kris
/
boringssl
1
0
Forka 0
Codice Problemi 0 Pull Requests 0 Rilasci 0 Wiki Attività
Non puoi selezionare più di 25 argomenti Gli argomenti devono iniziare con una lettera o un numero, possono includere trattini ('-') e possono essere lunghi fino a 35 caratteri.
5524 Commit
12 Rami (Branch)
38 MiB
Albero (Tree): 2745ef9082
Rami (Branch) Tag
${ item.name }
Crea branch ${ searchTerm }
da '2745ef9082'
${ noResults }
boringssl/BUILDING.md

BUILDING.md 8.0 KiB
Originale Vista normale Cronologia

Markdown-ify BUILDING. Change-Id: Icd3cba6522ce47a4dfe699204982b5b692d3d62e Reviewed-on: https://boringssl-review.googlesource.com/5811 Reviewed-by: Adam Langley <agl@google.com>
9 anni fa
Do a cursory conversion of a few tests to GTest. For now, this is the laziest conversion possible. The intent is to just get the build setup ready so that we can get everything working in our consumers. The intended end state is: - The standalone build produces three test targets, one per library: {crypto,ssl,decrepit}_tests. - Each FOO_test is made up of: FOO/**/*_test.cc crypto/test/gtest_main.cc test_support - generate_build_files.py emits variables crypto_test_sources and ssl_test_sources. These variables are populated with FindCFiles, looking for *_test.cc. - The consuming file assembles those variables into the two test targets (plus decrepit) from there. This avoids having generate_build_files.py emit actual build rules. - Our standalone builders, Chromium, and Android just run the top-level test targets using whatever GTest-based reporting story they have. In transition, we start by converting one of two tests in each library to populate the three test targets. Those are added to all_tests.json and all_tests.go hacked to handle them transparently. This keeps our standalone builder working. generate_build_files.py, to start with, populates the new source lists manually and subtracts them out of the old machinery. We emit both for the time being. When this change rolls in, we'll write all the build glue needed to build the GTest-based tests and add it to consumers' continuous builders. Next, we'll subsume a file-based test and get the consumers working with that. (I.e. make sure the GTest targets can depend on a data file.) Once that's all done, we'll be sure all this will work. At that point, we start subsuming the remaining tests into the GTest targets and, asynchronously, rewriting tests to use GTest properly rather than cursory conversion here. When all non-GTest tests are gone, the old generate_build_files.py hooks will be removed, consumers updated to not depend on them, and standalone builders converted to not rely on all_tests.go, which can then be removed. (Unless bits end up being needed as a malloc test driver. I'm thinking we'll want to do something with --gtest_filter.) As part of this CL, I've bumped the CMake requirements (for target_include_directories) and added a few suppressions for warnings that GTest doesn't pass. BUG=129 Change-Id: I881b26b07a8739cc0b52dbb51a30956908e1b71a Reviewed-on: https://boringssl-review.googlesource.com/13232 Reviewed-by: Adam Langley <agl@google.com>
7 anni fa
Markdown-ify BUILDING. Change-Id: Icd3cba6522ce47a4dfe699204982b5b692d3d62e Reviewed-on: https://boringssl-review.googlesource.com/5811 Reviewed-by: Adam Langley <agl@google.com>
9 anni fa
Document how to regenerate crypto/chacha/chacha_vec_arm.S. Also, organize the links in BUILDING.md sensibly. Change-Id: Ie9c65750849fcdab7a6a6bf11d1c9cdafb53bc00 Reviewed-on: https://boringssl-review.googlesource.com/6140 Reviewed-by: Adam Langley <alangley@gmail.com>
9 anni fa
Updating BUILDING.md for windows. Updating the Perl docs to describe behavior of Strawberry Perl and possible interaction with CMake on Windows. Also adding a few other links and instructions for using CMake/Ninja to build release mode with position independent code, since this seems generally useful. Change-Id: I616c0d267da749fe90673bc9e8bde9ec181fec25 Reviewed-on: https://boringssl-review.googlesource.com/7113 Reviewed-by: David Benjamin <davidben@google.com>
8 anni fa
Markdown-ify BUILDING. Change-Id: Icd3cba6522ce47a4dfe699204982b5b692d3d62e Reviewed-on: https://boringssl-review.googlesource.com/5811 Reviewed-by: Adam Langley <agl@google.com>
9 anni fa
