Use google/benchmark for performance tracking In this patch we would vendor google/benchmark and break down the benchmark into individual translation units, so that the benchmark framework can apply filters on which benchmark code to run. This patch vendors google/benchmark 1.9.4 Source: https://github.com/google/benchmark Commit: eddb0241389718a23a42db6af5f0164b6e0139af How to run the benchmark: Benchmarks need to be built by passing in `-DBUILD_TESTING=ON` to CMake, which is set by default. To invoke the benchmarks, execute the `bssl_bench` binary. You have the option to enumerate all of the benchmarks first by passing in `--benchmark_list_tests`. To run specific benchmarks, you may pass in `--benchmark_filter=$regex` where `$regex` is an [`ECMAScript regular expression`](https://cppreference.com/w/cpp/regex/ecmascript.html). You can specify a set of input sizes in bytes for relevant cipher suites with the repeatable flag `-i` or `--input-size`. You can let the benchmark run with a set of various thread counts with the repeatable flag `-t` or `--threads`. For more benchmark configuration options, you may read the manual by passing in `--help` flag on launch. Co-authored-by: Rudolf Polzer <rpolzer@google.com> Bug: 383769319 Change-Id: Ic8d4cfd65065e61ae90c58bddb34463a5f398f14 Signed-off-by: Xiangfei Ding <xfding@google.com> Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/83327 Commit-Queue: David Benjamin <davidben@google.com> Reviewed-by: Adam Langley <agl@google.com> Reviewed-by: David Benjamin <davidben@google.com>
BoringSSL is a fork of OpenSSL that is designed to meet Google's needs.
Although BoringSSL is an open source project, it is not intended for general use, as OpenSSL is. We don't recommend that third parties depend upon it. Doing so is likely to be frustrating because there are no guarantees of API or ABI stability.
Programs ship their own copies of BoringSSL when they use it and we update everything as needed when deciding to make API changes. This allows us to mostly avoid compromises in the name of compatibility. It works for us, but it may not work for you.
BoringSSL arose because Google used OpenSSL for many years in various ways and, over time, built up a large number of patches that were maintained while tracking upstream OpenSSL. As Google's product portfolio became more complex, more copies of OpenSSL sprung up and the effort involved in maintaining all these patches in multiple places was growing steadily.
Currently BoringSSL is the SSL library in Chrome/Chromium, Android (but it's not part of the NDK) and a number of other apps/programs.
Project links:
To file a security issue, use the Chromium process and mention in the report this is for BoringSSL. You can ignore the parts of the process that are specific to Chromium/Chrome.
There are other files in this directory which might be helpful: