FWIW megasas is not use by KVM. Not sure what is the proper fix, but at least we have a reproducer.
We might improve "scsi/utils" by adding length argument to scsi_cdb_length() and check valid there, but this will take time (large refactor). Add assertions there is too violent. Philippe Mathieu-Daudé (3): tests/qtest/fuzz-test: Quit test_lp1878642 once done hw/scsi/megasas: Assert cdb_len is valid in megasas_handle_scsi() hw/scsi/megasas: Have incorrect cdb return MFI_STAT_ABORT_NOT_POSSIBLE hw/scsi/megasas.c | 6 ++ tests/qtest/fuzz-test.c | 197 ++++++++++++++++++++++++++++++++++++++++ 2 files changed, 203 insertions(+) -- 2.26.2
