update to p5-Crypt-DSA-1.22, fixes key generation issue with previous
versions:
"Crypt::DSA::Util::makerandom forces the high bit of every value it
returns to obtain an exactly N-bit integer for prime search. The
signing nonce and the private key are drawn from makerandom. Because
the high bit is always set, the result is not uniform: its top bit is
fixed, producing insecure values."
Keys used to sign with an affected version should be considered
compromised and new keys should be generated.
iked: Wrong data structure zeroized
The parameter int mask was confused with the local variable struct
sockaddr_in mask4. bzero(3) was applied to mask instead of mask4.
ok markus@
update to poezio-0.18, this was broken at runtime previously (wouldn't
startup), it now starts but I don't know it well enough to test further.
ok kmos