CVE-2020-1472(ZeroLogon): s3:rpc_server:netlogon: make use of netlogon_creds_random_c...

author Stefan Metzmacher <metze@samba.org>

Wed, 16 Sep 2020 14:10:53 +0000 (16:10 +0200)

committer Karolin Seeger <kseeger@samba.org>

Fri, 18 Sep 2020 10:45:37 +0000 (12:45 +0200)
author Stefan Metzmacher <metze@samba.org>
Wed, 16 Sep 2020 14:10:53 +0000 (16:10 +0200)
committer Karolin Seeger <kseeger@samba.org>
Fri, 18 Sep 2020 10:45:37 +0000 (12:45 +0200)
diff --git a/source3/rpc_server/netlogon/srv_netlog_nt.c b/source3/rpc_server/netlogon/srv_netlog_nt.c

index c9aaa90cbb9fbac97929ad6e66d07cf4b5ea2d75..3894eecd7ae874631639893bb19221d8c3df40ce 100644 (file)
--- a/source3/rpc_server/netlogon/srv_netlog_nt.c
+++ b/source3/rpc_server/netlogon/srv_netlog_nt.c
@@ -839,8 +839,7 @@ NTSTATUS _netr_ServerReqChallenge(struct pipes_struct *p,
  
         pipe_state->client_challenge = *r->in.credentials;
  
-       generate_random_buffer(pipe_state->server_challenge.data,
-                              sizeof(pipe_state->server_challenge.data));
+       netlogon_creds_random_challenge(&pipe_state->server_challenge);
  
         *r->out.return_credentials = pipe_state->server_challenge;
author	Stefan Metzmacher <metze@samba.org>
	Wed, 16 Sep 2020 14:10:53 +0000 (16:10 +0200)
committer	Karolin Seeger <kseeger@samba.org>
	Fri, 18 Sep 2020 10:45:37 +0000 (12:45 +0200)