Update some URLs in BUILDING.md. Change-Id: Ic7aa22b10d2d69bdc3a548273640574203e93012 Reviewed-on: https://boringssl-review.googlesource.com/7071 Reviewed-by: Adam Langley <agl@google.com>
8 anni fa
Document how to regenerate crypto/chacha/chacha_vec_arm.S. Also, organize the links in BUILDING.md sensibly. Change-Id: Ie9c65750849fcdab7a6a6bf11d1c9cdafb53bc00 Reviewed-on: https://boringssl-review.googlesource.com/6140 Reviewed-by: Adam Langley <alangley@gmail.com>
9 anni fa
Markdown-ify BUILDING. Change-Id: Icd3cba6522ce47a4dfe699204982b5b692d3d62e Reviewed-on: https://boringssl-review.googlesource.com/5811 Reviewed-by: Adam Langley <agl@google.com>
9 anni fa
Document how to regenerate crypto/chacha/chacha_vec_arm.S. Also, organize the links in BUILDING.md sensibly. Change-Id: Ie9c65750849fcdab7a6a6bf11d1c9cdafb53bc00 Reviewed-on: https://boringssl-review.googlesource.com/6140 Reviewed-by: Adam Langley <alangley@gmail.com>
9 anni fa
Markdown-ify BUILDING. Change-Id: Icd3cba6522ce47a4dfe699204982b5b692d3d62e Reviewed-on: https://boringssl-review.googlesource.com/5811 Reviewed-by: Adam Langley <agl@google.com>
9 anni fa
Document how to regenerate crypto/chacha/chacha_vec_arm.S. Also, organize the links in BUILDING.md sensibly. Change-Id: Ie9c65750849fcdab7a6a6bf11d1c9cdafb53bc00 Reviewed-on: https://boringssl-review.googlesource.com/6140 Reviewed-by: Adam Langley <alangley@gmail.com>
9 anni fa
Markdown-ify BUILDING. Change-Id: Icd3cba6522ce47a4dfe699204982b5b692d3d62e Reviewed-on: https://boringssl-review.googlesource.com/5811 Reviewed-by: Adam Langley <agl@google.com>
9 anni fa
Bump requirements to MSVC 2015. Track the Chromium requirements. This makes our bots build with 2015 instead of 2013. BUG=43 Change-Id: Id5329900a5d1d5fae4b5b22299ed47bc1b947dd8 Reviewed-on: https://boringssl-review.googlesource.com/7820 Reviewed-by: Steven Valdez <svaldez@google.com> Reviewed-by: David Benjamin <davidben@google.com>
8 anni fa
Updating BUILDING.md for windows. Updating the Perl docs to describe behavior of Strawberry Perl and possible interaction with CMake on Windows. Also adding a few other links and instructions for using CMake/Ninja to build release mode with position independent code, since this seems generally useful. Change-Id: I616c0d267da749fe90673bc9e8bde9ec181fec25 Reviewed-on: https://boringssl-review.googlesource.com/7113 Reviewed-by: David Benjamin <davidben@google.com>
8 anni fa
Document compiler and assembler requirements. The minimum version is purely based on what we've patched out of the perlasm files. I'm assuming they're accurate. Change-Id: I5ae176cf793512125fa78f203a1314396e8a14d7 Reviewed-on: https://boringssl-review.googlesource.com/8238 Reviewed-by: Adam Langley <agl@google.com>
8 anni fa
Markdown-ify BUILDING. Change-Id: Icd3cba6522ce47a4dfe699204982b5b692d3d62e Reviewed-on: https://boringssl-review.googlesource.com/5811 Reviewed-by: Adam Langley <agl@google.com>
9 anni fa
Set up Go modules. This should make it easier for us to reuse Go code properly. util/fipstools is kind of a mess. runner has been using relative imports, but Go seems to prefer this mechanism these days. Update-Note: The import spelling in ssl/test/runner changes. Also we now require Go 1.11. Or you could clone us into GOPATH, but no one does that. Change-Id: I8bf91e1e0345b3d0b3d17f5c642fe78b415b7dde Reviewed-on: https://boringssl-review.googlesource.com/31884 Reviewed-by: Adam Langley <agl@google.com>
6 anni fa
Document how to regenerate crypto/chacha/chacha_vec_arm.S. Also, organize the links in BUILDING.md sensibly. Change-Id: Ie9c65750849fcdab7a6a6bf11d1c9cdafb53bc00 Reviewed-on: https://boringssl-review.googlesource.com/6140 Reviewed-by: Adam Langley <alangley@gmail.com>
9 anni fa
Revert ADX due to build issues. Using ADX instructions requires relatively new assemblers. Conscrypt are currently using Yasm 1.2.0. Revert these for the time being to unbreak their build. Change-Id: Iaba5761ccedcafaffb5ca79a8eaf7fa565583c32 Reviewed-on: https://boringssl-review.googlesource.com/19244 Commit-Queue: David Benjamin <davidben@google.com> Commit-Queue: Adam Langley <agl@google.com> Reviewed-by: Adam Langley <agl@google.com>
7 anni fa
Document compiler and assembler requirements. The minimum version is purely based on what we've patched out of the perlasm files. I'm assuming they're accurate. Change-Id: I5ae176cf793512125fa78f203a1314396e8a14d7 Reviewed-on: https://boringssl-review.googlesource.com/8238 Reviewed-by: Adam Langley <agl@google.com>
