David Benjamin 3969fdf860 Test invalid certificates. The fuzzer should discover this instantly, but it's a sufficiently important failure case (don't accidentally drop the certificate on the floor or anything weird like that) that it's probably worth testing. Change-Id: I684932c2e8a88fcf9b2318bf46980d312c66f6ef Reviewed-on: https://boringssl-review.googlesource.com/19744 Commit-Queue: Steven Valdez <svaldez@google.com> Reviewed-by: Steven Valdez <svaldez@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>		7 anos atrás
.github	Add a PULL_REQUEST_TEMPLATE.	8 anos atrás
crypto	Fix build when linux-headers are not installed.	7 anos atrás
decrepit	Run the comment conversion script on decrepit/	7 anos atrás
fipstools	Have run_cavp.go create “resp” directories as needed.	7 anos atrás
fuzz	Run the comment converter on fuzz/ and tool/	7 anos atrás
include/openssl	Migrate TLS 1.2 and below state machines to the new style.	7 anos atrás
infra/config	CQ: bring back Windows builders.	7 anos atrás
ssl	Test invalid certificates.	7 anos atrás
third_party	Fix build with VS 2017.	7 anos atrás
tool	Make SSL_state_string_long work for TLS 1.3.	7 anos atrás
util	Update to Go 1.9 on the bots.	7 anos atrás
.clang-format	Import `newhope' (post-quantum key exchange).	8 anos atrás
.gitignore	Add sde-linux64 to .gitignore.	7 anos atrás
API-CONVENTIONS.md	Fix API-CONVENTIONS.md typos.	7 anos atrás
BUILDING.md	Revert ADX due to build issues.	7 anos atrás
CMakeLists.txt	Tidy up some Windows compiler assumptions.	7 anos atrás
CONTRIBUTING.md	Add a CONTRIBUTING.md file.	8 anos atrás
FUZZING.md	Fix typo in FUZZING.md.	7 anos atrás
INCORPORATING.md	Update links to Bazel's site.	8 anos atrás
LICENSE	Add some bug references to the LICENSE file.	8 anos atrás
PORTING.md	Don't reauthenticate on renegotiation.	7 anos atrás
README.md	Add an API-CONVENTIONS.md document.	8 anos atrás
STYLE.md	Add text about build logic to the style guide.	7 anos atrás
codereview.settings	No-op change to trigger the new Bazel bot.	8 anos atrás
sources.cmake	Implement scrypt from RFC 7914.	7 anos atrás

README.md

BoringSSL

BoringSSL is a fork of OpenSSL that is designed to meet Google’s needs.

Although BoringSSL is an open source project, it is not intended for general use, as OpenSSL is. We don’t recommend that third parties depend upon it. Doing so is likely to be frustrating because there are no guarantees of API or ABI stability.

Programs ship their own copies of BoringSSL when they use it and we update everything as needed when deciding to make API changes. This allows us to mostly avoid compromises in the name of compatibility. It works for us, but it may not work for you.

BoringSSL arose because Google used OpenSSL for many years in various ways and, over time, built up a large number of patches that were maintained while tracking upstream OpenSSL. As Google’s product portfolio became more complex, more copies of OpenSSL sprung up and the effort involved in maintaining all these patches in multiple places was growing steadily.

Currently BoringSSL is the SSL library in Chrome/Chromium, Android (but it’s not part of the NDK) and a number of other apps/programs.

There are other files in this directory which might be helpful:

PORTING.md: how to port OpenSSL-using code to BoringSSL.
BUILDING.md: how to build BoringSSL
INCORPORATING.md: how to incorporate BoringSSL into a project.
API-CONVENTIONS.md: general API conventions for BoringSSL consumers and developers.
STYLE.md: rules and guidelines for coding style.
include/openssl: public headers with API documentation in comments. Also available online.
FUZZING.md: information about fuzzing BoringSSL.
CONTRIBUTING.md: how to contribute to BoringSSL.