Mercurial > lxmppd-hg-xmllex / changeset
changeset
mod_auth_internal_hashed: Empty hashpass after conversion to stored_key/server_key and store new authentication database.
Wed, 09 Jun 2010 17:58:20 +0200
- author
- Tobias Markmann <tm@ayena.de>
- date
- Wed, 09 Jun 2010 17:58:20 +0200
- changeset 3213
- c85bba8bd41a
- parent 3212
- e416b9185c6b
- child 3214
- a69d8021b1db
mod_auth_internal_hashed: Empty hashpass after conversion to stored_key/server_key and store new authentication database.
| plugins/mod_auth_internal_hashed.lua | file | annotate | diff | comparison | revisions |
--- a/plugins/mod_auth_internal_hashed.lua Wed Jun 09 17:55:04 2010 +0200 +++ b/plugins/mod_auth_internal_hashed.lua Wed Jun 09 17:58:20 2010 +0200 @@ -66,6 +66,8 @@ local salted_password = credentials.hashpass:gsub("..", function(x) return string.char(tonumber(x, 16)); end); credentials.stored_key = sha1(hmac_sha1(salted_password, "Client Key")):gsub(".", function (c) return ("%02x"):format(c:byte()); end); credentials.server_key = hmac_sha1(salted_password, "Server Key"):gsub(".", function (c) return ("%02x"):format(c:byte()); end); + credentials.hashpass = nil + datamanager.store(username, host, "accounts", credentials); end local valid, stored_key, server_key = getAuthenticationDatabaseSHA1(password, credentials.salt, credentials.iteration_count); @@ -146,6 +148,8 @@ local salted_password = credentials.hashpass:gsub("..", function(x) return string.char(tonumber(x, 16)); end); credentials.stored_key = sha1(hmac_sha1(salted_password, "Client Key")):gsub(".", function (c) return ("%02x"):format(c:byte()); end); credentials.server_key = hmac_sha1(salted_password, "Server Key"):gsub(".", function (c) return ("%02x"):format(c:byte()); end); + credentials.hashpass = nil + datamanager.store(username, host, "accounts", credentials); end local stored_key, server_key, iteration_count, salt = credentials.stored_key, credentials.server_key, credentials.iteration_count, credentials.salt;