8 anni fa
Markdown-ify BUILDING. Change-Id: Icd3cba6522ce47a4dfe699204982b5b692d3d62e Reviewed-on: https://boringssl-review.googlesource.com/5811 Reviewed-by: Adam Langley <agl@google.com>
9 anni fa
Updating BUILDING.md for windows. Updating the Perl docs to describe behavior of Strawberry Perl and possible interaction with CMake on Windows. Also adding a few other links and instructions for using CMake/Ninja to build release mode with position independent code, since this seems generally useful. Change-Id: I616c0d267da749fe90673bc9e8bde9ec181fec25 Reviewed-on: https://boringssl-review.googlesource.com/7113 Reviewed-by: David Benjamin <davidben@google.com>
8 anni fa
Markdown-ify BUILDING. Change-Id: Icd3cba6522ce47a4dfe699204982b5b692d3d62e Reviewed-on: https://boringssl-review.googlesource.com/5811 Reviewed-by: Adam Langley <agl@google.com>
9 anni fa
Add OPENSSL_SMALL. Intel's P-256 code has very large tables and things like Chromium just don't need that extra size. However, servers generally do so this change adds an OPENSSL_SMALL define that currently just drops the 64-bit P-224 but will gate Intel's P-256 in the future too. Change-Id: I2e55c6e06327fafabef9b96d875069d95c0eea81 Reviewed-on: https://boringssl-review.googlesource.com/6362 Reviewed-by: Adam Langley <alangley@gmail.com>
9 anni fa
Updating BUILDING.md for windows. Updating the Perl docs to describe behavior of Strawberry Perl and possible interaction with CMake on Windows. Also adding a few other links and instructions for using CMake/Ninja to build release mode with position independent code, since this seems generally useful. Change-Id: I616c0d267da749fe90673bc9e8bde9ec181fec25 Reviewed-on: https://boringssl-review.googlesource.com/7113 Reviewed-by: David Benjamin <davidben@google.com>
8 anni fa
Markdown-ify BUILDING. Change-Id: Icd3cba6522ce47a4dfe699204982b5b692d3d62e Reviewed-on: https://boringssl-review.googlesource.com/5811 Reviewed-by: Adam Langley <agl@google.com>
9 anni fa
Document the NDK's built-in toolchain file. The third-party toolchain file doesn't actually work with newer NDKs, and the one shipped with the NDK has fewer bugs. Change-Id: I59e1db393f0d66b186fb71590fab14db7faa0756 Reviewed-on: https://boringssl-review.googlesource.com/24165 Reviewed-by: Adam Langley <agl@google.com>
6 anni fa
Markdown-ify BUILDING. Change-Id: Icd3cba6522ce47a4dfe699204982b5b692d3d62e Reviewed-on: https://boringssl-review.googlesource.com/5811 Reviewed-by: Adam Langley <agl@google.com>
9 anni fa
Update Android build instructions. We now have a copy of android-cmake. Also remove the mention of running cmake twice. It seems to work fine once? The API level also got specified twice somehow. BUG=26 Change-Id: I1331b079a4d8531cd53f7de3605ac318c14b3e26 Reviewed-on: https://boringssl-review.googlesource.com/7985 Reviewed-by: Adam Langley <agl@google.com>
8 anni fa
Markdown-ify BUILDING. Change-Id: Icd3cba6522ce47a4dfe699204982b5b692d3d62e Reviewed-on: https://boringssl-review.googlesource.com/5811 Reviewed-by: Adam Langley <agl@google.com>
9 anni fa
Update Android build instructions. We now have a copy of android-cmake. Also remove the mention of running cmake twice. It seems to work fine once? The API level also got specified twice somehow. BUG=26 Change-Id: I1331b079a4d8531cd53f7de3605ac318c14b3e26 Reviewed-on: https://boringssl-review.googlesource.com/7985 Reviewed-by: Adam Langley <agl@google.com>
8 anni fa
Document the NDK's built-in toolchain file. The third-party toolchain file doesn't actually work with newer NDKs, and the one shipped with the NDK has fewer bugs. Change-Id: I59e1db393f0d66b186fb71590fab14db7faa0756 Reviewed-on: https://boringssl-review.googlesource.com/24165 Reviewed-by: Adam Langley <agl@google.com>
6 anni fa
Markdown-ify BUILDING. Change-Id: Icd3cba6522ce47a4dfe699204982b5b692d3d62e Reviewed-on: https://boringssl-review.googlesource.com/5811 Reviewed-by: Adam Langley <agl@google.com>
9 anni fa
Update Android build instructions. We now have a copy of android-cmake. Also remove the mention of running cmake twice. It seems to work fine once? The API level also got specified twice somehow. BUG=26 Change-Id: I1331b079a4d8531cd53f7de3605ac318c14b3e26 Reviewed-on: https://boringssl-review.googlesource.com/7985 Reviewed-by: Adam Langley <agl@google.com>
