Prevent possible buffer overflows when using very large (>= 8192 bit) RSA keys.

[oweals/tinc.git] / src / protocol.h

diff --git a/src/protocol.h b/src/protocol.h
index 100543a1f876fbc14e98e088ba2547efbbcc1a0e..d6a35be77230215b239b9bd6da8b478258cddea0 100644 (file)
--- a/src/protocol.h
+++ b/src/protocol.h
@@ -56,9 +56,12 @@ typedef struct past_request_t {
 
 extern bool tunnelserver;
 
-/* Maximum size of strings in a request */
+/* Maximum size of strings in a request.
+ * scanf terminates %2048s with a NUL character,
+ * but the NUL character can be written after the 2048th non-NUL character.
+ */
 
-#define MAX_STRING_SIZE 2048
+#define MAX_STRING_SIZE 2049
 #define MAX_STRING "%2048s"
 
 #include "edge.h"