Merge pull request #42 from nextras/fix/chunk-boundary-parsing

JanTvrdik · web-flow · commit b8bdac8aefe5 · 2026-02-23T23:45:39.000+01:00
Fix chunked stream parsing across chunk boundaries
diff --git a/src/MySqlMultiQueryParser.php b/src/MySqlMultiQueryParser.php
@@ -32,7 +32,7 @@ private function getQueryPattern(string $delimiter): string
 		~
 			(?:
 					\\s
-				|   /\\*  (?: [^*]++ | \\*(?!/) )*+  \\*/
+				|   /\\* (*PRUNE) (?: [^*]++ | \\*(?!/) )*+  \\*/
 				|   --[^\\n]*+(?:\\n|\\z)
 			)*+
 
@@ -47,9 +47,9 @@ private function getQueryPattern(string $delimiter): string
 					(?<query>
 						(?:
 								[^$delimiterFirstBytePattern'\"/$-]++
-							|   '                                                     (?: \\\\.    | [^']            )*+ '
-							|   \"                                                    (?: \\\\.    | [^\"]           )*+ \"
-							|   /\\*                                                  (?: [^*]++   | \\*(?!/)        )*+ \\*/
+							|   ' (*PRUNE)                                            (?: \\\\.    | [^']            )*+ '
+							|   \" (*PRUNE)                                           (?: \\\\.    | [^\"]           )*+ \"
+							|   /\\* (*PRUNE)                                         (?: [^*]++   | \\*(?!/)        )*+ \\*/
 							|   --[^\\n]*+(?:\\n|\\z)
 							|   (?!$delimiterPattern) .
 						)*+
diff --git a/src/PatternIterator.php b/src/PatternIterator.php
@@ -12,6 +12,24 @@
 
 
 /**
+ * Applies a regex pattern to a chunked string stream, yielding matches sequentially.
+ *
+ * Safety mechanism: when a match consumes all remaining data in the buffer and the stream
+ * has more chunks, the match is held back (not yielded) until more data is loaded. This
+ * prevents yielding incomplete matches at chunk boundaries.
+ *
+ * Pattern design constraint: patterns with opening/closing delimiter constructs (such as
+ * string literals `'...'`, block comments `/*...* /`, or dollar-quoted strings `$$...$$`)
+ * must include `(*PRUNE)` after the opening delimiter, e.g. `' (*PRUNE) [^']* '`.
+ * Without this, when a chunk boundary falls inside such a construct, the closing delimiter
+ * is absent from the buffer, the construct fails to match, and the regex falls back to a
+ * generic single-character alternative (e.g. `(?!;) .`). This exposes characters inside the
+ * construct (like semicolons inside a string) as false delimiters, producing an incorrect
+ * match that terminates in the middle of the buffer — where the safety mechanism cannot
+ * detect the problem. The `(*PRUNE)` verb ensures that once the opening delimiter matches,
+ * the regex engine commits to the construct — if the closing delimiter is missing (because
+ * it is in a later chunk), the overall match fails, causing the iterator to load more data.
+ *
  * @implements IteratorAggregate<int, array<mixed>>
  */
 class PatternIterator implements IteratorAggregate
diff --git a/src/PostgreSqlMultiQueryParser.php b/src/PostgreSqlMultiQueryParser.php
@@ -27,20 +27,20 @@ private function getQueryPattern(): string
 		return /** @lang PhpRegExp */ '~
 			(?:
 					\\s
-				|   /\\*                                                            (?: [^*]++   | \\*(?!/)       )*+ \\*/
+				|   /\\* (*PRUNE)                                                   (?: [^*]++   | \\*(?!/)       )*+ \\*/
 				|   -- [^\\n]*+
 			)*+
 
