correct compile flags for debain 7

debian/README.source

@@ -0,0 +1,2 @@
+Some files were removed for DFSG compliance.
+Please check 'copyright' for details.

debian/changelog

@@ -0,0 +1,134 @@
+wolfssl (3.13.0+dfsg-1) unstable; urgency=medium
+
+  * New upstream release
+  * Fixes "robot attack" CVE-2017-13099 (Closes: #884235)
+  * New major number 15
+  * Set Standards-Version: 4.1.2
+  * Improved clean target for repeated builds
+
+ -- Felix Lechner <felix.lechner@lease-up.com>  Thu, 21 Dec 2017 15:43:45 -0800
+
+wolfssl (3.12.2+dfsg-1) unstable; urgency=medium
+
+  * New upstream release
+  * New major number 14
+  * Updated symbols file
+  * Updated watch file
+  * Replaced upstream signing key with 0xEBC80E415CA29677
+  * Updated Standard-Versions: to 4.1.1
+
+ -- Felix Lechner <felix.lechner@lease-up.com>  Sat, 25 Nov 2017 21:30:15 -0800
+
+wolfssl (3.12.0+dfsg-1) unstable; urgency=medium
+
+  * New upstream release
+  * Shared object version is now 12
+  * CVE-2017-2800 was fixed in 3.11.0 (Closes: #862154)
+  * CVE-2017-8855 was fixed in 3.11.0 (Closes: #870170)
+  * Removed "--with-sha224" from rules; now included in "--enable-distro"
+  * Cannot override lintian for missing upstream signature; source was
+    repackaged (DFSG)
+  * Removed unnecessary Build-Depends: dh-autoreconf
+  * Removed unnecessary Build-Depends: autotools-dev
+  * Updated to Standards-Version: 4.0.0
+
+ -- Felix Lechner <felix.lechner@lease-up.com>  Sun, 13 Aug 2017 21:00:54 -0700
+
+wolfssl (3.10.2+dfsg-2) unstable; urgency=medium
+
+  * Updated debian/copyright (Closes: #860046)
+  * Disabled CRL monitor for all architectures (Closes: #860514)
+
+ -- Felix Lechner <felix.lechner@lease-up.com>  Sat, 22 Apr 2017 17:48:29 -0700
+
+wolfssl (3.10.2+dfsg-1) unstable; urgency=medium
+
+  * New upstream release.
+  * New major version is 10
+  * New maintainer email address
+  * Fixes a low level vulnerability for buffer overflow when loading a
+    malformed temporary DH file
+  * Fixes a medium level vulnerability for processing of OCSP response
+  * Fixes CVE-2017-6076, a low level vulnerability for a potential
+    cache attack on RSA operations (Closes: #856114)
+  * Enabled SHA-224 for all architectures, as advised by upstream
+
+ -- Felix Lechner <felix.lechner@lease-up.com>  Sat, 08 Apr 2017 14:09:21 -0700
+
+wolfssl (3.9.10+dfsg-1) unstable; urgency=medium
+
+  * New upstream release (Closes: #793134)
+  * Fixed CVE-2015-6925 (Closes: #801120)
+  * No longer installing arch-dependent options.h (Closes: #792626)
+  * New major number is 3
+  * Using '--enable-distro' to define ABI
+  * Removed all ABI-related build options selecting features
+  * Upgraded Build-Depends: debhelper >=10; bumped compat to 10
+  * Removed Build-Depends: dh-exec
+  * Switched to automatic generation of debug package (dbgsym)
+  * Changed package descriptions and capitalized wolfSSL correctly
+  * Deleted compatibility links for libcyassl5
+  * Removed control file references to libcyassl5
+  * Disabled examples and tests for building without network
+  * Removed duplicate license names from debian/copyright
+  * Updated watch file for upstream's new version tagging scheme on GitHub
+  * Added public key signature verification in watch file
+  * Updated Standard-Version: 3.9.8
+
+ -- Felix Lechner <felix.lechner@lease-up.com>  Fri, 02 Dec 2016 20:51:20 -0800
+
+wolfssl (3.4.8+dfsg-1) unstable; urgency=medium
+
+  * Name of package changed from 'cyassl' to 'wolfssl'
+  * New upstream release
+  * Disabled automatic downgrade to SSLv3 in release 3.2.0 (Closes: #769905)
+  * Fixed CVE-2014-2901, CVE-2014-2902, CVE-2014-2903 and CVE-2014-2904
+      in release 3.2.0 (Closes: #770229)
+  * Fixed TEMP-0000000-2D36D7 in release 3.2.0
+  * Added build option '--enable-chacha'
+  * Added build option '--enable-poly1305'
+  * Added build option '--enable-hashdrbg'
+  * Added build option '--use-fastmath'
+  * Added build option '--enable-ecc25519'
+  * Added build flag TFM_TIMING_RESISTANT
+  * Added build flag TFM_NO_ASM
+  * Added Build-Depends: libpcap0.8-dev for sniffer testing
+  * Removed obsolete build option '--enable-gcc-hardening'
+  * Removed LT_LIB_M in configure.ac to avoid linking uselessly with libm
+  * Enabled tests
+  * Added Exclude-Files: in 'copyright' for automatic repackaging
+  * Added repacksuffix=+dfsg in 'watch'
+  * Updated to Standards-Version: 3.9.6
+  * Added dummy package for 'libcyassl5'
+  * Replaces: libcyassl5 (<< 3.4.2-1~)
+  * Breaks: libcyassl5 (<< 3.4.2-1~)
+  * Provides: libcyassl5
+  * Created compatibility symlinks for libcyassl.so.5.0.0
+
+ -- Felix Lechner <felix.lechner@lease-up.com>  Sun, 26 Apr 2015 08:23:52 -0700
+
+cyassl (2.9.4+dfsg-3) unstable; urgency=medium
+
+  * Removed build option '--use-fastmath'
+  * Turned off fastmath for amd64, where it is default
+  * Fixed typedef for socklen_t on hurd-i386
+  * Marked debug and development packages as Multi-Arch:same
+
+ -- Felix Lechner <felix.lechner@lease-up.com>  Wed, 01 Oct 2014 10:34:34 -0700
+
+cyassl (2.9.4+dfsg-2) unstable; urgency=medium
+
+  * Disabled build option '--enable-aesni' (Closes: #760320, #760321)
+  * Disabled build option '--enable-crl-monitor' (Closes: #760322)
+  * Fixed symbol file to reflect '+' added to previous package version
+  * Switched to standard build flags for correct symbol generation and
+    hardening.
+  * Disabled tests that failed (due to expired certificates).
+
+ -- Felix Lechner <felix.lechner@lease-up.com>  Tue, 30 Sep 2014 10:57:53 -0700
+
+cyassl (2.9.4+dfsg-1) unstable; urgency=low
+
+  * Initial release (Closes: #598391)
+
+ -- Felix Lechner <felix.lechner@lease-up.com>  Wed, 09 Apr 2014 17:43:28 -0700

