commit 23fbe390bd2006b2da54d7ed1fdd5e9615e58d4b
from: Omar Polo <op@omarpolo.com>
date: Mon May 23 10:56:01 2022 UTC

allow Tread to fill a message

a message of `msize' len is valid, we just need to make sure to _not_
overflow it.

commit - a9eb1af3d081c65f002dfa7e3cde71e3cc23e963
commit + 23fbe390bd2006b2da54d7ed1fdd5e9615e58d4b
blob - 4fcd9cb8088c6b1b2518ce3bf459b75c57733397
blob + 29b640835134e4aea8b320ba987c21af9b39f0b8
--- kamid/client.c
+++ kamid/client.c
@@ -721,7 +721,7 @@ np_create(uint16_t tag, struct qid *qid, uint32_t ioun
 static void
 np_read(uint16_t tag, uint32_t count, void *data)
 {
-	if (sizeof(count) + count + HEADERSIZE >= msize) {
+	if (sizeof(count) + count + HEADERSIZE > msize) {
 		np_error(tag, "Rread would overflow");
 		return;
 	}