Description: Bugfix
   * http.c: Stop if BIO_read returns <= 0
   fixes a bug in the fix for CVE-2016-1071 that causes pound to use 100% CPU
   see http://www.apsis.ch/pound/pound_list/archive/2018/2018-06/1529070189000
Author: Sergey Poznyakoff <gray@gnu.org>
Date:   Wed Feb 28 13:44:01 2018 +0000
Origin: https://github.com/graygnuorg/pound/commit/c5a95780e2233a05ab3fb8b4eb8a9550f0c3b53c

--- a/http.c
+++ b/http.c
@@ -157,7 +157,7 @@
                 if(tmp != '\n') {
                     /* we have CR not followed by NL */
                     do {
-                        if(BIO_read(in, &tmp, 1) < 0)
+                        if(BIO_read(in, &tmp, 1) <= 0)
                             return 1;
                     } while(tmp != '\n');
                     return 1;
@@ -184,7 +184,7 @@
 
             /* all other control characters cause an error */
             do {
-                if(BIO_read(in, &tmp, 1) < 0)
+                if(BIO_read(in, &tmp, 1) <= 0)
                     return 1;
             } while(tmp != '\n');
             return 1;
@@ -192,7 +192,7 @@
 
     /* line too long */
     do {
-        if(BIO_read(in, &tmp, 1) < 0)
+        if(BIO_read(in, &tmp, 1) <= 0)
             return 1;
     } while(tmp != '\n');
     return 1;
