commit: c584c45eeb9f972ed41ae488530c32de133afcc9
parent 978850878fc24edb9c696e6abff001f20ec7a8ad
Author: Haelwenn (lanodan) Monnier <contact@hacktivis.me>
Date: Fri, 23 May 2025 20:42:13 +0200
common: call crypt("", hash) instead of explicit_bzero
crypt() returns a pointer to a static buffer, which we don't directly
have write access to (at least on musl).
Diffstat:
1 file changed, 2 insertions(+), 1 deletion(-)
diff --git a/common.c b/common.c
@@ -55,7 +55,8 @@ skeud_crypt_check(const char *hash, const char *password)
bool match = hash_match(hash, chk_hash);
- explicit_bzero(chk_hash, strlen(chk_hash));
+ // cleanup
+ chk_hash = crypt("", hash);
return match;
}
