ensure that sensitive data is zeroed out from mem.
ok?
Index: login_reject.c
===================================================================
RCS file: /cvs/src/libexec/login_reject/login_reject.c,v
retrieving revision 1.17
diff -u -p -u -r1.17 login_reject.c
--- login_reject.c 26 Apr 2018 12:42:51 -0000 1.17
+++ login_reject.c 23 Oct 2021 16:55:38 -0000
@@ -119,6 +119,7 @@ main(int argc, char *argv[])
readpassphrase("Password:", passbuf, sizeof(passbuf), 0);
crypt_checkpass("password", NULL);
+ explicit_bzero(passbuf, sizeof(passbuf));
fprintf(back, BI_REJECT "\n");
exit(1);
