[net-dns-users] Net::DNS::SEC 0.22 released

Willem Toorop willem at nlnetlabs.nl
Wed Feb 11 14:31:11 UTC 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Dear users of Net::DNS::SEC,

We have a new Net::DNS::SEC release: 0.22.

This release introduces the following new features and improvements:

* RRSIG::siginception and RRSIG::siginception in time values

	RRSIG::siginception and RRSIG::siginception now return, besides
	the format date in string context like before, the date as
	seconds since epoch in numeric context.

* ECDSA and GOST signature creation and verification

	The optional Crypt::OpenSSL::EC, Crypt::OpenSSL::ECDSA and
	Digest::GOST need to be available to enable this feature.

* Version requirements detection for optional modules

	Besides the optional modules just mentioned,
	Crypt::OpenSSL::Random is an optional module which enables
	private key generation and Digest::BubbleBabble enables
	Net::DNS::RR::DS::babble

Besides these features, architectural modifications have been made to
loosen the Net::DNS::RR::* classes from the Net::DNS::SEC package, so
that they can be added to the regular Net::DNS in the future, although
without cryptographic operations.

To this end, all cryptographic operations are now concentrated in their
own modules Net::DNS::SEC::RSA, Net::DNS::SEC::DSA, Net::DNS::SEC::ECDSA
and Net::DNS::SEC::ECCGOST.

An affected module of this rework is Net::DNS::SEC::Private. This module
previously performed cryptographic operations with the generate_rsa,
new_rsa_priv and dump_rsa_* methods.

The generate_rsa and new_rsa_priv methods are still available as before,
but the dump_rsa_* methods are now available only if the generate_rsa or
new_rsa_priv function were used to create the Net::DNS::SEC::Private
object. This is different from previous behaviour (i.e. not backwards
compatible).


link 	https://www.net-dns.org/download/Net-DNS-SEC-0.22.tar.gz
sha1 	29bdb3191f7115f08feae54938e24a9a9ff2b71d
asc 	https://www.net-dns.org/download/Net-DNS-SEC-0.22.tar.gz.asc

Changes
=======
   Fix: rt.cpan.org #101184
   make siginception and sigexpiration available as time() values

   Fix: rt.cpan.org #101183
   wrong URL for blog in README

   Fix: rt.cpan.org #83031
   [RRSIG] lack of ECDSA support

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=SJCx
-----END PGP SIGNATURE-----



More information about the net-dns-users mailing list