lxmppd-hg-xmllex: comparison util/sasl/plain.lua

-:83823ba8de40
+:ff881b857c98
 local saslprep = require "util.encodings".stringprep.saslprep;
 local log = require "util.logger".init("sasl");
 module "plain"
---=========================
+-- ================================
---SASL PLAIN according to RFC 4616
+-- SASL PLAIN according to RFC 4616
 local function plain(self, message)
-	local response = message
+	if not message then
-	local authorization, authentication, password;
-	if response then
-		authorization = s_match(response, "([^%z]+)")
-		authentication = s_match(response, "%z([^%z]+)%z")
-		password = s_match(response, "%z[^%z]+%z([^%z]+)")
-	end
-	if authentication == nil or password == nil then
 		return "failure", "malformed-request";
 	end
+	local authorization, authentication, password = s_match(message, "^([^%z]+)%z([^%z]+)%z([^%z]+)");
+	if not authorization then
+		return "failure", "malformed-request";
+	end
 	-- SASLprep password and authentication
 	authentication = saslprep(authentication);
 	password = saslprep(password);
 	if (not password) or (password == "") or (not authentication) or (authentication == "") then
 		log("debug", "Username or password violates SASLprep.");
 		return "failure", "malformed-request", "Invalid username or password.";
 	end

Mercurial > lxmppd-hg-xmllex / file comparison