From 1687fd80f45b9ac7d72ea885e9f2d44c0e253007 Mon Sep 17 00:00:00 2001
From: ippsec <root@ippsec.rocks>
Date: Mon, 5 Sep 2022 11:26:34 -0400
Subject: [PATCH 1/2] Updated flask session max length for payload to be 2047

---
 src/modules/module_29100.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/modules/module_29100.c b/src/modules/module_29100.c
index c521dbb04..8aa1f2a59 100644
--- a/src/modules/module_29100.c
+++ b/src/modules/module_29100.c
@@ -62,7 +62,7 @@ int module_hash_decode (MAYBE_UNUSED const hashconfig_t *hashconfig, MAYBE_UNUSE
 
   token.sep[0]     = '.';
   token.len_min[0] =  0;
-  token.len_max[0] = 27;
+  token.len_max[0] = 2047;
   token.attr[0]    = TOKEN_ATTR_VERIFY_LENGTH
                    | TOKEN_ATTR_VERIFY_BASE64C;
 

From cec997e3211ae830b3bce54214fafc5a9a456d32 Mon Sep 17 00:00:00 2001
From: ippsec <root@ippsec.rocks>
Date: Tue, 6 Sep 2022 14:58:11 -0400
Subject: [PATCH 2/2] Change the token size from 2047 to 56. In the current
 kernel we only have 57 bytes worth of space

---
 src/modules/module_29100.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/modules/module_29100.c b/src/modules/module_29100.c
index 8aa1f2a59..5d2227f41 100644
--- a/src/modules/module_29100.c
+++ b/src/modules/module_29100.c
@@ -62,7 +62,7 @@ int module_hash_decode (MAYBE_UNUSED const hashconfig_t *hashconfig, MAYBE_UNUSE
 
   token.sep[0]     = '.';
   token.len_min[0] =  0;
-  token.len_max[0] = 2047;
+  token.len_max[0] = 56;
   token.attr[0]    = TOKEN_ATTR_VERIFY_LENGTH
                    | TOKEN_ATTR_VERIFY_BASE64C;