use M2 as the key for the server auth

author: Azul <azul@riseup.net> 2012-10-16 17:24:12 +0200
committer: Azul <azul@riseup.net> 2012-10-16 17:24:12 +0200
commit: d21474a0290edab1c765741d484335d83f50be75 (patch)
tree: 95390f6736f5d08fcfd9e50242f95d76e7825f43 /src
parent: aeab3e93f45d2d8882d93ec20531aafd3cd9df45 (diff)
2 files changed, 3 insertions, 2 deletions
diff --git a/src/srp.js b/src/srp.js
index b348e69..e66c2fa 100644
--- a/src/srp.js
+++ b/src/srp.js
@@ -35,7 +35,7 @@ function SRP(remote, session)
     // If an error occurs, raise it as an alert.
     function confirm_authentication(response)
     {
-      if (session.validate(response.M))
+      if (session.validate(response.M2))
         srp.success();
       else
         srp.error("Server key does not match");
diff --git a/src/srp_session.js b/src/srp_session.js
index cbb95d8..8f45a44 100644
--- a/src/srp_session.js
+++ b/src/srp_session.js
@@ -7,7 +7,8 @@ SRP.prototype.Session = function(login, password) {
   var k = new BigInteger("bf66c44a428916cad64aa7c679f3fd897ad4c375e9bbb4cbf2f5de241d618ef0", 16);
 
   var rng = new SecureRandom();
-  var a = new BigInteger(32, rng);
+//  var a = new BigInteger(32, rng);
+  var a = new BigInteger("d498c3d024ec17689b5320e33fc349a3f3f91320384155b3043fa410c90eab71", 16);
   var A = g.modPow(a, N);
   while(A.mod(N) == 0)
   {
author	Azul <azul@riseup.net>	2012-10-16 17:24:12 +0200
committer	Azul <azul@riseup.net>	2012-10-16 17:24:12 +0200
commit	d21474a0290edab1c765741d484335d83f50be75 (patch)
tree	95390f6736f5d08fcfd9e50242f95d76e7825f43 /src
parent	aeab3e93f45d2d8882d93ec20531aafd3cd9df45 (diff)