# 建立一個目錄，我們的工作都在這里進行
mkdir -p /home/nginx-installation && cd /home/nginx-installation

# 安裝編譯所需依賴
# BoringSSL 需要 Golang 支持
apt-get install -y build-essential make cmake golang

# 把 BoringSSL 源碼克隆下來
git clone --dep 1 https://boringssl.googlesource.com/boringssl && cd boringssl

# 編譯開始
mkdir -p /home/nginx-installation/boringssl/build /home/nginx-installation/boringssl/.openssl/lib /home/nginx-installation/boringssl/.openssl/include
ln -sf /home/nginx-installation/boringssl/include/openssl /home/nginx-installation/boringssl/.openssl/include/openssl
touch /home/nginx-installation/boringssl/.openssl/include/openssl/ssl.h
cmake -B/home/nginx-installation/boringssl/build -H/home/nginx-installation/boringssl
make -C /home/nginx-installation/boringssl/build
cp /home/nginx-installation/boringssl/build/crypto/libcrypto.a /home/nginx-installation/boringssl/build/ssl/libssl.a /home/nginx-installation/boringssl/.openssl/lib

# 使用 --with-openssl 指定 BoringSSL 路徑
# 這里并沒有變成 "--with-boringssl"
./configure ... --with-openssl=/home/nginx-installation/boringssl

# 在 configure 后，要先 touch 一下，才能繼續 make
touch /home/nginx-installation/boringssl/.openssl/include/openssl/ssl.h

make
make install

sudo nginx -V

built by gcc 4.9.2 (Debian 4.9.2)
built with OpenSSL 1.1.0 (conpatible: BoringSSL) (running with BoringSSL)
TLS SNI support enabled