* Rich Felker <dalias@aerifal.cx> [2012-08-19 22:12:23 -0400]:
> On Mon, Aug 20, 2012 at 03:58:54AM +0200, Szabolcs Nagy wrote:
> > sha and md5 crypt does not decode the salt
> > it is directly passed to a hash function
> 
> Ah, that makes it uglier then, because presumably some of these
> malformed things you mentioned are "valid" salt.
> 

i modified my sha crypt implementation so it is very strict
about the rounds= part of the salt and checks for key length

otherwise it should be compatible with the glibc one

(i only attach the sha256 version)