debian/compat

@@ -0,0 +1 @@
+10

debian/control

@@ -0,0 +1,57 @@
+Source: wolfssl
+Priority: optional
+Maintainer: Felix Lechner <felix.lechner@lease-up.com>
+Build-Depends:
+ autotools-dev,
+ dh-autoreconf,
+ quilt,
+ debhelper (>= 9),
+ libpcap0.8-dev,
+ openssl
+Standards-Version: 4.1.2
+Section: libs
+Homepage: http://www.wolfssl.com/yaSSL/Products-wolfssl.html
+
+Package: libwolfssl15
+Architecture: any
+Multi-Arch: same
+Pre-Depends: ${misc:Pre-Depends}
+Depends:
+ ${shlibs:Depends},
+ ${misc:Depends}
+Description: wolfSSL encryption library
+ wolfSSL is a small, portable, embedded SSL/TLS programming library
+ targeted for use by embedded systems developers. It was formerly
+ known as CyaSSL.
+ .
+ It is an open source, dual licensed implementation of SSL/TLS
+ (SSL 3.0, TLS 1.0, 1.1, 1.2, DTLS 1.0 and 1.2) written in the C
+ language.  wolfSSL includes both a client and server implementation,
+ progressive cipher support, key and certificate generation, OCSP
+ and CRL, access to the underlying cryptography modules, and more.
+ .
+ wolfSSL also includes an OpenSSL compatibility interface with the
+ most commonly used OpenSSL functions.
+
+Package: libwolfssl-dev
+Section: libdevel
+Architecture: any
+Multi-Arch: same
+Depends:
+ libwolfssl15 (= ${binary:Version}),
+ ${misc:Depends}
+Description: Development files for the wolfSSL encryption library
+ wolfSSL is a small, portable, embedded SSL/TLS programming library
+ targeted for use by embedded systems developers. It was formerly
+ known as CyaSSL.
+ .
+ It is an open source, dual licensed implementation of SSL/TLS
+ (SSL 3.0, TLS 1.0, 1.1, 1.2, DTLS 1.0 and 1.2) written in the C
+ language.  wolfSSL includes both a client and server implementation,
+ progressive cipher support, key and certificate generation, OCSP
+ and CRL, access to the underlying cryptography modules, and more.
+ .
+ wolfSSL also includes an OpenSSL compatibility interface with the
+ most commonly used OpenSSL functions.
+ .
+ This package contains the development files.

