Fixed PAP password encryption

[darrenstarr]

The PAP password encryption wasn't RFC2865 compliant.

The RFC says : b1 = MD5(S + RA) c(1) = p1 xor b1 b2 = MD5(S + c(1)) c(2) = p2 xor b2

What was implemented looked nothing like that.

[edysli]

@darrenstarr Can you provide a unit test for that fix? I've glanced at RFC 2865 but couldn't find any test vectors for that encryption algorithm.