external/boringssl: Sync to 915c121bb5d424e09bf05c3aabf172a44e958e28. This includes the following changes: https://boringssl.googlesource.com/boringssl/+log/ea52ec98a56a40879b37493f3d1da1a1679e1fba..915c121bb5d424e09bf05c3aabf172a44e958e28 Test: BoringSSL CTS Presubmits Change-Id: I3f5eba69372b484e19f4ca250c81f208aa5d3dc5

commit: 0da4395e6883298b793bb05d45e57ed2e03167f9 [log] [tgz]
author: Robert Sloan <varomodt@google.com> Wed Jan 03 15:13:14 2018 -0800
committer: Robert Sloan <varomodt@google.com> Wed Jan 03 15:16:16 2018 -0800
tree: ce1ac76289cedf5493948ae3455fe6e55867e260
parent: 558181089d69085101510906bd46e51ade9e20e9 [diff] [blame]
diff --git a/src/ssl/tls13_both.cc b/src/ssl/tls13_both.cc
index 57acbcb..2a5a935 100644
--- a/src/ssl/tls13_both.cc
+++ b/src/ssl/tls13_both.cc

@@ -43,6 +43,14 @@
     0x8c, 0x5e, 0x07, 0x9e, 0x09, 0xe2, 0xc8, 0xa8, 0x33, 0x9c,
 };
 
+// This value was selected by truncating the SHA-256 hash of "Draft TLS 1.3
+// Downgrade" to 8 bytes:
+//
+//   echo -n 'Draft TLS 1.3 Downgrade' | sha256sum | head -c 16
+const uint8_t kDraftDowngradeRandom[8] = {0x95, 0xb9, 0x9f, 0x87,
+                                          0x22, 0xfe, 0x9b, 0x64};
+
+
 bool tls13_get_cert_verify_signature_input(
     SSL_HANDSHAKE *hs, Array<uint8_t> *out,
     enum ssl_cert_verify_context_t cert_verify_context) {
commit	0da4395e6883298b793bb05d45e57ed2e03167f9	[log] [tgz]
author	Robert Sloan <varomodt@google.com>	Wed Jan 03 15:13:14 2018 -0800
committer	Robert Sloan <varomodt@google.com>	Wed Jan 03 15:16:16 2018 -0800
tree	ce1ac76289cedf5493948ae3455fe6e55867e260
parent	558181089d69085101510906bd46e51ade9e20e9 [diff] [blame]