| 文件 | 最后提交记录 | 最后更新时间 |
|---|---|---|
Fix code review issues The main issues are concentrated on: the strictness of CMS attributes, the PBKDF2 iteration count for enc decryption file headers, the length estimation of stream-based Base64 encoding and decoding, the length accumulation of BSL_ParamMaker, the input length accumulation of PAKE KDF, the length accumulation of SPAKE2+ transcript, the UIO handle leakage in configuration files, and the issuance policy risk of x509 -copy_extensions copyall. Multiple alerts such as PAKE register stack overflow and double-free, ElGamal output length, one-time Base64 encoding, etc., are no longer valid in the current source code. It is suspected that these are false positives caused by old code results or repeated/truncated automated reports. Cherry-picked from: https://gitcode.com/openHiTLS/openhitls/merge_requests/1394 | 1 个月前 | |
Fix code review issues The main issues are concentrated on: the strictness of CMS attributes, the PBKDF2 iteration count for enc decryption file headers, the length estimation of stream-based Base64 encoding and decoding, the length accumulation of BSL_ParamMaker, the input length accumulation of PAKE KDF, the length accumulation of SPAKE2+ transcript, the UIO handle leakage in configuration files, and the issuance policy risk of x509 -copy_extensions copyall. Multiple alerts such as PAKE register stack overflow and double-free, ElGamal output length, one-time Base64 encoding, etc., are no longer valid in the current source code. It is suspected that these are false positives caused by old code results or repeated/truncated automated reports. Cherry-picked from: https://gitcode.com/openHiTLS/openhitls/merge_requests/1394 | 1 个月前 |
| 文件 | 最后提交记录 | 最后更新时间 |
|---|---|---|
| 1 个月前 | ||
| 1 个月前 |