debian/copyright

@@ -0,0 +1,222 @@
+Format: http://www.debian.org/doc/packaging-manuals/copyright-format/1.0/
+Upstream-Name: wolfssl
+Upstream-Contact: David Garske <david@wolfssl.com>
+Source: https://github.com/wolfssl/wolfssl/releases
+Comment: Some files were excluded for licenses possibly not DFSG-compliant.
+Files-Excluded:
+ IDE/*
+ mcapi/*
+ mplabx/*
+ mqx/*
+ tirtos/*
+
+Files:
+ *
+Copyright:
+ 2006-2017 wolfSSL Inc.
+License: GPL-2+
+
+Files:
+ wolfcrypt/src/camellia.c
+ wolfssl/wolfcrypt/camellia.h
+Copyright:
+ 2006-2007 NTT (Nippon Telegraph and Telephone Corporation)
+ 2006-2016 wolfSSL Inc.
+License: GPL-2+
+
+Files:
+ COPYING
+Copyright:
+ 1989, 1991 Free Software Foundation, Inc.
+License: No-Modify
+
+Files:
+ m4/ax_append_link_flags.m4
+Copyright:
+ 2011 Maarten Bosmans <mkbosmans@gmail.com>
+License: GPL-3+-with-autoconf
+
+Files:
+ m4/ax_pthread.m4
+Copyright:
+ 2008 Steven G. Johnson <stevenj@alum.mit.edu>
+ 2011 Daniel Richard G. <skunk@iSKUNK.ORG>
+License: GPL-3+-with-autoconf
+
+Files:
+ m4/ax_check_library.m4
+Copyright:
+ 2012 Brian Aker <brian@tangent.org>
+ 2010 Diego Elio Petteno` <flameeyes@gmail.com>
+License: GPL-3+-with-autoconf
+
+Files:
+ m4/ax_append_flag.m4
+ m4/ax_check_compile_flag.m4
+ m4/ax_check_link_flag.m4
+Copyright:
+ 2008 Guido U. Draheim <guidod@gmx.de>
+ 2011 Maarten Bosmans <mkbosmans@gmail.com>
+License: GPL-3+-with-autoconf
+
+Files:
+ m4/ax_append_compile_flags.m4
+Copyright:
+ 2011 Maarten Bosmans <mkbosmans@gmail.com>
+License: GPL-3+-with-autoconf
+
+Files:
+ m4/ax_tls.m4
+Copyright:
+ 2008 Alan Woodland <ajw05@aber.ac.uk>
+ 2010 Diego Elio Petteno` <flameeyes@gmail.com>
+License: GPL-3+-with-autoconf
+
+Files:
+ m4/ax_create_generic_config.m4
+Copyright:
+ 2008 Guido U. Draheim <guidod@gmx.de>
+License: GPL-3+-with-autoconf
+
+Files:
+ m4/ax_compiler_version.m4
+ m4/ax_debug.m4
+ m4/ax_harden_compiler_flags.m4
+ m4/ax_vcs_checkout.m4
+Copyright:
+ 2012 Brian Aker
+License: BSD-3-clause
+
+Files:
+ m4/ax_append_to_file.m4
+ m4/ax_file_escapes.m4
+ m4/ax_print_to_file.m4
+Copyright:
+ 2008 Tom Howard <tomhoward@users.sf.net
+License: FSFAP
+
+Files:
+ m4/ax_add_am_macro.m4
+Copyright:
+ 2009 Tom Howard <tomhoward@users.sf.net
+License: FSFAP
+
+Files:
+ m4/ax_am_jobserver.m4
+Copyright:
+ 2008 Michael Paul Bailey <jinxidoru@byu.net>
+License: FSFAP
+
+Files:
+ m4/ax_am_macros.m4
+Copyright:
+ 2009 Tom Howard <tomhoward@users.sf.net
+License: FSFAP
+
+Files:
+ m4/ax_count_cpus.m4
+Copyright:
+ 2012 Brian Aker <brian@tangent.org>
+ 2008 Michael Paul Bailey <jinxidoru@byu.net>
+ 2008 Christophe Tournayre <turn3r@users.sourceforge.net>
+License: FSFAP
+
+Files:
+ m4/wolfssl_darwin_clang.m4
+Copyright:
+ 2013 John Safranek <john@wolfssl.com>
+License: FSFAP
+
+Files:
+ debian/*
+Copyright:
+ 2014-2017 Felix Lechner <felix.lechner@lease-up.com>
+License: GPL-2+
+
+
+License: FSFAP
+ Copying and distribution of this file, with or without modification, are
+ permitted in any medium without royalty provided the copyright notice
+ and this notice are preserved. This file is offered as-is, without any
+ warranty.
+
+
+License: GPL-2+
+ This package is free software; you can redistribute it and/or modify
+ it under the terms of the GNU General Public License as published by
+ the Free Software Foundation; either version 2 of the License, or
+ (at your option) any later version.
+ .
