Revision history for Crypt::DSA::GMP

0.01  2013-10-07

    Initial release.

    Ported from Crypt::DSA with rewrite of most of the internals.

    Primary high level changes from Crypt::DSA:

       - Fixed the outstanding RTs (see below)
       - Fixes a number of other security issues
       - Don't use OpenSSL
       - Requires GMP.  Definitely does not use Pari.
       - Strong randomness on all platforms
       - Significantly faster in some areas
       - Follows FIPS 186-4, meaning increased security
       - Optional primality proving for increased security
       - Allows newer FIPS 186-4 methods if requested (SHA-2)
       - Reads RFC4716 and OpenSSH keys
       - The size of both p and q may be specified in key generation

    The following RTs were fixed:

      RT 88429 key generation issues          [fixed]
      RT 88158 primality testing              [fixed]
      RT 86424 typo fix                       [replaced with new typos]
      RT 71342 Patch to use Digest::SHA       [using Digest::SHA]
      RT 58094 3-arg open used                [we require 5.006]
      RT 49668 openssl dsaparam output ...    [no longer using openssl]
      RT 21917 openssl not found if in ...    [no longer using openssl]
      RT 19812 Warning in make test           [no longer using openssl]
      RT 19477 $key->write not writing public [use Convert::PEM 0.07]
      RT 19263 which usage broken ...         [no longer using openssl]
      RT 19184 using of which in KeyChain...  [no longer using openssl]
      RT 18768 patch for MSWin32 support      [no longer using openssl]
      RT 14281 makerandom() not portable      [using Crypt::Random::Seed]
      RT 13862 getting error                  [no longer using openssl]

      RT 71421 Systems without /dev/random... [using Crypt::Random::Seed]
      RT 21968 /dev/random depletion          [see text below]
         best randomness source (e.g. /dev/random) for private key generation
         best non-blocking source used for all other randomness
         All module tests allow non-blocking, so tests don't deplete entropy
         system rand, MT, etc will never be used on any platform

    The following RTs is not ready to close:

      RT 26926 should Convert::PEM be a full dependency?
               Absolutely not until RT 27574 is fixed (random test failures).

    The following RTs should be closed:

      RT 27144 Signature will croak during decode_base64.
               Perhaps old MIME::Base64?  This is not the current behavior.
      RT 54485 SSH2 format.  ssh-keygen writes a PEM file for private key.
      RT 72371 CPAN install missing Math::Pari.
               Crypt::DSA does not require Math::Pari.  Old other modules?