Home > Computing > wolfSSL 4.0.0 Now Available

wolfSSL 4.0.0 Now Available

Added: (Mon Apr 01 2019)

Pressbox (Press Release) -

Spring is here and along with it is the newest and shiniest release of the wolfSSL embedded SSL/TLS library!


As with every release, this release includes many feature additions, bug fixes and improvements to the wolfSSL library. Additionally, this new version of the wolfSSL library includes support for the new FIPS 140-2 Certificate for wolfCrypt v4.0! More information on wolfSSL and FIPS can be found at https://www.wolfssl.com/license/fips/


The list below outlines the new feature additions that are included with the release of wolfSSL version 4.0.0:


- Support for wolfCrypt FIPS v4.0.0, certificate #3389

- FIPS Ready Initiative

- Added TLS server side secure renegotiation

- Added TLS Trusted CA extension

- Support for the Deos Safety Critical RTOS

- TLS handshake now supports using PKCS #11 for private keys

- PKCS #11 support of HMAC, AES-CBC and random seeding/generation

- Support for named FFDHE parameters in TLS 1.2 (RFC 7919)

- Added Espressif ESP32 WROOM support with hardware crypto acceleration

- Added Cypress WICED Studio support

- Added ARM CMSIS-RTOS v2 support

- Added port to the Zephyr Project

- Added Cortex-M support for Single Precision (SP) math

- Added wolfCrypt RSA non-blocking time support

- Added 16-bit compiler support using --enable-16bit option

Additionally, the wolfSSL blog will be posting more elaboration and details on the ports and support that have been added with this release in the furture. Stay tuned for more information!


The following list outlines some fixes, updates and general improvements that have been included with wolfSSL 4.0.0:


- Added new wrapper for snprintf for use with certain Visual Studio builds

- Added ECC_PUBLICKEY_TYPE to the supported PEM header types

- Added strict checking of the ECDSA signature DER encoding length

- Added ECDSA option to limit sig/algos in client_hello to key size with USE_ECDSA_KEYSZ_HASH_ALGO

- Compatibility fixes for secure renegotiation with Chrome

- Better size check for TLS record fragment reassembly

- Improvements to non-blocking and handshake message retry support for DTLS

- Improvements to OCSP with ECDSA signers

- OCSP fixes for memory management and initializations

- Fixes for EVP Cipher decryption padding checks

- Removal of null terminators on wolfSSL_X509_print substrings

- wolfSSL_sk_ASN1_OBJCET_pop function renamed to wolfSSL_sk_ASN1_OBJECT_pop

- Adjustment to include path in compatibility layer for evp.h and objects.h

- Fixes for decoding BER encoded PKCS7 contents

- Update to CMS KARI support

- Fixes and additions to the OpenSSL compatibility layer

- Xcode project file update

- Fixes for ATECC508A/ATECC608A


Find more and download the most recent version of wolfSSL at www.wolfssl.com/products/wolfssl

Submitted by:Larry Stefonic
Disclaimer: Pressbox disclaims any inaccuracies in the content contained in these releases. If you would like a release removed please send an email to remove@pressbox.com together with the url of the release.