Hi,
> +virtio_snd_query_info req;
> +size_t sz = iov_to_buf(elem->out_sg, elem->out_num, 0, &req,
> sizeof(req));
> +assert(sz == sizeof(virtio_snd_query_info));
This assert looks like the guest can trigger it by sending broken
messages. This should be avoided, the guest should no
Signed-off-by: Shreyansh Chouhan
---
hw/audio/virtio-snd.c | 81 +--
1 file changed, 79 insertions(+), 2 deletions(-)
diff --git a/hw/audio/virtio-snd.c b/hw/audio/virtio-snd.c
index 435870e3ba..d50234f9a8 100644
--- a/hw/audio/virtio-snd.c
+++ b/hw/audio/
