wolfcrypt 0.1.4

RustCrypto trait implementations backed by wolfCrypt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87

# wolfcrypt

RustCrypto trait implementations backed by wolfCrypt.  Swap the backend under
your existing RustCrypto code without changing call sites.

## Why

wolfCrypt is a FIPS 140-3 validated cryptographic library used in billions of
devices across aerospace, automotive, and government products.  Choosing
`wolfcrypt` over pure-Rust alternatives gives you:

- **FIPS 140-3** — the same validated implementation used in production
  (commercial license required; [contact wolfSSL](https://www.wolfssl.com/license/))
- **Minimal footprint** — compiles to bare-metal RISC-V for embedded hardware
  security targets (Caliptra, secure elements, automotive MCUs)
- **No API changes** — your existing `digest::Digest`, `aead::Aead`,
  `signature::Signer` code keeps working; only the backend changes

## Usage

```toml
wolfcrypt = { version = "0.1", features = ["digest", "aead", "signature"] }
```

## Algorithms

| Feature | Algorithms |
|---------|-----------|
| `digest` | SHA-1, SHA-224/256/384/512, SHA3-256/384/512 |
| `hmac` | HMAC-SHA-{1,256,384,512} |
| `cmac` | AES-{128,256}-CMAC |
| `aead` | AES-{128,256}-GCM, ChaCha20-Poly1305 |
| `cipher` | AES-{128,256}-{CBC,CTR,CFB}, ChaCha20 |
| `hkdf` | HKDF-SHA-{256,384,512} |
| `pbkdf2` | PBKDF2-HMAC-SHA-{1,256,384,512} |
| `ecdsa` | ECDSA P-256, P-384, P-521 |
| `ed25519` | Ed25519 |
| `ed448` | Ed448 |
| `rsa` | RSA PKCS#1 v1.5 and PSS |
| `mldsa` | ML-DSA (Dilithium) |
| `mlkem` | ML-KEM (Kyber) |
| `keywrap` | AES keywrap |
| `dh` / `ecdh` | DH, ECDH |
| `rand` | CSPRNG (included by default) |

## How it works

```text
wolfssl-src     Compiles wolfSSL/wolfCrypt C source via the cc crate
wolfcrypt-sys   bindgen FFI; emits cargo cfg flags per compiled algorithm
      │         (wolfssl_aes_gcm, wolfssl_ecc_p384, …)
wolfcrypt-rs    Typed Rust wrapper + C shim for struct field access
wolfcrypt       RustCrypto trait impls (this crate)
```

Each algorithm is gated behind a Cargo feature and a corresponding cfg flag
emitted by `wolfcrypt-sys`, so unused algorithms are dead-stripped.

## FIPS 140-3

```toml
wolfcrypt = { version = "0.1", features = ["aead", "fips"] }
```

Need FIPS 140-3 validation in your Rust application?  wolfCrypt is FIPS 140-3
validated — the same library, the same code path.  Enabling the `fips` feature
alone is not sufficient: FIPS 140-3 validation requires the specific wolfSSL
source tree submitted for validation and a commercial license.
[Contact wolfSSL](https://www.wolfssl.com/license/) for a commercial FIPS
license and the validated source tree.  See the
[workspace README](https://github.com/wolfSSL/wolfssl-rs) for full details.

## Copyright

Copyright (C) 2006-2026 wolfSSL Inc.

## License

MIT — see [LICENSE](LICENSE).

The [MIT License](https://opensource.org/licenses/MIT) applies to the Rust
source code in this crate.  The underlying wolfSSL/wolfCrypt C library is
licensed under GPL-2.0-or-later with a commercial option available from
[wolfSSL Inc.](https://www.wolfssl.com/license/)