CVE-2020-1472(ZeroLogon): s3:rpc_server:netlogon: make use of netlogon_creds_random_c...

author Stefan Metzmacher <metze@samba.org>

Wed, 16 Sep 2020 14:10:53 +0000 (16:10 +0200)

committer Karolin Seeger <kseeger@samba.org>

Fri, 18 Sep 2020 10:58:23 +0000 (12:58 +0200)
author Stefan Metzmacher <metze@samba.org>
Wed, 16 Sep 2020 14:10:53 +0000 (16:10 +0200)
committer Karolin Seeger <kseeger@samba.org>
Fri, 18 Sep 2020 10:58:23 +0000 (12:58 +0200)
diff --git a/source3/rpc_server/netlogon/srv_netlog_nt.c b/source3/rpc_server/netlogon/srv_netlog_nt.c

index d799ba4feefa656f164b6f76261d1e97b110df49..61169fff17bc61c446f42597d2cccfde746de3b5 100644 (file)
--- a/source3/rpc_server/netlogon/srv_netlog_nt.c
+++ b/source3/rpc_server/netlogon/srv_netlog_nt.c
@@ -840,8 +840,7 @@ NTSTATUS _netr_ServerReqChallenge(struct pipes_struct *p,
  
         pipe_state->client_challenge = *r->in.credentials;
  
-       generate_random_buffer(pipe_state->server_challenge.data,
-                              sizeof(pipe_state->server_challenge.data));
+       netlogon_creds_random_challenge(&pipe_state->server_challenge);
  
         *r->out.return_credentials = pipe_state->server_challenge;
author	Stefan Metzmacher <metze@samba.org>
	Wed, 16 Sep 2020 14:10:53 +0000 (16:10 +0200)
committer	Karolin Seeger <kseeger@samba.org>
	Fri, 18 Sep 2020 10:58:23 +0000 (12:58 +0200)