auth:ntlmssp: Use generate_random_buffer() for session keys
authorAndreas Schneider <asn@samba.org>
Mon, 12 Aug 2019 17:07:15 +0000 (19:07 +0200)
committerAlexander Bokovoy <ab@samba.org>
Wed, 14 Aug 2019 16:26:47 +0000 (16:26 +0000)
Signed-off-by: Andreas Schneider <asn@samba.org>
Reviewed-by: Alexander Bokovoy <ab@samba.org>
Autobuild-User(master): Alexander Bokovoy <ab@samba.org>
Autobuild-Date(master): Wed Aug 14 16:26:47 UTC 2019 on sn-devel-184

auth/ntlmssp/ntlmssp_client.c

index b8d1190..2a80feb 100644 (file)
@@ -696,7 +696,7 @@ NTSTATUS ntlmssp_client_challenge(struct gensec_security *gensec_security,
                        .size = session_key.length,
                };
 
-               generate_secret_buffer(client_session_key, sizeof(client_session_key));
+               generate_random_buffer(client_session_key, sizeof(client_session_key));
 
                /* Encrypt the new session key with the old one */
                encrypted_session_key = data_blob_talloc(ntlmssp_state,