diff --git a/src/lib/libc/crypt/bcrypt.c b/src/lib/libc/crypt/bcrypt.c
index 4656ca65..3bb61a5e 100644
--- a/src/lib/libc/crypt/bcrypt.c
+++ b/src/lib/libc/crypt/bcrypt.c
@@ -1,4 +1,4 @@
-/*	$OpenBSD: bcrypt.c,v 1.41 2014/05/03 17:12:53 tedu Exp $	*/
+/*	$OpenBSD: bcrypt.c,v 1.42 2014/05/06 15:38:49 tedu Exp $	*/
 
 /*
  * Copyright (c) 2014 Ted Unangst <tedu@openbsd.org>
@@ -187,10 +187,10 @@ bcrypt_hashpass(const char *key, const char *salt, char *encrypted,
 	encode_base64(encrypted + i + 3, csalt, BCRYPT_MAXSALT);
 	encode_base64(encrypted + strlen(encrypted), ciphertext,
 	    4 * BCRYPT_BLOCKS - 1);
-	memset(&state, 0, sizeof(state));
-	memset(ciphertext, 0, sizeof(ciphertext));
-	memset(csalt, 0, sizeof(csalt));
-	memset(cdata, 0, sizeof(cdata));
+	explicit_bzero(&state, 0, sizeof(state));
+	explicit_bzero(ciphertext, 0, sizeof(ciphertext));
+	explicit_bzero(csalt, 0, sizeof(csalt));
+	explicit_bzero(cdata, 0, sizeof(cdata));
 	return 0;
 }