PR: 1904

author Dr. Stephen Henson <steve@openssl.org>

Sat, 27 Mar 2010 19:31:55 +0000 (19:31 +0000)

committer Dr. Stephen Henson <steve@openssl.org>

Sat, 27 Mar 2010 19:31:55 +0000 (19:31 +0000)
author Dr. Stephen Henson <steve@openssl.org>
Sat, 27 Mar 2010 19:31:55 +0000 (19:31 +0000)
committer Dr. Stephen Henson <steve@openssl.org>
Sat, 27 Mar 2010 19:31:55 +0000 (19:31 +0000)
diff --git a/crypto/evp/evp.h b/crypto/evp/evp.h

index d8ae457e6b8f7d60a739f68256839a27666d33e8..037f14be235d3d1e7118678f994467b0e5619ffd 100644 (file)
--- a/crypto/evp/evp.h
+++ b/crypto/evp/evp.h
@@ -523,6 +523,7 @@ __owur int  EVP_DigestInit(EVP_MD_CTX *ctx, const EVP_MD *type);
  __owur int     EVP_DigestFinal(EVP_MD_CTX *ctx,unsigned char *md,unsigned int *s);
  
  int    EVP_read_pw_string(char *buf,int length,const char *prompt,int verify);
+int    EVP_read_pw_string_min(char *buf,int minlen,int maxlen,const char *prompt,int verify);
  void   EVP_set_pw_prompt(const char *prompt);
  char * EVP_get_pw_prompt(void);
  
diff --git a/crypto/evp/evp_key.c b/crypto/evp/evp_key.c

index a22fa5036e666e35acd4dc87763c2c198c9fb86c..7961fbebf2e7245672776715d4f9628e5e823f82 100644 (file)
--- a/crypto/evp/evp_key.c
+++ b/crypto/evp/evp_key.c
@@ -89,6 +89,11 @@ char *EVP_get_pw_prompt(void)
   * in the DES library -- if someone ever wants to disable DES,
   * this function will fail */
  int EVP_read_pw_string(char *buf, int len, const char *prompt, int verify)
+       {
+       return EVP_read_pw_string_min(buf, 0, len, prompt, verify);
+       }
+
+int EVP_read_pw_string_min(char *buf, int min, int len, const char *prompt, int verify)
         {
         int ret;
         char buff[BUFSIZ];
@@ -97,10 +102,10 @@ int EVP_read_pw_string(char *buf, int len, const char *prompt, int verify)
         if ((prompt == NULL) && (prompt_string[0] != '\0'))
                 prompt=prompt_string;
         ui = UI_new();
-       UI_add_input_string(ui,prompt,0,buf,0,(len>=BUFSIZ)?BUFSIZ-1:len);
+       UI_add_input_string(ui,prompt,0,buf,min,(len>=BUFSIZ)?BUFSIZ-1:len);
         if (verify)
                 UI_add_verify_string(ui,prompt,0,
-                       buff,0,(len>=BUFSIZ)?BUFSIZ-1:len,buf);
+                       buff,min,(len>=BUFSIZ)?BUFSIZ-1:len,buf);
         ret = UI_process(ui);
         UI_free(ui);
         OPENSSL_cleanse(buff,BUFSIZ);
diff --git a/crypto/pem/pem_lib.c b/crypto/pem/pem_lib.c

index 27f0544c06c64fd6acead0fcb8f58173efb720f8..18cde7c2d9fb06d522af50cb4e5000785d1753c3 100644 (file)
--- a/crypto/pem/pem_lib.c
+++ b/crypto/pem/pem_lib.c
@@ -105,7 +105,7 @@ int PEM_def_callback(char *buf, int num, int w, void *key)
  
         for (;;)
                 {
-               i=EVP_read_pw_string(buf,num,prompt,w);
+               i=EVP_read_pw_string_min(buf,MIN_LENGTH,num,prompt,w);
                 if (i != 0)
                         {
                         PEMerr(PEM_F_PEM_DEF_CALLBACK,PEM_R_PROBLEMS_GETTING_PASSWORD);
author	Dr. Stephen Henson <steve@openssl.org>
	Sat, 27 Mar 2010 19:31:55 +0000 (19:31 +0000)
committer	Dr. Stephen Henson <steve@openssl.org>
	Sat, 27 Mar 2010 19:31:55 +0000 (19:31 +0000)
crypto/evp/evp.h		patch \| blob \| history
crypto/evp/evp_key.c		patch \| blob \| history
crypto/pem/pem_lib.c		patch \| blob \| history