Code that lets you use wolfCrypt
as a crypto provider for Rustls
,
built with no_std
support as its foundation. The std
library is pulled in
only for testing and during the build.rs
binding generation; the core crypto
provider itself operates independently of std
.
This is in an alpha stage, particularly because the Rustls API is not yet stable.
This code currently works with Rustls = 0.23.16.
- rustls-wolfcrypt-provider: Crate containing the code that lets you use rustls with wolfcrypt as a crypto provider.
- wolfcrypt-rs: Low-level unsafe bindings for wolfcrypt generated using bindgen.
TLS13_CHACHA20_POLY1305_SHA256
TLS13_AES_128_GCM_SHA256
TLS13_AES_256_GCM_SHA384
TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384
TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
For more details about the supported curves, verification/signing methods, and algorithms, please consult the respective folders.
-
Clone the repository:
git clone --depth=1 git@github.com:gasbytes/rustls-wolfcrypt-provider.git cd rustls-wolfcrypt-provider/
-
Run the build script to set up
wolfSSL
andRustls
:./build.sh
This script performs the following steps:
- Builds
wolfSSL
and generates the necessary bindings. - Installs
wolfSSL
to/opt/wolfssl-rs
(requires sudo). - Runs sanity tests for
wolfcrypt-rs
to ensure installation was successful. - Builds
rustls-wolfcrypt-provider
withwolfCrypt
as the crypto provider. - Runs tests to confirm the setup for
Rustls
withwolfCrypt
.
- Builds
-
Verify Installation
- To confirm that everything is installed correctly, run:
make test
- You should see output indicating successful test completion.
- To confirm that everything is installed correctly, run:
For Rustls
usage, consult the examples
folder in this repository. Each example
demonstrates setting up and using rustls-wolfcrypt-provider
with specific
cipher suites and configurations.