Re: [PATCH] ksmbd: Prevent integer overflow in calculation of deadtime

15 Apr 2025


      On Wed, Apr 9, 2025 at 6:05 PM Denis Arefev arefev@swemel.ru wrote:
...
The user can set any value for 'deadtime'. This affects the arithmetic
expression 'req->deadtime * SMB_ECHO_INTERVAL', which is subject to
overflow. The added check makes the server behavior more predictable.
Found by Linux Verification Center (linuxtesting.org) with SVACE.
Fixes: 0626e6641f6b ("cifsd: add server handler for central processing and tranport layers")
Cc: stable@vger.kernel.org
Signed-off-by: Denis Arefev arefev@swemel.ru
Applied it to #ksmbd-for-next-next.
Thanks!

2025

2024

2023

2022

2021

2020

2019

2018

2017

Re: [PATCH] ksmbd: Prevent integer overflow in calculation of deadtime