cifs: Fix integer overflow while processing closetimeo mount option (9968fcf0) · Commits · CodeLinaro / la / kernel / msm

Commit 9968fcf0 authored 1 month ago by Murad Masimov Committed by Greg Kroah-Hartman 3 weeks ago

cifs: Fix integer overflow while processing closetimeo mount option


[ Upstream commit d5a30fdd ]

User-provided mount parameter closetimeo of type u32 is intended to have
an upper limit, but before it is validated, the value is converted from
seconds to jiffies which can lead to an integer overflow.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

Fixes: 5efdd912 ("smb3: allow deferred close timeout to be configurable")
Signed-off-by: Murad Masimov <m.masimov@mt-integration.ru>
Signed-off-by: Steve French <stfrench@microsoft.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>

parent 531cebb5

No related merge requests found

Hide whitespace changes

Inline Side-by-side

Showing with 2 additions and 2 deletions

Please register or to comment