8 anni fa
Document the NDK's built-in toolchain file. The third-party toolchain file doesn't actually work with newer NDKs, and the one shipped with the NDK has fewer bugs. Change-Id: I59e1db393f0d66b186fb71590fab14db7faa0756 Reviewed-on: https://boringssl-review.googlesource.com/24165 Reviewed-by: Adam Langley <agl@google.com>
6 anni fa
Markdown-ify BUILDING. Change-Id: Icd3cba6522ce47a4dfe699204982b5b692d3d62e Reviewed-on: https://boringssl-review.googlesource.com/5811 Reviewed-by: Adam Langley <agl@google.com>
9 anni fa
Add the start of standalone iOS build support. The built-in CMake support seems to basically work, though it believes you want to build a fat binary which doesn't work with how we build perlasm. (We'd need to stop conditioning on CMAKE_SYSTEM_PROCESSOR at all, wrap all the generated assembly files in ifdefs, and convince the build to emit more than one. Probably not worth bothering for now.) We still, of course, need to actually test the assembly on iOS before this can be shipped anywhere. BUG=48 Change-Id: I6ae71d98d706be03142b82f7844d1c9b02a2b832 Reviewed-on: https://boringssl-review.googlesource.com/14645 Commit-Queue: David Benjamin <davidben@google.com> Commit-Queue: Steven Valdez <svaldez@google.com> Reviewed-by: Steven Valdez <svaldez@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>
7 anni fa
Support symbol prefixes - In base.h, if BORINGSSL_PREFIX is defined, include boringssl_prefix_symbols.h - In all .S files, if BORINGSSL_PREFIX is defined, include boringssl_prefix_symbols_asm.h - In base.h, BSSL_NAMESPACE_BEGIN and BSSL_NAMESPACE_END are defined with appropriate values depending on whether BORINGSSL_PREFIX is defined; these macros are used in place of 'namespace bssl {' and '}' - Add util/make_prefix_headers.go, which takes a list of symbols and auto-generates the header files mentioned above - In CMakeLists.txt, if BORINGSSL_PREFIX and BORINGSSL_PREFIX_SYMBOLS are defined, run util/make_prefix_headers.go to generate header files - In various CMakeLists.txt files, add "global_target" that all targets depend on to give us a place to hook logic that must run before all other targets (in particular, the header file generation logic) - Document this in BUILDING.md, including the fact that it is the caller's responsibility to provide the symbol list and keep it up to date - Note that this scheme has not been tested on Windows, and likely does not work on it; Windows support will need to be added in a future commit Change-Id: If66a7157f46b5b66230ef91e15826b910cf979a2 Reviewed-on: https://boringssl-review.googlesource.com/31364 Commit-Queue: David Benjamin <davidben@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org> Reviewed-by: David Benjamin <davidben@google.com>
6 anni fa
Add util/read_symbols.go - Add util/read_symbols.go to read exported symbols from an AR file for use with the symbol prefixing feature - Move util/fipstools/fipscommon/ar.go -> util/ar/ar.go - util/ar/ar.go: Support BSD-style AR files Change-Id: I171b3b952e69c4b87ac04751b7dba3ea9bc2504e Reviewed-on: https://boringssl-review.googlesource.com/32024 Reviewed-by: David Benjamin <davidben@google.com>
6 anni fa
Support symbol prefixes - In base.h, if BORINGSSL_PREFIX is defined, include boringssl_prefix_symbols.h - In all .S files, if BORINGSSL_PREFIX is defined, include boringssl_prefix_symbols_asm.h - In base.h, BSSL_NAMESPACE_BEGIN and BSSL_NAMESPACE_END are defined with appropriate values depending on whether BORINGSSL_PREFIX is defined; these macros are used in place of 'namespace bssl {' and '}' - Add util/make_prefix_headers.go, which takes a list of symbols and auto-generates the header files mentioned above - In CMakeLists.txt, if BORINGSSL_PREFIX and BORINGSSL_PREFIX_SYMBOLS are defined, run util/make_prefix_headers.go to generate header files - In various CMakeLists.txt files, add "global_target" that all targets depend on to give us a place to hook logic that must run before all other targets (in particular, the header file generation logic) - Document this in BUILDING.md, including the fact that it is the caller's responsibility to provide the symbol list and keep it up to date - Note that this scheme has not been tested on Windows, and likely does not work on it; Windows support will need to be added in a future commit Change-Id: If66a7157f46b5b66230ef91e15826b910cf979a2 Reviewed-on: https://boringssl-review.googlesource.com/31364 Commit-Queue: David Benjamin <davidben@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org> Reviewed-by: David Benjamin <davidben@google.com>
