From 50350b1260bd1db791dbdd281142f3b6829b306fce4368140dcdb8de13dd5cf0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ismail=20D=C3=B6nmez?= <ismail@i10z.com>
Date: Thu, 28 Sep 2017 20:06:20 +0000
Subject: [PATCH 1/2] - Update to version 1.0.14   * Internal consistency
 checks failing and primitives used with     dangerous/out-of-bounds/invalid
 parameters used to call abort(3).     Now, a custom handler that doesn't
 return can be set with the     set_sodium_misuse() function. It still aborts
 by default or if     the handler ever returns. This is not a replacement for
 non-fatal,     expected runtime errors. This handler will be only called in  
   unexpected situations due to potential bugs in the library or in    
 language bindings.   * *_MESSAGEBYTES_MAX macros (and the corresponding
 _messagebytes_max()     symbols) have been added to represent the maximum
 message size that     can be safely handled by a primitive. Language bindings
 are     encouraged to check user inputs against these maximum lengths.   *
 The test suite has been extended to cover more edge cases.   *
 crypto_sign_ed25519_pk_to_curve25519() now rejects points that     are not on
 the curve, or not in the main subgroup.   * Further changes have been made to
 ensure that smart compilers     will not optimize out code that we don't want
 to be optimized.   * The sodium_runtime_has_* symbols for CPU features
 detection are     now defined as weak symbols, i.e. they can be replaced with
 an     application-defined implementation. This can be useful to     disable
 AVX* when temperature/power consumption is a concern.   * crypto_kx_*() now
 aborts if called with no non-NULL pointers     to store keys to.   * SSE2
 implementations of crypto_verify_*() have been added.   * Passwords can be
 hashed using a specific algorithm with the new     crypto_pwhash_str_alg()
 function.   * Due to popular demand, base64 encoding (sodium_bin2base64())   
  and decoding (sodium_base642bin()) have been implemented.   * A new
 crypto_secretstream_*() API was added to safely encrypt

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libsodium?expand=0&rev=57
---
 libsodium-1.0.12.tar.gz |  3 ---
 libsodium-1.0.14.tar.gz |  3 +++
 libsodium.changes       | 51 +++++++++++++++++++++++++++++++++++++++++
 libsodium.spec          |  2 +-
 4 files changed, 55 insertions(+), 4 deletions(-)
 delete mode 100644 libsodium-1.0.12.tar.gz
 create mode 100644 libsodium-1.0.14.tar.gz

