Use mcdsl/terminal for all password prompts

Replace direct golang.org/x/term calls with mcdsl/terminal.ReadPassword
across mciasctl (6 sites), mciasgrpcctl (1 site), and mciasdb (1 site).
Aligns with the new CLI security standard in engineering-standards.md.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

vendor/modernc.org/libc/libc_all.go

@@ -9,11 +9,13 @@ import (
 	"math"
 	"sync/atomic"
 	"unsafe"
-
-	"golang.org/x/exp/constraints"
 )
 
-func X__sync_add_and_fetch[T constraints.Integer](t *TLS, p uintptr, v T) T {
+type integer interface {
+	~int | ~int32 | ~int64 | ~uint | ~uint32 | ~uint64 | ~uintptr
+}
+
+func X__sync_add_and_fetch[T integer](t *TLS, p uintptr, v T) T {
 	switch unsafe.Sizeof(v) {
 	case 4:
 		return T(atomic.AddInt32((*int32)(unsafe.Pointer(p)), int32(v)))
@@ -24,7 +26,7 @@ func X__sync_add_and_fetch[T constraints.Integer](t *TLS, p uintptr, v T) T {
 	}
 }
 
-func X__sync_sub_and_fetch[T constraints.Integer](t *TLS, p uintptr, v T) T {
+func X__sync_sub_and_fetch[T integer](t *TLS, p uintptr, v T) T {
 	switch unsafe.Sizeof(v) {
 	case 4:
 		return T(atomic.AddInt32((*int32)(unsafe.Pointer(p)), -int32(v)))
@@ -103,3 +105,18 @@ func Xstrlen(t *TLS, s uintptr) (r Tsize_t) {
 func _strlen(t *TLS, s uintptr) (r Tsize_t) {
 	return strlen(s)
 }
+
+func X__builtin_ilogb(tls *TLS, x float64) int32 {
+	return int32(math.Ilogb(x))
+}
+
+func X__builtin_ilogbl(tls *TLS, x float64) int32 {
+	return int32(math.Ilogb(x))
+}
+
+func X__builtin_ilogbf(tls *TLS, x float32) int32 {
+	// Casting to float64 is safe and mathematically correct here.
+	// Subnormal float32 values become normal float64 values,
+	// which allows math.Ilogb to correctly return their negative exponent.
+	return int32(math.Ilogb(float64(x)))
+}