Change Details

`sysctl_handle_string()` may microoptimise and treat a variable string as a readonly one, but we should still respect the max length ( arg2 ) so that we will not read / write out of bounds. This is the API contract. Fixes: 210176ad76ee sysctl(9): add CTLFLAG_NEEDGIANT flag

`arg1` may point to a variable string which is not null-terminated. When micro-optimizing this string as a readonly one, strlen() may report a length exceeding the max length, hence leaking a portion of kernel memory or out-of-bounds writing to kernel memory. Fixes: 210176ad76ee sysctl(9): add CTLFLAG_NEEDGIANT flag MFC after: 1 week

`sysctl_handle_`arg1` may point to a variable string()` may microoptimise and treat a variable which is not null-terminated. When micro-optimizing this string as a readonly one, but we should still respect the maxstrlen() may report a length ( arg2 ) so that we will not read / write out of bounds.exceeding the max length, This is the API contracthence leaking a portion of kernel memory or out-of-bounds writing to kernel memory. Fixes: 210176ad76ee sysctl(9): add CTLFLAG_NEEDGIANT flag MFC after: 1 week