| 文件 | 最后提交记录 | 最后更新时间 |
|---|---|---|
Remove libboundscheck (securec) dependency and harden sensitive data cleansing Cherry-picked from: https://gitcode.com/openHiTLS/openhitls/merge_requests/1086 | 2 个月前 | |
fix(pki): correct self-issued certificate handling in chain building and path length verification - Distinguish self-issued (subject==issuer) from self-signed (subject==issuer + valid signature) to prevent premature chain termination - Rewrite X509_CheckExt path length verification per RFC 5280 §6.1.4 (l)(m) using a decrementing maxPathLen counter, eliminating O(n²) inner loop - Return HITLS_X509_ERR_SIGN_REPEAT instead of silent success when CRL/Cert/CSR is signed repeatedly, preventing users from mistaking a no-op for a successful re-sign Cherry-picked from: https://gitcode.com/openHiTLS/openhitls/merge_requests/1568 | 10 天前 | |
Add DTLCP-DTLS interoperability for server framework adaptation The DTLCP protocol extends DTLS with additional features for TLCP compatibility. Add test case that when a DTLCP client connects to a DTLS-configured server, the connection is established successfully and all protocol features work correctly, including message reordering, duplicate message handling, and cipher suite negotiation. Cherry-picked from: https://gitcode.com/openHiTLS/openhitls/merge_requests/1196 | 2 个月前 | |
Remove libboundscheck (securec) dependency and harden sensitive data cleansing Cherry-picked from: https://gitcode.com/openHiTLS/openhitls/merge_requests/1086 | 2 个月前 | |
refactor: remove libsctp Cherry-picked from: https://gitcode.com/openHiTLS/openhitls/merge_requests/307 | 1 年前 |