wolfSSL is a lightweight SSL / TLS library targeted for embedded and RTOS environments primarily because of its small size, speed, and portability. It employs a dual licensing model, making it available under both GPL and commercial licenses.
Version: 4.0.0The wolfSSL embedded SSL / TLS library is a lightweight SSL library written in ANSI standard C and targeted for embedded and RTOS environments - primarily because of its small size, speed, and feature set.
Operating System: Linux
It is commonly used in standard operating environments as well because of its royalty free pricing and cross platform support. wolfSSL supports industry standards up to the current TLS 1.2 level, is up to 20 times smaller than OpenSSL, and offers progressive ciphers such as HC-128, RABBIT, and NTRU. User benchmarking and feedback reports dramatically better performance when using wolfSSL over OpenSSL.
It is available under both GPLv2 and commercial licenses, like MySQL, making it ideal for a wide variety of projects.
Version 4.0.0: Supported wolfCrypt FIPS 4.0.0, certificate #3389 FIPS Ready Initiative Compatibility fixes for secure renegotiation with Chrome Better size check for TLS record fragment reassembly Improved non-blocking and handshake message retry support for DTLS Added TLS Trusted CA extension And more!
Version 3.15.7: Support for Espressif ESP-IDF development framework Fix for XCode build with iPhone simulator on i386 PKCS7 support for generating and verify bundles using a detached signature Fix for build disabling AES-CBC and enabling opensslextra compatibility layer Port update for Micrium uC/OS-III
Version 3.15.5: Fixes for GCC-8 warnings with strings Additional compatibility API’s added, including functions like wolfSSL_X509_CA_num and wolfSSL_PEM_read_X509_CRL Fixes for OCSP use with NGINX port Renamed the macro INLINE to WC_INLINE for inline functions And more!
Version 3.15.3: ECDSA blinding added Use of optimized Intel assembly instructions on compatible AMD processor wolfCrypt Nucleus port additions Fixes for: MatchDomainName compatibility layer build without defined server & client building with WOLFSSL_ATECC508A verifying a PKCS7 file in BER format And more!
Version 3.15.0: Support for TLS 1.3 Draft versions 23, 26 and 28. Add FIPS SGX support! Single Precision assembly code added for ARM and 64-bit ARM to enhance performance. Improved performance for Single Precision maths on 32-bit. Improved downgrade support for the TLS 1.3 handshake. And more!
Version 3.13.0: This release includes many performance improvements with Intel ASM (AVX/AVX2) and AES-NI. New single precision math option to speedup RSA, DH and ECC. Embedded hardware support has been expanded for STM32, PIC32MZ and ATECC508A. AES now supports XTS mode for disk encryption. And more!
Version 3.12.0: TLS 1.3 0RTT feature added Added port for using Intel SGX with Linux Update and fix PIC32MZ port AVX and AVX2 assembly for improved ChaCha20 performance Added Xilinx port Added warning when compiling without hardened math operations More fixes, improvements and new features!
Version 3.11.0: Code updates for warnings reported by Coverity scans Testing and warning fixes for FreeBSD on PowerPC Updates and refactoring to ASN1 parsing functions Added support for PKCS#7 Signed Data with ECDSA Fixed low and medium level security vulnerabilities More fixes, improvements and new features!
Version 3.10.2: Poly1305 Windows macros fix Compatibility layer expanded with multiple functions added Improve fp_copy performance with ALT_ECC_SIZE OCSP updates and improvements IAR EWARM 8 compiler warnings fixed Reduce stack usage with ECC_CACHE_CURVE disabled Added ECC export raw for public/private key