David Benjamin 30152fdfc1 Always buffer DTLS retransmits. The DTLS bbio logic is rather problematic, but this shouldn't make things worse. In the in-handshake case, the new code merges the per-message (unchecked) BIO_flush calls into one call at the end but otherwise the BIO is treated as is. Otherwise any behavior around non-block writes should be preserved. In the post-handshake case, we now install the buffer when we didn't previously. On write error, the buffer will have garbage in it, but it will be discarded, so that will preserve any existing retry behavior. (Arguably the existing retry behavior is a bug, but that's another matter.) Add a test for all this, otherwise it is sure to regress. Testing for record-packing is a little fuzzy, but we can assert ChangeCipherSpec always shares a record with something. BUG=57 Change-Id: I8603f20811d502c71ded2943b0e72a8bdc4e46f2 Reviewed-on: https://boringssl-review.googlesource.com/7871 Reviewed-by: Adam Langley <agl@google.com>		pirms 8 gadiem
.github	Add a PULL_REQUEST_TEMPLATE.	pirms 8 gadiem
crypto	Do RSA blinding unless \|e\| is NULL and specifically requested not to.	pirms 8 gadiem
decrepit	Revert md_len removal from SHA256_CTX and SHA512_CTX.	pirms 8 gadiem
fuzz	Add standalone PKCS#8 and SPKI fuzzers.	pirms 8 gadiem
include/openssl	Add BORINGSSL_API_VERSION.	pirms 8 gadiem
ssl	Always buffer DTLS retransmits.	pirms 8 gadiem
tool	Pass array by reference in newhope speed test.	pirms 8 gadiem
util	Fix vs_toolchain.py, possibly.	pirms 8 gadiem
.clang-format	Import `newhope' (post-quantum key exchange).	pirms 8 gadiem
.gitignore	Fix documentation generation on Windows.	pirms 9 gadiem
BUILDING.md	Bump requirements to MSVC 2015.	pirms 8 gadiem
CMakeLists.txt	Start assuming MSVC 2015.	pirms 8 gadiem
CONTRIBUTING.md	Add a CONTRIBUTING.md file.	pirms 8 gadiem
FUZZING.md	Add standalone PKCS#8 and SPKI fuzzers.	pirms 8 gadiem
INCORPORATING.md	Correct markdown misinterpretation.	pirms 8 gadiem
LICENSE	Add some bug references to the LICENSE file.	pirms 8 gadiem
PORTING.md	Document the d2i object reuse changes in PORTING.md.	pirms 8 gadiem
README.md	Add document about incorporating BoringSSL into a project.	pirms 8 gadiem
STYLE.md	Update link to Google style guide.	pirms 9 gadiem
codereview.settings	Add a codereview.settings file.	pirms 10 gadiem

README.md

BoringSSL

BoringSSL is a fork of OpenSSL that is designed to meet Google’s needs.

Although BoringSSL is an open source project, it is not intended for general use, as OpenSSL is. We don’t recommend that third parties depend upon it. Doing so is likely to be frustrating because there are no guarantees of API or ABI stability.

Programs ship their own copies of BoringSSL when they use it and we update everything as needed when deciding to make API changes. This allows us to mostly avoid compromises in the name of compatibility. It works for us, but it may not work for you.

BoringSSL arose because Google used OpenSSL for many years in various ways and, over time, built up a large number of patches that were maintained while tracking upstream OpenSSL. As Google’s product portfolio became more complex, more copies of OpenSSL sprung up and the effort involved in maintaining all these patches in multiple places was growing steadily.

Currently BoringSSL is the SSL library in Chrome/Chromium, Android (but it’s not part of the NDK) and a number of other apps/programs.

There are other files in this directory which might be helpful:

PORTING.md: how to port OpenSSL-using code to BoringSSL.
BUILDING.md: how to build BoringSSL
INCORPORATING.md: how to incorporate BoringSSL into a project.
STYLE.md: rules and guidelines for coding style.
include/openssl: public headers with API documentation in comments. Also available online.
FUZZING.md: information about fuzzing BoringSSL.
CONTRIBUTING.md: how to contribute to BoringSSL.