Add wolfSSL TLS patch for Zephyr 4.3#330
Merged
Merged
Conversation
Add zephyr/4.3/ with patch and README for wolfSSL as the default TLS backend on Zephyr 4.3. Move the existing 3.7 patch into zephyr/3.7/ alongside a version-specific README, and rewrite the top-level zephyr/README.md as a pointer to the per-version instructions. The 4.3 patch depends on wolfSSL changes submitted upstream to the wolfSSL Zephyr module (new Kconfig options for session export, peer cert retention, and always-invoke verify callback). See zephyr/4.3/README.md for build instructions.
ColtonWilley
force-pushed
the
zephyr_tls_4_3_patch
branch
from
66b9818 to
a831e84
Compare
ColtonWilley
force-pushed
the
zephyr_tls_4_3_patch
branch
from
37f423c to
953622d
Compare
Member
dgarske
approved these changes
Jun 8, 2026
dgarske
pushed a commit
that referenced
this pull request
Jun 10, 2026
Updates zephyr-tls-4.3.0.patch with fixes on top of the initial wolfSSL TLS-sockets integration merged in #330. The patch is regenerated against a clean Zephyr 4.3.0 tree. Changes since #330: - sockets_tls.c: correctness fixes to the wolfSSL backend paths and the TLS_CERT_VERIFY_* socket-option handling. - Kconfig: pull in the wolfSSL options the backend needs (WOLFSSL_SET_CIPHER_BYTES, WOLFSSL_OPENSSL_EXTRA_X509_SMALL, WOLFSSL_ALWAYS_VERIFY_CB) and add the TLS 1.3 PSK ciphersuite selection options; gate WOLFSSL_VERIFY_CALLBACK. - CMakeLists.txt: build-glue fixes for the sockets TLS layer and the random_ctr_drbg CSPRNG integration. - Drop the unused include/zephyr/net/tls_ciphersuites.h that the initial patch added; it is not required by the integration. - Tests/samples: add wolfSSL Twister scenarios for coap_server, http_server/tls, tls_credentials and socket/register; fix the existing wolfSSL overlays and expand socket/tls and socket/tls_ext coverage
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Adds zephyr/4.3/ with patch + README for wolfSSL as the default TLS backend on
Zephyr 4.3. Reorganizes the existing 3.7 patch into zephyr/3.7/ and makes the
top-level zephyr/README.md a per-version pointer.
Depends on wolfSSL PR #10268.