23 Mar 07:44

Ousret

ef39b41

Version 1.7.0 Latest

Latest

1.7.0 (2026-03-23)

Added

Encrypted Hello (ECH) support based on RFC 9849 specifications.
We do not support ECH for the server-side. Only intended for client-side usage.

Changed

Updated aws-lc-rs v1.16.0 to v1.16.2 (aws-lc-sys/aws-lc relicensed to Apache-2.0)
Updated lsqpack implementation v2.6.1 (e33719e) to v2.6.2 (1e9c5b8) via ls-qpack-rs v0.3.0.

Fixed

True GREASE following RFC 8701.

Security

Fixed AWS-LC X.509 Name Constraints Bypass via Wildcard/Unicode CN (GHSA-394x-vwmw-crm3)
Fixed CRL Distribution Point Scope Check Logic Error in AWS-LC (GHSA-9f94-5g5w-gf6r)

Misc

Release the GIL during qpack encode and decode operations.

Assets 117

multiple.intoto.jsonl

sha256:ed5de9284d7433d5aa74cccf6bf7db90ffed7bf6ca61622c7da43776a6e37a78

44.3 KB 2026-03-23T08:07:02Z
qh3-1.7.0-cp313-cp313t-macosx_10_12_x86_64.macosx_11_0_arm64.macosx_10_12_universal2.whl

sha256:6d9f6c8b62a27283289d99a4ec5dbb23965bab693ca1af0e969085b151a85b5f

3.98 MB 2026-03-23T08:11:24Z
qh3-1.7.0-cp313-cp313t-manylinux_2_17_aarch64.manylinux2014_aarch64.whl

sha256:36cf9fd0a2bb16442580bd19e165a7fdd36eb0d5e4122dcb31e419f4735a01ae

1.93 MB 2026-03-23T08:11:24Z
qh3-1.7.0-cp313-cp313t-manylinux_2_17_armv7l.manylinux2014_armv7l.whl

sha256:116b354ce347807fe758787f80a5f49f72ccf358dfc06965a498b797e9f31a5a

1.66 MB 2026-03-23T08:11:24Z
qh3-1.7.0-cp313-cp313t-manylinux_2_17_i686.manylinux2014_i686.whl

sha256:671c06ffb50f4fbcad99eb28c8b5464600b1e34e6b0b64b30754a5a20a17a3b0

1.82 MB 2026-03-23T08:11:24Z
qh3-1.7.0-cp313-cp313t-manylinux_2_17_ppc64.manylinux2014_ppc64.whl

sha256:2b4e3088e9e6254fe42b191c320e39d2e6beb1ae175fa16fa713e93ecc6ff2ce

1.8 MB 2026-03-23T08:11:24Z
qh3-1.7.0-cp313-cp313t-manylinux_2_17_ppc64le.manylinux2014_ppc64le.whl

sha256:15d4e84b1c8d448b4ec1cf5b0be42570afaa278f2f7e2681cb03d5f7ef76df5d

1.8 MB 2026-03-23T08:11:24Z
qh3-1.7.0-cp313-cp313t-manylinux_2_17_s390x.manylinux2014_s390x.whl

sha256:b5f737758fcb0b211072cf66ce94400a7bb2335579a05c4dbd2c90b1d51e74d7

1.87 MB 2026-03-23T08:11:24Z
qh3-1.7.0-cp313-cp313t-manylinux_2_17_x86_64.manylinux2014_x86_64.whl

sha256:22536bc8705dd29271b1a834bf6f4f494fa69251f6376811a605473dcb7a5640

2.14 MB 2026-03-23T08:11:24Z
qh3-1.7.0-cp313-cp313t-manylinux_2_39_riscv64.whl

sha256:2f5c0522cefab7a5a670abe232a42a3f657f1f4a5a8d4a312a3472df62901c41

1.81 MB 2026-03-23T08:11:25Z
Source code (zip)

2026-03-23T07:43:05Z
Source code (tar.gz)

2026-03-23T07:43:05Z

01 Mar 08:58

Ousret

v1.6.0

9e3fb86

Version 1.6.0

1.6.0 (2026-03-01)

Added

Client side MTU discovery to probe for max datagram size.
Setting UDP datagram size at configuration level. (#69)
SBOM artifact (cyclonedx) for the Rust side is now generated and integrated into the pre-built wheel.

Changed

Updated aws-lc-rs v1.14.0 to v1.16.0
Minor performance improvement in hot code paths.
Remove default Reno congestion algorithm in favor to the Cubic implementation (RFC 9438).

