Values seem to be incorrect compared with other libraries #24
Description
I've tested this library on it's own as per the docs and can see that it will correctly verify the client as expected. However, I've tried passing values between this and other SRP libraries and the values seem not to verify (while they would when passing between the other libraires alone).
This includes:
- using
jsrpas the client andsecure-remote-passwordas the sever (and vice versa) - using Ruby's
sirpas the sever andsecure-remote-passwordas the client - using Ruby's
sirpas the sever andjsrpas the client
I've found that while sirp and jsrp will happily communicate and verify against each other, secure-remote-password will not verify client values from jsrp configured in 2048 mode and sirp on the server will not verify client values from secure-remote-password. I've yet to get secure-remote-password to successfully work with another library.
After much digging, the only thing I can find that might be causing the issue is that the k values being used are different. I compared all the hex values form both calculations of a B value (secure-remote-password's const B = k.multiply(v).add(g.modPow(b, N)).mod(N) and jsrp's this.k().multiply(v).add(this.params.g.modPow(b, this.params.N)).mod(this.params.N) and all hex values were identical expect the k value.
It's strange because the calculations seem to be the same:
secure-remote: exports.k = sha256(exports.N, exports.g)
vs
Both use the same values for N and g. The only difference seems to be that jsrp will pad the g value to the same length as the N value in the hash.
k value from jsrp:
5b9e8ef059c6b32ea59fc1d322d37f04aa30bae5aa9003b8321e21ddb04e300
k value from srp-js (a fork of node-srp by mozilla):
5b9e8ef059c6b32ea59fc1d322d37f04aa30bae5aa9003b8321e21ddb04e300
k value from secure-remote-password:
4cba3fb2923e01fb263ddbbb185a01c131c638f2561942e437727e02ca3c266d