sysctl: don't overflow the user-supplied buffer with '\0' (8febdd85) · Commits · e / devices / android_kernel_oneplus_sm8150

kernel/sysctl.c

+1 −3

Original line number	Diff line number	Diff line
		@@ -2201,14 +2201,12 @@ int sysctl_string(ctl_table table, int __user name, int nlen,
		if (get_user(len, oldlenp))
		return -EFAULT;
		if (len) {
		l = strlen(table->data);
		l = strlen(table->data)+1;
		if (len > l) len = l;
		if (len >= table->maxlen)
		len = table->maxlen;
		if(copy_to_user(oldval, table->data, len))
		return -EFAULT;
		if(put_user(0, ((char __user *) oldval) + len))
		return -EFAULT;
		if(put_user(len, oldlenp))
		return -EFAULT;
		}