Use correct length when prompting for password.

Use bufsiz - 1 not BUFSIZ - 1 when prompting for a password in the openssl utility. Thanks to Rob Mackinnon, Leviathan Security for reporting this issue. (cherry picked from commit 7ba08a4d73c1bdfd3aced09a628b1d7d7747cdca)
author: Dr. Stephen Henson <steve@openssl.org> 2014-04-04 12:44:43 +0100
committer: Dr. Stephen Henson <steve@openssl.org> 2014-04-04 13:06:49 +0100
commit: bb98beade96739f7cda7d4ca44743532cd3a33be (patch)
tree: e8e9eeaa4eb45ff347e3dd87513a2aa05897b35b
parent: b8d208c54912bf96fb6abeb249b8b8b7291a184b (diff)
download: openssl-new-bb98beade96739f7cda7d4ca44743532cd3a33be.tar.gz
1 files changed, 2 insertions, 2 deletions
diff --git a/apps/apps.c b/apps/apps.c
index c49c1c3bb7..016a2d01d0 100644
--- a/apps/apps.c
+++ b/apps/apps.c
@@ -588,12 +588,12 @@ int password_callback(char *buf, int bufsiz, int verify,
 
 		if (ok >= 0)
 			ok = UI_add_input_string(ui,prompt,ui_flags,buf,
-				PW_MIN_LENGTH,BUFSIZ-1);
+				PW_MIN_LENGTH,bufsiz-1);
 		if (ok >= 0 && verify)
 			{
 			buff = (char *)OPENSSL_malloc(bufsiz);
 			ok = UI_add_verify_string(ui,prompt,ui_flags,buff,
-				PW_MIN_LENGTH,BUFSIZ-1, buf);
+				PW_MIN_LENGTH,bufsiz-1, buf);
 			}
 		if (ok >= 0)
 			do
author	Dr. Stephen Henson <steve@openssl.org>	2014-04-04 12:44:43 +0100
committer	Dr. Stephen Henson <steve@openssl.org>	2014-04-04 13:06:49 +0100
commit	bb98beade96739f7cda7d4ca44743532cd3a33be (patch)
tree	e8e9eeaa4eb45ff347e3dd87513a2aa05897b35b
parent	b8d208c54912bf96fb6abeb249b8b8b7291a184b (diff)
download	openssl-new-bb98beade96739f7cda7d4ca44743532cd3a33be.tar.gz