netfilter: nf_conntrack_pptp: prevent buffer overflows in debug code

Dan Carpenter says: "Smatch complains that the value for "cmd" comes from the network and can't be trusted." Add pptp_msg_name() helper function that checks for the array boundary. Fixes: f09943fefe6b ("[NETFILTER]: nf_conntrack/nf_nat: add PPTP helper port") Reported-by: Dan Carpenter <dan.carpenter@oracle.com> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
author: Pablo Neira Ayuso <pablo@netfilter.org> 2020-05-14 14:14:23 +0200
committer: Pablo Neira Ayuso <pablo@netfilter.org> 2020-05-25 20:39:14 +0200
commit: 4c559f15efcc43b996f4da528cd7f9483aaca36d (patch)
tree: a6a8ccd47c3fc1afdac3c51f6380d3a6ca1b7c19 /include/linux/netfilter
parent: a164b95ad6055c50612795882f35e0efda1f1390 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/include/linux/netfilter/nf_conntrack_pptp.h b/include/linux/netfilter/nf_conntrack_pptp.h
index fcc409de31a4..6a4ff6d5ebc2 100644
--- a/include/linux/netfilter/nf_conntrack_pptp.h
+++ b/include/linux/netfilter/nf_conntrack_pptp.h
@@ -10,7 +10,7 @@
 #include <net/netfilter/nf_conntrack_expect.h>
 #include <uapi/linux/netfilter/nf_conntrack_tuple_common.h>
 
-extern const char *const pptp_msg_name[];
+extern const char *const pptp_msg_name(u_int16_t msg);
 
 /* state of the control session */
 enum pptp_ctrlsess_state {
author	Pablo Neira Ayuso <pablo@netfilter.org>	2020-05-14 14:14:23 +0200
committer	Pablo Neira Ayuso <pablo@netfilter.org>	2020-05-25 20:39:14 +0200
commit	4c559f15efcc43b996f4da528cd7f9483aaca36d (patch)
tree	a6a8ccd47c3fc1afdac3c51f6380d3a6ca1b7c19 /include/linux/netfilter
parent	a164b95ad6055c50612795882f35e0efda1f1390 (diff)