util.sasl.scram: Fix in nonce check of client-final-message.

author Tobias Markmann <tm@ayena.de>

Sat, 22 May 2010 11:59:58 +0000 (13:59 +0200)

committer Tobias Markmann <tm@ayena.de>

Sat, 22 May 2010 11:59:58 +0000 (13:59 +0200)
author Tobias Markmann <tm@ayena.de>
Sat, 22 May 2010 11:59:58 +0000 (13:59 +0200)
committer Tobias Markmann <tm@ayena.de>
Sat, 22 May 2010 11:59:58 +0000 (13:59 +0200)
diff --git a/util/sasl/scram.lua b/util/sasl/scram.lua

index 4c5df11aa53927ef1673e9921232df863cd5e583..7b9123eebd4be2af85fe0f67b4a64590bc3999a1 100644 (file)
--- a/util/sasl/scram.lua
+++ b/util/sasl/scram.lua
@@ -162,8 +162,8 @@ local function scram_gen(hash_name, H_f, HMAC_f)
                                 return "failure", "malformed-request", "Missing an attribute(p, r or c) in SASL message.";
                         end
  
-                       if self.state.nonce ~= self.state.servernonce then
-                               return "failure", "malformed-request", "Wrong nonce in client-second-message.";
+                       if self.state.nonce ~= self.state.clientnonce..self.state.servernonce then
+                               return "failure", "malformed-request", "Wrong nonce in client-final-message.";
                         end
                         
                         local SaltedPassword = self.state.salted_password;
author	Tobias Markmann <tm@ayena.de>
	Sat, 22 May 2010 11:59:58 +0000 (13:59 +0200)
committer	Tobias Markmann <tm@ayena.de>
	Sat, 22 May 2010 11:59:58 +0000 (13:59 +0200)