+ This package is distributed in the hope that it will be useful,
+ but WITHOUT ANY WARRANTY; without even the implied warranty of
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ GNU General Public License for more details.
+ .
+ You should have received a copy of the GNU General Public License
+ along with this program. If not, see <http://www.gnu.org/licenses/>
+ .
+ On Debian systems, the complete text of the GNU General
+ Public License version 2 can be found in "/usr/share/common-licenses/GPL-2".
+
+
+License: GPL-3+-with-autoconf
+ This program is free software; you can redistribute it and/or modify it
+ under the terms of the GNU General Public License as published by the
+ Free Software Foundation; either version 3 of the License, or (at your
+ option) any later version.
+ .
+ This program is distributed in the hope that it will be useful, but
+ WITHOUT ANY WARRANTY; without even the implied warranty of
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General
+ Public License for more details.
+ .
+ You should have received a copy of the GNU General Public License along
+ with this program. If not, see <http://www.gnu.org/licenses/>.
+ .
+ As a special exception, the respective Autoconf Macro's copyright owner
+ gives unlimited permission to copy, distribute and modify the configure
+ scripts that are the output of Autoconf when processing the Macro. You
+ need not follow the terms of the GNU General Public License when using
+ or distributing such scripts, even though portions of the text of the
+ Macro appear in them. The GNU General Public License (GPL) does govern
+ all other use of the material that constitutes the Autoconf Macro.
+ .
+ This special exception to the GPL applies to versions of the Autoconf
+ Macro released by the Autoconf Archive. When you make and distribute a
+ modified version of the Autoconf Macro, you may extend this special
+ exception to the GPL to apply to your modified version as well.
+
+
+License: BSD-3-clause
+ Redistribution and use in source and binary forms, with or without
+ modification, are permitted provided that the following conditions are
+ met:
+ .
+     * Redistributions of source code must retain the above copyright
+ notice, this list of conditions and the following disclaimer.
+ .
+     * Redistributions in binary form must reproduce the above
+ copyright notice, this list of conditions and the following disclaimer
+ in the documentation and/or other materials provided with the
+ distribution.
+ .
+     * The names of its contributors may not be used to endorse or
+ promote products derived from this software without specific prior
+ written permission.
+ .
+ THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+ "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+ LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+ A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+ OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+ SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+ LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+ DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+ THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+ (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+ OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+
+License: No-Modify
+ Everyone is permitted to copy and distribute verbatim copies
+ of this license document, but changing it is not allowed.

