Hi Jules, I think everything you said is correct, except just the last line because strnlen returns the minimum of the length of the string and maxlength + 1 (It will not access forbidden location). So in my opinion it's not a bug or suspicious but only unnecessary. Cheers, Abdelrahman