RECENT BLOG NEWS

We’re happy to announce that we’ve added wolfSSL support to Net-SNMP version 5.9 using our OpenSSL compatibility layer! Net-SNMP is a suite of open source software for the simple network management protocol (SNMP). The wolfSSL port allows you to use Net-SNMP with our FIPS 140-2/3 certified wolfCrypt library. To build Net-SNMP with wolfSSL, follow the instructions in our open source projects repository here.

To view wolfSSL’s collection of open source project ports, visit our osp repository on GitHub!

If you have any questions or run into any issues, contact us at facts@wolfssl.com, or call us at +1 425 245 8247.

We’re happy to announce that we’ve added wolfSSL support to BIND 9 versions 9.17.9 and 9.11.22 using our OpenSSL compatibility layer! BIND is open source software for DNS. The wolfSSL port allows you to use BIND with our FIPS 140-2/3 certified wolfCrypt library. To build BIND with wolfSSL, follow the instructions in our open source projects repository here.

To view wolfSSL’s collection of open source project ports, visit our osp repository on GitHub!

If you have any questions or run into any issues, contact us at facts@wolfssl.com, or call us at +1 425 245 8247.

We’re happy to announce that we’ve added wolfSSL support to libimobiledevice using our OpenSSL compatibility layer! libimobiledevice is “a cross-platform FOSS library written in C to communicate with iOS devices natively.” The wolfSSL port allows you to use libimobiledevice with our FIPS-certified wolfCrypt library. To build libimobiledevice with wolfSSL, follow the instructions in our open source projects repository here.

If you have any questions or run into any issues, contact us at facts@wolfssl.com, or call us at +1 425 245 8247.

We’re happy to announce that we’ve added wolfSSL support to OpenPegasus 2.14.1 using our OpenSSL compatibility layer! OpenPegasus is an open source CIM server. The wolfSSL port allows you to use OpenPegasus with our FIPS-certified wolfCrypt library. To build OpenPegasus with wolfSSL, follow the instructions in our open source projects repository.

If you have any questions or run into any issues, contact us at facts@wolfssl.com, or call us at +1 425 245 8247.

We’re happy to announce that we’ve added wolfSSL support to rsyslog 8.2106.0 using our OpenSSL compatibility layer! rsyslog is “the rocket-fast system for log processing”. The wolfSSL port allows you to use rsyslog with our FIPS-certified wolfCrypt library.

To build rsyslog with wolfSSL, follow the instructions in our open source projects repository here.

If you have any questions or run into any issues, contact us at facts@wolfssl.com, or call us at +1 425 245 8247.

Ever wonder exactly how much power your crypto is consuming? How long the battery of your device will last after adding in security? wolfSSL has worked with EEMBC to plug wolfSSL into SecureMark TLS for benchmarking a hardware’s performance and power consumption (https://github.com/eembc/securemark-tls). One of the algorithms benchmarked with SecureMark is ECDSA which makes up the bulk of the power and time taken for TLS 1.3 and TLS 1.2 handshakes using ECDSA cipher suites. 

If you have any questions or run into any issues, contact us at facts@wolfssl.com, or call us at +1 425 245 8247.

Version 1.2.0 of wolfCrypt JCE and JNI is now available for download! The wolfCrypt JCE provider and JNI wrapper provide Java applications with a convenient Java API to the widely-used wolfCrypt cryptography library, including support for FIPS 140-2/140-3!  This package provides both a Java JCE Provider as well as a thin JNI wrapper around native wolfCrypt.

Release 1.2.0 includes FIPS 140-3 compatibility, bug fixes and changes including:

• Add FIPS 140-3 compatibility when using wolfCrypt FIPS or FIPS Ready
• Increase junit version from 4.12 to 4.13 in pom.xml
• Add local “./lib” directory to “java.library.path” in pom.xml
• Fix debug builds using the “WOLFCRYPT_JNI_DEBUG_ON” define
• Fix compatibility with wolfCrypt “NO_OLD_*” defines
• Fix compatibility with wolfSSL “./configure –enable-all” and ECC tests

wolfCrypt JCE and JNI 1.2.0 can be downloaded from the wolfSSL download page and the wolfCrypt JNI Manual can be found here.

