Skip to content

html_escape: Avoid buffer allocation for strings with no escapable character #87

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
k0kubun merged 1 commit into from
Oct 11, 2025
Merged

html_escape: Avoid buffer allocation for strings with no escapable character #87

k0kubun merged 1 commit into from
Oct 11, 2025

Conversation

@noteflakes
Copy link
Contributor

@noteflakes noteflakes commented Oct 11, 2025

The existing html_escape implementation always allocates buffer space (6 times
the length of the input string), even when the input string does not contain any
character that needs to be escaped.

This PR modifies the implementation of optimized_escape_html to not
pre-allocate an output buffer, but instead allocate it on the first occurence of
a character that needs escaping. In addition, instead of copying non-escaped
characters one by one to the output buffer, continuous non-escaped segments of
characters are copied using memcpy.

A synthetic benchmark employing the input strings used in the test_html_escape
method in test/test_erb.rb shows the modified implementation to be about 35%
faster than the original:

ruby 3.5.0preview1 (2025-04-18 master d06ec25be4) +YJIT +PRISM [x86_64-linux]
Warming up --------------------------------------
          escape old   273.773k i/100ms
          escape new   369.558k i/100ms
Calculating -------------------------------------
          escape old      2.766M (± 1.6%) i/s  (361.48 ns/i) -     13.962M in   5.048625s
          escape new      3.765M (± 2.0%) i/s  (265.58 ns/i) -     18.847M in   5.007869s

Comparison:
          escape old:  2766396.0 i/s
          escape new:  3765317.7 i/s - 1.36x  faster

@noteflakes
html_escape: Avoid buffer allocation for strings with no escapable ch…
6a5729b 
…aracter

This change improves reduces allocations and makes `html_escape` ~35% faster in
a benchmark with escaped strings taken from the `test_html_escape` test in
`test/test_erb.rb`.

- Perform buffer allocation on first instance of escapable character.
- Instead of copying characters one at a time, copy unescaped segments using
  `memcpy`.
@k0kubun k0kubun merged commit aa48289 into ruby:master Oct 11, 2025
8 checks passed
matzbot pushed a commit to ruby/ruby that referenced this pull request Oct 11, 2025
@noteflakes @matzbot
[ruby/erb] html_escape: Avoid buffer allocation for strings with no
fa54a9c 
escapable character
(ruby/erb#87)

This change improves reduces allocations and makes `html_escape` ~35% faster in
a benchmark with escaped strings taken from the `test_html_escape` test in
`test/test_erb.rb`.

- Perform buffer allocation on first instance of escapable character.
- Instead of copying characters one at a time, copy unescaped segments using
  `memcpy`.

ruby/erb@aa482890fe
nobu added a commit to nobu/erb that referenced this pull request Oct 12, 2025
@nobu
Fix integer overflow
75764f0 
Fix ruby#87
matzbot pushed a commit to ruby/ruby that referenced this pull request Oct 12, 2025
@nobu @matzbot
[ruby/erb] Fix integer overflow
7cc3191 
Fix ruby/erb#87

ruby/erb@75764f022b
byroot
byroot reviewed Oct 12, 2025
View reviewed changes
@p8
Copy link

p8 commented Oct 13, 2025

Thanks @noteflakes ! Is this optimization also possible in CGI#escape_html?
Also wondering if this should be duplicated in both gems...
https://github.com/ruby/cgi/blob/9d9a2eb868483fbf71d8e47d51d7b237d3867409/ext/cgi/escape/escape.c

@noteflakes
Copy link
Contributor Author

noteflakes commented Oct 13, 2025

Thanks @noteflakes ! Is this optimization also possible in CGI#escape_html? Also wondering if this should be duplicated in both gems... https://github.com/ruby/cgi/blob/9d9a2eb868483fbf71d8e47d51d7b237d3867409/ext/cgi/escape/escape.c

Sure, I'll make a PR for CGI too.

This was referenced Oct 13, 2025
Merged
Open
@k0kubun
Copy link
Member

k0kubun commented Oct 13, 2025

Also wondering if this should be duplicated in both gems...

They have slightly different hehaviors. ERB's is faster than CGI's, and replacing CGI's with ERB's would be a breaking change, which is why they are deliberately separate.

@noteflakes noteflakes deleted the optimized_html_escape branch October 13, 2025 18:20
aidenfoxivey pushed a commit to aidenfoxivey/ruby that referenced this pull request Oct 17, 2025
@noteflakes @aidenfoxivey
[ruby/erb] html_escape: Avoid buffer allocation for strings with no
e7defaa 
escapable character
(ruby/erb#87)

This change improves reduces allocations and makes `html_escape` ~35% faster in
a benchmark with escaped strings taken from the `test_html_escape` test in
`test/test_erb.rb`.

- Perform buffer allocation on first instance of escapable character.
- Instead of copying characters one at a time, copy unescaped segments using
  `memcpy`.

ruby/erb@aa482890fe
aidenfoxivey pushed a commit to aidenfoxivey/ruby that referenced this pull request Oct 17, 2025
@nobu @aidenfoxivey
[ruby/erb] Fix integer overflow
8c527d8 
Fix ruby/erb#87

ruby/erb@75764f022b
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@byroot byroot byroot left review comments

@k0kubun k0kubun k0kubun approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@noteflakes @p8 @k0kubun @byroot