[SPARK-43393][SQL] Address sequence expression overflow bug.

[thepinetree]

What changes were proposed in this pull request?

Spark has a (long-standing) overflow bug in the sequence expression.

Consider the following operations:

spark.sql("CREATE TABLE foo (l LONG);")
spark.sql(s"INSERT INTO foo VALUES (${Long.MaxValue});")
spark.sql("SELECT sequence(0, l) FROM foo;").collect()

The result of these operations will be:

Array[org.apache.spark.sql.Row] = Array([WrappedArray()])

an unintended consequence of overflow.

The sequence is applied to values 0 and Long.MaxValue with a step size of 1 which uses a length computation defined here. In this calculation, with start = 0, stop = Long.MaxValue, and step = 1, the calculated len overflows to Long.MinValue. The computation, in binary looks like:

  0111111111111111111111111111111111111111111111111111111111111111
- 0000000000000000000000000000000000000000000000000000000000000000 
------------------------------------------------------------------
  0111111111111111111111111111111111111111111111111111111111111111
/ 0000000000000000000000000000000000000000000000000000000000000001
------------------------------------------------------------------
  0111111111111111111111111111111111111111111111111111111111111111
+ 0000000000000000000000000000000000000000000000000000000000000001
------------------------------------------------------------------
  1000000000000000000000000000000000000000000000000000000000000000

The following check passes as the negative Long.MinValue is still <= MAX_ROUNDED_ARRAY_LENGTH. The following cast to toInt uses this representation and truncates the upper bits resulting in an empty length of 0.

Other overflows are similarly problematic.

This PR addresses the issue by checking numeric operations in the length computation for overflow.

Why are the changes needed?

There is a correctness bug from overflow in the sequence expression.

Does this PR introduce any user-facing change?

No.

How was this patch tested?

Tests added in CollectionExpressionsSuite.scala.

[HyukjinKwon]

cc @gengliangwang FYI

[cloud-fan]

LGTM if tests pass

[MaxGekk]

If the exception is an user-facing error, let's introduce an error class, and raise a Spark exception w/ it.

[thepinetree]

Sorry for the delay. What is the reasoning behind this change? It seems that all errors thrown in this file prefer Java defined exceptions over their Spark wrappers in SparkException.scala.

If the decision is to use Spark wrappers for this expression only, is SparkIllegalArgumentException the right wrapper?

[thepinetree]

Ah, I originally misunderstood your comment and with @ankurdave's help I learned about the errors defined in QueryExecutionErrors.scala and that they are actually used in this file. I thought createArrayWithElementsExceedLimitError might be the most fitting.

[github-actions]

We're closing this PR because it hasn't been updated in a while. This isn't a judgement on the merit of the PR in any way. It's just a way of keeping the PR queue manageable.
If you'd like to revive this PR, please reopen it and ask a committer to remove the Stale tag!

[cloud-fan]

maybe just use an assert? Assertion error is also treated as internal errors.

[thepinetree]

I personally like the current exception better since it's more descriptive of the actual problem -- trying to create too large an array (with the user's intended size) and what the limit is. If strong opinion, I can change to an assertion.

[cloud-fan]

thanks, merging to master/3.5!

[dongjoon-hyun]

Thank you, @thepinetree and @cloud-fan . Given that this is a long-standing overflow bug, do you think we can have this fix in other live release branches, branch-3.4 and branch-3.3? Especially, I'm interested in branch-3.4 as the release manager of Apache Spark 3.4.2.

[cloud-fan]

SGTM. @thepinetree can you help to create backport PRs? thanks!

[dongjoon-hyun]

Oh this seems to break branch-3.5.

• https://github.com/apache/spark/actions/runs/6873765275

Let me revert this from branch-3.5. Given the situation, we can start backport from branch-3.5 to branch-3.3 as three separate PRs, @thepinetree .

[thepinetree]

@dongjoon-hyun @cloud-fan

Backport PRs:

• 3.3: [SPARK-43393][SQL][3.3] Address sequence expression overflow bug. #43821
• 3.4: [SPARK-43393][SQL][3.4] Address sequence expression overflow bug.  #43819
• 3.5: [SPARK-43393][SQL][3.5] Address sequence expression overflow bug. #43820

[dongjoon-hyun]

Thank you so much!

[dongjoon-hyun]

Could you fix the compilation of your PRs, @thepinetree ?

[dongjoon-hyun]

Gentle ping, @thepinetree . All backporting PRs are broken at the compilation stage.

[thepinetree]

Hi @dongjoon-hyun! Yes, sorry, I thought they'd be a simple back port apart from a simple import conflict. I'll fix the compilation errors appropriately when I have a chance tonight.

[dongjoon-hyun]

Thank you so much, @thepinetree !

[beliefer]

late LGTM.

[thepinetree]

quick update @dongjoon-hyun, looks like the 3.4/3.5 backports should be good to go after some flakiness is resolved (documentation and one spark connect suite).

3.4/3.5 had an older version of the errors (same across both versions) and I made changes accordingly.
3.3 had even older error definitions and needed some more changes on top of that.