From 63a90a129bedc9baedc2c801fd0744346400379c Mon Sep 17 00:00:00 2001
From: Lukas Reschke <lukas@owncloud.com>
Date: Wed, 3 Sep 2014 17:46:48 +0200
Subject: Use proper RNG generator

OC_Util::generateRandomBytes() only returns lowercase alphanumeric values.
We should use the new RNG which has a broader characterset.
---
 lib/base.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'lib/base.php')

diff --git a/lib/base.php b/lib/base.php
index 1a99835040a..18331dd86aa 100644
--- a/lib/base.php
+++ b/lib/base.php
@@ -943,7 +943,7 @@ class OC {
 				if (defined("DEBUG") && DEBUG) {
 					OC_Log::write('core', 'Setting remember login to cookie', OC_Log::DEBUG);
 				}
-				$token = OC_Util::generateRandomBytes(32);
+				$token = \OC::$server->getSecureRandom()->getMediumStrengthGenerator()->generate(32);
 				OC_Preferences::setValue($userid, 'login_token', $token, time());
 				OC_User::setMagicInCookie($userid, $token);
 			} else {
-- 
cgit v1.2.3