26 Jan
2019
26 Jan
'19
6:17 p.m.
On Thu, Jan 24, 2019 at 10:08:42AM +0100, Oliver Hartkopp wrote:
Kyungtae Kim detected a potential integer overflow in bcm_[rx|tx]_setup() when the conversion into ktime multiplies the given value with NSEC_PER_USEC (1000).
Reference: https://marc.info/?l=linux-can&m=154732118819828&w=2
Add a check for the given tv_usec, so that the value stays below one second. Additionally limit the tv_sec value to a reasonable value for CAN related use-cases of 400 days and ensure all values to be positive.
This patch is the pre-4.8 version of upstream commit 93171ba6f1deffd8
I can't find this commit id upstream, there's nothing with the same subject name, nor does this code exist upstream. What's going on?
-- Thanks, Sasha