6 anni fa
Markdown-ify BUILDING. Change-Id: Icd3cba6522ce47a4dfe699204982b5b692d3d62e Reviewed-on: https://boringssl-review.googlesource.com/5811 Reviewed-by: Adam Langley <agl@google.com>
9 anni fa
Allow ARM capabilities to be set at compile time. Some ARM environments don't support |getauxval| or signals and need to configure the capabilities of the chip at compile time. This change adds defines that allow them to do so. Change-Id: I4e6987f69dd13444029bc7ac7ed4dbf8fb1faa76 Reviewed-on: https://boringssl-review.googlesource.com/6280 Reviewed-by: Adam Langley <agl@google.com>
9 anni fa
Set static armcaps based on __ARM_FEATURE_CRYPTO. Originally we had some confusion around whether the features could be toggled individually or not. Per the ARM C Language Extensions doc[1], __ARM_FEATURE_CRYPTO implies the "crypto extension" which encompasses all of them. The runtime CPUID equivalent can report the features individually, but it seems no one separates them in practice, for now. (If they ever do, probably there'll be a new set of #defines.) [1] http://infocenter.arm.com/help/topic/com.arm.doc.ihi0053c/IHI0053C_acle_2_0.pdf Change-Id: I12915dfc308f58fb005286db75e50d8328eeb3ea Reviewed-on: https://boringssl-review.googlesource.com/16991 Reviewed-by: Adam Langley <agl@google.com> Commit-Queue: Adam Langley <agl@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>
7 anni fa
Allow ARM capabilities to be set at compile time. Some ARM environments don't support |getauxval| or signals and need to configure the capabilities of the chip at compile time. This change adds defines that allow them to do so. Change-Id: I4e6987f69dd13444029bc7ac7ed4dbf8fb1faa76 Reviewed-on: https://boringssl-review.googlesource.com/6280 Reviewed-by: Adam Langley <agl@google.com>
9 anni fa
Add -DOPENSSL_SMALL to CMake. Adding preprocessor flags requires a lot of typing in the CMake command-line (-DCMAKE_C_FLAGS=-DOPENSSL_SMALL -DCMAKE_CXX_FLAGS=-DOPENSSL_SMALL). Change-Id: Ieafc4155d656306c1f22746f780faa5c1d3e27be Reviewed-on: https://boringssl-review.googlesource.com/26784 Reviewed-by: Adam Langley <agl@google.com> Commit-Queue: Adam Langley <agl@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>
6 anni fa
Make the runner tests a go “test” This change makes the runner tests (in ssl/test/runner) act like a normal Go test rather than being a Go binary. This better aligns with some internal tools. Thus, from this point onwards, one has to run the runner tests with `go test` rather than `go run` or `go build && ./runner`. This will break the bots. Change-Id: Idd72c31e8e0c2b7ed9939dacd3b801dbd31710dd Reviewed-on: https://boringssl-review.googlesource.com/6009 Reviewed-by: Matt Braithwaite <mab@google.com> Reviewed-by: David Benjamin <davidben@chromium.org> Reviewed-by: Adam Langley <agl@google.com>
9 anni fa
Add a run_tests target to run all tests. It's very annoying having to remember the right incant every time I want to switch around between my build, build-release, build-asan, etc., output directories. Unfortunately, this target is pretty unfriendly without CMake 3.2+ (and Ninja 1.5+). This combination gives a USES_TERMINAL flag to add_custom_target which uses Ninja's "console" pool, otherwise the output buffering gets in the way. Ubuntu LTS is still on an older CMake, so do a version check in the meantime. CMake also has its own test mechanism (CTest), but this doesn't use it. It seems to prefer knowing what all the tests are and then tries to do its own output management and parallelizing and such. We already have our own runners. all_tests.go could actually be converted tidily, but generate_build_files.py also needs to read it, and runner.go has very specific needs. Naming the target ninja -C build test would be nice, but CTest squats that name and CMake grumps when you use a reserved name, so I've gone with run_tests. Change-Id: Ibd20ebd50febe1b4e91bb19921f3bbbd9fbcf66c Reviewed-on: https://boringssl-review.googlesource.com/6270 Reviewed-by: Adam Langley <alangley@gmail.com>
9 anni fa
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195 
  1. # Building BoringSSL

