wolfSSL 5.9.1 is available with new features, post-quantum cryptography improvements, broad bug fixes, and a number of vulnerability fixes. Users are always recommended to stay up to date with wolfSSL releases. In this release, use cases that are affected by high severity reports are: PKCS7 with ORI callback set or AuthEnvelopedData with AES-GCM (–enable-pkcs7), ECDSA […]
Read MoreMore TagMonth: April 2026
How Claude Mythos Preview helped harden wolfSSL
At wolfSSL, we do an incredible amount of testing. Some of it is visible, some of it is not. You can see our GitHub Actions run on every pull request, and behind that we have a private Jenkins setup doing more extensive testing across multiple platforms, some of it on hardware physically sat in one […]
Read MoreMore TagAI deluge and wolfSSL average time between Vulnerability Report and Fix
We have always prided ourselves on our mean time between a vulnerability report and delivering a fix. Our historical average is about 36 hours. Like everyone else providing open source infrastructure software, we’ve been under a lot of pressure in the past 30 days with valid and meaningful reports from AI research efforts. Fortunately, we […]
Read MoreMore TagwolfBoot vs Intel Slim Bootloader
Since version 2.0.0, wolfBoot runs as a bare-metal bootloader on x86-64 (amd64 / Intel 64), using Intel FSP for silicon initialization — the same approach taken by Intel’s Slim Bootloader. So what sets them apart? Quite a lot. Getting started with wolfSSL? Download the latest libraries here and start exploring. Advanced Cryptography & Quantum Readiness […]
Read MoreMore TagwolfCrypt FreeBSD kernel module update: FIPS and crypto acceleration support
The wolfSSL team are adding two new enhancements to our FreeBSD kernel module (bsdkm) that will make cryptography in the kernel faster and more secure: FIPS 140-3 in the kernel: PR #9590 introduced support for wolfCrypt FIPS in our FreeBSD kernel module. This provides a simple recipe for FIPS-certified crypto in FreeBSD kernel space. x86 […]
Read MoreMore TagwolfMQTT Embedded Broker: Lightweight MQTT for the Edge
MQTT is the standard protocol for IoT messaging, but existing brokers are server-class software. They assume abundant memory, a full OS, and dynamic memory allocation. Embedded devices, gateways, and safety-critical platforms don’t have those luxuries. Teams building edge gateways, local message routing, or offline-capable IoT systems have had to work around this gap. Getting started […]
Read MoreMore TagYocto and PetaLinux: Achieving Full FIPS 140-3 Linux with meta-wolfssl
wolfSSL has made it possible to have a streamlined Full FIPS Linux build for Yocto and PetaLinux. The updates to meta-wolfssl provide a quick, known-good path to FIPS 140-3 cryptography for both userland and kernel applications, ensuring your entire embedded Linux ecosystem is compliant. Unified Kernel and Userland Cryptography A primary focus of this release […]
Read MoreMore TagwolfIP – Adds TLS 1.3, SSH, and MQTT Support for STM32H563
As the demand for secure embedded connectivity grows, the need for robust, lightweight protocols on bare-metal systems becomes critical. wolfSSL is proud to announce that wolfIP now includes comprehensive secure communication support for the STM32H563 (NUCLEO-H563ZI) board, bringing modern security standards to your bare-metal applications. This update introduces full integration with wolfSSL, wolfSSH, and wolfMQTT, […]
Read MoreMore TagTrue Random vs. Pseudorandom Number Generation
In the world of computing, “randomness” isn’t a one-size-fits-all concept. Whether you are developing a gaming app or securing a high-stakes cryptographic protocol, the type of Random Number Generator (RNG) you choose matters. The distinction boils down to one factor: reproducibility. Download wolfSSL → Pseudorandom Number Generators (PRNGs) A PRNG is a deterministic algorithm. It […]
Read MoreMore TagFIPS-Compliant Tailscale Mesh VPN Powered by wolfSSL
Earlier last year, we shared the integration of our FIPS-validated crypto engine, wolfCrypt, into WireGuard to create a project we call wolfGuard. We’re now extending this effort to Tailscale, the popular mesh VPN built on top of WireGuard. Getting started with wolfSSL? Download the latest libraries here and start exploring. Tailscale simplifies WireGuard deployment by […]
Read MoreMore Tag