loader: check get_image_size() return value

since a negative value means it errored. hw/core/loader.c:149:9: warning: Loss of sign in implicit conversion if (size > max_sz) { ^~~~ hw/core/loader.c:171:9: warning: Loss of sign in implicit conversion if (size > memory_region_size(mr)) { ^~~~ Reported-by: Clang Static Analyzer Signed-off-by: N Philippe Mathieu-Daudé <f4bug@amsat.org> Reviewed-by: N Eric Blake <eblake@redhat.com> Reviewed-by: N Alistair Francis <alistair.francis@xilinx.com> Signed-off-by: N Michael Tokarev <mjt@tls.msk.ru>

loader: check get_image_size() return value
since a negative value means it errored. hw/core/loader.c:149:9: warning: Loss of sign in implicit conversion if (size > max_sz) { ^~~~ hw/core/loader.c:171:9: warning: Loss of sign in implicit conversion if (size > memory_region_size(mr)) { ^~~~ Reported-by: Clang Static Analyzer Signed-off-by: N Philippe Mathieu-Daudé <f4bug@amsat.org> Reviewed-by: N Eric Blake <eblake@redhat.com> Reviewed-by: N Alistair Francis <alistair.francis@xilinx.com> Signed-off-by: N Michael Tokarev <mjt@tls.msk.ru>
2a4e2e49 · Philippe Mathieu-Daudé · Michael Tokarev · b94b330e · 2a4e2e49
隐藏空白更改
内联并排

Showing with 2 addition and 2 deletion

hw/core/loader.c hw/core/loader.c +2 -2

未找到文件。
--- a/hw/core/loader.c
+++ b/hw/core/loader.c
@@ -146,7 +146,7 @@ int load_image_targphys_as(const char *filename,
    int size;

    size = get_image_size(filename);
-    if (size > max_sz) {
+    if (size < 0 || size > max_sz) {
        return -1;
    }
    if (size > 0) {
@@ -168,7 +168,7 @@ int load_image_mr(const char *filename, MemoryRegion *mr)

    size = get_image_size(filename);

-    if (size > memory_region_size(mr)) {
+    if (size < 0 || size > memory_region_size(mr)) {
        return -1;
    }
    if (size > 0) {