UBSAN: avoid int overflow in GenHFHadronMatcher

[smuzaffar]

UBSAN IBs show runtime errors like

src/PhysicsTools/JetMCAlgos/plugins/GenHFHadronMatcher.cc:982:77: runtime error: signed integer overflow: 100443 * 100443 cannot be represented in type 'int'

the code in question is https://github.com/cms-sw/cmssw/blob/master/PhysicsTools/JetMCAlgos/plugins/GenHFHadronMatcher.cc#L982 where ubsan complains about pdg_1 * pdg_2` overflowing int range. This PR proposes to change the logic and instead of multiplication just check the sign of these variables.

[cmsbuild]

cms-bot internal usage

[smuzaffar]

please test workflow 2500.3001 with #50882 for CMSSW_17_0_UBSAN_X

[cmsbuild]

+code-checks

Logs: https://cmssdt.cern.ch/SDT/code-checks/cms-sw-PR-50891/49245

[cmsbuild]

A new Pull Request was created by @smuzaffar for master.

It involves the following packages:

• PhysicsTools/JetMCAlgos (analysis)

@tvami can you please review it and eventually sign? Thanks.
@AlexDeMoor, @Ming-Yan, @Senphy, @andrzejnovak, @castaned, @pavlo-kashko, @philippgadow this is something you requested to watch as well.
@ftenchini, @mandrenguyen, @sextonkennedy you are the release manager for this.

cms-bot commands are listed here

[smuzaffar]

please test workflow 2500.3001

[cmsbuild]

+1

Size: This PR adds an extra 28KB to repository
Summary: https://cmssdt.cern.ch/SDT/jenkins-artifacts/pull-request-integration/PR-2dfd16/53098/summary.html
COMMIT: 8ec6149
CMSSW: CMSSW_17_0_X_2026-05-05-2300/el8_amd64_gcc13
User test area: For local testing, you can use /cvmfs/cms-ci.cern.ch/week0/cms-sw/cmssw/50891/53098/install.sh to create a dev area with all the needed externals and cmssw changes.

Comparison Summary

Summary:

• You potentially added 1 lines to the logs
• Reco comparison results: 5 differences found in the comparisons
• DQMHistoTests: Total files compared: 53
• DQMHistoTests: Total histograms compared: 4187168
• DQMHistoTests: Total failures: 6
• DQMHistoTests: Total nulls: 0
• DQMHistoTests: Total successes: 4187142
• DQMHistoTests: Total skipped: 20
• DQMHistoTests: Total Missing objects: 0
• DQMHistoSizes: Histogram memory added: 0.0 KiB( 52 files compared)
• Checked 227 log files, 197 edm output root files, 53 DQM output files
• TriggerResults: no differences found

[cmsbuild]

+1

Summary: https://cmssdt.cern.ch/SDT/jenkins-artifacts/pull-request-integration/PR-2dfd16/53097/summary.html
COMMIT: 8ec6149
CMSSW: CMSSW_17_0_UBSAN_X_2026-05-04-2300/el8_amd64_gcc13
User test area: For local testing, you can use /cvmfs/cms-ci.cern.ch/week0/cms-sw/cmssw/50891/53097/install.sh to create a dev area with all the needed externals and cmssw changes.

The following merge commits were also included on top of IB + this PR after doing git cms-merge-topic:

• @smuzaffar Fix stringop-overflow warning for LeapCandidate #50880
• @smuzaffar Fix hlt-p2-timing: properly wait and comsume the background processed #50868
• @jprendi Add missing protection for beamspot vertex in Scouting Collection DQM #50871
• @cms-tsg-storm HLT menu development for 16_0_X (6/N) [17_0_X] #50877
• @jhakala [HCAL] fix bug that was causing filter to miss stuck digis  #50857
• @SegmentLinking LST: Remove Matrix Caps for MDs using Precompute #50856
• @Dr15Jones Ignore Io_v1 when generating the class friendly name #50854
• @gartung PerfTools/AllocMonitor: Add additional transition types to moduleAllocMonitor circles json. #50822
• @CMS-HGCAL HD full module readout corrected #50644

You can see more details here:
https://cmssdt.cern.ch/SDT/jenkins-artifacts/pull-request-integration/PR-2dfd16/53097/git-recent-commits.json
https://cmssdt.cern.ch/SDT/jenkins-artifacts/pull-request-integration/PR-2dfd16/53097/git-merge-result

[smuzaffar]

logs https://cmssdt.cern.ch/SDT/jenkins-artifacts/pull-request-integration/PR-2dfd16/53097/runTheMatrix-results/2500.3001_NANOmc150X/step2_NANOmc150X.log shows that there is no more int overflow runtime error

@cms-sw/analysis-l2 , can you please review this PR?

[Dr15Jones]

Another option would be
std::signbit(pdg_1) xor std::signbit(pdg_2)

[smuzaffar]

@Dr15Jones , I think std::signbit(pdg_1) xor std::signbit(pdg_2) might not work if one of these variables hold 0

[Dr15Jones]

Agreed, but 0 is not a valid value for a PDG id (according to my internet search). Therefore no particle is ever supposed to have that value.

[smuzaffar]

ah ok, in that case ((pdg_1 < 0) != (pdg_2 < 0)) should be enough but may be then we should add assert to make sure values are not zero