Star1114
685
代码
代码
Issues54
Pull Requests93
流水线
讨论
Wiki
分析
Star1114
685
Lliwei3013fix(bsl/pem): replace strstr with length-bounded PemMemStr to prevent OOB reads
2415d17e创建于 5月7日历史提交
文件最后提交记录最后更新时间
bsl_pem_internal.h
fix(bsl/pem): replace strstr with length-bounded PemMemStr to prevent OOB reads When input is raw binary (DER-encoded cert/key) without '\0' terminator, strstr may read out of bounds. Replace all strstr calls with PemMemStr which searches within encodeLen using memchr+memcmp. Add SDV tests for binary input, truncated PEM, and real cert/key file round-trips. Cherry-picked from: https://gitcode.com/openHiTLS/openhitls/merge_requests/1320
1 个月前