|author||David Benjamin <email@example.com>||Tue Jan 12 18:18:46 2021 -0500|
|committer||CQ bot account: firstname.lastname@example.org <email@example.com>||Wed Jan 13 18:35:42 2021 +0000|
Fix ALPS state machine in QUIC servers. The state machine around EndOfEarlyData is a bit messy, which caused a problem introducing the new message in QUIC. We keep waffling on whether that state junction should no-op the EndOfEarlyData state or skip it. Since skipping it caused us to miss this spot, let's try no-op-ing it. As a test, so this CL is easier to cherry-pick, I've just duplicated the basic server test. Better, however, would be to run all the extensions tests under QUIC. (In particular, this is missing 0-RTT coverage.) But this is a large diff and requires improving the mock QUIC transport, etc., in runner. That work is done in follow-up CLs, which replace this duplicated test. Change-Id: I25b6feabdc6e5393ba7f486651986a90e3721667 Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/44985 Commit-Queue: David Benjamin <firstname.lastname@example.org> Reviewed-by: Adam Langley <email@example.com>
BoringSSL is a fork of OpenSSL that is designed to meet Google's needs.
Although BoringSSL is an open source project, it is not intended for general use, as OpenSSL is. We don't recommend that third parties depend upon it. Doing so is likely to be frustrating because there are no guarantees of API or ABI stability.
Programs ship their own copies of BoringSSL when they use it and we update everything as needed when deciding to make API changes. This allows us to mostly avoid compromises in the name of compatibility. It works for us, but it may not work for you.
BoringSSL arose because Google used OpenSSL for many years in various ways and, over time, built up a large number of patches that were maintained while tracking upstream OpenSSL. As Google's product portfolio became more complex, more copies of OpenSSL sprung up and the effort involved in maintaining all these patches in multiple places was growing steadily.
Currently BoringSSL is the SSL library in Chrome/Chromium, Android (but it's not part of the NDK) and a number of other apps/programs.
There are other files in this directory which might be helpful: