Heap overflow in mps(4) (was: Re: stable/9 mps(4) rev 254938 == BOOM!)

[Garrett Wollman]

<<On Wed, 29 Jan 2014 15:15:14 -0700, "Kenneth D. Merry" <ken at freebsd.org> said:

> Are you booting off of the controller?  If not, could you try building mps
> as a module and unloading it?  Perhaps the memory would get freed when the
> module is unloaded and the redzone code would show where the problem is.

I built a memory-stick image and tried this.  No redzone messages, but
the driver leaks 18 allocations (142336 bytes).

-GAWollman