Revision history for Crypt::DSA::GMP 0.02 2013-10-08 Turn off indexing for an internal helper package 0.01 2013-10-07 Initial release. Ported from Crypt::DSA with rewrite of most of the internals. Primary high level changes from Crypt::DSA: - Fixed the outstanding RTs (see below) - Fixes a number of other security issues - Don't use OpenSSL - Requires GMP. Definitely does not use Pari. - Strong randomness on all platforms - Significantly faster in some areas - Follows FIPS 186-4, meaning increased security - Optional primality proving for increased security - Allows newer FIPS 186-4 methods if requested (SHA-2) - Reads RFC4716 and OpenSSH keys - The size of both p and q may be specified in key generation The following RTs were fixed: RT 88429 key generation issues [fixed] RT 88158 primality testing [fixed] RT 86424 typo fix [replaced with new typos] RT 71342 Patch to use Digest::SHA [using Digest::SHA] RT 58094 3-arg open used [we require 5.006] RT 49668 openssl dsaparam output ... [no longer using openssl] RT 21917 openssl not found if in ... [no longer using openssl] RT 19812 Warning in make test [no longer using openssl] RT 19477 $key->write not writing public [use Convert::PEM 0.07] RT 19263 which usage broken ... [no longer using openssl] RT 19184 using of which in KeyChain... [no longer using openssl] RT 18768 patch for MSWin32 support [no longer using openssl] RT 14281 makerandom() not portable [using Crypt::Random::Seed] RT 13862 getting error [no longer using openssl] RT 71421 Systems without /dev/random... [using Crypt::Random::Seed] RT 21968 /dev/random depletion [see text below] best randomness source (e.g. /dev/random) for private key generation best non-blocking source used for all other randomness All module tests allow non-blocking, so tests don't deplete entropy system rand, MT, etc will never be used on any platform The following RTs is not ready to close: RT 26926 should Convert::PEM be a full dependency? Absolutely not until RT 27574 is fixed (random test failures). The following RTs should be closed: RT 27144 Signature will croak during decode_base64. Perhaps old MIME::Base64? This is not the current behavior. RT 54485 SSH2 format. ssh-keygen writes a PEM file for private key. RT 72371 CPAN install missing Math::Pari. Crypt::DSA does not require Math::Pari. Old other modules?