prevent integer overflow

maxdml · maxdml · commit e326a2faca94 · 2025-08-22T17:58:21.000-07:00
diff --git a/dbos/conductor.go b/dbos/conductor.go
@@ -876,6 +876,10 @@ func (c *Conductor) handleForkWorkflowRequest(data []byte, requestID string) err
 	if req.Body.StartStep < 0 {
 		return fmt.Errorf("invalid StartStep: cannot be negative")
 	}
+	// Additional validation to prevent integer overflow when converting to uint
+	if req.Body.StartStep > math.MaxInt {
+		return fmt.Errorf("invalid StartStep: value too large")
+	}
 	input := ForkWorkflowInput{
 		OriginalWorkflowID: req.Body.WorkflowID,
 		StartStep:          uint(req.Body.StartStep),
