Go to file

David Benjamin 0d3a8c6ac0 Don't allow alert records with multiple alerts. This is just kind of a silly thing to do. NSS doesn't allow them either. Fatal alerts would kill the connection regardless and warning alerts are useless. We previously stopped accepting fragmented alerts but still allowed them doubled up. This is in preparation for pulling the shared alert processing code between TLS and DTLS out of read_bytes into some common place. Change-Id: Idbef04e39ad135f9601f5686d41f54531981e0cf Reviewed-on: https://boringssl-review.googlesource.com/7451 Reviewed-by: Emily Stark (Dunn) <estark@google.com> Reviewed-by: David Benjamin <davidben@google.com>		2016-04-18 20:29:02 +00:00
.github	Add a PULL_REQUEST_TEMPLATE.	2016-03-08 15:23:52 +00:00
crypto	Make err_data_generator.go silent by default.	2016-04-18 19:42:15 +00:00
decrepit	Export RSA_padding_add_PKCS1_OAEP[_mgf1]	2016-04-13 21:15:20 +00:00
fuzz	Remove .options files for libFuzzers and update FUZZING.md documentation.	2016-04-12 14:56:57 +00:00
include/openssl	Only use recv/send for socket BIOs on Windows.	2016-04-15 20:31:05 +00:00
ssl	Don't allow alert records with multiple alerts.	2016-04-18 20:29:02 +00:00
tool	Modify 'bssl client' to print the cert subject and issuer	2016-04-07 03:22:19 +00:00
util	Revert "Enable upstream's Poly1305 code."	2016-03-29 22:47:11 +00:00
.clang-format	Inital import.	2014-06-20 13:17:32 -07:00
.gitignore	Fix documentation generation on Windows.	2015-08-19 00:45:42 +00:00
BUILDING.md	Enable upstream's ChaCha20 assembly for x86 and ARM (32- and 64-bit).	2016-02-23 17:19:45 +00:00
CMakeLists.txt	Fix build when using Visual Studio 2015 Update 1.	2016-03-25 21:39:52 +00:00
codereview.settings	Add a codereview.settings file.	2014-11-18 22:21:33 +00:00
CONTRIBUTING.md	Add a CONTRIBUTING.md file.	2016-02-10 21:38:19 +00:00
FUZZING.md	Remove .options files for libFuzzers and update FUZZING.md documentation.	2016-04-12 14:56:57 +00:00
LICENSE	Add some bug references to the LICENSE file.	2016-02-22 20:16:48 +00:00
PORTING.md	Document the d2i object reuse changes in PORTING.md.	2016-02-02 16:21:20 +00:00
README.md	Add a CONTRIBUTING.md file.	2016-02-10 21:38:19 +00:00
STYLE.md	Update link to Google style guide.	2015-11-03 02:02:12 +00:00

README.md

BoringSSL

BoringSSL is a fork of OpenSSL that is designed to meet Google's needs.

Although BoringSSL is an open source project, it is not intended for general use, as OpenSSL is. We don't recommend that third parties depend upon it. Doing so is likely to be frustrating because there are no guarantees of API or ABI stability.

Programs ship their own copies of BoringSSL when they use it and we update everything as needed when deciding to make API changes. This allows us to mostly avoid compromises in the name of compatibility. It works for us, but it may not work for you.

BoringSSL arose because Google used OpenSSL for many years in various ways and, over time, built up a large number of patches that were maintained while tracking upstream OpenSSL. As Google's product portfolio became more complex, more copies of OpenSSL sprung up and the effort involved in maintaining all these patches in multiple places was growing steadily.

Currently BoringSSL is the SSL library in Chrome/Chromium, Android (but it's not part of the NDK) and a number of other apps/programs.

There are other files in this directory which might be helpful:

PORTING.md: how to port OpenSSL-using code to BoringSSL.
BUILDING.md: how to build BoringSSL
STYLE.md: rules and guidelines for coding style.
include/openssl: public headers with API documentation in comments. Also available online.
FUZZING.md: information about fuzzing BoringSSL.
CONTRIBUTING.md: how to contribute to BoringSSL.