From 7a0dead82ae8036b6ad08717ca0b2fdb560e7fcc Mon Sep 17 00:00:00 2001
From: Andy Green <andy@warmcat.com>
Date: Tue, 28 Mar 2017 08:51:37 +0800
Subject: [PATCH] service: always restrict rx to serve_buf_size

---
 lib/service.c | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/lib/service.c b/lib/service.c
index 88e7d089..6a42dd28 100644
--- a/lib/service.c
+++ b/lib/service.c
@@ -1064,6 +1064,9 @@ read:
 					eff_buf.token_len = context->pt_serv_buf_size;
 				}
 
+				if (eff_buf.token_len > context->pt_serv_buf_size)
+					eff_buf.token_len = context->pt_serv_buf_size;
+
 				eff_buf.token_len = lws_ssl_capable_read(wsi,
 					(unsigned char *)eff_buf.token, pending ? pending :
 					eff_buf.token_len);