[PATCH] s4:torture/rpc/backupkey: Require 2048 bit RSA key

Arvid Requate requate at univention.de
Tue Dec 23 11:30:07 MST 2014


the attached patch extends the torture tests for the backupkey protocol (MS-
BKRP) implementation to ensure that the generated x509 certificate actually has 
an RSA key with the full 2048 bits required by the protocol (and by Windows 

This testcase accompanies the patches for the backupkey protocol 
implementation I proposed in July, which are available for review at


Feedback welcome.

On 24/11/14 10:01, Andrew Bartlett wrote:
> Indeed, the patch was proposed, but didn't get the attention of a
> suitable reviewer, and didn't have any tests to prevent regressions.
> Someone needs to take it back up and re-submit.

On 07/08/14 12:31, Arvid Requate wrote:
> Hello,
> we received positive customer feedback on the effectiveness of my recently
> posted patches for the backupkey protocol implementation in Samba.
> The patches are now available via
> http://repo.or.cz/w/Samba/reqa.git/shortlog/refs/heads/BKRP
> Feedback appreciated.
> Cheers,
> Arvid

Dr. Arvid Requate
Open Source Software Engineer

Univention GmbH
be open.
28359 Bremen
Tel. : +49 421 22232-52
Fax : +49 421 22232-99

requate at univention.de

Geschäftsführer: Peter H. Ganten
HRB 20755 Amtsgericht Bremen
Steuer-Nr.: 71-597-02876
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-s4-torture-rpc-backupkey-Require-2048-bit-RSA-key.patch
Type: text/x-patch
Size: 3001 bytes
Desc: not available
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20141223/fb7040e8/attachment.bin>

More information about the samba-technical mailing list