[media] msi001: fix possible integer overflow Coverity CID 1196502: Unintentional integer overflow (OVERFLOW_BEFORE_WIDEN) Potentially overflowing expression "(f_rf + f_if + f_if1) * lo_div" with type "unsigned int" (32 bits, unsigned) is evaluated using 32-bit arithmetic before being used in a context which expects an expression of type "u64" (64 bits, unsigned). To avoid overflow, cast either operand to "u64" before performing the multiplication. Reported-by: <scan-admin@coverity.com> Signed-off-by: Antti Palosaari <crope@iki.fi> Signed-off-by: Mauro Carvalho Chehab <m.chehab@samsung.com>

commit: 82932d4cff46627bc1a693893326400aab5f8967 [log] [tgz]
author: Antti Palosaari <crope@iki.fi> Sat Apr 05 17:23:41 2014 -0300
committer: Mauro Carvalho Chehab <m.chehab@samsung.com> Sun Apr 06 11:07:45 2014 -0300
tree: ddeacf20c462d2e998ac8f38fec7f430d446fc27
parent: 773bcf8c9ce04c62c513182620efb729c97452fc [diff]
diff --git a/drivers/staging/media/msi3101/msi001.c b/drivers/staging/media/msi3101/msi001.c
index ac43bae..bd0b93c 100644
--- a/drivers/staging/media/msi3101/msi001.c
+++ b/drivers/staging/media/msi3101/msi001.c

@@ -201,7 +201,7 @@
 	dev_dbg(&s->spi->dev, "%s: bandwidth selected=%d\n",
 			__func__, bandwidth_lut[i].freq);
 
-	f_vco = (f_rf + f_if + f_if1) * lo_div;
+	f_vco = (u64) (f_rf + f_if + f_if1) * lo_div;
 	tmp64 = f_vco;
 	m = do_div(tmp64, F_REF * R_REF);
 	n = (unsigned int) tmp64;
commit	82932d4cff46627bc1a693893326400aab5f8967	[log] [tgz]
author	Antti Palosaari <crope@iki.fi>	Sat Apr 05 17:23:41 2014 -0300
committer	Mauro Carvalho Chehab <m.chehab@samsung.com>	Sun Apr 06 11:07:45 2014 -0300
tree	ddeacf20c462d2e998ac8f38fec7f430d446fc27
parent	773bcf8c9ce04c62c513182620efb729c97452fc [diff]