fix(pd): change numel function return type from int to size_t to prevent overflow

[Copilot]

The numel function in the Paddle backend was using int for computing tensor element counts, which can overflow for large tensors. This fix changes the return type and intermediate calculations to size_t to handle larger tensor sizes safely.

Problem

The original implementation multiplied tensor dimensions as int values:

int numel(const paddle_infer::Tensor& x) const {
  // TODO: There might be a overflow problem here for multiply int numbers.
  int ret = 1;
  std::vector<int> x_shape = x.shape();
  for (std::size_t i = 0, n = x_shape.size(); i < n; ++i) {
    ret *= x_shape[i];  // Can overflow for large tensors
  }
  return ret;
}

For large tensors (e.g., shape [50000, 50000, 10] = 25 billion elements), this causes integer overflow and returns negative values.

Solution

• Changed return type from int to size_t
• Changed intermediate calculations to use size_t with explicit casting
• Updated all calling sites to use size_t variables
• Removed the TODO comment since the overflow issue is now resolved

size_t numel(const paddle_infer::Tensor& x) const {
  size_t ret = 1;
  std::vector<int> x_shape = x.shape();
  for (std::size_t i = 0, n = x_shape.size(); i < n; ++i) {
    ret *= static_cast<size_t>(x_shape[i]);  // Safe from overflow
  }
  return ret;
}

The size_t type can handle up to 2^64 elements on 64-bit systems (vs 2^31 for int), making it appropriate for tensor element counts. This change is backward compatible since std::vector::resize() and other consumers already accept size_t.

Fixes #4551.

---

✨ Let Copilot coding agent set things up for you — coding agent works faster and does higher quality work when set up for your repo.

[Copilot]

Pull Request Overview

This PR fixes an integer overflow vulnerability in the Paddle backend's numel function by changing the return type and calculations from int to size_t. The function computes tensor element counts by multiplying dimensions, which can overflow with large tensors (e.g., 25 billion elements).

• Changed numel function return type from int to size_t with safe casting
• Updated all calling sites to use size_t variables instead of int
• Removed the TODO comment acknowledging the overflow issue

Reviewed Changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated no comments.

File	Description
source/api_cc/include/DeepPotPD.h	Modified numel function signature and implementation to use size_t with explicit casting
source/api_cc/src/DeepPotPD.cc	Updated all variables that store numel results to use size_t type

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 84.29%. Comparing base (6349238) to head (439192f).
⚠️ Report is 69 commits behind head on devel.

Additional details and impacted files

@@           Coverage Diff           @@
##            devel    #4924   +/-   ##
=======================================
  Coverage   84.29%   84.29%           
=======================================
  Files         703      703           
  Lines       68728    68728           
  Branches     3573     3572    -1     
=======================================
  Hits        57935    57935           
  Misses       9653     9653           
  Partials     1140     1140           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[HydrogenSulfate]

size_t is more appropriate than int: https://github.com/PaddlePaddle/Paddle/blob/53f2a48fd48d0f97eef53a0a88c1b79283b39b88/paddle/fluid/inference/api/paddle_api.h#L121%E2%80%9D