util.sasl.scram: Fix in nonce check of client-final-message.
--- a/util/sasl/scram.lua Sat May 22 13:58:15 2010 +0200
+++ b/util/sasl/scram.lua Sat May 22 13:59:58 2010 +0200
@@ -162,8 +162,8 @@
return "failure", "malformed-request", "Missing an attribute(p, r or c) in SASL message.";
end
- if self.state.nonce ~= self.state.servernonce then
- return "failure", "malformed-request", "Wrong nonce in client-second-message.";
+ if self.state.nonce ~= self.state.clientnonce..self.state.servernonce then
+ return "failure", "malformed-request", "Wrong nonce in client-final-message.";
end
local SaltedPassword = self.state.salted_password;