Assets 117

09 Nov 04:43

Ousret

v1.5.6

24d1bd3

Version 1.5.6

1.5.6 (2025-11-09)

Fixed

backport (aiortc#604) avoid assertion error when receiving multiple STOP_SENDING.
backport (aiortc#603) limit the number of remote path challenges stored per path.
backport (aiortc#606) update PATH_CHALLENGE / PATH_RESPONSE state after sending.
backport (aiortc#606) send PATH_CHALLENGE before other frame types.
backport (aiortc#590) remove stream objects when stream is ended.

Changed

Various minor performance improvements in our Rust code.

Misc

OCSP internals improved for better reliability (niquests usage only).

Assets 115

05 Oct 05:04

Ousret

v1.5.5

898efc7

Version 1.5.5

1.5.5 (2025-10-05)

Changed

Upgraded aws-lc-rs to v1.14.0
Upgraded rustls to v0.23.32
Upgraded pyo3 to v0.26.0

Added

Explicit support for Python 3.14

Misc

Initial support for pre-built RISCV wheels

Assets 115

11 Aug 06:22

Ousret

v1.5.4

63fd7c9

Version 1.5.4

1.5.4 (2025-08-11)

Changed

Upgraded aws-lc-rs to v1.13.3
Upgraded rustls to v0.23.31

Misc

OCSP and CRL related helpers improved. This is not useful for end users of qh3.

Assets 98

16 Jun 03:08

Ousret

v1.5.3

3a9ec25

Version 1.5.3

1.5.3 (2025-06-16)

Removed

The caextra recently added in the Configuration is reverted. After much consideration this was a mistake.
End-users are already pushing either willingly or by accident intermediate CA or even non TLS client auth or server
auth certificate in the regular CA bundle. We had to find another way.

Changed

Caching the trust store loading in-memory to avoid unnecessary overhead on each TLS handshake.
Upgraded pyo3 to 0.25.1

Fixed

Aligned our TLS certificate chain validation with CPython+OpenSSL default behaviors. Pushing intermediates CA
in the main CA bundle will still require that the trust anchors (root ca) is present.

Misc

Changed CRL helpers and add the validation layer (signature).
Added the validation layer to OCSP response (signature).

Assets 98

01 Jun 18:06

Ousret

v1.5.2

b3ccc90

Version 1.5.2

1.5.2 (2025-06-01)

Added

Passing extra intermediates CA in the configuration so that we could discretely rebuild the chain before validation.
This is most useful in a corporate environment where server may misbehave and miss sending the full chain in the TLS handshake.
The list of intermediate may be available in the OS trust store. It is not fetched automatically, you will have to provide
them in the configuration. See the caextra property.

Fixed

Default CA root list loading when none are given.

Changed

Upgraded aws-lc-rs to 1.13.1
Upgraded rustls to 0.23.27
Upgraded pyo3 to 0.25.0

Misc

Added CRL helpers.

Assets 98

02 May 06:17

Ousret

v1.5.1

dfe99a8

Version 1.5.1

1.5.1 (2025-05-02)

Fixed

Parsing of SEC1/PKCS8 EC Private Key. #73

Assets 98

20 Apr 18:45

Ousret

v1.5.0

4859b8f

Version 1.5.0

1.5.0 (2025-04-20)

Misc

General performance improvements in various parts of the code. Up to 5% faster (against 1.4.5).

Changed

GIL is now released during AEAD encryption/decryption.

Added

OCSP stapling support for the client.

Assets 98

17 Apr 05:53

Ousret

v1.4.5

cd7ae95

Version 1.4.5

1.4.5 (2025-04-17)

Misc

General performance improvements in various parts of the code. Up to 15% faster (against 1.4.4).

Fixed

unclosed StreamWriter warning in our asyncio Protocol implementation.

Removed

submodule qh3.buffer as well as qh3._crypto. Those were not supposed to be used externally anyway.

Assets 98

Releases: jawah/qh3

Version 1.7.0

1.7.0 (2026-03-23)

Uh oh!

Version 1.6.0

1.6.0 (2026-03-01)

Uh oh!

Version 1.5.6

1.5.6 (2025-11-09)

Uh oh!

Version 1.5.5

1.5.5 (2025-10-05)

Uh oh!

Version 1.5.4

1.5.4 (2025-08-11)

Uh oh!

Version 1.5.3

1.5.3 (2025-06-16)

Uh oh!

Version 1.5.2

1.5.2 (2025-06-01)

Uh oh!

Version 1.5.1

1.5.1 (2025-05-02)

Uh oh!

Version 1.5.0

1.5.0 (2025-04-20)

Uh oh!

Version 1.4.5

1.4.5 (2025-04-17)

Uh oh!