MethodMeta validation #18724
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -6,6 +6,8 @@ | |
| * LICENSE file in the root directory of this source tree. | ||
| */ | ||
|
|
||
| #include <cinttypes> // @donotremove | ||
|
|
||
| #include <c10/util/safe_numerics.h> | ||
| #include <executorch/runtime/core/error.h> | ||
| #include <executorch/runtime/core/exec_aten/exec_aten.h> | ||
|
|
@@ -58,13 +60,20 @@ Result<size_t> calculate_nbytes( | |
| executorch::aten::ScalarType scalar_type) { | ||
| size_t n = 1; | ||
| for (size_t i = 0; i < sizes.size(); i++) { | ||
| ET_CHECK_OR_RETURN_ERROR( | ||
| sizes[i] >= 0, | ||
| InvalidProgram, | ||
| "Invalid size[%zu]: %" PRId32 ". Size must not be negative", | ||
| i, | ||
| sizes[i]); | ||
|
Comment on lines
+63
to
+68
There was a problem hiding this comment. The new negative-dimension check returns Error::InvalidProgram from calculate_nbytes(), but TensorInfo::create() currently converts any calculate_nbytes() failure into Error::InvalidArgument and logs a second generic message. If callers are expected to distinguish invalid programs from invalid arguments (and to avoid double-logging), propagate the underlying error from calculate_nbytes() instead of overriding it in TensorInfo::create().
Comment on lines
+63
to
+68
There was a problem hiding this comment.
|
||
| size_t next_n; | ||
| bool overflow = | ||
| c10::mul_overflows(n, static_cast<size_t>(sizes[i]), &next_n); | ||
| ET_CHECK_OR_RETURN_ERROR( | ||
| !overflow, | ||
| InvalidArgument, | ||
| "Invalid size[%zu]: %" PRId32 | ||
| ". Potentially overflowed, expect to be 0 or n: %zu", | ||
| i, | ||
| sizes[i], | ||
| n); | ||
|
|
@@ -186,6 +195,12 @@ Result<TensorInfo> MethodMeta::input_tensor_meta(size_t index) const { | |
| auto input_index = s_plan_->inputs()->Get(index); | ||
| // input_index was already validated by input_tag(). | ||
| auto tensor_value = s_plan_->values()->Get(input_index)->val_as_Tensor(); | ||
| ET_CHECK_OR_RETURN_ERROR( | ||
| tensor_value != nullptr && tensor_value->sizes() != nullptr && | ||
|
Comment on lines
195
to
+199
There was a problem hiding this comment. input_tensor_meta() still dereferences s_plan_->values()->Get(input_index) before the new null checks. Flatbuffer vectors can contain null table offsets, so an invalid program could still crash here. Add a null check for the EValue pointer (and return InvalidProgram) before calling ->val_as_Tensor(). |
||
| tensor_value->dim_order() != nullptr, | ||
| InvalidProgram, | ||
| "Null tensor metadata for input %zu", | ||
| index); | ||
|
Contributor
Author
There was a problem hiding this comment. Note: i'd like to move these to program_validation later. Currently program_validation is only run when Verification::InternalConsistency is set, though.
lucylq marked this conversation as resolved.
|
||
| return TensorInfo::create( | ||
| Span<const int32_t>( | ||
| tensor_value->sizes()->data(), tensor_value->sizes()->size()), | ||
|
|
@@ -237,7 +252,12 @@ Result<TensorInfo> MethodMeta::output_tensor_meta(size_t index) const { | |
| auto output_index = s_plan_->outputs()->Get(index); | ||
| // output_index was already validated by output_tag(). | ||
| auto tensor_value = s_plan_->values()->Get(output_index)->val_as_Tensor(); | ||
| ET_CHECK_OR_RETURN_ERROR( | ||
| tensor_value != nullptr && tensor_value->sizes() != nullptr && | ||
|
Comment on lines
252
to
+256
There was a problem hiding this comment. output_tensor_meta() still dereferences s_plan_->values()->Get(output_index) before the new null checks. If the values vector contains a null EValue offset, this will crash before we can return InvalidProgram. Add a null check for the EValue pointer prior to calling ->val_as_Tensor(). |
||
| tensor_value->dim_order() != nullptr, | ||
| InvalidProgram, | ||
| "Null tensor metadata for output %zu", | ||
| index); | ||
|
lucylq marked this conversation as resolved.
