erasure-code: Add extra checks to gracefully fail when invalid values are supplied in erasure code profiles

JonBailey1993 · aainscow · commit 3a1106c5a494 · 2025-03-19T11:03:56.000Z
Signed-off-by: Jon Bailey &lt;jonathan.bailey1@ibm.com&gt;
diff --git a/src/erasure-code/ErasureCode.cc b/src/erasure-code/ErasureCode.cc
@@ -111,6 +111,11 @@ int ErasureCode::sanity_check_k_m(int k, int m, ostream *ss)
     *ss << "m=" << m << " must be >= 1" << std::endl;
     return -EINVAL;
   }
+  int max_k_plus_m = std::numeric_limits<decltype(shard_id_t::id)>::max();
+  if (k+m > max_k_plus_m) {
+    *ss << "(k+m)=" << (k+m) << " must be <= " << max_k_plus_m << std::endl;
+    return -EINVAL;
+  }
   return 0;
 }
 
diff --git a/src/erasure-code/isa/ErasureCodeIsa.cc b/src/erasure-code/isa/ErasureCodeIsa.cc
@@ -217,8 +217,7 @@ ErasureCodeIsaDefault::apply_delta(const shard_id_map<bufferptr> &in,
             data[1] = const_cast<char*>(codingbuf.c_str());
             char * coding = const_cast<char*>(codingbuf.c_str());
             isa_xor(data, coding, blocksize, data_vectors);
-          }
-          else {
+          } else {
             unsigned char* data = reinterpret_cast<unsigned char*>(const_cast<char*>(databuf.c_str()));
             unsigned char* coding = reinterpret_cast<unsigned char*>(const_cast<char*>(codingbuf.c_str()));
             ec_encode_data_update(blocksize, k, 1, static_cast<int>(datashard), encode_tbls + (32 * k * (static_cast<int>(codingshard) - k)), data, &coding);
@@ -429,14 +428,22 @@ int ErasureCodeIsaDefault::parse(ErasureCodeProfile &profile,
   err |= to_int("m", profile, &m, DEFAULT_M, ss);
   err |= sanity_check_k_m(k, m, ss);
 
+  if (m > MAX_M) {
+    *ss << "isa: m=" << m << " should be less/equal than " << MAX_M
+    << " : revert to m=" << MAX_M << std::endl;
+    m = MAX_M;
+    err = -EINVAL;
+  }
+
   if (matrixtype == kVandermonde) {
     // these are verified safe values evaluated using the
     // benchmarktool and 10*(combinatoric for maximum loss) random
     // full erasures
-    if (k > 32) {
+    if (k > MAX_K) {
       *ss << "Vandermonde: m=" << m
-        << " should be less/equal than 32 : revert to k=32" << std::endl;
-      k = 32;
+        << " should be less/equal than " << MAX_K
+        << " : revert to k=" << MAX_K << std::endl;
+      k = MAX_K;
       err = -EINVAL;
     }
 
diff --git a/src/erasure-code/isa/ErasureCodeIsa.h b/src/erasure-code/isa/ErasureCodeIsa.h
@@ -43,6 +43,7 @@ class ErasureCodeIsa : public ceph::ErasureCode {
   };
 
   static constexpr int MAX_K = 32;
+  static constexpr int MAX_M = 32;
 
   int k;
   int m;

Original file line number	Diff line number	Diff line change
`@@ -111,6 +111,11 @@ int ErasureCode::sanity_check_k_m(int k, int m, ostream *ss)`
`111`	`111`	`*ss << "m=" << m << " must be >= 1" << std::endl;`
`112`	`112`	`return -EINVAL;`
`113`	`113`	`}`
	`114`	`+ int max_k_plus_m = std::numeric_limits<decltype(shard_id_t::id)>::max();`
	`115`	`+ if (k+m > max_k_plus_m) {`
	`116`	`+ *ss << "(k+m)=" << (k+m) << " must be <= " << max_k_plus_m << std::endl;`
	`117`	`+ return -EINVAL;`
	`118`	`+ }`
`114`	`119`	`return 0;`
`115`	`120`	`}`
`116`	`121`