From 2bb3643bc1b73a048946583f3474201bc46d0df9 Mon Sep 17 00:00:00 2001
From: Viktor Szakats <commit@vsz.me>
Date: Wed, 18 Mar 2026 19:28:03 +0100
Subject: [PATCH] sws: fix potential OOB write

Found by Codex Security

Follow-up to 0aaebf62ec281286afb9e51f2a8088302463df3f

Closes #20988
---
 tests/server/sws.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/tests/server/sws.c b/tests/server/sws.c
index c73a34c6a2..cc7adaf052 100644
--- a/tests/server/sws.c
+++ b/tests/server/sws.c
@@ -1127,7 +1127,7 @@ static int sws_get_request(curl_socket_t sock, struct sws_httprequest *req)
       logmsg("wait for websocket traffic");
       do {
         got = sread(sock, reqbuf + req->offset,
-                    sizeof(req->reqbuf) - req->offset);
+                    sizeof(req->reqbuf) - 1 - req->offset);
         if(got > 0) {
           req->offset += got;
           logmsg("Got %zu bytes from client", got);