @param {string} replacement - the replacement string
+     * @param {string|Function} replacement - the replacement string or a replacer function
      * @param {boolean} [javaMode=false] - activate java mode (different behaviour for capture groups and special characters)
      * @returns {string} the input string with the first match replaced
      * @throws IndexOutOfBoundsException if replacement refers to an invalid group and javaMode is true
@@ -1997,7 +2002,7 @@
     /**
      * Helper: replaceAll/replaceFirst hybrid.
-     * @param {string} replacement - the replacement string
+     * @param {string|Function} replacement - the replacement string or a replacer function
      * @param {boolean} [all=true] - replace all matches
      * @param {boolean} [javaMode=false] - activate java mode (different behaviour for capture groups and special characters)
      * @returns {string}
@@ -2006,8 +2011,21 @@
     replace(replacement, all = true, javaMode = false) {
       let res = '';
       this.reset();
+      const isFunc = typeof replacement === 'function';
+      // Cache named groups check to avoid GC thrashing on every match
+      const hasNamedGroups = Object.keys(this.namedGroups).length > 0;
+      let originalInput = null;
+      if (isFunc) {
+        // Prevent V8 Call Stack Overflow (DoS vector) on massive capture group counts
+        if (this.groupCount() >= Matcher.MAX_REPLACER_ARGS) {
+          throw new RE2JSGroupException('Too many capture groups to safely invoke replacer function');
+        }
+        // Resolve the original input reference exactly once outside the hot loop
+        originalInput = this.matcherInput.isUTF8Encoding() ? this.matcherInput.asBytes() : this.matcherInput.asCharSequence();
+      }
       while (this.find()) {
-        res += this.appendReplacement(replacement, javaMode);
+        res += isFunc ? this.appendReplacementFunc(replacement, hasNamedGroups, originalInput) : this.appendReplacement(replacement, javaMode);
         if (!all) {
           break;
         }
@@ -2015,6 +2033,66 @@
       res += this.appendTail();
       return res;
     }
+    /**
+     * Evaluates a replacer function for the current match and appends the result,
+     * along with any un-matched preceding text, advancing the append position.
+     * @param {Function} replacer - the replacer function
+     * @param {boolean} hasNamedGroups - cached flag if pattern has named groups
+     * @param {string|Uint8Array|number[]} originalInput - the cached original input reference
+     * @returns {string} the evaluated string to append
+     * @private
+     */
+    appendReplacementFunc(replacer, hasNamedGroups, originalInput) {
+      let res = '';
+      const s = this.start();
+      const e = this.end();
+      if (this.appendPos < s) {
+        res += this.substring(this.appendPos, s);
+      }
+      this.appendPos = e;
+      const args = this.buildReplacerArgs(s, hasNamedGroups, originalInput);
+      res += String(replacer(...args));
+      return res;
+    }
+    /**
+     * Builds the argument array for the replacer function matching the standard
+     * JS String.prototype.replace(regex, replacer) signature.
+     * @param {number} matchStart - the start index of the match
+     * @param {boolean} hasNamedGroups - cached flag if pattern has named groups
+     * @param {string|Uint8Array|number[]} originalInput - the cached original input reference
+     * @returns {Array} array of arguments
+     * @private
+     */
+    buildReplacerArgs(matchStart, hasNamedGroups, originalInput) {
+      const args = [this.group(0)]; // match
+      const numGroups = this.groupCount();
+      // Fast-path capture group extraction
+      for (let i = 1; i <= numGroups; i++) {
+        const start = this.start(i);
+        if (start < 0) {
+          args.push(void 0);
+        } else {
+          args.push(this.substring(start, this.end(i)));
+        }
+      }
+      args.push(matchStart); // offset
+      args.push(originalInput); // original string (cached)
+      // Append named groups object if pattern contains them
+      if (hasNamedGroups) {
+        const parsedGroups = this.getNamedGroups();
+        for (const key in parsedGroups) {
+          if (parsedGroups[key] === null) {
+            parsedGroups[key] = void 0;
+          }
+        }
+        args.push(parsedGroups);
+      }
+      return args;
+    }
   }
   /**