espressif/openthread
1
0
Fork 0
mirror of https://github.com/espressif/openthread.git synced 2026-06-05 21:14:49 +00:00
Code Issues Packages Projects Releases Wiki Activity

[bbr] fix overflow in Config::SelectRandomReregistrationDelay() (#13128)

Browse Source 
This commit fixes a potential `uint16_t` overflow in
`Config::SelectRandomReregistrationDelay()` which could occur if
`mReregistrationDelay` was set to the maximum `uint16_t` value.

The `Random::NonCrypto::GetUint16InRange(lower, upper)` function
includes the lower bound but excludes the upper bound. Previously,
the code called `GetUint16InRange(1, mReregistrationDelay + 1)`,
which would overflow the upper bound if `mReregistrationDelay` was
`0xffff`. The logic is updated to `1 + GetUint16InRange(0,
mReregistrationDelay)`, which safely produces a random value in the
range `[1, mReregistrationDelay]` without overflow.
This commit is contained in:
Abtin Keshavarzian
2026-05-21 13:13:39 -07:00
committed by GitHub
parent bd47a31674
commit 4152ea10e4
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/core/backbone_router/bbr_leader.cpp
+1 -1
View File
@@ -66,7 +66,7 @@ uint16_t Config::SelectRandomReregistrationDelay(void) const
uint16_t delay = 1;
VerifyOrExit(mReregistrationDelay > 1);
delay = Random::NonCrypto::GetUint16InRange(1, mReregistrationDelay + 1);
delay = 1 + Random::NonCrypto::GetUint16InRange(0, mReregistrationDelay);
exit:
return delay;