can: bcm: check timer values before ktime conversion - bcachefs.git - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Oliver Hartkopp <socketcan@hartkopp.net>	2019-01-13 19:31:43 +0100
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2019-01-31 08:15:43 +0100
commit	5305c33f73db7548ca33191c6cc5ded4ec79ddf9 (patch)
tree	09e6c407a9c19f8d25d4ca88dde19612c89c8b4e /drivers
parent	e0bb30468985cfe5783bfb57a9a1282515c8d37d (diff)

can: bcm: check timer values before ktime conversion

commit 93171ba6f1deffd82f381d36cb13177872d023f6 upstream. Kyungtae Kim detected a potential integer overflow in bcm_[rx|tx]_setup() when the conversion into ktime multiplies the given value with NSEC_PER_USEC (1000). Reference: https://marc.info/?l=linux-can&m=154732118819828&w=2 Add a check for the given tv_usec, so that the value stays below one second. Additionally limit the tv_sec value to a reasonable value for CAN related use-cases of 400 days and ensure all values to be positive. Reported-by: Kyungtae Kim <kt0755@gmail.com> Tested-by: Oliver Hartkopp <socketcan@hartkopp.net> Signed-off-by: Oliver Hartkopp <socketcan@hartkopp.net> Cc: linux-stable <stable@vger.kernel.org> # >= 2.6.26 Tested-by: Kyungtae Kim <kt0755@gmail.com> Acked-by: Andre Naujoks <nautsch2@gmail.com> Signed-off-by: Marc Kleine-Budde <mkl@pengutronix.de> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

Diffstat (limited to 'drivers')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: