DragonFlyBSD Kernel Audit
← dashboard
DF-0197

sysctl_devstat copies full struct devstat including unset fields and padding

Summary

SYSCTL_OUT(:292) copies sizeof(struct devstat) raw including padding between fields and uninitialized bytes_read/written/freed/tag_types/busy_time. Callers embed in M_ZERO softc today. No enforced zeroing contract. Latent heap info leak.