  2. 

  3. ## Build Prerequisites

  4. 

  5.   * [CMake](https://cmake.org/download/) 2.8.11 or later is required.

  6. 

  7.   * Perl 5.6.1 or later is required. On Windows,

  8.     [Active State Perl](http://www.activestate.com/activeperl/) has been

  9.     reported to work, as has MSYS Perl.

  10.     [Strawberry Perl](http://strawberryperl.com/) also works but it adds GCC

  11.     to `PATH`, which can confuse some build tools when identifying the compiler

  12.     (removing `C:\Strawberry\c\bin` from `PATH` should resolve any problems).

  13.     If Perl is not found by CMake, it may be configured explicitly by setting

  14.     `PERL_EXECUTABLE`.

  15. 

  16.   * On Windows you currently must use [Ninja](https://ninja-build.org/)

  17.     to build; on other platforms, it is not required, but recommended, because

  18.     it makes builds faster.

  19. 

  20.   * If you need to build Ninja from source, then a recent version of

  21.     [Python](https://www.python.org/downloads/) is required (Python 2.7.5 works).

  22. 

  23.   * On Windows only, [Yasm](http://yasm.tortall.net/) is required. If not found

  24.     by CMake, it may be configured explicitly by setting

  25.     `CMAKE_ASM_NASM_COMPILER`.

  26. 

  27.   * A C compiler is required. On Windows, MSVC 14 (Visual Studio 2015) or later

  28.     with Platform SDK 8.1 or later are supported. Recent versions of GCC (4.8+)

  29.     and Clang should work on non-Windows platforms, and maybe on Windows too.

