Warn about truncation also in the case when a single password is read using

the password prompt.

Warn about truncation also in the case when a single password is read using
the password prompt.
4adcfa05 · Bodo Möller · 09451b68 · 4adcfa05
隐藏空白更改
内联并排

Showing with 4 addition and 2 deletion

apps/passwd.c apps/passwd.c +4 -2

未找到文件。
--- a/apps/passwd.c
+++ b/apps/passwd.c
@@ -196,7 +196,9 @@ int MAIN(int argc, char **argv)
 	if (passwds == NULL)
 		{
 		/* no passwords on the command line */
-		passwd = passwd_malloc = Malloc(pw_maxlen + 1);
+#define PASSWD_MALLOC_SIZE (pw_maxlen + 2)
+		/* longer than necessary so that we can warn about truncation */
+		passwd = passwd_malloc = Malloc(PASSWD_MALLOC_SIZE);
 		if (passwd_malloc == NULL)
 			goto err;
 		}
@@ -208,7 +210,7 @@ int MAIN(int argc, char **argv)
 		
 		passwds = passwds_static;
 		if (in == NULL)
-			if (EVP_read_pw_string(passwd_malloc, pw_maxlen + 1, "Password: ", 0) != 0)
+			if (EVP_read_pw_string(passwd_malloc, PASSWD_MALLOC_SIZE, "Password: ", 0) != 0)
 				goto err;
 		passwds[0] = passwd_malloc;
 		}