diff --git a/CMakeLists.txt b/CMakeLists.txt
index 8db5cce5..85f772f8 100644
--- a/CMakeLists.txt
+++ b/CMakeLists.txt
@@ -819,7 +819,7 @@ endif()
 #
 set(CPACK_PACKAGE_NAME "GmSSL")
 set(CPACK_PACKAGE_VENDOR "GmSSL develop team")
-set(CPACK_PACKAGE_VERSION "3.2.0-dev.1076")
+set(CPACK_PACKAGE_VERSION "3.2.0-dev.1077")
 set(CPACK_PACKAGE_DESCRIPTION_FILE ${PROJECT_SOURCE_DIR}/README.md)
 set(CPACK_NSIS_MODIFY_PATH ON)
 include(CPack)
diff --git a/include/gmssl/version.h b/include/gmssl/version.h
index 5b4ed599..29a24643 100644
--- a/include/gmssl/version.h
+++ b/include/gmssl/version.h
@@ -18,7 +18,7 @@ extern "C" {
 
 
 #define GMSSL_VERSION_NUM	30200
-#define GMSSL_VERSION_STR	"GmSSL 3.2.0-dev.1076"
+#define GMSSL_VERSION_STR	"GmSSL 3.2.0-dev.1077"
 
 int gmssl_version_num(void);
 const char *gmssl_version_str(void);
diff --git a/tools/tls13_server.c b/tools/tls13_server.c
index 060c668b..d0fea6d0 100644
--- a/tools/tls13_server.c
+++ b/tools/tls13_server.c
@@ -249,21 +249,21 @@ int tls13_server_main(int argc , char **argv)
 			psk_dhe_ke = 1;
 		} else if (!strcmp(*argv, "-psk_identity")) {
 			if (--argc < 1) goto bad;
-			if (psk_identities_cnt > sizeof(psk_identities)/sizeof(psk_identities[0])) {
+			if (psk_identities_cnt >= sizeof(psk_identities)/sizeof(psk_identities[0])) {
 				error_print();
 				return -1;
 			}
 			psk_identities[psk_identities_cnt++] = *(++argv);
 		} else if (!strcmp(*argv, "-psk_cipher_suite")) {
 			if (--argc < 1) goto bad;
-			if (psk_cipher_suites_cnt > sizeof(psk_cipher_suites)/sizeof(psk_cipher_suites[0])) {
+			if (psk_cipher_suites_cnt >= sizeof(psk_cipher_suites)/sizeof(psk_cipher_suites[0])) {
 				error_print();
 				return -1;
 			}
 			psk_cipher_suites[psk_cipher_suites_cnt++] = *(++argv);
 		} else if (!strcmp(*argv, "-psk_key")) {
 			if (--argc < 1) goto bad;
-			if (psk_keys_cnt > sizeof(psk_keys)/sizeof(psk_keys[0])) {
+			if (psk_keys_cnt >= sizeof(psk_keys)/sizeof(psk_keys[0])) {
 				error_print();
 				return -1;
 			}