Go to file

David Benjamin 12709db355 Stop reporting SSL_R_SHUTDOWN_WHILE_IN_INIT. This effectively reverts `b9824e2417`. This error seems to have mostly just caused confusion in logs and the occasional bug around failing to ERR_clear_error. Consumers tend to blindly call SSL_shutdown when tearing down an SSL (to avoid invalidating sessions). This means handshake failures trigger two errors, which is screwy. Go back to the old behavior where SSL_shutdown while SSL_in_init silently succeeds. Change-Id: I1fcfc92d481b97c840847dc39afe59679cd995f2 Reviewed-on: https://boringssl-review.googlesource.com/13909 Commit-Queue: David Benjamin <davidben@google.com> Commit-Queue: Steven Valdez <svaldez@google.com> Reviewed-by: Steven Valdez <svaldez@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>		2017-02-17 19:49:59 +00:00
.github
crypto	Fix mis-import of upstream cc598f321fbac9c04da5766243ed55d55948637d.	2017-02-17 01:21:29 +00:00
decrepit	Move the SSL BIO into ssl/ from decrepit/.	2017-02-03 21:08:10 +00:00
fuzz	Remove \|X509\| things from SSL_SESSION.	2017-02-10 19:12:04 +00:00
include/openssl	Remove freelist_max_len.	2017-02-17 17:41:42 +00:00
infra/config	Commit-Queue config: effectively remove Andorid builders.	2016-07-26 13:14:47 +00:00
ssl	Stop reporting SSL_R_SHUTDOWN_WHILE_IN_INIT.	2017-02-17 19:49:59 +00:00
third_party	Clear the last GTest warning suppression.	2017-02-16 19:03:32 +00:00
tool	tool: show if server sent SCT staple	2017-02-16 01:20:37 +00:00
util	Convert ec_test to GTest.	2017-02-16 23:33:48 +00:00
.clang-format
.gitignore	Also add util/bot/golang to .gitignore.	2016-12-02 23:39:35 +00:00
API-CONVENTIONS.md	Fix API-CONVENTIONS.md typos.	2017-01-04 01:46:32 +00:00
BUILDING.md	Do a cursory conversion of a few tests to GTest.	2017-01-21 00:17:05 +00:00
CMakeLists.txt	Clear the last GTest warning suppression.	2017-02-16 19:03:32 +00:00
codereview.settings
CONTRIBUTING.md
FUZZING.md	Merge in upstream's certificate corpus.	2016-12-12 21:41:00 +00:00
INCORPORATING.md	Update links to Bazel's site.	2016-10-31 18:16:58 +00:00
LICENSE
PORTING.md	Add a note in PORTING to ask us before adding ifdefs.	2016-08-11 15:48:14 +00:00
README.md	Add an API-CONVENTIONS.md document.	2016-08-04 23:27:49 +00:00
STYLE.md	Work around language and compiler bug in memcpy, etc.	2016-12-21 20:34:47 +00:00

README.md

BoringSSL

BoringSSL is a fork of OpenSSL that is designed to meet Google's needs.

Although BoringSSL is an open source project, it is not intended for general use, as OpenSSL is. We don't recommend that third parties depend upon it. Doing so is likely to be frustrating because there are no guarantees of API or ABI stability.

Programs ship their own copies of BoringSSL when they use it and we update everything as needed when deciding to make API changes. This allows us to mostly avoid compromises in the name of compatibility. It works for us, but it may not work for you.

BoringSSL arose because Google used OpenSSL for many years in various ways and, over time, built up a large number of patches that were maintained while tracking upstream OpenSSL. As Google's product portfolio became more complex, more copies of OpenSSL sprung up and the effort involved in maintaining all these patches in multiple places was growing steadily.

Currently BoringSSL is the SSL library in Chrome/Chromium, Android (but it's not part of the NDK) and a number of other apps/programs.

There are other files in this directory which might be helpful:

PORTING.md: how to port OpenSSL-using code to BoringSSL.
BUILDING.md: how to build BoringSSL
INCORPORATING.md: how to incorporate BoringSSL into a project.
API-CONVENTIONS.md: general API conventions for BoringSSL consumers and developers.
STYLE.md: rules and guidelines for coding style.
include/openssl: public headers with API documentation in comments. Also available online.
FUZZING.md: information about fuzzing BoringSSL.
CONTRIBUTING.md: how to contribute to BoringSSL.