File: Changes

package info (click to toggle)
libcrypt-openssl-rsa-perl 0.35-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid, trixie
  • size: 244 kB
  • sloc: perl: 49; makefile: 3
file content (220 lines) | stat: -rw-r--r-- 8,606 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
 
Revision history for Perl extension Crypt::OpenSSL::RSA.

0.35 May 7 2025
    - Disable PKCS#1 v1.5 padding. It's not practical to mitigate marvin attacks so we will instead disable this and require alternatives to address the issue.
      - Resolves #42 - CVE-2024-2467.

0.34 May 5 2025
    - Production release.

0.34_03 May 4 2025
    - Fix bug in rsa_crypt. Need to pass NULL

0.34_02 May 4 2025
    - t/rsa.t needs to tolerate sha1 being disabled on rhel.

0.34_01 May 3 2025
    - docs - plaintext = decrypt(cyphertext)
    - #44 - Fix issue when libz is not linked on AIX
    - #50 - Correct openssl version may not be found
    - #52 - Out of memory on openssl 1.1.1w hpux
    - #47 - Update FSF address and LGPL name in LICENSE
    - #55 - stop using AutoLoader
    - #48 - Whirlpool is missing the header
    - Move github repo to cpan-authors
    - Fully support openSSL 3.x API

0.33 July 7 2022
    - Update for windows github CI
    - Remove duplicit 'LICENSE' key
    - Remove EUMM Remove version check
    - #31 by removing reference to RSA_SSLV23_PADDING (removed from OpenSSL starting from v3.0.0)
    - support passphase protected private key load
    - fix 'unsupported encryption' error on old library versions
    - Clarify croak message for missing passphrase on older cyphers
    - More structs opaqued in LibreSSL 3.5
    - Use a macro for dealing with older SSL lacking macros
    - more CI fixups. Drop testing for 5.10 and 5.8. Something is broken upstream.

0.32 Wed Sep 8 2021
    - Prefix internal bn2sv function so it doesn't collide with Net::SSLeay
    - Ensure that verify() leaves openssl error stack clean on failure
    - Fixed broken SEE ALSO links.
    - prevent outer $SIG{__DIE__} handler from being called during optional require.
    - omit done_testing since it does not work for older perl versions

0.31 Mon Sep 24 2018
    - Remove default of SHA256 for RSA keys. This has caused significant
      problems with downstream modules and it has always been possible to
      do $key->use_sha256_hash()

0.30 Tue May 1 2018
    - Working windows library detection
    - Actively testing on appveyor for windows now.
    - work correctly on LibreSSL

0.29_03  Mon Apr 16 2018
    - Add whirlpool hash support.
    - Crypt::OpenSSL::Random is now required at comnpile-time.
    - Use the new interface to RSA_generate_key if available
    - Add library paths to LIBS from Crypt::OpenSSL::Guess

0.29_02  Sun Apr 15 2018
    - Add missing require of Config::OpenSSL::Guess

0.29_01  Fri Apr 13 2018
    - Adapt to OpenSSL 1.1.0 (dur-randir)
    - Move issue tracker to github.
    - Modernization as in Crypt::OpenSSL::Random.
    - better MSWin32 hints, fixes MSVC libraries,
    - more meta tests,
    - prefer hash mode NID_sha256 over NID_sha1 for sign

0.28  Thu Aug 25 2011 - Moritz Onken (PERLER)
    - RT 56454 - Win32 compatibility patch (kmx@cpan.org)

0.27  Wed Jun 29 2011 - Todd Rinaldo (TODDR)
    - RT 65947 - Fix RSA.pm break with perl 5.14+

0.26  Sun Nov 22 2009 11:01:13
    - Change subclassing test to generate a 512 bit key in order to work
          around an odd issue seen on some 64-bit redhat systems. (CPAN bug 45498)

0.25  Sun May 20 2007 12:56:11
    - Add a LICENSE file.
    - Fix a bug (reported by many) in rsa.t - we were incorrectly counting
      the number of tests in situations where use_sha512_hash was
      not available.

0.24  Mon Nov 13 2006 08:21:14
    - Fix a bug reported by Mark Martinec <Mark.Martinec@ijs.si>
      where encrypt could segfault if called with insufficient
      data; it now informatively croaks instead.
    - Fix a bug reported by Mark Martinec where check_key would
      segfault instead of croaking when called on a public key.
    - Fix decrypt and private_encrypt to croak instead of segfault when
      called on a public key.
    - Add an is_private method.
    - Silence a few compiler warnings about ignoring return values
      from certain BIO_* methods.

