fscrypt encrypts folders, you can use pam_fscrypt to auto-unencrypt
some, for example your home folder.
This means that the old code of kwallet-pam would not work
since it tries to read/write the salt file at the auth step.
This change moves that from the auth step to the open step, sadly that
means we need to keep the password in (pam "secure") memory for a while more.