 			(?:
 				(?:
 					(?<query>
 						(?:
-								[^;\'"/$-]++
-							|   \'                                                  (?: [^\']                     )*+ \'
-							|   [eE]\'                                              (?: \\\\.    | [^\']          )*+ \'
-							|   "                                                   (?: [^"]                      )*+ "
-							|   /\\*                                                (?: [^*]++   | \\*(?!/)       )*+ \\*/
-							|   (\\$(?:[a-zA-Z_\\x80-\\xFF][\\w\\x80-\\xFF]*+)?\\$) (?: [^$]++   | (?!\\g{-1})\\$ )*+ \\g{-1}
+								(?:[^;\'"/$eE-]|[eE](?!\'))++
+							|   \' (*PRUNE)                                         (?: [^\']                     )*+ \'
+							|   [eE]\' (*PRUNE)                                     (?: \\\\.    | [^\']          )*+ \'
+							|   " (*PRUNE)                                          (?: [^"]                      )*+ "
+							|   /\\* (*PRUNE)                                       (?: [^*]++   | \\*(?!/)       )*+ \\*/
+							|   (\\$(?:[a-zA-Z_\\x80-\\xFF][\\w\\x80-\\xFF]*+)?\\$) (*PRUNE) (?: [^$]++   | (?!\\g{-1})\\$ )*+ \\g{-1}
 							|   -- [^\\n]*+
 							|   (?!;) .
 						)*+
diff --git a/src/SqlServerMultiQueryParser.php b/src/SqlServerMultiQueryParser.php
@@ -24,15 +24,15 @@ private function getQueryPattern(): string
 		$simpleQuery = /** @lang PhpRegExp */ '~
 			(?:
 					\\s
-				|   /\\* (?: [^*]++   | \\*(?!/) )*+ \\*/
+				|   /\\* (*PRUNE) (?: [^*]++   | \\*(?!/) )*+ \\*/
 				|   -- [^\\n]*+
 			)*+
 			(?<simplequery>
 				(?:
 						[^;\'"[/-]++
-					|   \'                                                  (?: [^\']                     )*+ \'
-					|   "                                                   (?: [^"]                      )*+ "
-					|   /\\*                                                (?: [^*]++   | \\*(?!/)       )*+ \\*/
+					|   \' (*PRUNE)                                         (?: [^\']                     )*+ \'
+					|   " (*PRUNE)                                          (?: [^"]                      )*+ "
+					|   /\\* (*PRUNE)                                       (?: [^*]++   | \\*(?!/)       )*+ \\*/
 					|   -- [^\\n]*+
 					|   (?!;) .
 				)++
@@ -42,7 +42,7 @@ private function getQueryPattern(): string
 		return /** @lang PhpRegExp */ '~
 			(?:
 					\\s
-				|   /\\* (?: [^*]++   | \\*(?!/) )*+ \\*/
+				|   /\\* (*PRUNE) (?: [^*]++   | \\*(?!/) )*+ \\*/
 				|   -- [^\\n]*+
 			)*+
 
@@ -51,9 +51,9 @@ private function getQueryPattern(): string
 					(?<query>
 						(?:
 							 	[^B;\'"[/-]++
-							|   \'                                                  (?: [^\']                     )*+ \'
-							|   "                                                   (?: [^"]                      )*+ "
-							|   /\\*                                                (?: [^*]++   | \\*(?!/)       )*+ \\*/
+							|   \' (*PRUNE)                                         (?: [^\']                     )*+ \'
+							|   " (*PRUNE)                                          (?: [^"]                      )*+ "
+							|   /\\* (*PRUNE)                                       (?: [^*]++   | \\*(?!/)       )*+ \\*/
 							|   BEGIN (?: \s*END\s*| ' . substr($simpleQuery, 1, -2) . ')*
 							|   -- [^\\n]*+
 							|   (?!;) .
diff --git a/tests/cases/MySqlMultiQueryParserTest.phpt b/tests/cases/MySqlMultiQueryParserTest.phpt
@@ -7,6 +7,7 @@
 namespace Nextras\MultiQueryParser;
 
 use LogicException;
+use Nextras\MultiQueryParser\Exception\RuntimeException;
 use Tester\Assert;
 use Tester\TestCase;
 
