Skip to content

Releases: wolfSSL/wolfssl-py

v5.8.4-stable

Choose a tag to compare

@kareem-wolfssl kareem-wolfssl released this 30 Dec 19:24
05433e9

What's Changed

  • Fix an issue which allowed a client without a cert to connect despite setting verify_mode to CERT_REQUIRED (CVE-2025-15346):
    A vulnerability in the handling of verify_mode = CERT_REQUIRED in the wolfssl Python package (wolfssl-py) causes client certificate requirements to not be fully enforced. Because the WOLFSSL_VERIFY_FAIL_IF_NO_PEER_CERT flag was not included, the behavior effectively matched CERT_OPTIONAL: a peer certificate was verified if presented, but connections were incorrectly authenticated when no client certificate was provided. This results in improper authentication, allowing attackers to bypass mutual TLS (mTLS) client authentication by omitting a client certificate during the TLS handshake.
    Thanks to Matan Radomski from Microsoft for the report.
  • Update for v5.8.4 release by @kareem-wolfssl in #63

v5.8.2-stable

Choose a tag to compare

@lealem47 lealem47 released this 24 Jul 19:39
3e4ec84

What's Changed

v5.7.4-stable

Choose a tag to compare

@lealem47 lealem47 released this 13 Nov 23:26

What's Changed

v5.7.2-stable

Choose a tag to compare

@gasbytes gasbytes released this 12 Sep 09:05

What's Changed

  • SSLSocket: support version() method by @rizlik in #53
  • wolfssl-py: support disabling secure renegotiation by @rizlik in #54
  • Update for v5.7.2 release by @gasbytes in #55

wolfSSL-py v5.6.6-stable

Choose a tag to compare

@lealem47 lealem47 released this 23 Jan 18:06

What's Changed

wolfSSL-py v5.6.0-stable

Choose a tag to compare

@danielinux danielinux released this 02 May 16:01
0a8a76c

What's Changed

wolfSSL-py v5.5.4

Choose a tag to compare

@danielinux danielinux released this 30 Dec 17:32
f43fa0c

Update to wolfSSL version 5.5.4

wolfSSL-py v5.5.3-stable

Choose a tag to compare

@danielinux danielinux released this 07 Nov 11:11
5475963

What's Changed

  • Fix TLSv1.3 support
  • Disable oldtls support
  • Add changelog
  • Adding support for CRL and DTLS
  • Fix alert history code
  • Update wolfSSL to version 5.5.3

wolfSSL-py Release 5.4.0 (July 13, 2022)

Choose a tag to compare

@LinuxJedi LinuxJedi released this 13 Jul 14:39

Release 5.4.0 of wolfSSL-py embedded TLS has bug fixes including:

  • Update to wolfSSL 5.4.0 C library
  • Add GitHub Actions support and remove Travis CI support

wolfSSL-py Release 5.3.0 (May 13, 2022)

Choose a tag to compare

@LinuxJedi LinuxJedi released this 13 May 12:38

Release 5.3.0 of wolfSSL-py embedded TLS has bug fixes and new features including:

New Feature Additions

  • Update to wolfSSL 5.3.0
  • Build completely refactored to be more Python-like and easier to use
  • Add support for wolfSSL ctx password callback

Fixes

  • Raise error when wolfSSL_write() returns 0
  • Update example certs to match main wolfSSL ones