When libcrypto is absent the passwordLength variable becomes unused.
Detected by Windows build farm node.
continue;
}
char *crypted = NULL;
- size_t passwordLength = strlen(passwd);
#if HAVE_CRYPT
+ size_t passwordLength = strlen(passwd);
// Bug 3831: given algorithms more secure than DES crypt() does not truncate, so we can ignore the bug 3107 length checks below
// '$1$' = MD5, '$2a$' = Blowfish, '$5$' = SHA256 (Linux), '$6$' = SHA256 (BSD) and SHA512
if (passwordLength > 1 && u->passwd[0] == '$' &&