Skip to content

CSS: out-of-memory/hang target:safari11 #4114

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dloebl opened this issue Mar 14, 2025 · 2 comments
Closed

CSS: out-of-memory/hang target:safari11 #4114

dloebl opened this issue Mar 14, 2025 · 2 comments

Comments

@dloebl
Copy link

dloebl commented Mar 14, 2025
edited
Loading

The following input causes esbuild to hang/consume a lot of memory (over 100 GB):

.slider-section{height: auto;padding-top: .first-sec, .slider-section{height: auto;padding-top: .first-sec, .slider-section{ height: auto; padding-top: .first-sec, .slider-section{ height: auto; padding-top: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{height: auto;padding-top: .first-sec, .slider-section{height: auto;padding-top: .first-sec, .slider-section{ height: auto; padding-top: .first-sec, .slider-section{ height: auto; padding-top: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{height: auto;padding-top: .first-sec, .slider-section{height: auto;padding-top: .first-sec, .slider-section{ height: auto; padding-top: .first-sec, .slider-section{ height: auto; padding-top: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec, .slider-section{ height: auto; padding-bottom: .first-sec

Command line:
esbuild --target=safari11 input.css

esbuild try target=safari11

For --target=safari14 this issue started to appear with v0.25.0:
esbuild try target=safari14
@evanw
Copy link
Owner

evanw commented Mar 15, 2025

Expanding nested CSS is inherently exponential. Other CSS tools such as Lightning CSS and SASS do the same thing as esbuild given valid sufficiently-nested CSS, so it's not clear to me that esbuild is doing anything wrong here. Here are some examples of the expansion of your input in different tools (uses smaller input to avoid a crash/hang so you can see what's happening):

Potential mitigations could be to try to apply limits to esbuild's implementation, such as nesting depth, execution time, or output length. But such limits could potentially inhibit valid use cases, so I'm not sure about this idea.

How did this issue come up for you? Obviously it's possible to construct pathological nested CSS with big expansion factors, just like it's possible to create .zip files with big expansion factors. But esbuild isn't intended to be used on adversarial inputs, and deliberately doesn't attempt to be robust in such cases. I consider that to be outside of esbuild's scope.

@dloebl
Copy link
Author

dloebl commented Mar 19, 2025
edited
Loading

Thanks for the explanation! That makes sense to me

How did this issue come up for you?

We noticed out-of-memory issues in our JS/CSS processing pipeline, so the above CSS snippet is part of a larger file - I just reduced it to the part that causes issues.

But esbuild isn't intended to be used on adversarial inputs

Oh ok I see. We use esbuild to process/minify JS/CSS on request (behind a CDN), so we're very interested in getting it safe to process random input. I'm happy to help with that!

What I'm not sure about is that these issues started to appear with the update to v0.25 (for --target=safari14), so perhaps something must have changed with this version?

esbuild try v0.24.2 target=safari14

@evanw evanw closed this as completed in dfe0e1c Apr 23, 2025
evanw added a commit that referenced this issue Apr 23, 2025
@evanw
add additional guards for #4114 when using :is()
5959289
@BrewTestBot BrewTestBot mentioned this issue Apr 23, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@evanw @dloebl