| 文件 | 最后提交记录 | 最后更新时间 |
|---|---|---|
Remove libboundscheck (securec) dependency and harden sensitive data cleansing Cherry-picked from: https://gitcode.com/openHiTLS/openhitls/merge_requests/1086 | 2 个月前 | |
Algorithm performance optimization and code refactoring. Co-authored-by: Dongjianwei001<dongjianwei1@huawei.com> # message auto-generated for no-merge-commit merge: !807 merge sync_main into main Algorithm performance optimization and code refactoring. Created-by: Dongjianwei001 Commit-by: Dongjianwei001 Merged-by: liwei3013 Description: Synchronize HiTLS code See merge request: openHiTLS/openhitls!807 | 6 个月前 | |
Remove libboundscheck (securec) dependency and harden sensitive data cleansing Cherry-picked from: https://gitcode.com/openHiTLS/openhitls/merge_requests/1086 | 2 个月前 | |
Fix code review issues The main issues are concentrated on: the strictness of CMS attributes, the PBKDF2 iteration count for enc decryption file headers, the length estimation of stream-based Base64 encoding and decoding, the length accumulation of BSL_ParamMaker, the input length accumulation of PAKE KDF, the length accumulation of SPAKE2+ transcript, the UIO handle leakage in configuration files, and the issuance policy risk of x509 -copy_extensions copyall. Multiple alerts such as PAKE register stack overflow and double-free, ElGamal output length, one-time Base64 encoding, etc., are no longer valid in the current source code. It is suspected that these are false positives caused by old code results or repeated/truncated automated reports. Cherry-picked from: https://gitcode.com/openHiTLS/openhitls/merge_requests/1394 | 1 个月前 | |
Remove libboundscheck (securec) dependency and harden sensitive data cleansing Cherry-picked from: https://gitcode.com/openHiTLS/openhitls/merge_requests/1086 | 2 个月前 | |
fix: validate session SNI terminators and fix pure-PSK premaster layout - reject decoded session hostnames that do not end with '\0' - add a dedicated session encode/decode testcase for hostname validation - add a pure-PSK premaster secret regression testcase - fix pure-PSK premaster secret pointer advancement - align SCTP peer auth check control invocation with the current callback contract Cherry-picked from: https://gitcode.com/openHiTLS/openhitls/merge_requests/1434 | 1 个月前 | |
fix:Refactor to eliminate redundant logic and reduce binary size Co-authored-by: c3dehui<chendehui8@h-partners.com> # message auto-generated for no-merge-commit merge: !1138 merge syncY into main fix:Refactor to eliminate redundant logic and reduce binary size Created-by: c3dehui Commit-by: c3dehui Merged-by: liwei3013 Description: <!-- 感谢您提交 Pull Request!以下是一些提示: 1) 如果您是第一次提交,请阅读我们的贡献者指南:https://gitcode.com/openHiTLS/openhitls/wiki/FAQ-社区需求贡献流程.md --> **此 PR 的作用 / 为什么需要它**: 同步小型化变更 **自检清单**: - [ ] **测试**:代码是否已有UT/ST测试用例覆盖,新增测试用例是否随本PR一并上库 - [ ] **接口**:是否涉及对外接口变更,变更已通过接口评审 - [ ] **文档**:是否涉及文档修改 <!-- **给审查者的特别说明**: --> <!-- + - [ ] 是否导致无法前向兼容 --> <!-- + - [ ] 是否涉及依赖的三方库变更 --> See merge request: openHiTLS/openhitls!1138 | 3 个月前 | |
fix(bsl/uio): support zero-length UDP datagrams - allow UDP UIO read to return success with readLen == 0 for valid empty datagrams - allow SAL sendto wrappers to send zero-length UDP datagrams - only record errno for sendto/recvfrom on real failures - add a UDP UIO regression testcase that sends and receives an empty datagram through SAL/UIO wrappers Cherry-picked from: https://gitcode.com/openHiTLS/openhitls/merge_requests/1444 | 1 个月前 |
| 文件 | 最后提交记录 | 最后更新时间 |
|---|---|---|
| 2 个月前 | ||
| 6 个月前 | ||
| 2 个月前 | ||
| 1 个月前 | ||
| 2 个月前 | ||
| 1 个月前 | ||
| 3 个月前 | ||
| 1 个月前 |