  30.     To build the tests, you also need a C++ compiler with C++11 support.

  31. 

  32.   * The most recent stable version of [Go](https://golang.org/dl/) is required.

  33.     If not found by CMake, the go executable may be configured explicitly by

  34.     setting `GO_EXECUTABLE`.

  35. 

  36.   * To build the x86 and x86\_64 assembly, your assembler must support AVX2

  37.     instructions and MOVBE. If using GNU binutils, you must have 2.22 or later

  38. 

  39. ## Building

  40. 

  41. Using Ninja (note the 'N' is capitalized in the cmake invocation):

  42. 

  43.     mkdir build

  44.     cd build

  45.     cmake -GNinja ..

  46.     ninja

  47. 

  48. Using Make (does not work on Windows):

  49. 

  50.     mkdir build

  51.     cd build

  52.     cmake ..

  53.     make

  54. 

  55. You usually don't need to run `cmake` again after changing `CMakeLists.txt`

  56. files because the build scripts will detect changes to them and rebuild

  57. themselves automatically.

  58. 

  59. Note that the default build flags in the top-level `CMakeLists.txt` are for

  60. debugging—optimisation isn't enabled. Pass `-DCMAKE_BUILD_TYPE=Release` to

  61. `cmake` to configure a release build.

  62. 

  63. If you want to cross-compile then there is an example toolchain file for 32-bit

  64. Intel in `util/`. Wipe out the build directory, recreate it and run `cmake` like

  65. this:

  66. 

  67.     cmake -DCMAKE_TOOLCHAIN_FILE=../util/32-bit-toolchain.cmake -GNinja ..

  68. 

  69. If you want to build as a shared library, pass `-DBUILD_SHARED_LIBS=1`. On

  70. Windows, where functions need to be tagged with `dllimport` when coming from a

  71. shared library, define `BORINGSSL_SHARED_LIBRARY` in any code which `#include`s

  72. the BoringSSL headers.

  73. 

  74. In order to serve environments where code-size is important as well as those

  75. where performance is the overriding concern, `OPENSSL_SMALL` can be defined to

  76. remove some code that is especially large.

  77. 

  78. See [CMake's documentation](https://cmake.org/cmake/help/v3.4/manual/cmake-variables.7.html)

  79. for other variables which may be used to configure the build.

  80. 

  81. ### Building for Android

  82. 

  83. It's possible to build BoringSSL with the Android NDK using CMake. Recent

  84. versions of the NDK include a CMake toolchain file which works with CMake 3.6.0

  85. or later. This has been tested with version r16b of the NDK.

  86. 

  87. Unpack the Android NDK somewhere and export `ANDROID_NDK` to point to the

  88. directory. Then make a build directory as above and run CMake like this:

  89. 

  90.     cmake -DANDROID_ABI=armeabi-v7a \

  91.           -DCMAKE_TOOLCHAIN_FILE=${ANDROID_NDK}/build/cmake/android.toolchain.cmake \

  92.           -DANDROID_NATIVE_API_LEVEL=16 \

  93.           -GNinja ..

  94. 

  95. Once you've run that, Ninja should produce Android-compatible binaries.  You

  96. can replace `armeabi-v7a` in the above with `arm64-v8a` and use API level 21 or

  97. higher to build aarch64 binaries.

  98. 

  99. For older NDK versions, BoringSSL ships a third-party CMake toolchain file. Use

  100. `../third_party/android-cmake/android.toolchain.cmake` for

  101. `CMAKE_TOOLCHAIN_FILE` instead.

  102. 

  103. For other options, see the documentation in the toolchain file.

  104. 

  105. ### Building for iOS

  106. 

  107. To build for iOS, pass `-DCMAKE_OSX_SYSROOT=iphoneos` and

  108. `-DCMAKE_OSX_ARCHITECTURES=ARCH` to CMake, where `ARCH` is the desired

  109. architecture, matching values used in the `-arch` flag in Apple's toolchain.

  110. 

  111. Passing multiple architectures for a multiple-architecture build is not

  112. supported.

  113. 

  114. ### Building with Prefixed Symbols

  115. 

