1 files changed, 3 insertions, 3 deletions
diff --git a/auth1.c b/auth1.c
index 2803a3c97..c70739080 100644
--- a/auth1.c
+++ b/auth1.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: auth1.c,v 1.79 2013/05/19 02:42:42 djm Exp $ */
+/* $OpenBSD: auth1.c,v 1.80 2014/02/02 03:44:31 djm Exp $ */
 /*
 * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
 *                    All rights reserved
@@ -129,7 +129,7 @@ auth1_process_password(Authctxt *authctxt)
        /* Try authentication with the password. */
        authenticated = PRIVSEP(auth_password(authctxt, password));
-        memset(password, 0, dlen);
+        explicit_bzero(password, dlen);
        free(password);
        return (authenticated);
@@ -222,7 +222,7 @@ auth1_process_tis_response(Authctxt *authctxt)
        response = packet_get_string(&dlen);
        packet_check_eom();
        authenticated = verify_response(authctxt, response);
-        memset(response, 'r', dlen);
+        explicit_bzero(response, dlen);
        free(response);
        return (authenticated);

diff --git a/auth1.c b/auth1.c index 2803a3c97..c70739080 100644 --- a/auth1.c +++ b/auth1.c
@@ -1,4 +1,4 @@
1	/* $OpenBSD: auth1.c,v 1.79 2013/05/19 02:42:42 djm Exp $ */	1	/* $OpenBSD: auth1.c,v 1.80 2014/02/02 03:44:31 djm Exp $ */
2	/*	2	/*
3	* Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland	3	* Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
4	* All rights reserved	4	* All rights reserved
@@ -129,7 +129,7 @@ auth1_process_password(Authctxt *authctxt)
129	/* Try authentication with the password. */	129	/* Try authentication with the password. */
130	authenticated = PRIVSEP(auth_password(authctxt, password));	130	authenticated = PRIVSEP(auth_password(authctxt, password));
131		131
132	memset(password, 0, dlen);	132	explicit_bzero(password, dlen);
133	free(password);	133	free(password);
134		134
135	return (authenticated);	135	return (authenticated);
@@ -222,7 +222,7 @@ auth1_process_tis_response(Authctxt *authctxt)
222	response = packet_get_string(&dlen);	222	response = packet_get_string(&dlen);
223	packet_check_eom();	223	packet_check_eom();
224	authenticated = verify_response(authctxt, response);	224	authenticated = verify_response(authctxt, response);
225	memset(response, 'r', dlen);	225	explicit_bzero(response, dlen);
226	free(response);	226	free(response);
227		227
228	return (authenticated);	228	return (authenticated);