Fix misuse of signed ints in the HAVEGE module Update havege.h to the new version in the crypto module. This is technically an API break, since the type mbedtls_havege_state is exposed in a public header. However normal applications should not be affected. There is no ABI break on platforms where uint32_t and int are treated identically, which is virtually all of them. Fix #2598

commit: f3820e36f7431ffc6bf63b2848707d27ff7f00cd [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Fri Jun 07 16:42:35 2019 +0200
committer: Gilles Peskine <Gilles.Peskine@arm.com> Fri Jun 14 19:26:55 2019 +0200
tree: ad710b8f257887d8eb84c6e1aec4412e46265f56
parent: a3daa21d8c962a97d63d263362a5c6cc125ce8d4 [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index bf835b6..189fd92 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -58,11 +58,13 @@
    * Set the next sequence of the subject_alt_name to NULL when deleting
      sequence on failure. Found and fix suggested by Philippe Antoine.
      Credit to OSS-Fuzz.
+   * Fix misuse of signed arithmetic in the HAVEGE module. #2598
 
 API Changes
    * Extend the MBEDTLS_SSL_EXPORT_KEYS to export the handshake randbytes,
      and the used tls-prf.
    * Add public API for tls-prf function, according to requested enum.
+   * The HAVEGE state type now uses uint32_t elements instead of int.
 
 Changes
    * Server's RSA certificate in certs.c was SHA-1 signed. In the default
commit	f3820e36f7431ffc6bf63b2848707d27ff7f00cd	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Fri Jun 07 16:42:35 2019 +0200
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Fri Jun 14 19:26:55 2019 +0200
tree	ad710b8f257887d8eb84c6e1aec4412e46265f56
parent	a3daa21d8c962a97d63d263362a5c6cc125ce8d4 [diff] [blame]