From 3dc4d5f5d5da7ad9074c14af8d48c8b36e03bf52 Mon Sep 17 00:00:00 2001
From: Jakub Jelen <jjelen@redhat.com>
Date: Tue, 17 Jan 2023 15:51:12 +0100
Subject: [PATCH] 1.10.0-9

Related: rhbz#2167764
---
 libgcrypt.spec | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/libgcrypt.spec b/libgcrypt.spec
index 7233096..7949727 100644
--- a/libgcrypt.spec
+++ b/libgcrypt.spec
@@ -16,7 +16,7 @@ print(string.sub(hash, 0, 16))
 
 Name: libgcrypt
 Version: 1.10.0
-Release: 8%{?dist}
+Release: 9%{?dist}
 URL: https://www.gnupg.org/
 Source0: https://www.gnupg.org/ftp/gcrypt/libgcrypt/libgcrypt-%{version}.tar.bz2
 Source1: https://www.gnupg.org/ftp/gcrypt/libgcrypt/libgcrypt-%{version}.tar.bz2.sig
@@ -219,6 +219,14 @@ mkdir -p -m 755 $RPM_BUILD_ROOT/etc/gcrypt
 %license COPYING
 
 %changelog
+* Tue Jan 24 2023 Jakub Jelen <jjelen@redhat.com> - 1.10.0-9
+- Avoid usage of invalid arguments sizes for PBKDF2 in FIPS mode
+- Do not allow large salt lengths with RSA-PSS padding
+- Disable X9.31 key generation in FIPS mode
+- Update the FIPS integrity checking code to upstream version
+- Update cipher modes FIPS indicators for AES WRAP and GCM
+- Disable jitter entropy generator
+
 * Thu Oct 20 2022 Jakub Jelen <jjelen@redhat.com> - 1.10.0-8
 - Fix unneeded PBKDF2 passphrase length limitation in FIPS mode
 - Enforce HMAC key lengths in MD API in FIPS mode