From de080a45f1b186352fd79ba69149d2ba988777bc Mon Sep 17 00:00:00 2001
From: HimbeerserverDE <himbeerserverde@gmail.com>
Date: Sat, 18 Feb 2023 17:08:35 +0100
Subject: [PATCH] use hashed key to compute M

---
 srp/src/client.rs | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/srp/src/client.rs b/srp/src/client.rs
index dd21982..d284835 100644
--- a/srp/src/client.rs
+++ b/srp/src/client.rs
@@ -206,13 +206,17 @@ impl<'a, D: Digest> SrpClient<'a, D> {
 
         let key = self.compute_premaster_secret(&b_pub, &k, &x, &a, &u);
 
+        let mut d = D::new();
+        d.update(key.to_bytes_be());
+        let k_hashed = d.finalize();
+
         let m1 = compute_m1::<D>(
             self.params,
             username_hash.as_slice(),
             salt,
             &a_pub.to_bytes_be(),
             &b_pub.to_bytes_be(),
-            &key.to_bytes_be(),
+            k_hashed.as_slice(),
         );
 
         let m2 = compute_m2::<D>(&a_pub.to_bytes_be(), &m1, &key.to_bytes_be());
-- 
2.44.0