aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorTobias Markmann <tm@ayena.de>2010-05-22 13:59:58 +0200
committerTobias Markmann <tm@ayena.de>2010-05-22 13:59:58 +0200
commit1f64550d6c9be4511288bb72d2ebc88223918dd6 (patch)
treee3e49393d3c49f3c7eb480586e069b63882c49f0
parenta69a0446406c8b2b76aefce317e1c1820e55e4f8 (diff)
downloadprosody-1f64550d6c9be4511288bb72d2ebc88223918dd6.tar.gz
prosody-1f64550d6c9be4511288bb72d2ebc88223918dd6.zip
util.sasl.scram: Fix in nonce check of client-final-message.
-rw-r--r--util/sasl/scram.lua4
1 files changed, 2 insertions, 2 deletions
diff --git a/util/sasl/scram.lua b/util/sasl/scram.lua
index 4c5df11a..7b9123ee 100644
--- a/util/sasl/scram.lua
+++ b/util/sasl/scram.lua
@@ -162,8 +162,8 @@ local function scram_gen(hash_name, H_f, HMAC_f)
return "failure", "malformed-request", "Missing an attribute(p, r or c) in SASL message.";
end
- if self.state.nonce ~= self.state.servernonce then
- return "failure", "malformed-request", "Wrong nonce in client-second-message.";
+ if self.state.nonce ~= self.state.clientnonce..self.state.servernonce then
+ return "failure", "malformed-request", "Wrong nonce in client-final-message.";
end
local SaltedPassword = self.state.salted_password;