If you have any questions or run into any issues, contact us at facts@wolfssl.com, or call us at +1 425 245 8247.

wolfSSL often recognizes the work of our amazing community through GitHub. Today, we’re giving visibility to the excellent work of Kasper Kyllönen and Dr. Ian Oliver, on their fork of the wolfBoot GitHub repository. Visit their fork and check out their changes here: https://github.com/nokia/wolfBoot

Their wolfBoot fork has some Raspberry Pi related improvements for testing, measured boot and debugging.

wolfBoot is a portable secure bootloader solution that offers firmware authentication and firmware update mechanisms. It can be easily ported and integrated in existing embedded software projects to provide a secure firmware update mechanism. Check out our GitHub page for our wolfBoot repository, as well as repositories of our other products!

If you have any questions or run into any issues, contact us at facts@wolfssl.com, or call us at +1 425 245 8247.

Version 1.8.0 of wolfSSL JSSE and JNI is now available for download! The wolfSSL JSSE provider and JNI wrapper provide Java applications with a convenient Java API to the widely-used wolfSSL embedded SSL/TLS library, including support for TLS 1.3 and FIPS 140-2/140-3!  This package provides both a Java JSSE Provider as well as a thin JNI wrapper around native wolfSSL.

Release 1.8.0 includes FIPS 140-3 compatibility, bug fixes and new features including:

• wolfCrypt FIPS 140-3 and FIPS Ready compatibility
• Add Socket method wrappers, fixes behavior when inner Socket used with JSSE
• Add wrappers to get FIPS verifyCore hash (FIPS error cb or directly)
• Fix potential NullPointerException with several clone() methods
• Refactor of SSLSessionContext implementation
• Fix behavior of WolfSSLSocket.getSoTimeout() when external Socket is wrapped
• Fix timeout used in socketSelect to correctly handle fractional sec timeouts
• Fix memory leak when custom X509TrustManager is used with wolfJSSE
• Add support for multiple X509TrustManager objects across multiple sessions
• Call WolfSSL.cleanup() in finalizer to release library resources earlier
• Release native WOLFSSL memory sooner, when WolfSSLSocket is closed
• Better management and freeing of native WolfSSLCertificate memory
• Release native logging callback when library is freed
• Release native wolfCrypt FIPS callback when library is freed
• Release CTX-level Java verify callback when CTX is freed
• Release CTX-level Java CRL callback when CTX is freed
• Better global reference cleanup in error conditions
• Fix unused variable warnings in non-FIPS builds
• Use one static WolfSSL object across all WolfSSLProvider objects
• Release local JNI array inside WolfSSLSession.read() on function exit
• Add multi-threaded JSSE provider client and server examples
• Update Android AOSP install script to create missing blank files if needed
• Update Android AOSP build fixes to define `SIZEOF_LONG` and `SIZEOF_LONG_LONG`
• Update IDE/Android example Android Studio project
• Fix default cipher suite list order used in JSSE WolfSSLContext objects
• Fix FIPS Ready compatibility with `WC_RNG_SEED_CB`
• Update Android AOSP Android.mk to compile wolfCrypt kdf.c

wolfSSL JSSE and JNI 1.8.0 can be downloaded from the wolfSSL download page and the wolfSSL JNI Manual can be found here.

If you have any questions or run into any issues, contact us at facts@wolfssl.com, or call us at +1 425 245 8247.

We have added wolfCrypt support to SQLCipher, which enables encryption of a SQLite database. The port also supports using our wolfCrypt FIPS module.

SQLCipher extends the SQLite database library to add security enhancements that make it more suitable for encrypted local data storage like [1]:

• on-the-fly encryption
• tamper detection
• memory sanitization
• strong key derivation

This feature is enabled with `./configure –with-crypto-lib=wolfssl`.

See pull request https://github.com/sqlcipher/sqlcipher/pull/411 for details.

[1] From the SQLCipher README.md. https://github.com/sqlcipher/sqlcipher#sqlcipher

If you have any questions or run into any issues, contact us at facts@wolfssl.com, or call us at +1 425 245 8247.