  116. BoringSSL's build system has experimental support for adding a custom prefix to

  117. all symbols. This can be useful when linking multiple versions of BoringSSL in

  118. the same project to avoid symbol conflicts.

  119. 

  120. In order to build with prefixed symbols, the `BORINGSSL_PREFIX` CMake variable

  121. should specify the prefix to add to all symbols, and the

  122. `BORINGSSL_PREFIX_SYMBOLS` CMake variable should specify the path to a file

  123. which contains a list of symbols which should be prefixed (one per line;

  124. comments are supported with `#`). In other words, `cmake ..

  125. -DBORINGSSL_PREFIX=MY_CUSTOM_PREFIX

  126. -DBORINGSSL_PREFIX_SYMBOLS=/path/to/symbols.txt` will configure the build to add

  127. the prefix `MY_CUSTOM_PREFIX` to all of the symbols listed in

  128. `/path/to/symbols.txt`.

  129. 

  130. It is currently the caller's responsibility to create and maintain the list of

  131. symbols to be prefixed. Alternatively, `util/read_symbols.go` reads the list of

  132. exported symbols from a `.a` file, and can be used in a build script to generate

  133. the symbol list on the fly (by building without prefixing, using

  134. `read_symbols.go` to construct a symbol list, and then building again with

  135. prefixing).

  136. 

  137. This mechanism is under development and may change over time. Please contact the

  138. BoringSSL maintainers if making use of it.

  139. 

  140. ## Known Limitations on Windows

  141. 

  142.   * Versions of CMake since 3.0.2 have a bug in its Ninja generator that causes

  143.     yasm to output warnings

  144. 

  145.         yasm: warning: can open only one input file, only the last file will be processed

  146. 

  147.     These warnings can be safely ignored. The cmake bug is

  148.     http://www.cmake.org/Bug/view.php?id=15253.

  149. 

  150.   * CMake can generate Visual Studio projects, but the generated project files

  151.     don't have steps for assembling the assembly language source files, so they

  152.     currently cannot be used to build BoringSSL.

  153. 

  154. ## Embedded ARM

  155. 

  156. ARM, unlike Intel, does not have an instruction that allows applications to

  157. discover the capabilities of the processor. Instead, the capability information

  158. has to be provided by the operating system somehow.

  159. 

  160. By default, on Linux-based systems, BoringSSL will try to use `getauxval` and

  161. `/proc` to discover the capabilities. But some environments don't support that

  162. sort of thing and, for them, it's possible to configure the CPU capabilities at

  163. compile time.

  164. 

  165. On iOS or builds which define `OPENSSL_STATIC_ARMCAP`, features will be

  166. determined based on the `__ARM_NEON__` and `__ARM_FEATURE_CRYPTO` preprocessor

  167. symbols reported by the compiler. These values are usually controlled by the

  168. `-march` flag. You can also define any of the following to enable the

  169. corresponding ARM feature.

  170. 

  171.   * `OPENSSL_STATIC_ARMCAP_NEON`

  172.   * `OPENSSL_STATIC_ARMCAP_AES`

  173.   * `OPENSSL_STATIC_ARMCAP_SHA1`

  174.   * `OPENSSL_STATIC_ARMCAP_SHA256`

  175.   * `OPENSSL_STATIC_ARMCAP_PMULL`

  176. 

  177. Note that if a feature is enabled in this way, but not actually supported at

  178. run-time, BoringSSL will likely crash.

  179. 

  180. ## Binary Size

  181. 

  182. The implementations of some algorithms require a trade-off between binary size

  183. and performance. For instance, BoringSSL's fastest P-256 implementation uses a

  184. 148 KiB pre-computed table. To optimize instead for binary size, pass

  185. `-DOPENSSL_SMALL=1` to CMake or define the `OPENSSL_SMALL` preprocessor symbol.

  186. 

  187. # Running Tests

  188. 

  189. There are two sets of tests: the C/C++ tests and the blackbox tests. For former

  190. are built by Ninja and can be run from the top-level directory with `go run

  191. util/all_tests.go`. The latter have to be run separately by running `go test`

  192. from within `ssl/test/runner`.

  193. 

  194. Both sets of tests may also be run with `ninja -C build run_tests`, but CMake

  195. 3.2 or later is required to avoid Ninja's output buffering.