Google Git
Sign in
boringssl/boringssl/c18ce818e4402f86deec4ed649ba3e51d40381ad
commit
c18ce818e4402f86deec4ed649ba3e51d40381ad
[log] [tgz]
author
David Benjamin <davidben@google.com>
Thu Feb 19 12:05:57 2026 -0500
committer
Boringssl LUCI CQ <boringssl-scoped@luci-project-accounts.iam.gserviceaccount.com>
Sun Feb 22 10:18:56 2026 -0800
tree
123afaabe87c81a3792fbcaaa4f02709de8a3db9
parent
05770671afff4890679e61515d6432b58ab5afde [diff]
Base BIO_free's return value on only the input BIO

In so far as this return value makes any sense (it doesn't), it should
report the status of just the input BIO. See bug for discussion.

Update-Note: BIO_free(bio) will now consistently return one if this was
the last reference to bio. Previously, it would return zero if bio were
freed, but bio->next_bio were still shared. Affected applications should
be rare; BIO chains are rare, and applications should not be looking at
BIO_free's return value anyway.

Bug: 485657226
Change-Id: Ib82637fc9d16decf207d9d19c73aba1e168e0beb
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/89708
Commit-Queue: Xiangfei Ding <xfding@google.com>
Reviewed-by: Xiangfei Ding <xfding@google.com>
Auto-Submit: David Benjamin <davidben@google.com>
3 files changed
tree: 123afaabe87c81a3792fbcaaa4f02709de8a3db9
  1. .bcr/
  2. bench/
  3. cmake/
  4. crypto/
  5. decrepit/
  6. docs/
  7. fuzz/
  8. gen/
  9. include/
  10. infra/
  11. pki/
  12. rust/
  13. ssl/
  14. third_party/
  15. tool/
  16. util/
  17. .bazelignore
  18. .bazelrc
  19. .bazelversion
  20. .clang-format
  21. .clang-format-ignore
  22. .gitignore
  23. API-CONVENTIONS.md
  24. AUTHORS
  25. BREAKING-CHANGES.md
  26. BUILD.bazel
  27. build.json
  28. BUILDING.md
  29. CMakeLists.txt
  30. codereview.settings
  31. CONTRIBUTING.md
  32. FUZZING.md
  33. go.mod
  34. go.sum
  35. INCORPORATING.md
  36. LICENSE
  37. MODULE.bazel
  38. MODULE.bazel.lock
  39. PORTING.md
  40. PRESUBMIT.py
  41. PrivacyInfo.xcprivacy
  42. README.md
  43. SANDBOXING.md
  44. SECURITY.md
  45. STYLE.md
README.md

BoringSSL

BoringSSL is a fork of OpenSSL that is designed to meet Google's needs.

Although BoringSSL is an open source project, it is not intended for general use, as OpenSSL is. We don't recommend that third parties depend upon it. Doing so is likely to be frustrating because there are no guarantees of API or ABI stability.

Programs ship their own copies of BoringSSL when they use it and we update everything as needed when deciding to make API changes. This allows us to mostly avoid compromises in the name of compatibility. It works for us, but it may not work for you.

BoringSSL arose because Google used OpenSSL for many years in various ways and, over time, built up a large number of patches that were maintained while tracking upstream OpenSSL. As Google's product portfolio became more complex, more copies of OpenSSL sprung up and the effort involved in maintaining all these patches in multiple places was growing steadily.

Currently BoringSSL is the SSL library in Chrome/Chromium, Android (but it's not part of the NDK) and a number of other apps/programs.

Project links:

To file a security issue, use the Chromium process and mention in the report this is for BoringSSL. You can ignore the parts of the process that are specific to Chromium/Chrome.

There are other files in this directory which might be helpful: