Changes for version 1.22 - 2026-07-03

  • This module is deprecated as of 1.20. Crypt-DSA-GMP is a possible replacement.
  • Hardening: Use a fresh, independent CSPRNG witness every round
  • Security fix: Fixes CVE-2026-14570 modulo bias in key generation. An attack with hundreds of signatures could lead to full private-key compromise. Keys should be considered compromised and new keys should be generated.

Documentation

Modules

DSA Signatures and Key Generation
DSA key
Read/write DSA PEM files
Read/write DSA SSH2 files
DSA key generation system
DSA signature object
DSA Utility functions

Provides

in lib/Crypt/DSA/Key/SSH2.pm