|
||
| return TensorInfo::create( | ||
| Span<const int32_t>( | ||
| tensor_value->sizes()->data(), tensor_value->sizes()->size()), | ||
|
|
@@ -257,7 +277,10 @@ size_t MethodMeta::num_attributes() const { | |
| auto value = values->Get(i); | ||
| if (value->val_type() == executorch_flatbuffer::KernelTypes::Tensor) { | ||
| auto tensor_value = value->val_as_Tensor(); | ||
| if (tensor_value != nullptr && | ||
| tensor_value->extra_tensor_info() != nullptr && | ||
|
Comment on lines
277
to
+281
There was a problem hiding this comment.
|
||
| tensor_value->extra_tensor_info()->fully_qualified_name() != | ||
| nullptr && | ||
| tensor_value->extra_tensor_info()->fully_qualified_name()->c_str() != | ||
| nullptr) { | ||
| ++counter; | ||
|
|
@@ -274,10 +297,19 @@ Result<TensorInfo> MethodMeta::attribute_tensor_meta(size_t index) const { | |
| auto value = values->Get(i); | ||
| if (value->val_type() == executorch_flatbuffer::KernelTypes::Tensor) { | ||
| auto tensor_value = value->val_as_Tensor(); | ||
| if (tensor_value != nullptr && | ||
| tensor_value->extra_tensor_info() != nullptr && | ||
| tensor_value->extra_tensor_info()->fully_qualified_name() != | ||
| nullptr && | ||
| tensor_value->extra_tensor_info()->fully_qualified_name()->c_str() != | ||
|
lucylq marked this conversation as resolved.
|
||
| nullptr) { | ||
| if (counter == index) { | ||
| ET_CHECK_OR_RETURN_ERROR( | ||
| tensor_value->sizes() != nullptr && | ||
| tensor_value->dim_order() != nullptr, | ||
| InvalidProgram, | ||
| "Null tensor metadata for attribute %zu", | ||
| index); | ||
| auto t_name = | ||
| tensor_value->extra_tensor_info()->fully_qualified_name(); | ||
| // Count constant returns as memory planned | ||
|
|
@@ -322,7 +354,14 @@ Result<int64_t> MethodMeta::memory_planned_buffer_size(size_t index) const { | |
| num_buffers); | ||
| // Index zero is reserved internally, and we hide it from users. Adjust the | ||
| // provided index to point to one of the actual buffers. | ||
| int64_t size = s_plan_->non_const_buffer_sizes()->Get(index + 1); | ||
| ET_CHECK_OR_RETURN_ERROR( | ||
| size >= 0, | ||
| InvalidProgram, | ||
| "memory_planned_buffer_size(%zu) has invalid negative size: %" PRId64, | ||
|
Comment on lines
+357
to
+361
There was a problem hiding this comment. These new validation paths (negative tensor sizes, null tensor metadata, and negative non_const_buffer_sizes entries) are not currently covered by tests. Please add unit tests that construct/patch an invalid ExecutionPlan and assert the expected Error codes for input/output/attribute meta access and memory_planned_buffer_size().
Comment on lines
+357
to
+361
There was a problem hiding this comment. Add test coverage for the new negative-size rejection in |
||
| index, | ||
| size); | ||
| return size; | ||
|
Comment on lines
+357
to
+364
There was a problem hiding this comment. New validation paths (negative dimension sizes, null tensor_value, negative memory-planned buffer sizes) don’t appear to have dedicated tests. Since there are already gtests for MethodMeta/TensorInfo, please add coverage that asserts the expected
lucylq marked this conversation as resolved.
|
||
| } | ||
|
|
||
| bool MethodMeta::uses_backend(const char* backend_name) const { | ||
|
|
||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Format string uses
%dforint32_t(sizes[i]). In this codebase,PRId32is used forint32_tto avoid type/format mismatches across platforms; update this (and the other%doccurrences incalculate_nbytes) to use"%" PRId32.