From 29c41da818f2ae327dc80dd0a1d89f859c7fd7be Mon Sep 17 00:00:00 2001
From: toddouska <todd@wolfssl.com>
Date: Mon, 23 Dec 2013 12:24:03 -0800
Subject: [PATCH] do size check on user password input

---
 src/ssl.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/ssl.c b/src/ssl.c
index 2f54e0ebd..d9edaa946 100644
--- a/src/ssl.c
+++ b/src/ssl.c
@@ -1063,7 +1063,7 @@ static INLINE int OurPasswordCb(char* passwd, int sz, int rw, void* userdata)
         return 0;
 
     XSTRNCPY(passwd, (char*)userdata, sz);
-    return (int)XSTRLEN((char*)userdata);
+    return min((word32)sz, (word32)XSTRLEN((char*)userdata));
 }