Fixed several instances of UB in floating point arithmetic, as pointed out in Issue microsoft#732. Thank you @Wowblk.

Author: kimlaine

CHANGES.md

@@ -4,7 +4,9 @@
 
 - Merged [(PR #734)](https://github.com/microsoft/SEAL/pull/734): Fixed `IterTuple` constructors that returned references to local temporaries.
 - Merged [(PR #738)](https://github.com/microsoft/SEAL/pull/738): Fixed out-of-bounds read in `Serialization_IsCompatibleVersion` and `Serialization_IsValidHeader` (C API).
+- Fixed undefined behavior in CKKS encoding reported in [(issue #732)](https://github.com/microsoft/SEAL/issues/732) by [Wowblk](https://github.com/Wowblk), and other instances of a similar broken pattern.
 - Bumped .NET target framework from `net8.0` to `net10.0`.
+- Updated dependency versions: Google Benchmark to 1.9.5, GoogleTest to 1.17.0, MSGSL to 4.2.1, zlib to 1.3.2.
 - Added `cmake/ios_xcframework.cmake` and a CI artifact that produces `libseal-<ver>.xcframework` and `libsealc-<ver>.xcframework` in one command.
 - Added `CMakePresets.json` for Windows, Linux, and macOS development.
 - No further releases will be published to NuGet.org. Users who want newer versions in .NET projects should build their own NuGet package from source.

cmake/ExternalBenchmark.cmake

@@ -4,7 +4,7 @@
 FetchContent_Declare(
     benchmark
  GIT_REPOSITORY https://github.com/google/benchmark.git
- GIT_TAG afa23b7699c17f1e26c88cbf95257b20d78d6247 # 1.9.2
+ GIT_TAG 192ef10025eb2c4cdd392bc502f0c852196baa48 # 1.9.5
 )
 FetchContent_GetProperties(benchmark)
 

cmake/ExternalGTest.cmake

@@ -4,7 +4,7 @@
 FetchContent_Declare(
     googletest
  GIT_REPOSITORY https://github.com/google/googletest.git
- GIT_TAG 6910c9d9165801d8827d628cb72eb7ea9dd538c5 # 1.16.0
+ GIT_TAG 52eb8108c5bdec04579160ae17225d66034bd723 # 1.17.0
 )
 FetchContent_GetProperties(googletest)
 

cmake/ExternalMSGSL.cmake

@@ -4,7 +4,7 @@
 FetchContent_Declare(
     msgsl
  GIT_REPOSITORY https://github.com/microsoft/GSL.git
- GIT_TAG 2828399820ef4928cc89b65605dca5dc68efca6e # 4.2.0
+ GIT_TAG 249146590e322123cd0b378b1f364d6069717687 # 4.2.1
 )
 FetchContent_GetProperties(msgsl)
 

cmake/ExternalZLIB.cmake

@@ -3,7 +3,7 @@
 FetchContent_Declare(
     zlib
  GIT_REPOSITORY https://github.com/madler/zlib.git
- GIT_TAG 51b7f2abdade71cd9bb0e7a373ef2610ec6f9daf # 1.3.1
+ GIT_TAG da607da739fa6047df13e66a2af6b8bec7c2a498 # 1.3.2
 )
 FetchContent_GetProperties(zlib)
 

native/src/seal/c/defines.h

@@ -48,7 +48,7 @@ static_assert(false, "Require architecture == x64");
 
 #define FACILITY_WIN32 7
 #define HRESULT_FROM_WIN32(x) \
-    ((HRESULT)(x) <= 0 ? ((HRESULT)(x)) : ((HRESULT)(((x)&0x0000FFFF) | (FACILITY_WIN32 << 16) | 0x80000000)))
+    ((HRESULT)(x) <= 0 ? ((HRESULT)(x)) : ((HRESULT)(((x) & 0x0000FFFF) | (FACILITY_WIN32 << 16) | 0x80000000)))
 
 #define ERROR_INSUFFICIENT_BUFFER 122L
 #define ERROR_INVALID_INDEX 1413L

native/src/seal/ckks.cpp

@@ -99,15 +99,31 @@ namespace seal
         }
 
  // Check that scale is positive and not too large
- if (scale <= 0 || (static_cast<int>(log2(scale)) >= context_data.total_coeff_modulus_bit_count()))
+ if (!isfinite(scale) || scale <= 0 ||
+            (static_cast<int>(log2(scale)) >= context_data.total_coeff_modulus_bit_count()))
         {
  throw invalid_argument("scale out of bounds");
         }
 
