Page MenuHomePhabricator
Create Task
Maniphest T73922

HHVM and PCRE v8.31 gives incorrect results for certain PCRE patterns
Closed, ResolvedPublic
Actions

Description

The following call

preg_match( '/[^\p{S}\p{Nd}]/us', '4' )

correctly returns 0 on Zend but returns 1 under HHVM on MediaWiki appservers such as mw1017. It does not seem to occur on osmium.

The same occurs with various other permutations:

preg_match( '/[^\p{P}\p{Nd}]/us', '4' )
preg_match( '/[^\p{Z}\p{Nd}]/us', '4' )
preg_match( '/[^\p{Xps}\p{Nd}]/us', '4' )
preg_match( '/[^\p{Xsp}\p{Nd}]/us', '4' )
preg_match( '/[^\p{M}\p{Ll}]/us', 'a' )
preg_match( '/[^\p{N}\p{Ll}]/us', 'a' )
preg_match( '/[^\p{P}\p{Ll}]/us', 'a' )
preg_match( '/[^\p{S}\p{Ll}]/us', 'a' )
preg_match( '/[^\p{Z}\p{Ll}]/us', 'a' )
preg_match( '/[^\p{Xps}\p{Ll}]/us', 'a' )
preg_match( '/[^\p{Xsp}\p{Ll}]/us', 'a' )
preg_match( '/[^\p{M}\p{Lu}]/us', 'A' )
preg_match( '/[^\p{N}\p{Lu}]/us', 'A' )
preg_match( '/[^\p{P}\p{Lu}]/us', 'A' )
preg_match( '/[^\p{S}\p{Lu}]/us', 'A' )
preg_match( '/[^\p{Z}\p{Lu}]/us', 'A' )
preg_match( '/[^\p{Xps}\p{Lu}]/us', 'A' )
preg_match( '/[^\p{Xsp}\p{Lu}]/us', 'A' )

Version: wmf-deployment
Severity: normal

Details

Reference
bz71922

Related Objects

Event Timeline

bzimport raised the priority of this task from to Medium.Nov 22 2014, 3:45 AM
bzimport added a project: WMF-General-or-Unknown.
bzimport set Reference to bz71922.
bzimport added a subscriber: Unknown Object (MLST).
Anomie created this task.Oct 10 2014, 9:03 PM
hashar set Security to None.Nov 25 2014, 2:50 PM
hashar updated the task description. (Show Details)
hashar added a project: HHVM.Nov 25 2014, 2:53 PM
hashar added a subscriber: hashar.

Seems related to or dupe of T757: Fix HHVM PCRE cache

Anomie added a comment.Nov 25 2014, 5:11 PM

This isn't obviously related to the PCRE caching issue, since it happens when the cache is far from full. As in literally php -r "var_dump(preg_match( '/[^\p{S}\p{Nd}]/us', '4' ));" shows the bug if /usr/bin/php is a symlink to /usr/bin/hhvm.

hashar moved this task from Backlog to Defect on the HHVM board.Jun 24 2015, 8:22 AM
Anomie added a comment.Nov 10 2015, 2:53 PM

No idea whether it's actually related, but here's another case that gives an incorrect result in HHVM while working fine in Zend: php -r 'var_dump( preg_match( "/[\\x{101}-\\x{102}\\x{100}]/us", "\xC4\x80" ) );' (note that \xC4\x80 is U+0100) will correctly return 1 in Zend but returns 0 in HHVM. Adding an ^ into the character set will correctly return 0 in Zend but returns 1 in HHVM.

The failure conditions for this one seem to be:

  • There is a range before a single character in the character set.
  • The single character's codepoint is less than the codepoints for the range.
  • The single character has codepoint U+0100 or greater.

If these conditions are met, the single character will not be matched by the character set (or will be incorrectly matched if the character set is negated).

Printing out the PCRE_VERSION constant shows the same result when using Zend and HHVM, so it doesn't seem to be an issue with different versions of PCRE either.

Restricted Application added a subscriber: Aklapper. · View Herald TranscriptNov 10 2015, 2:53 PM
Nikerabbit added a subscriber: Nikerabbit.Nov 10 2015, 3:02 PM
Nemo_bis added a subscriber: Nemo_bis.Nov 10 2015, 5:04 PM
Anomie added a project: SRE.Nov 11 2015, 6:06 PM

After some further testing, it is a PCRE bug, and it looks like it was fixed in 8.32 (we're using 8.31). The reason it only occurs in HHVM is because HHVM passes PCRE_STUDY_JIT_COMPILE to pcre_study while Zend (at least in 5.5.9) doesn't. I don't see a specific upstream change that fixes it, they seem to have made a lot of JIT changes between 8.31 and 8.32.

So the simplest fix would be to upgrade libpcre3 (HHVM seems to be dynamically linked). Let's do at least 8.33, because 8.32 has a different bug (T71481). Debian stable and Ubuntu vivid are both on 8.35.

Anomie renamed this task from HHVM gives incorrect results for certain PCRE patterns to HHVM and PCRE v8.31 gives incorrect results for certain PCRE patterns.Nov 11 2015, 6:08 PM
Jgreen mentioned this in T136958: review and build HHVM package(s) for fundraising use.Jun 3 2016, 4:54 PM
MoritzMuehlenhoff closed this task as Resolved.Apr 4 2017, 7:35 AM
MoritzMuehlenhoff claimed this task.
MoritzMuehlenhoff added a subscriber: MoritzMuehlenhoff.

We're using Debian jessie for a while now (which has PCRE 8.35) and I've verified that hhvm now also correctly emits 0 in the provided test case.

Aklapper removed subscribers: Anomie, wikibugs-l-list.Oct 16 2020, 5:42 PM
Content licensed under Creative Commons Attribution-ShareAlike 3.0 (CC-BY-SA) unless otherwise noted; code licensed under GNU General Public License (GPL) or other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL