verse: comparison util/sasl/scram.lua

-:3c732f1d990c
+:c99db5172309
 	local cbind_input = gs2_header .. cbind_data;
 	local channel_binding = "c=" .. base64(cbind_input);
 	local client_final_message_without_proof = channel_binding .. "," .. nonce;
-	local SaltedPassword  = Hi(Normalize(stream.password), salt, i);
+	local SaltedPassword;
-	local ClientKey       = HMAC(SaltedPassword, "Client Key");
+	local ClientKey;
+	local ServerKey;
+	if stream.client_key and stream.server_key then
+		ClientKey = stream.client_key;
+		ServerKey = stream.server_key;
+	else
+		if stream.salted_password then
+			SaltedPassword = stream.salted_password;
+		elseif stream.password then
+			SaltedPassword = Hi(Normalize(stream.password), salt, i);
+		end
+		ServerKey = HMAC(SaltedPassword, "Server Key");
+		ClientKey = HMAC(SaltedPassword, "Client Key");
+	end
 	local StoredKey       = H(ClientKey);
 	local AuthMessage     = client_first_message_bare .. "," ..  server_first_message .. "," ..  client_final_message_without_proof;
 	local ClientSignature = HMAC(StoredKey, AuthMessage);
 	local ClientProof     = XOR(ClientKey, ClientSignature);
-	local ServerKey       = HMAC(SaltedPassword, "Server Key");
 	local ServerSignature = HMAC(ServerKey, AuthMessage);
 	local proof = "p=" .. base64(ClientProof);
 	local client_final_message = client_final_message_without_proof .. "," .. proof;

Mercurial > verse / file comparison