Patch from vodz to cleanup libbb/obscure.c:password_check()

author Eric Andersen <andersen@codepoet.org>

Wed, 6 Aug 2003 08:33:08 +0000 (08:33 -0000)

committer Eric Andersen <andersen@codepoet.org>

Wed, 6 Aug 2003 08:33:08 +0000 (08:33 -0000)
author Eric Andersen <andersen@codepoet.org>
Wed, 6 Aug 2003 08:33:08 +0000 (08:33 -0000)
committer Eric Andersen <andersen@codepoet.org>
Wed, 6 Aug 2003 08:33:08 +0000 (08:33 -0000)
diff --git a/libbb/obscure.c b/libbb/obscure.c

index 537d448..aa15e40 100644 (file)
--- a/libbb/obscure.c
+++ b/libbb/obscure.c
@@ -144,8 +144,8 @@ password_check(const char *old, const char *newval, const struct passwd *pwdp)
  
         msg = NULL;
         newmono = str_lower(bb_xstrdup(newval));
-       lenwrap = strlen(old) * 2 + 1;
-       wrapped = (char *) xmalloc(lenwrap);
+       lenwrap = strlen(old);
+       wrapped = (char *) xmalloc(lenwrap * 2 + 1);
         str_lower(strcpy(wrapped, old));
  
         if (palindrome(newmono))
@@ -164,7 +164,7 @@ password_check(const char *old, const char *newval, const struct passwd *pwdp)
         }
  
         bzero(newmono, strlen(newmono));
-       bzero(wrapped, lenwrap);
+       bzero(wrapped, lenwrap * 2);
         free(newmono);
         free(wrapped);
author	Eric Andersen <andersen@codepoet.org>
	Wed, 6 Aug 2003 08:33:08 +0000 (08:33 -0000)
committer	Eric Andersen <andersen@codepoet.org>
	Wed, 6 Aug 2003 08:33:08 +0000 (08:33 -0000)