Skip to content

[UDFS] Fix double free BSOD in UDFDirIndexFree detected by Driver Verifier#339

Draft
Copilot wants to merge 8 commits into
udf-devfrom
copilot/udfs-fix-double-free-bsod
Draft

[UDFS] Fix double free BSOD in UDFDirIndexFree detected by Driver Verifier#339
Copilot wants to merge 8 commits into
udf-devfrom
copilot/udfs-fix-double-free-bsod

Conversation

Copy link
Copy Markdown

Copilot AI commented Apr 30, 2026
edited
Loading

  • Investigate crash: BugCheck C4/D2 - freeing pool with active ERESOURCE
  • !pool confirms pool size = 0x118 = 280 bytes → 3 ERESOURCEs (FcbResource@0x10, FcbPagingIoResource@0x48, CcbListResource@0x80) + 3 FAST_MUTEXes
  • The ERESOURCE at offset 0x80 (CcbListResource) was initialized by ExInitializeResourceLite but never deleted before pool free
  • Add CcbListResource ERESOURCE to FCB_NONPAGED struct after FcbPagingIoResource
  • Initialize CcbListResource in UDFCreateFcbNonpaged
  • Delete CcbListResource in UDFDeleteFcbNonpaged

Copilot AI linked an issue Apr 30, 2026 that may be closed by this pull request
[UDFS] Fix this double free BSOD when extracting an archive via 7-Zip that was detected by Driver Verifier #338
Open
Copilot AI changed the title [WIP] Fix double free BSOD when extracting archive via 7-Zip [UDFS] Fix double free BSOD in UDFDirIndexFree detected by Driver Verifier Apr 30, 2026
Copilot AI requested a review from Zero3K20 April 30, 2026 20:22
@Zero3K20
[UDFS] Fix 0xC4/0x13a BSOD in UDFDeleteCcb: add NULL check on Directo…
e9e5b3d 
…rySearchPattern->Buffer and cleanup on alloc failure

Agent-Logs-Url: https://github.com/Zero3K20/reactos/sessions/29310a33-9426-4853-8f5d-6d1a33b7d991

Co-authored-by: Zero3K20 <258969903+Zero3K20@users.noreply.github.com>
Copilot stopped work on behalf of Zero3K20 due to an error April 30, 2026 22:45
The session was cancelled by the user.
Copilot stopped work on behalf of Zero3K20 due to an error April 30, 2026 22:58
The session was cancelled by the user.
Copilot AI mentioned this pull request May 1, 2026
Closed
Copilot AI added a commit that referenced this pull request May 1, 2026
@Zero3K20
Resolve conflict: keep PR #339 comment for CcbListResource in FCB_NON…
801b104 
…PAGED

Co-authored-by: Zero3K20 <258969903+Zero3K20@users.noreply.github.com>
Copilot AI added a commit that referenced this pull request May 1, 2026
@Zero3K20
Apply PR #283 (chunked bitmap) and PR #339 (double free BSOD fix), fi…
8ef15fb 
…x merge artifacts

Agent-Logs-Url: https://github.com/Zero3K20/reactos/sessions/fd2df4b2-bb62-4535-a8dc-697ac219c316

Co-authored-by: Zero3K20 <258969903+Zero3K20@users.noreply.github.com>
Copilot AI mentioned this pull request May 1, 2026
Closed
4 tasks
Copilot AI added a commit that referenced this pull request May 1, 2026
@Zero3K20
Apply all open UDFS PRs: #62, #108, #193, #216, #218, #269, #277, #283,
8556073 
#302, #304, #306, #308, #310, #316, #335, #339

Agent-Logs-Url: https://github.com/Zero3K20/reactos/sessions/c135164e-e9f3-4164-ba64-d04f8a2dd19a

Co-authored-by: Zero3K20 <258969903+Zero3K20@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Zero3K20 Zero3K20 Awaiting requested review from Zero3K20

Assignees

Copilot code review Copilot

@Zero3K20 Zero3K20

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

[UDFS] Fix this double free BSOD when extracting an archive via 7-Zip that was detected by Driver Verifier

3 participants

@Zero3K20 @assorted