wolfSSL 3.12.2 Now Available

Posted November 29, 2017 by wolfssl

wolfSSL 3.12.2 is now available for download! This release has a lot of bug fixes and new features.
November 29, 2017 — We are happy to announce the release of wolfSSL version 3.12.2. It includes many performance improvements with Intel ASM (AVX/AVX2) and AES-NI. wolfSSL has implemented a new single precision math option to speed up RSA, DH and ECC in this release. Embedded hardware support has been expanded for STM32, PIC32MZ and ATECC508A, and AES-XTS mode support has been added for use with disk encryption.

There have been improvements to some of our certificate API's that allow for setting the serial number, key usage and extended key usage. A refactor of the 'SSL_' API's and hash types has been performed to allow OpenSSL coexistence. There have been improvements made for TLS 1.3 support in this release. A fix was implemented for OCSP stapling to prevent sending the extension unexpectedly, WOLFSSL specific user contexts were added for callbacks, and there were fixes for some OpenSSL and MySQL compatibility functions. The wolfSSL Micrium port was updated for Micrium uC/OS-III, and there were fixes implemented for asynchronous modes as well.

Continue reading below for more features and fixes!

- Speedups for SHA2, ChaCha20/Poly1035, AES GCM and TFM_MIPS
- Rename the file io.h/io.c to wolfio.h/wolfio.c
- Cleanup the wolfIO_Send function
- Improvements to Visual Studio DLL project/solution
- Added function to generate public ECC key from private key
- Added async blocking support for sniffer tool
- Add HMAC benchmark and expanded AES key size benchmarks
- Added simple GCC ARM Makefile example
- Add tests for 3072-bit RSA and DH
- Alternate certificate chain support with WOLFSSL_ALT_CERT_CHAINS defined enables checking a cert against multiple CA's
- Added method to get WOLFSSL_CTX certificate manager
- Improvement to wolfSSL_SetOCSP_Cb to allow a context per WOLFSSL object
- Updated root certs for OCSP scripts
- Added ASN Extended Key Usage Support
- Fix for creation of the KeyUsage BitString
- Added TLS extension for Supported Point Formats
- Added new API's for disabling OCSP stapling
- Add check for SIZEOF_LONG with Sun and LP64
- Added new -disable-oldnames option to allow for using openssl alongside wolfssl headers
- Added configure option for building library for wolfSSH
- Added ability to use wolf implementation of strtok using USE_WOLF_STRTOK
- Cleanup include paths for MySQL cmake build
- OpenSSL compatibility layer improvements and additions
- Expanded API unit tests
- Update HASH_DRBG Reseed mechanism and add test case
- Added wolfCrypt hash tests for empty string and large data
- Fixes for TLS v1.3, OpenSSL, MySQL and hardware compatibility

Find more about wolfSSL at https://www.wolfssl.com/wolfSSL/Products-wolfssl.html
-- end ---
Contact Email [email protected]
Issued By Larry Stefonic
Website wolfSSL
Phone 1 425 245 8247
Business Address 10016 Edmonds Way
Country United States
Categories Software
Tags embedded ssl , lightweight ssl , lwip , ssl library , ssl security
Last Updated November 29, 2017