Blog - wolfSSL

wolfSSL 5.9.1 release blog

April 20, 2026April 21, 2026

wolfSSL 5.9.1 is available with new features, post-quantum cryptography improvements, broad bug fixes, and a number of vulnerability fixes. Users are always recommended to stay up to date with wolfSSL releases. In this release, use cases that are affected by high severity reports are: PKCS7 with ORI callback set or AuthEnvelopedData with AES-GCM (–enable-pkcs7), ECDSA […]

June 2, 2026May 28, 2026

Go checkout the master branch of wolfSSH. Two new hybrid KEX methods have been added. Both are defined in draft-ietf-sshm-mlkem-hybrid-kex: mlkem768x25519-sha256 — ML-KEM-768 paired with X25519 mlkem1024nistp384-sha384 — ML-KEM-1024 paired with NIST P-384 This joins mlkem768nistp256-sha256 which has been there for a long time. Why hybrid The “harvest now, decrypt later” threat model means ciphertext […]

June 2, 2026May 28, 2026

FIPS 140-3 Kernel Crypto: libwolfssl.ko delivers a FIPS 140-3 compliant cryptographic stack for the Linux kernel, using the same validated wolfCrypt implementations as the user-space library. wolfGuard: WolfGuard is a FIPS 140-3 implementation of WireGuard which replaces WireGuard’s non-FIPS algorithms with wolfCrypt’s FIPS based AES-GCM, ECDH, SHA-256 HMAC, and HASH-DRBG. WolfGuard-Go is the Go implementation […]

June 1, 2026May 27, 2026

wolfBoot, the secure bootloader from wolfSSL, has a new target: ST’s STM32G4 family of mixed-signal Cortex-M4F microcontrollers. The port has been validated on the NUCLEO-G491RE board (STM32G491RET6: 512 KB flash, 96 KB SRAM, 170 MHz). Why the STM32G4 The G4 family lands in a sweet spot for industrial and motor-control designs: enough FPU and DSP […]

June 1, 2026May 28, 2026

WireGuard has become the gold standard for modern VPN deployments due to its simplicity and speed. However, regulated environments have historically faced a frustrating trade-off between compliance and simplicity, leaving teams stuck with heavy, complex legacy solutions. You shouldn’t have to choose between regulatory approval and a lightweight architecture. Join us on June 4 at […]

June 1, 2026May 28, 2026

Integrating Wi-Fi mesh networking into embedded systems can introduce challenges around portability, memory usage, debugging, and network stack integration—especially across RTOS and MCU platforms. Join wolfSSL and Clarinox on June 3 at 8 AM PT for a technical webinar on integrating wolfIP with the ClarinoxWiFi Mesh platform. Register now: Embedded Wi-Fi Mesh with wolfIP and […]

May 29, 2026May 27, 2026

We are pleased to announce that wolfBoot now ships an upstream port for the AMD/Xilinx Zynq-7000 SoC, verified end-to-end on the ZC702 Evaluation Kit (XC7Z020). The port covers QSPI cold-boot, SD-card cold-boot, JTAG-loaded development, and signed Linux/U-Boot payload chain-loading. All of this comes from a single TARGET=zynq7000 build target. This rounds out wolfBoot’s Xilinx coverage. […]

May 29, 2026May 27, 2026

wolfHSM on STM32H5 wolfHSM now supports the STM32H5 family. The same wolfHSM server that runs on Infineon AURIX TC3xx and ST SPC58 automotive parts now runs on a Cortex-M33, isolated by Arm TrustZone-M instead of a discrete HSM coprocessor. No extra silicon, no second MCU, no external secure element. The work is a two-part PR: […]

May 29, 2026May 28, 2026

Chrony is network time synchronization software used to keep system clocks accurate across servers and devices. FIPS 140-3 support is available for Chrony with wolfCrypt FIPS, tested for use with Chrony environments. wolfCrypt FIPS provides a lightweight cryptographic module for security-focused deployments. This helps organizations secure time synchronization infrastructure while meeting FIPS requirements. Github: https://github.com/wolfSSL/osp/tree/master/chrony/4.1 […]

May 28, 2026May 27, 2026

wolfTPM supports any TPM 2.0 compliant TPM as well as TPM 2.0 modules on all AMD Xilinx platforms, including ZynqMP UltraScale+, Versal Gen 1 and Gen 2, Zynq-7000, and Kria SOM. It enables measured boot and a strong hardware root of trust, and includes standard TPM features such as secret sealing for encrypted file systems, […]

May 28, 2026May 28, 2026

BIND 9 is DNS server software used to translate domain names into IP addresses. FIPS 140-3 support is available for BIND 9 with wolfCrypt FIPS, tested for use with BIND 9 environments. wolfCrypt FIPS provides a lightweight cryptographic module for security-focused deployments. This helps organizations secure DNS infrastructure while meeting FIPS requirements. Github Link: https://github.com/wolfSSL/wolfssl/actions/workflows/bind.yml?query=created:%3C2026-02-12&utm_source=chatgpt.com […]

1 2 3 4 … 237 238 239

RECENT BLOG NEWS

wolfSSL 5.9.1 release blog

wolfSSH Continues on the Post-Quantum Hybrid Key Exchange Journey

wolfCrypt FIPS 140-3 for WireGuard and Kernel Mode Applications

wolfBoot Now Supports the STM32G4

wolfGuard: FIPS-Compliant WireGuard VPN

Embedded Wi-Fi Mesh with wolfIP and Clarinox

wolfBoot adds support for the Xilinx Zynq-7000 (ZC702)

wolfHSM TrustZone Now Available on STM32H5: Automotive-Grade HSM Security on a Mainstream Cortex-M33

Chrony FIPS 140-3 Tested & Available with wolfCrypt FIPS

wolfTPM on AMD Xilinx

BIND 9 FIPS 140-3 Tested & Available with wolfCrypt Fips

Weekly updates

Archives

RECENT BLOG NEWS

Posts navigation

Weekly updates

Archives