DF-0231
Buffer-size safety depends solely on KKASSERT debug assertions
Summary
Only guards that bp1/bp2 buffers fit I/O are KKASSERT(:93,:150). Production kernels: no-op. If table_blocks*blksize > b_bufsize -> oversized read into undersized buffer. Currently unreachable given constraints but security boundary shouldnt be debug assert.