+ // Reject non-finite user input up front.
+ if (!isfinite(value))
+        {
+ throw invalid_argument("value must be finite");
+        }
+
  // Compute the scaled value
         value *= scale;
 
- int coeff_bit_count = static_cast<int>(log2(fabs(value))) + 2;
+ // Catch overflow in value * scale before the cast: even finite
+ // operands can produce inf here.
+ if (!isfinite(value))
+        {
+ throw invalid_argument("encoded value is too large");
+        }
+
+ // Guard against fabs(value) < 1 (log2 negative or -inf -> UB on cast).
+ // Anything with magnitude below 1 fits trivially in the fast path.
+ int coeff_bit_count = (fabs(value) < 1.0) ? 2 : (static_cast<int>(log2(fabs(value))) + 2);
  if (coeff_bit_count >= context_data.total_coeff_modulus_bit_count())
         {
  throw invalid_argument("encoded value is too large");

native/src/seal/ckks.h

@@ -481,11 +481,32 @@ namespace seal
             }
 
  // Check that scale is positive and not too large
- if (scale <= 0 || (static_cast<int>(log2(scale)) + 1 >= context_data.total_coeff_modulus_bit_count()))
+ if (!std::isfinite(scale) || scale <= 0 ||
+                (static_cast<int>(log2(scale)) + 1 >= context_data.total_coeff_modulus_bit_count()))
             {
  throw std::invalid_argument("scale out of bounds");
             }
 
+ // Reject non-finite user inputs up front so they can't drive the
+ // FFT into producing inf/NaN coefficients.
+ for (std::size_t i = 0; i < values_size; i++)
+            {
+ if constexpr (std::is_same<std::remove_cv_t<T>, double>::value)
+                {
+ if (!std::isfinite(values[i]))
+                    {
+ throw std::invalid_argument("values must be finite");
+                    }
+                }
+ else
+                {
+ if (!std::isfinite(values[i].real()) || !std::isfinite(values[i].imag()))
+                    {
+ throw std::invalid_argument("values must be finite");
+                    }
+                }
+            }
+
  auto ntt_tables = context_data.small_ntt_tables();
 
  // values_size is guaranteed to be no bigger than slots_
@@ -506,10 +527,16 @@ namespace seal
             {
                 max_coeff = std::max<>(max_coeff, std::fabs(conj_values[i].real()));
             }
+ // Catch FFT overflow before the cast: even finite inputs can
+ // produce inf coefficients after multiplication by scale/n.
+ if (!std::isfinite(max_coeff))
+            {
+ throw std::invalid_argument("encoded values are too large");
+            }
  // Verify that the values are not too large to fit in coeff_modulus
  // Note that we have an extra + 1 for the sign bit
  // Don't compute logarithmis of numbers less than 1
- int max_coeff_bit_count = static_cast<int>(std::ceil(std::log2(std::max<>(max_coeff, 1.0)))) + 1;
+ int max_coeff_bit_count = util::safe_ceil_log2_int(std::max<>(max_coeff, 1.0)) + 1;
  if (max_coeff_bit_count >= context_data.total_coeff_modulus_bit_count())
             {
  throw std::invalid_argument("encoded values are too large");
@@ -661,7 +688,7 @@ namespace seal
  auto ntt_tables = context_data.small_ntt_tables();
 
  // Check that scale is positive and not too large
- if (plain.scale() <= 0 ||
+ if (!std::isfinite(plain.scale()) || plain.scale() <= 0 ||
                 (static_cast<int>(log2(plain.scale())) >= context_data.total_coeff_modulus_bit_count()))
             {
  throw std::invalid_argument("scale out of bounds");

native/src/seal/evaluator.cpp

@@ -44,7 +44,7 @@ namespace seal
                 scale_bit_count_bound = -1;
             };
 
- return !(scale <= 0 || (static_cast<int>(log2(scale)) >= scale_bit_count_bound));
+ return !(!isfinite(scale) || scale <= 0 || (static_cast<int>(log2(scale)) >= scale_bit_count_bound));
         }
 
  /**

native/src/seal/memorymanager.h

@@ -483,7 +483,7 @@ namespace seal
         instructions to the memory manager profile for internal logic.
  */
  template <typename... Args>
- SEAL_NODISCARD static inline MemoryPoolHandle GetPool(mm_prof_opt_t prof_opt, Args &&... args)
+ SEAL_NODISCARD static inline MemoryPoolHandle GetPool(mm_prof_opt_t prof_opt, Args &&...args)
         {
  switch (prof_opt)
             {