Richard,
I had taken a crack at this and got to the point of actually needing
sha2crypt(). I compared your changes to mine, which is all pretty
predictable so matched line by line. The only exception is 203, which is
because it's entirely redundant as the max_pwlen defaults to 256.
So mayb
Thanks Richard,
Quick work on issue 1, I git cloned & tested it, works as expected.
I downloaded the pull above, built it and it appears to work.
I found test vectors in the specification document here:
https://www.akkadia.org/drepper/sha-crypt.html
openssl passwd -5 -salt s
This may be two requests, one a bug and one a feature request.
Issue 1: openssl 1.1.0 passwd on Windows 64 doesn't generate MD5 passwords
(-1 / -apr1), returns "". I haven't tested other platforms. See
output below.
Issue 2: openssl 1.1.0 passwd doesn't support newer password hashing
algorithm
The OpenSSL x509 application supports additional fingerprint digests, but
the help output doesn't show them. The migration to SHA-2 signed x509
Digital Certificates has added interest in using sha2 rather than sha1.
D:\OpenSSL\openssl-1.0.1i\apps>grep -in "digest to use" x509.c
144:" -md2/-md5/-