@@ -189,6 +190,165 @@ class MySqlMultiQueryParserTest extends TestCase
 			],
 		];
 	}
+
+
+	/**
+	 * @dataProvider provideEdgeCasesData
+	 * @param list<string> $expectedQueries
+	 */
+	public function testEdgeCases(string $content, array $expectedQueries): void
+	{
+		$parser = new MySqlMultiQueryParser();
+		$queries = iterator_to_array($parser->parseString($content));
+		Assert::same($expectedQueries, $queries);
+	}
+
+
+	public function testParseFileThrowsOnNonExistentFile(): void
+	{
+		$parser = new MySqlMultiQueryParser();
+		Assert::exception(function () use ($parser) {
+			$parser->parseFile(__DIR__ . '/data/nonexistent.sql');
+		}, RuntimeException::class);
+	}
+
+
+	/**
+	 * @return list<array{string, list<string>}>
+	 */
+	protected function provideEdgeCasesData(): array
+	{
+		return [
+			// Empty / whitespace-only input
+			['', []],
+			["  \n\t\n  ", []],
+
+			// Semicolons inside string literals are not delimiters
+			["SELECT 'a;b';", ["SELECT 'a;b'"]],
+			['SELECT "a;b";', ['SELECT "a;b"']],
+			["SELECT 'a;b', 'c;d';", ["SELECT 'a;b', 'c;d'"]],
+			["SELECT ';;;';", ["SELECT ';;;'"]],
+			["SELECT '';", ["SELECT ''"]],
+
+			// Backslash escaping in strings
+			["SELECT 'it\\'s';", ["SELECT 'it\\'s'"]],
+			['SELECT "col\\"name";', ['SELECT "col\\"name"']],
+			["SELECT '\\;';", ["SELECT '\\;'"]],
+
+			// Semicolons inside comments are not delimiters
+			["SELECT /* ; */ 1;", ["SELECT /* ; */ 1"]],
+			["SELECT /* ; ; ; */ 1;", ["SELECT /* ; ; ; */ 1"]],
+
+			// Line comment between queries (semicolon before comment)
+			["SELECT 1; -- has ; in comment\nSELECT 2;", ["SELECT 1", "SELECT 2"]],
+
+			// Line comment inside a query captures everything until next real delimiter
+			["SELECT 1 -- comment with ;\nSELECT 2;", ["SELECT 1 -- comment with ;\nSELECT 2"]],
+
+			// Queries without trailing semicolon (terminated by end of input)
+			["SELECT 1", ["SELECT 1"]],
+			["SELECT 1; SELECT 2", ["SELECT 1", "SELECT 2"]],
+
+			// Forward slash and dash not starting comments
+			["SELECT 5/3;", ["SELECT 5/3"]],
+			["SELECT 5-3;", ["SELECT 5-3"]],
+			["SELECT 1 / 2 + 3 - 4;", ["SELECT 1 / 2 + 3 - 4"]],
+
+			// Comment positioning
+			["/* prefix */ SELECT 1;", ["SELECT 1"]],
+			["-- prefix\nSELECT 1;", ["SELECT 1"]],
+			["SELECT 1; /* between */ SELECT 2;", ["SELECT 1", "SELECT 2"]],
+			["SELECT 1; -- between\nSELECT 2;", ["SELECT 1", "SELECT 2"]],
+
+			// Only comments (no queries)
+			["/* only a comment */", []],
+			["-- only a comment", []],
+			["-- line 1\n-- line 2\n", []],
+			["/* c1 */ /* c2 */", []],
+
+			// Block comment edge cases
+			["SELECT /* contains * star */ 1;", ["SELECT /* contains * star */ 1"]],
+			["SELECT /* contains /* slash-star */ 1;", ["SELECT /* contains /* slash-star */ 1"]],
+
+			// DELIMITER is case-insensitive
+			[
+				"delimiter //\nSELECT 1//\nDELIMITER ;",
+				["SELECT 1"],
+			],
+			[
+				"Delimiter //\nSELECT 1//\nDELIMITER ;",
+				["SELECT 1"],
+			],
+
+			// CRLF line endings
+			["SELECT 1;\r\nSELECT 2;\r\n", ["SELECT 1", "SELECT 2"]],
+
+			// Consecutive string literals
+			["SELECT 'a' 'b';", ["SELECT 'a' 'b'"]],
+
+			// Whitespace variations
+			["SELECT\t1;", ["SELECT\t1"]],
+			["\n\nSELECT 1;\n\n", ["SELECT 1"]],
+		];
+	}
+
+
+	/**
+	 * @dataProvider provideChunkBoundaryData
+	 * @param list<string> $chunks
+	 * @param list<string> $expectedQueries
+	 */
+	public function testChunkBoundary(array $chunks, array $expectedQueries): void
+	{
+		$parser = new MySqlMultiQueryParser();
+		$queries = iterator_to_array($parser->parseStringStream(new \ArrayIterator($chunks)));
+		Assert::same($expectedQueries, $queries);
+	}
+
+
+	/**
+	 * @return list<array{list<string>, list<string>}>
+	 */
+	protected function provideChunkBoundaryData(): array
+	{
+		// The bug triggers when a chunk boundary falls inside a string/comment
+		// that contains a semicolon, AND there is content after the semicolon
+		// still within the same chunk. The `;` falsely acts as a delimiter and
+		// the remaining content prevents the match from reaching end-of-buffer
+		// (which would trigger PatternIterator's safety mechanism).
+		return [
+			// Single-quoted string: chunk has content after the false `;`
+			[
+				["SELECT 'a;b", "c';"],
+				["SELECT 'a;bc'"],
+			],
+			// Double-quoted string: same issue
+			[
+				['SELECT "a;b', 'c";'],
+				['SELECT "a;bc"'],
+			],
+			// Block comment: chunk has content after the false `;`
+			[
+				["SELECT /* a;b", "c */ 1;"],
+				["SELECT /* a;bc */ 1"],
+			],
+			// Multiple queries — string spans chunk, content after `;`
+			[
+				["SELECT 'x;y", "z'; SELECT 2;"],
+				["SELECT 'x;yz'", "SELECT 2"],
+			],
+			// Block comment in leading whitespace spanning chunks
+			[
+				["/* x;y", "z */ SELECT 1;"],
+				["SELECT 1"],
+			],
+			// String with backslash escaping spanning chunks
+			[
+				["SELECT 'a;b\\'", "c';"],
+				["SELECT 'a;b\\'c'"],
+			],
+		];
+	}
 }
 
 
diff --git a/tests/cases/PostgreSqlMultiQueryParserTest.phpt b/tests/cases/PostgreSqlMultiQueryParserTest.phpt
diff --git a/tests/cases/SqlServerMultiQueryParserTest.phpt b/tests/cases/SqlServerMultiQueryParserTest.phpt