diff --git a/libsodium-1.0.12.tar.gz b/libsodium-1.0.12.tar.gz
deleted file mode 100644
index 05a5be7..0000000
--- a/libsodium-1.0.12.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:b8648f1bb3a54b0251cf4ffa4f0d76ded13977d4fa7517d988f4c902dd8e2f95
-size 1887284
diff --git a/libsodium-1.0.14.tar.gz b/libsodium-1.0.14.tar.gz
new file mode 100644
index 0000000..0dcd28f
--- /dev/null
+++ b/libsodium-1.0.14.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:3cfc84d097fdc891b40d291f2ac2c3f99f71a87e36b20cc755c6fa0e97a77ee7
+size 1876526
diff --git a/libsodium.changes b/libsodium.changes
index e2464ff..a56b439 100644
--- a/libsodium.changes
+++ b/libsodium.changes
@@ -1,3 +1,54 @@
+-------------------------------------------------------------------
+Thu Sep 28 19:54:43 UTC 2017 - idonmez@suse.com
+
+- Update to version 1.0.14
+  * Internal consistency checks failing and primitives used with
+    dangerous/out-of-bounds/invalid parameters used to call abort(3).
+    Now, a custom handler that doesn't return can be set with the
+    set_sodium_misuse() function. It still aborts by default or if
+    the handler ever returns. This is not a replacement for non-fatal,
+    expected runtime errors. This handler will be only called in
+    unexpected situations due to potential bugs in the library or in
+    language bindings.
+  * *_MESSAGEBYTES_MAX macros (and the corresponding _messagebytes_max()
+    symbols) have been added to represent the maximum message size that
+    can be safely handled by a primitive. Language bindings are
+    encouraged to check user inputs against these maximum lengths.
+  * The test suite has been extended to cover more edge cases.
+  * crypto_sign_ed25519_pk_to_curve25519() now rejects points that
+    are not on the curve, or not in the main subgroup.
+  * Further changes have been made to ensure that smart compilers
+    will not optimize out code that we don't want to be optimized.
+  * The sodium_runtime_has_* symbols for CPU features detection are
+    now defined as weak symbols, i.e. they can be replaced with an
+    application-defined implementation. This can be useful to
+    disable AVX* when temperature/power consumption is a concern.
+  * crypto_kx_*() now aborts if called with no non-NULL pointers
+    to store keys to.
+  * SSE2 implementations of crypto_verify_*() have been added.
+  * Passwords can be hashed using a specific algorithm with the new
+    crypto_pwhash_str_alg() function.
+  * Due to popular demand, base64 encoding (sodium_bin2base64())
+    and decoding (sodium_base642bin()) have been implemented.
+  * A new crypto_secretstream_*() API was added to safely encrypt
+    files and multi-part messages.
+  * The sodium_pad() and sodium_unpad() helper functions have been
+    added in order to add & remove padding.
+  * An AVX512 optimized implementation of Argon2 has been added.
+  * The crypto_pwhash_str_needs_rehash() function was added to check
+    if a password hash string matches the given parameters, or if it
+    needs an update.
+  
+  Updates from 1.0.13
+  * An AVX2 optimized implementation of the Argon2 round function was added.
+  * The Argon2id variant of Argon2 has been implemented. The high-level
+    crypto_pwhash_str_verify() function automatically detects the
+    algorithm and can verify both Argon2i and Argon2id hashed passwords.
+    The default algorithm for newly hashed passwords remains Argon2i
+    in this version to avoid breaking compatibility with verifiers
+    running libsodium <= 1.0.12.
+  * A crypto_box_curve25519xchacha20poly1305_seal*() function set was implemented.
+
 -------------------------------------------------------------------
 Mon Mar 13 09:17:43 UTC 2017 - idonmez@suse.com
 
diff --git a/libsodium.spec b/libsodium.spec
index e9ee47e..25387fb 100644
--- a/libsodium.spec
+++ b/libsodium.spec
@@ -18,7 +18,7 @@
 
 %define lname libsodium18
 Name:           libsodium
-Version:        1.0.12
+Version:        1.0.14
 Release:        0
 Summary:        Portable NaCl-based crypto library
 License:        ISC

From 62db10e4fdbc8b3d26ccfa0fbb94c2867c16e3e62f688b8fce40aed5b0730337 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ismail=20D=C3=B6nmez?= <ismail@i10z.com>
Date: Thu, 28 Sep 2017 20:39:55 +0000
Subject: [PATCH 2/2] -

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libsodium?expand=0&rev=58
---
 libsodium.spec | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/libsodium.spec b/libsodium.spec
index 25387fb..acefa1e 100644
--- a/libsodium.spec
+++ b/libsodium.spec
@@ -62,12 +62,12 @@ to compile and develop applications that use libsodium.
 
 %build
 
-%if 0%{?suse_version} > 1320
-%ifarch %{ix86} x86_64
-export CFLAGS="%{optflags} -flto"
-export LDFLAGS="-flto"
-%endif
-%endif
+#%if 0%{?suse_version} > 1320
+#%ifarch %{ix86} x86_64
+#export CFLAGS="%{optflags} -flto"
+#export LDFLAGS="-flto"
+#%endif
+#%endif
 
 %configure --disable-static
 make %{?_smp_mflags} V=1