debian/libwolfssl-dev.docs

@@ -0,0 +1,3 @@
+NEWS
+README
+doc/README.txt

debian/libwolfssl-dev.install

@@ -0,0 +1,4 @@
+usr/include/*
+usr/lib/*/lib*.a
+usr/lib/*/lib*.so
+usr/lib/*/pkgconfig/*

debian/libwolfssl15.install

@@ -0,0 +1 @@
+usr/lib/*/lib*.so.*

debian/patches/dfsg.patch

@@ -0,0 +1,31 @@
+Description: Strike references to removed non-DFSG sources from build files
+Forwarded: no
+From: Felix Lechner <felix.lechner@lease-up.com>
+--- a/Makefile.am
++++ b/Makefile.am
+@@ -113,25 +113,6 @@ include tests/include.am
+ include sslSniffer/sslSnifferTest/include.am
+ include rpm/include.am
+ 
+-# Exclude references to non-DFSG sources from build files
+-if !BUILD_DISTRO
+-include mqx/util_lib/Sources/include.am
+-include mqx/wolfcrypt_benchmark/Sources/include.am
+-include mqx/wolfcrypt_test/Sources/include.am
+-include mqx/wolfssl/include.am
+-include mqx/wolfssl_client/Sources/include.am
+-include mplabx/include.am
+-include mplabx/wolfcrypt_benchmark.X/nbproject/include.am
+-include mplabx/wolfcrypt_test.X/nbproject/include.am
+-include mplabx/wolfssl.X/nbproject/include.am
+-include mcapi/include.am
+-include mcapi/wolfcrypt_mcapi.X/nbproject/include.am
+-include mcapi/wolfcrypt_test.X/nbproject/include.am
+-include mcapi/wolfssl.X/nbproject/include.am
+-include mcapi/zlib.X/nbproject/include.am
+-include tirtos/include.am
+-include IDE/include.am
+-endif
+ include scripts/include.am
+ 
+ if USE_VALGRIND

debian/patches/disable-crl-monitor.patch

@@ -0,0 +1,17 @@
+Description: Disable CRL monitor on all architectures
+ CRL monitor is unvailable on Debian architecture kFreeBSD, causes FTBFS
+Author: Felix Lechner <felix.lechner@lease-up.com>
+Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860514
+Last-Update: 2017-04-22
+---
+This patch header follows DEP-3: http://dep.debian.net/deps/dep3/
+--- a/configure.ac
++++ b/configure.ac
+@@ -194,7 +194,6 @@ then
+     enable_ocspstapling=yes
+     enable_ocspstapling2=yes
+     enable_crl=yes
+-    enable_crl_monitor=yes
+     enable_sni=yes
+     enable_maxfragment=yes
+     enable_alpn=yes

debian/patches/fix-hurd-i386-flags.patch

@@ -0,0 +1,18 @@
+Description: Fix type definition for socklen_t on hurd-i386
+ Based on http://bugs.mysql.com/bug.php?id=22326
+Author: Felix Lechner <felix.lechner@lease-up.com>
+Forwarded: no
+Last-Update: 2017-04-22
+---
+This patch header follows DEP-3: http://dep.debian.net/deps/dep3/
+--- a/wolfssl/test.h
++++ b/wolfssl/test.h
+@@ -160,7 +160,7 @@
+ #endif
+ #endif /* WOLFSSL_SOCKET_IS_INVALID */
+ 
+-#if defined(__MACH__) || defined(USE_WINDOWS_API)
++#if defined(USE_WINDOWS_API)
+     #ifndef _SOCKLEN_T
+         typedef int socklen_t;
+     #endif

debian/patches/improve-clean-target.patch

@@ -0,0 +1,14 @@
+Description: Fix clean target for repeated builds
+Author: Felix Lechner <felix.lechner@lease-up.com>
+Forwarded: no
+Last-Update: 2017-12-18
+---
+This patch header follows DEP-3: http://dep.debian.net/deps/dep3/
+--- a/cyassl/include.am
++++ b/cyassl/include.am
+@@ -29,3 +29,5 @@ noinst_HEADERS+=         cyassl/options.
+ else
+ nobase_include_HEADERS+= cyassl/options.h
+ endif
++
++CLEANFILES+=cyassl/options.h

debian/patches/series

@@ -0,0 +1,5 @@
+improve-clean-target.patch
+dfsg.patch
+fix-hurd-i386-flags.patch
+turn-off-fastmath-for-amd64.patch
+disable-crl-monitor.patch

debian/patches/turn-off-fastmath-for-amd64.patch

@@ -0,0 +1,21 @@
+Description: Turn off fastmath for amd64, where it is default
+ Enabling fastmath just for amd64 causes the shared library symbols to
+ become architecture-dependent.
+Author: Felix Lechner <felix.lechner@lease-up.com>
+Forwarded: not-needed
+Last-Update: 2017-04-22
+---
+This patch header follows DEP-3: http://dep.debian.net/deps/dep3/
+--- a/configure.ac
++++ b/configure.ac
+@@ -3036,10 +3036,6 @@ fi
+ # set fastmath default
+ FASTMATH_DEFAULT=no
+ 
+-if test "$host_cpu" = "x86_64"
+-then
+-    FASTMATH_DEFAULT=yes
+-fi
+ 
+ # fastmath
+ AC_ARG_ENABLE([fastmath],

debian/rules

@@ -0,0 +1,31 @@
+#!/usr/bin/make -f
+# -*- makefile -*-
+
+include /usr/share/dpkg/pkg-info.mk
+
+# Uncomment this to turn on verbose mode.
+#export DH_VERBOSE=1
+
+# Uncomment this to change the hardening options
+export DEB_BUILD_MAINT_OPTIONS = hardening=+all
+
+#VERSION=$(shell dpkg-parsechangelog |grep ^Version:|cut -d ' ' -f 2)
+# following is to avoid a lintian warning, but untested
+#VERSION=$(shell echo $DEB_VERSION |cut -d ' ' -f 2)
+
+%:
+	dh $@ --with autoreconf,autotools_dev
+#	dh $@ --with dkms
+
+override_dh_auto_configure:
+	dh_auto_configure -- \
+		--enable-distro \
+		--disable-examples \
+		--disable-silent-rules \
+		--disable-debug
+
+override_dh_strip:
+	dh_strip --dbgsym-migration='libwolfssl3-dbg (<< 3.9.10-1~)'
+
+#override_dh_dkms:
+#	dh_dkms -V $(VERSION)

debian/source/format

@@ -0,0 +1 @@
+3.0 (quilt)

debian/upstream/signing-key.asc

@@ -0,0 +1,37 @@
+-----BEGIN PGP PUBLIC KEY BLOCK-----
+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+=xdfp
+-----END PGP PUBLIC KEY BLOCK-----

debian/watch

@@ -0,0 +1,9 @@
+version=4
+
+opts=\
+dversionmangle=s/\+dfsg$//,\
+filenamemangle=s/.+\/v?(\d\S+)-stable\.tar\.gz/wolfssl-$1\.tar\.gz/,\
+pgpsigurlmangle=s/archive\/v(\d\S+)\.tar\.gz/releases\/download\/v$1\/wolfssl-$1\.tar\.gz\.asc/,\
+repacksuffix=+dfsg \
+  https://github.com/wolfSSL/wolfssl/releases .*/v(\d\S+)-stable\.tar\.gz
+

debian/wolfssl-dkms.dkms

@@ -0,0 +1,2 @@
+PACKAGE_NAME="wolfssl"
+PACKAGE_VERSION=#MODULE_VERSION#