0.23  Wed Apr 12 2006 00:06:10
    - Provide 32 bytes of seeding in tests, up from 19.
    - Stop relying on implicit includes, which disappeared in the 0.98
      release of OpenSSL.
    - Apply patch from Jim Radford <radford@blackbean.org> to add support
      for SHA{224,256,384,512}

0.22  Mon Nov 15 2005 21:13:20
    - Add public_decrypt, private_encrypt methods, contributed
      by Paul G. Weiss <paul@weiss.name>
    - Some changes to help builds on Redhat9
    - Remove deprecated methods:
      * the no-arg new constructor - use new_from_public_key,
    new_from_private_key or Crypt::OpenSSL::RSA->generate_key instead
      * load_public_key - use new_from_public_key
      * load_private_key - use new_from_private_key
      * generate_key as an instance method - use it as a class constructor
    method instead.
      * set_padding_mode - use use_no_padding, use_pkcs1_padding,
    use_pkcs1_oaep_padding, or use_sslv23_padding instead.
      * get_padding_mode
    - Eliminate all(most all) memory leaks.
    - fix email address
    - Stop returning true from methods just to indicate success.
    - Change default public exponent from 65535 to 65537


0.21  Sun Feb 15 2004 21:13:45
    - Include t/format.t in the MANIFEST file, so that it is
      actually included in the distribution.

0.20  Sun Feb 15 2004 15:21:40
    - Finally add support for the public key format produced by
      "openssl rsa -pubout".
    - Add comment in readme about locating kerberos files on redhat systems

0.19  Sun Apr 27 2003 18:33:48
    - Revert back to old declaration style so that we no longer
      break under perl 5.005 (spotted by Rob Brown <bbb@cpan.org>).
    - Add some needed use statements in legacy.t and rsa.t (patch
      submitted by Rob Brown).
    - Fix typo in docs spotted by Daniel Drown <dan@drown.org>
    - Update copyright dates.

0.18  Sun Feb 23 2003 20:44:35
    - Add two new methods, new_key_from_parameters and
      get_key_parameters, which, working with
      Crypt::OpenSSL::Bignum, allow working directly with the
      paramaters of an rsa key.

0.17  Mon Jan 06 2003 22:43:31
    - Workaround for gcc 3.2 compile problems:
      "/usr/include/openssl/des.h:193: parse error before '&' token"
      (Patch by Rob Brown <bbb@cpan.org>)
    - Deprecate no-arg constructor, load_*_key methods and the
      instance method generate_key; switch to three constructors:
      new_public_key, new_private_key and generate_key (as a class
      method)
    - Deprecate set_padding_mode method; replace with
      use_xxx_padding.
    - move tests into t directory, use Test as a framework

0.16  Tue Jun 11 22:01:45
    - Fix bug reported by Rob McMillin <rlm@pricegrabber.com> which
      prevented subclassing.

0.15  Fri Jun 07 09:13:12
    - Fix two bugs reported by Gordon Lack <gml4410@ggr.co.uk>: use
      IV, not I32, for pointers, and cast the right-hand, not
      left-hand, value when doing an assignment from an SV to an HV

0.14  Sun May 19 12:35:21
    - Fix bug reported by Charles Jardine <cj10@cam.ac.uk>: use
      Safefree, not free, to release memory allocated by New

0.13  Thu Mar 21 00:10:30
    - Incorporating patch from Matthias Bauer
      <bauerm@immd1.informatik.uni-erlangen.de>, which provides
      signing and verification, as well as uses OpenSSL's internal
      error reporting system.  This patch also fixes a bug with the
      RSA_NO_PADDING_MODE.  Thanks, Matthias!
    - Deprecate set_padding_mode in favor of use_xxx_padding.
    - Rather than returning true on success, false on failure, just
      croak when there are problems.
    - Plug memory leaks.
    - Fix my email address (it's cpan.org, not cpan.com)

0.12  Thu Sep 06 22:44:17
    - Fixing bug with Crypt::OpenSSL::Random interoperability
    - Implementing patch from Thomas Linden <scip@daemon.de>
      fixing a keysize bug
    - Fixing email address in docs.

0.11  Tue Apr 10 22:45:31
    - Fixing bug in test.pl.

0.10  Mon Apr 09 18:25:41
    - Moving random routines into Crypt::OpenSSL::Random
    - Use New instead of malloc

0.09  Mon Apr 02 12:27:10
    - Typo fix, and always exercise test random_seed in testing.

0.08  Sun Apr 01 23:04:31
    - Changing method names to match convention

0.07  Thu Mar 08 3:31:41 2001
    - Allow seeding of the PRNG

0.06  Thu Mar 08 12:40:04 2001
    - Adding a readme file.

0.05  Mon Feb 26 10:50:43 2001
    - Removing signing and verification, due to bizarre bugs

0.04  Fri Feb 23 10:41:33 2001
    - Removing Base64 functionality and dependence

0.01  Wed Feb 14 11:21:42 2001
    - original version; created by h2xs 1.19