commit de9ecc8a3850e1c86dbdd26e078e5eba56695ffd
author Piotr Sikora <piotrsikora@google.com> Fri Oct 30 13:45:09 2020 -0700
committer Piotr Sikora <piotrsikora@google.com> Mon Nov 02 22:49:54 2020 +0000
tree cb2240090bb82e9945bd62bea59fd10ad4563001
parent 6f51c4e6c637b04384221537336a272a6edf9219

Bazel: update BoringSSL to 3743aaf / 1ce6682 (master-with-bazel).

3743aafda Add SSL_CIPHER_get_protocol_id.
9adcb0aa7 Add TrustTokenV2.
ee4af9e94 Add X509_get_pathlen and X509_REVOKED_get0_extensions.
5eeaf3029 Add some accommodations for FreeRDP
ca3f243cf Require non-NULL store in X509_STORE_CTX_init.
6d70353ca Const-correct X509V3_CONF_METHOD.
6247347ed Avoid unions in X509_NAME logic.
49e9f67d8 Bump OPENSSL_VERSION_NUMBER to 1.1.1.
a82cfdf08 Document more of x509.h.
662bfad81 Fix potential leak in bssl::Array::Shrink.
6ad3b46b2 Remove ASN1_STRING_length_set.
6a263ce48 Revert "Check AlgorithmIdentifier parameters for RSA and ECDSA signatures."
bc2480510 Implement PSK variants of HPKE setup functions.
bef6a2f5f acvp: support working with files.
4ef5de02c Document a few more functions in x509.h.
298d8bea0 Add subject key ID and authority key ID accessors.
1c58648f1 Remove sxnet and pkey_usage_period extensions.
125a38fad Const-correct various X509 functions.
95d8eaa66 Make X509_set_not{Before,After} functions rather than macros.
48cb69f8b Add X509_get0_uids from OpenSSL 1.1.0.
9372f38cd Bound RSA and DSA key sizes better.
c947efabc Add set1 versions of X509 timestamp setters.
edd4c5f76 Consistently sort generated build files.
56308910f delocate: use 64-bit GOT offsets in the large memory model.
430ccd616 Update HPKE implementation and test vectors to draft-irtf-cfrg-hpke-05.
d3a5b87ae Handle NULL arguments in some i2d_* functions.
a0b49d63f aarch64: support BTI and pointer authentication in assembly
dcd6e447e Support delegated credentials verison 06
0cd846f24 delocation: large memory model support.

Change-Id: I204aa1223aa58a462d0c77068815dde389fd8e22
Signed-off-by: Piotr Sikora <piotrsikora@google.com>
Reviewed-on: https://nginx-review.googlesource.com/c/nginx/+/3721
Reviewed-by: Patryk Lesiewicz <patryk@google.com>

build.bzl

diff --git a/build.bzl b/build.bzl
index 4ef0d9f..4fa5f96 100644
--- a/build.bzl
+++ b/build.bzl
@@ -609,9 +609,9 @@
 def nginx_repositories_boringssl(bind):
     git_repository(
         name = "boringssl",
-        commit = "2192bbc878822cf6ab5977d4257a1339453d9d39",  # 2020-07-30
+        commit = "1ce6682c7f6cfe0426ed54a37c10775bea9d3502",  # 2020-09-21
         remote = "https://boringssl.googlesource.com/boringssl",
-        shallow_since = "1596127363 +0000",
+        shallow_since = "1600713001 +0000",
     )
 
     if bind: