[CASSANDRA-14098] Potential Integer Overflow - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Awaiting Feedback
Priority: Low
Resolution: Unresolved
Fix Version/s: None
Component/s: Legacy/Core
Labels:
- lhf

Severity:
Low
Complexity:
Low Hanging Fruit

Description

Our tool DeepTect has detected a potential integer overflow:

Path: cassandra/src/java/org/apache/cassandra/service/StorageService.java

...
long totalRowCountEstimate = cfs.estimatedKeysForRange(range);
...
 int splitCount = Math.max(1, Math.min(maxSplitCount, (int)(totalRowCountEstimate / keysPerSplit)));

In the above code snippet, "totalRowCountEstimate" is a long variable, "keysPerSplit" is an integer variable. If "totalRowCountEstimate" is super large, directly casting "(totalRowCountEstimate / keysPerSplit" into integer will definitely lead to a potential integer overflow.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

14098-3.0.txt
23/Aug/18 15:03
1 kB
vgv

Activity

People

Assignee:: Unassigned

Reporter:: songwanging

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 05/Dec/17 22:03

Updated:: 10/Jul/19 11:13