tqcq/llama.cpp
0
0
Fork 0
mirror of https://github.com/ggml-org/llama.cpp.git synced 2025-07-19 17:17:40 +00:00
Code Issues Packages Projects Releases Wiki Activity

ggml : prevent integer overflow in gguf tensor size calculation (#14595)

Browse Source
This commit is contained in:
Miaoqian Lin
2025-07-09 20:33:53 +08:00
committed by GitHub
parent ffd59e7d18
commit 26a48ad699
1 changed files with 8 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
ggml/src/gguf.cpp
View File

@ -631,7 +631,14 @@ struct gguf_context * gguf_init_from_file_impl(FILE * file, struct gguf_init_par
gguf_free(ctx); gguf_free(ctx);
return nullptr; return nullptr;
} }
ctx->size += GGML_PAD(ggml_nbytes(&ti.t), ctx->alignment); size_t padded_size = GGML_PAD(ggml_nbytes(&ti.t), ctx->alignment);
if (SIZE_MAX - ctx->size < padded_size) {
GGML_LOG_ERROR("%s: tensor '%s' size overflow, cannot accumulate size %zu + %zu\n",
__func__, ti.t.name, ctx->size, padded_size);
gguf_free(ctx);
return nullptr;
}
ctx->size += padded_size;
} }
} }