Fix unchecked map access in xnnpack

[lucylq]

Introduce remapId function that checks error instead of std::unordered_map::at(), which throws std::out_of_range in noexcept functions causing std::terminate(). Applied across all ~30 node-definition functions in XNNCompiler.

Authored-with: Claude

[pytorch-bot]

🔗 Helpful Links

🧪 See artifacts and rendered test results at hud.pytorch.org/pr/pytorch/executorch/18804

• 📄 Preview Python docs built from this PR

Note: Links to docs will display an error until the docs builds have been completed.

❗ 1 Active SEVs

There are 1 currently active SEVs. If your PR is affected, please view them below:

• Rolling out OSDC (ARC) runners on pull workflow for PyTorch trunk commits

❌ 2 New Failures, 4 Cancelled Jobs, 2 Unrelated Failures

As of commit ff93cd1 with merge base 21d9c64 ():

NEW FAILURES - The following jobs have failed:

• pull / test-samsung-models-linux / linux-job (gh)
  test_w2l_fp16
• pull / unittest-editable / macos / macos-job (gh)
  export/tests/test_target_recipes.py::TestTargetRecipes::test_mv3_model

CANCELLED JOBS - The following jobs were cancelled. Please retry:

• pull / test-voxtral-realtime-xnnpack-linux / linux-job (gh)
  ##[error]The operation was canceled.
• pull / unittest / linux / linux-job (gh)
  ##[error]The operation was canceled.
• pull / unittest-arm-backend-with-no-deps (test_pytest_models_tosa) / linux-job (gh)
  ##[error]The operation was canceled.
• pull / unittest-editable / linux / linux-job (gh)
  ##[error]The operation was canceled.

BROKEN TRUNK - The following jobs failed but were present on the merge base:

👉 Rebase onto the `viable/strict` branch to avoid these failures

• pull / unittest / windows / windows-job (gh) (trunk failure)
  ##[error]The operation was canceled.
• pull / unittest-editable / windows / windows-job (gh) (trunk failure)
  ##[error]The operation was canceled.

This comment was automatically generated by Dr. CI and updates every 15 minutes.

[github-actions]

This PR needs a release notes: label

If your change should be included in the release notes (i.e. would users of this library care about this change?), please use a label starting with release notes:. This helps us keep track and include your important work in the next release notes.

To add a label, you can comment to pytorchbot, for example
@pytorchbot label "release notes: none"

For more information, see
https://github.com/pytorch/pytorch/wiki/PyTorch-AutoLabel-Bot#why-categorize-for-release-notes-and-how-does-it-work.

[lucylq]

Use remapId + ET_UNWRAP because a macro could potentially have larger binary size bloat.

[Copilot]

Pull request overview

This PR hardens XNNPACK runtime compilation by replacing unchecked std::unordered_map::at() accesses (which can throw inside noexcept node-definition functions and trigger std::terminate()) with a safe remapId() helper that returns Result<uint32_t> and propagates an Error instead.

Changes:

• Add remapId() helper to safely look up remapped tensor/value IDs without exceptions.
• Update node-definition helpers to use ET_UNWRAP(remapId(...)) instead of remapped_ids.at(...) when defining XNNPACK operators.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[JacobSzwejbka]

@claude review this PR

[claude]

Claude finished @JacobSzwejbka's task in 2m 42s —— View job

---

PR Review: Fix unchecked map access in XNNPACK compiler

• Read the changed file and understand context
• Review the diff
• Check CI failures for relevance
• Post review feedback

---

Summary: This PR replaces all std::unordered_map::at() calls with a safe remapId() helper that returns Result<uint32_t>, preventing std::terminate() from uncaught std::out_of_range exceptions in noexcept functions. The change is applied consistently across ~30 node-definition functions.

Correctness

The core approach is sound. ET_UNWRAP uses a GCC statement expression with a plain return et_result__.error() on failure — no exceptions are thrown — so it is safe in noexcept contexts. The DefineNodeFunc type alias (line 62) returns Error, matching ET_UNWRAP's error propagation. All call sites correctly unwrap remapId results before passing them to xnn_define_* functions.

All ~74 ET_UNWRAP(remapId(...)) call sites follow the same pattern: unwrap into a local variable, then pass it to the XNNPACK API. The unary/binary macro-generated functions (_DEFINE_UNARY_NODE_*, _DEFINE_BINARY_NODE_*) pass raw IDs through to defineGenericUnaryNode / defineGenericBinaryNode, where the remapId check happens centrally. This is a correct and clean design — the generic helpers are the single point of validation.

No remaining .at() calls exist in the file.

Issues

1. Commit message is stale — The commit says "replace remapped_ids.at() with safe REMAP_ID macro" but the implementation uses a remapId() function (not a macro). The PR title/description is correct. Minor but worth fixing before merge.

2. Lint failure (clang-format) — needs fix — CI reports formatting violations at several locations. The issues are minor whitespace/line-break differences. Running lintrunner -a should resolve them. Specific locations from the log:

• Line 695-698: cvt_output_id assignment and xnn_define_convert call formatting
• Line 1201-1202: amp_out_val/amp_out_idx line breaks
• Line 1243-1244: xnn_define_exp call formatting
• Line 1303: xnn_define_prelu argument wrapping
• Line 1598-1603: xnn_define_unary argument formatting

Fix formatting →

3. Error message lacks node context — (echoing Copilot's review comment) The remapId error message only logs the missing key:

ET_LOG(Error, "Remapped id not found for key %u", key);

When this fails, the caller is deep in one of ~30 define*Node functions. Without a node type or debug handle, diagnosing which operator hit the bad ID requires a debugger. Consider using the 2-arg form of ET_UNWRAP at the call sites for key nodes:

auto fc_input1 = ET_UNWRAP(
    remapId(remapped_ids, graph_node->input1_id()),
    "input1_id remap failed for node %u", node->debug_handle());

This is a quality-of-life improvement and not a blocker.

Unrelated CI failures

• Cadence (test_replace_transposed_conv_with_linear_0): unrelated to XNNPACK changes.
• Samsung models (test_w2l_fp16): unrelated to XNNPACK changes.
• Windows failures: broken trunk (present on merge base).

Overall

The security fix is correct and well-structured. The remapId + ET_UNWRAP approach is the right pattern for ExecuTorch — it matches idiomatic error handling throughout the codebase, avoids exceptions in noexcept functions, and centralizes the safety check in one place.

The only blocking issue is the clang-format lint failure, which should be a straightforward fix with lintrunner -a.

---

[Copilot]

Pull request overview

This PR hardens the XNNPACK runtime compiler against unchecked tensor-id remapping lookups that could previously throw std::out_of_range inside noexcept node-definition functions (leading to std::terminate()), by converting those lookups into Result-based error propagation.

Changes:

• Added a remapId() helper that safely looks up remapped tensor IDs and returns an Error on missing keys rather than throwing.
• Replaced remapped_ids.at(...) usages across node-definition helpers with ET_UNWRAP(remapId(...)) to propagate errors cleanly.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[lucylq]

I think the key is enough to correlate with the flatbuffer, and don't need the additional context / can get noisy.

[GregoryComer]

Looks good to me. One note - ET_UNWRAP relies on Clang/GCC-specific extensions and won't build with MSVC. I don't know what guarantees we want to make for MSVC, in general, so it might be fine. CC @JacobSzwejbka