|Anonymous | Login | Signup for a new account||2013-06-19 22:43 CEST|
|Main | My View | View Issues | Change Log | Roadmap|
|View Issue Details|
|ID||Project||Category||View Status||Date Submitted||Last Update|
|0005511||OCaml||OCaml otherlibs||public||2012-02-20 16:58||2012-02-21 18:55|
|Priority||normal||Severity||minor||Reproducibility||have not tried|
|Target Version||Fixed in Version||3.13.0+dev|
|Summary||0005511: Bigarray reshape wrong for 64 bit systems|
|Description||Just found these lines in bigarray_stubs.c, in caml_ba_reshape:|
if (dim[i] < 0 || dim[i] > 0x7FFFFFFFL)
caml_invalid_argument("Bigarray.reshape: negative dimension");
The second condition, dim[i] > 0x7FFFFFFFL, can never be true on 32 bit platforms (because dimensions are signed), and is apparently wrong on 64 bit platforms. If I'm not totally blind, this test can just be deleted.
|Steps To Reproduce||On a 64 bit system:|
# open Bigarray;;
# let g = Genarray.create char c_layout [| 0x80000000 |];;
val g :
(char, Bigarray.int8_unsigned_elt, Bigarray.c_layout) Bigarray.Genarray.t =
# reshape_1 g 0x80000000;;
Exception: Invalid_argument "Bigarray.reshape: negative dimension".
|Tags||No tags attached.|
edited on: 2012-02-20 17:12
On the second glance, I think the test "size > 0x7FFFFFFFL" (for 32 bit only) belongs into caml_ba_alloc, after multiplying the dimensions. The real problem is that "size" (and num_elts) is unsigned, but the dimensions are signed. So, when reshaping, it may happen that a positive size is interpreted as a negative dimension (e.g. when a 1000 * 3_000_000 char array is reshaped into a one-dimension 3_000_000_000 array). IMHO, this should better be caught in caml_ba_alloc, by just disallowing that large arrays.
I'm not absolutely sure whether such a case actually exists, because one has to pass the new dimensions in to reshape, and is limited by max_int anyway.
The intent of this test was indeed to guarantee that bigarray dimensions always fit in 32-bit signed, for compatibility between 32- and 64-bit platforms. As discussed in the related PR, this guarantee is useless anyway, and the test in Bigarray.reshape should have been removed. Now it is (SVN commit 12180).
|2012-02-20 16:58||gerd||New Issue|
|2012-02-20 17:11||gerd||Note Added: 0006947|
|2012-02-20 17:12||gerd||Note Edited: 0006947||View Revisions|
|2012-02-21 18:51||xleroy||Relationship added||related to 0004457|
|2012-02-21 18:55||xleroy||Note Added: 0006954|
|2012-02-21 18:55||xleroy||Status||new => resolved|
|2012-02-21 18:55||xleroy||Resolution||open => fixed|
|2012-02-21 18:55||xleroy||Fixed in Version||=> 3.13.0+dev|
|Copyright © 2000 - 2011 MantisBT Group|