opendoas: Fallback for setresuid(2).

[opendoas.git] / shadow.c

diff --git a/shadow.c b/shadow.c
index 53877d559a82134028b5a571ebc4eb95cd452bca..64cc1f740d0172172072b3bf90b0befe7cdf12e0 100644 (file)
--- a/shadow.c
+++ b/shadow.c
@@ -18,6 +18,10 @@
 
 #include "openbsd.h"
 
+#ifndef HOST_NAME_MAX
+#define HOST_NAME_MAX _POSIX_HOST_NAME_MAX
+#endif
+
 void
 shadowauth(const char *myname, int persist)
 {
@@ -70,14 +74,12 @@ shadowauth(const char *myname, int persist)
                explicit_bzero(rbuf, sizeof(rbuf));
                errx(1, "Authorization failed");
        }
+       explicit_bzero(rbuf, sizeof(rbuf));
        if (strcmp(encrypted, hash) != 0) {
-               explicit_bzero(rbuf, sizeof(rbuf));
                syslog(LOG_AUTHPRIV | LOG_NOTICE, "failed auth for %s", myname);
                errx(1, "Authorization failed");
        }
 
-       explicit_bzero(rbuf, sizeof(rbuf));
-
 #ifdef USE_TIMESTAMP
 good:
        if (fd != -1) {