Request body: avoid potential overflow.

commit: 03fcee5d78450fcb4a2055a23e538655a93751b7 [log] [tgz]
author: Maxim Dounin <mdounin@mdounin.ru> Mon Mar 03 17:39:53 2014 +0400
committer: Maxim Dounin <mdounin@mdounin.ru> Mon Mar 03 17:39:53 2014 +0400
tree: 9cb9246091899f463fa2b473221f722925ad39a9
parent: d5da8fa776ff62ea3ccb81f8438a4bfe340d364b [diff]
diff --git a/src/http/ngx_http_request_body.c b/src/http/ngx_http_request_body.c
index 1d8bc4a..e9cf3e9 100644
--- a/src/http/ngx_http_request_body.c
+++ b/src/http/ngx_http_request_body.c

@@ -953,13 +953,13 @@
 
                 if (clcf->client_max_body_size
                     && clcf->client_max_body_size
-                       < r->headers_in.content_length_n + rb->chunked->size)
+                       - r->headers_in.content_length_n < rb->chunked->size)
                 {
                     ngx_log_error(NGX_LOG_ERR, r->connection->log, 0,
                                   "client intended to send too large chunked "
-                                  "body: %O bytes",
-                                  r->headers_in.content_length_n
-                                  + rb->chunked->size);
+                                  "body: %O+%O bytes",
+                                  r->headers_in.content_length_n,
+                                  rb->chunked->size);
 
                     r->lingering_close = 1;
commit	03fcee5d78450fcb4a2055a23e538655a93751b7	[log] [tgz]
author	Maxim Dounin <mdounin@mdounin.ru>	Mon Mar 03 17:39:53 2014 +0400
committer	Maxim Dounin <mdounin@mdounin.ru>	Mon Mar 03 17:39:53 2014 +0400
tree	9cb9246091899f463fa2b473221f722925ad39a9
parent	d5da8fa776ff62ea3ccb81f8438a4bfe340d364b [diff]