auth:gensec: Make sure we zero the checksum after use
authorAndreas Schneider <asn@samba.org>
Tue, 30 Oct 2018 16:08:35 +0000 (17:08 +0100)
committerJeremy Allison <jra@samba.org>
Wed, 27 Feb 2019 00:35:19 +0000 (01:35 +0100)
Signed-off-by: Andreas Schneider <asn@samba.org>
Reviewed-by: Jeremy Allison <jra@samba.org>
auth/gensec/schannel.c

index 364a0fc..441801b 100644 (file)
@@ -347,6 +347,8 @@ static NTSTATUS netsec_incoming_packet(struct schannel_state *state,
 
        netsec_do_seq_num(state, checksum, checksum_length, seq_num);
 
+       ZERO_ARRAY(checksum);
+
        ret = memcmp(seq_num, sig->data+8, 8);
        if (ret != 0) {
                dump_data_pw("calc seq num:", seq_num, 8);