04.12.2020 16:20, Mark Rotteveel wrote:
After closer inspection, I found the issue. The SHA-1 hash of DAVIDS is
00AD377F8297F04FD83DFDBF48AABF316850862F. Seeing that leading zero, I guessed that might
be part of the problem. After stripping the leading zero from the user hash in Jaybird,
the authentication succeeds.
The roundtrip from hash bytes to BigInteger back to bytes as hash input (in
RemotePassword::clientProof (srp.cpp) and makeProof (srp.h)), probably strips any leading
zero byte(s).
So the question now is whether it is a bug in Firebird Srp implementation or Jaybird
one. I would say the former.
--
WBR, SD.
Firebird-Devel mailing list, web interface at
https://lists.sourceforge.net/lists/listinfo/firebird-devel
