Fix qemu-img bench issues and improve checks

[PATCH 4/4] qemu-img: improve queue depth validation in img_bench

Posted by gerben@altlinux.org 5 days, 21 hours ago

From: Denis Rastyogin <gerben@altlinux.org>

This error was discovered by fuzzing qemu-img.

Currently, running `qemu-img bench -d 0` in img_bench is allowed,
which is a pointless operation and causes qemu-img to hang.

Signed-off-by: Denis Rastyogin <gerben@altlinux.org>
---
 qemu-img.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/qemu-img.c b/qemu-img.c
index 5cbf3d18d7..4817bd9b05 100644
--- a/qemu-img.c
+++ b/qemu-img.c
@@ -4581,7 +4581,7 @@ static int img_bench(int argc, char **argv)
         {
             unsigned long res;
 
-            if (qemu_strtoul(optarg, NULL, 0, &res) < 0 || res > INT_MAX) {
+            if (qemu_strtoul(optarg, NULL, 0, &res) <= 0 || res > INT_MAX) {
                 error_report("Invalid queue depth specified");
                 return 1;
             }
-- 
2.42.2

[PATCH 1/4] qemu-img: fix division by zero in bench_cb() for zero-sized
[PATCH 2/4] qemu-img: fix offset calculation in bench
[PATCH 3/4] qemu-img: prevent stack overflow in bench by using bottom half
[PATCH 4/4] qemu-img: improve queue depth validation in img_bench