Guard size <= 1 in binary_fuse8_allocate as the current behaviour is unsafe. #26
Labels
bug
Something isn't working
Comments
slimsag
added a commit
to hexops/fastfilter
that referenced
this issue
Aug 21, 2021
This fixes our implementation and brings it inline with the upstream C implementation in terms of handling large sets. Note that the upstream C implementation has some compiler-specific behavior, so we adopted what works here (which is, respecting clang and sometimes potentially -overallocating a bit for very small sets of keys.) See FastFilter/xor_singleheader#26 Fixes #24 Signed-off-by: Stephen Gutekanst <stephen@hexops.com>
slimsag
added a commit
to hexops/fastfilter
that referenced
this issue
Aug 21, 2021
This fixes our implementation and brings it inline with the upstream C implementation in terms of handling large sets. Note that the upstream C implementation has some compiler-specific behavior, so we adopted what works here (which is, respecting clang and sometimes potentially -overallocating a bit for very small sets of keys.) See FastFilter/xor_singleheader#26 Fixes #24 Signed-off-by: Stephen Gutekanst <stephen@hexops.com>
|
The case size <= 1 should definitively be guarded. It is a bug. I do not see a problem with size = 10. Please elaborate if you still think that there is an issue. |
lemire
changed the title
|
@slimsag Thanks for the report. I shall be guarding these cases. |
|
Fixed by commit dabe365 |
|
Can confirm there is no issue with size=10. Thanks! |
|
Thanks for the feedback. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I've noticed with very small input sizes (0, 1, 10, 100) that
binary_fuse8_allocatesometimes relies on some.. questionable behavior.For example, if called with
size=0,filter->Fingerprintsis ultimately allocated withfilter->ArrayLength = 786432(768 KiB), which seems high given a filter size of zero.With
size=1,sizeFactorends up beingINFINITY, which makes:xor_singleheader/include/binaryfusefilter.h
Line 153 in f190e5a
result in effectively:
https://godbolt.org/z/7vqY9ofY1
or more simply:
I think this cast may be undefined behavior, as in GCC this results in
-1while in clang it results in an undefined value:https://godbolt.org/z/daxcT7n5K
All this to say, I think very small input sizes (specifically 0, 1, 10, 100) may fail during
binary_fuse8_allocatein the worst case scenario and, in the best case scenario, allocate a perhaps larger set of fingerprints than needed.The text was updated successfully, but these errors were encountered: