Bugfix: serial COMMAND_BUFFER_SIZE could be silently overrun

SerialManager.cpp

@@ -126,8 +126,8 @@ void SerialManager::loop2() {
         buffer[0] = '\0';
       }
     } else { // if (inCommandPayload)
-      if (bufferLength <  (COMMAND_BUFFER_SIZE-1))
-        buffer[bufferLength++] = ch;
+      if (bufferLength <  (COMMAND_BUFFER_SIZE-1)) {
+        buffer[bufferLength++] = ch;          // advance bufferLength
 	if (inCommandPayload > PAYLOAD_NORMAL) {
 	  if (inCommandPayload > 32 + 2) {    // String way too long
 	    ch = '>';                         // we end this nonsense
@@ -142,14 +142,18 @@ void SerialManager::loop2() {
 	}
 	if (inCommandPayload == PAYLOAD_NORMAL) {
 	  if (ch == '>') {
-          buffer[bufferLength] = '\0';
-          DCCEXParser::parse(serial, buffer, NULL); 
+	    buffer[bufferLength] = '\0';               // This \0 is after the '>'
+	    DCCEXParser::parse(serial, buffer, NULL);  // buffer parsed with trailing '>'
 	    inCommandPayload = PAYLOAD_FALSE;
 	    break;
 	  } else if (ch == '"') {
 	    inCommandPayload = PAYLOAD_STRING;
 	  }
 	}
+      } else {
+	DIAG(F("Parse error: input buffer overflow"));
+	inCommandPayload = PAYLOAD_FALSE;
+      }
     }
   }
 }