Fix overflows in et

[lucylq]

Summary

Check various overflows

[pytorch-bot]

🔗 Helpful Links

🧪 See artifacts and rendered test results at hud.pytorch.org/pr/pytorch/executorch/19057

• 📄 Preview Python docs built from this PR

Note: Links to docs will display an error until the docs builds have been completed.

❗ 1 Active SEVs

There are 1 currently active SEVs. If your PR is affected, please view them below:

• Rolling out OSDC (ARC) runners on pull & trunk workflows in PyTorch main

❌ 12 New Failures, 6 Unrelated Failures

As of commit d1d4471 with merge base 2d53535 ():

NEW FAILURES - The following jobs have failed:

• Test CUDA Builds / check-all-cuda-builds (gh)
  Process completed with exit code 1.
• Test CUDA Builds / export-model-cuda-artifact (nvidia, diar_streaming_sortformer_4spk-v2, non-quantized) / linux-job (gh)
  RuntimeError: Command docker exec -t 82a205cfb82c039c1d948f3eb9ca04c508f365c9750ea2bab069422d51d03eb8 /exec failed with exit code 1
• Test CUDA Builds / export-model-cuda-artifact (Qwen, Qwen3-0.6B, non-quantized) / linux-job (gh)
  RuntimeError: Command docker exec -t 3a2f7b2f740c1b1663775603d47249554745ccd6363f186889676a40b1f5a1e3 /exec failed with exit code 1
• Test CUDA Builds / test-executorch-cuda-build-12.6 / linux-job (gh)
  RuntimeError: Command docker exec -t be4653ce2ee34db210db28dea15e5cebed1f9edfb8fd2de6baaff8c2a5b20c47 /exec failed with exit code 1
• Test CUDA Builds / test-executorch-cuda-build-12.9 / linux-job (gh)
  RuntimeError: Command docker exec -t 5dbe753da537a5ba352bebbf086dd31e62eb9f198f1374fe7580a953995fd561 /exec failed with exit code 1
• Test CUDA Builds / test-executorch-cuda-build-13.0 / linux-job (gh)
  RuntimeError: Command docker exec -t a25386ed4a82776f241c25782d82c91b1d65e039eb676c8351fbdeaaa5162fe1 /exec failed with exit code 1
• Test CUDA Builds / test-models-cuda / linux-job (gh)
  RuntimeError: Command docker exec -t 92f33dd0cf9ac16f56f2832b3e21953e28f36871d42a935d6dbdc1f63e50a1be /exec failed with exit code 1
• Test CUDA Windows Export and E2E / export-model-cuda-windows-artifact (facebook, dinov2-small-imagenet1k-1-layer, non-quantized) / linux-job (gh)
  RuntimeError: Command docker exec -t 65f03b3ef0ff24e03d3e799e25e1ac80dd1ba1b80b6aa54f75354b2b92dc4ae1 /exec failed with exit code 1
• Test CUDA Windows Export and E2E / export-model-cuda-windows-artifact (mistralai, Voxtral-Mini-3B-2507, non-quantized) / linux-job (gh)
  RuntimeError: Command docker exec -t 8aababb67a7fccdecc7bef3d3a6a308002202fd67c76aa089aa55e23421e59dc /exec failed with exit code 1
• Test CUDA Windows Export and E2E / export-model-cuda-windows-artifact (mistralai, Voxtral-Mini-3B-2507, quantized-int4-weight-only) / linux-job (gh)
  RuntimeError: Command docker exec -t c4e4f44c074830f747ba6af7ccaeefa5a2ab7bb4719d6b0e60863b304b471c52 /exec failed with exit code 1
• Test CUDA Windows Export and E2E / export-model-cuda-windows-artifact (mistralai, Voxtral-Mini-4B-Realtime-2602, quantized-int4-tile... / linux-job (gh)
  RuntimeError: Command docker exec -t 1de2e8927546fb46acb50e9996f31b1f221ff08fbfc86a88ab9208b2932b635f /exec failed with exit code 1
• Test Metal Backend / test-metal-qwen35-moe-tiny / macos-job (gh)
  RuntimeError: Command bash /Users/ec2-user/runner/_work/_temp/exec_script failed with exit code 1

FLAKY - The following jobs failed but were likely due to flakiness present on trunk:

• pull / nxp-build-test / linux-job (gh) (detected as infra flaky with no log or failing log classifier)
• pull / test-mcu-cortex-m-backend / linux-job (gh) (detected as infra flaky with no log or failing log classifier)
• pull / test-models-linux-basic (mv3, portable, cmake, linux.2xlarge, executorch-ubuntu-22.04-clang12) / linux-job (gh) (detected as infra flaky with no log or failing log classifier)
• pull / test-models-linux-basic (vit, xnnpack-quantization-delegation, cmake, linux.2xlarge, executorch-u... / linux-job (gh) (detected as infra flaky with no log or failing log classifier)

BROKEN TRUNK - The following jobs failed but were present on the merge base:

👉 Rebase onto the `viable/strict` branch to avoid these failures

• pull / unittest / windows / windows-job (gh) (trunk failure)
  ##[error]The operation was canceled.
• pull / unittest-editable / windows / windows-job (gh) (trunk failure)
  ##[error]The operation was canceled.

This comment was automatically generated by Dr. CI and updates every 15 minutes.

[github-actions]

This PR needs a release notes: label

If your change should be included in the release notes (i.e. would users of this library care about this change?), please use a label starting with release notes:. This helps us keep track and include your important work in the next release notes.

To add a label, you can comment to pytorchbot, for example
@pytorchbot label "release notes: none"

For more information, see
https://github.com/pytorch/pytorch/wiki/PyTorch-AutoLabel-Bot#why-categorize-for-release-notes-and-how-does-it-work.

[Copilot]

Pull request overview

This PR improves integer overflow safety across ExecuTorch runtime/components by replacing potentially overflowing additions with checked arithmetic using c10::add_overflows.

Changes:

• Add overflow-safe end-offset computations in core runtime helpers (HierarchicalAllocator, ArrayRef).
• Harden flat_tensor segment validation against addition overflow.
• Add overflow-checked argument-count and sequence-length validations in CUDA/Metal backends and Qualcomm llama runner code.

Reviewed changes

Copilot reviewed 7 out of 7 changed files in this pull request and generated 3 comments.

Show a summary per file

File	Description
runtime/core/hierarchical_allocator.h	Uses c10::add_overflows to safely compute offset_bytes + size_bytes before bounds checks.
runtime/core/array_ref.h	Prevents N + M overflow in ArrayRef::slice bounds validation.
extension/flat_tensor/flat_tensor_data_map.cpp	Validates segment (offset + size) with overflow detection before comparing to segment end.
examples/qualcomm/oss_scripts/llama/runner/runner.cpp	Adds overflow-checked cur_pos_ + num_prompt_tokens validation vs seq_len.
examples/qualcomm/oss_scripts/llama/runner/prompt_processor.cpp	Adds overflow-checked start_pos + num_prompt_tokens validation vs context limits.
backends/cuda/runtime/cuda_backend.cpp	Prevents overflow in n_inputs + n_outputs when validating args.size().
backends/apple/metal/runtime/metal_backend.cpp	Prevents overflow in n_inputs + n_outputs when validating args.size().

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

On MSVC, c10::add_overflows' fallback implementation performs a + b for signed types, which can itself invoke signed-overflow UB before the overflow check triggers. Since cur_pos_/end_pos are int64_t, this reintroduces a platform-specific UB risk. Consider switching this check to unsigned arithmetic (e.g., validate cur_pos_ >= 0, cast operands to uint64_t/size_t, then use add_overflows) or use an explicit bounds check like cur_pos_ <= seq_len - num_prompt_tokens after normalizing types.

[Copilot]

This uses c10::add_overflows with signed int64_t operands. In this repo's MSVC fallback implementation, add_overflows computes a + b for signed types, which can trigger signed-overflow UB before detection. To keep this check safe cross-platform, prefer unsigned arithmetic (after asserting start_pos >= 0) or rewrite as a non-overflowing bounds check using wider/unsigned types.

[Copilot]

segment_end_offset is a size_t but is passed as header_.segment_base_offset + header_.segment_data_size (uint64_t). On 32-bit builds this can truncate, making the bounds check ineffective for large offsets even though seg_end is computed in uint64_t. Consider changing segment_end_offset (and related computations) to uint64_t throughout this helper to avoid truncation and remove the need for casts.