BoringSSL has an extensive TLS test suite with a mechanism to run it against other TLS stacks. We should hook it up to crypto/tls.