)]}'
{
  "commit": "1257adecd4afba978806b77bd5d45f32715d97d3",
  "tree": "0cd15fce6e7590dff0d56530e69806a231c8474f",
  "parents": [
    "464175692f1f00a9e5a87f040d0c59184d63b53b"
  ],
  "author": {
    "name": "David Benjamin",
    "email": "davidben@google.com",
    "time": "Sat Mar 05 22:50:44 2016 -0500"
  },
  "committer": {
    "name": "Matt Caswell",
    "email": "matt@openssl.org",
    "time": "Fri May 20 14:20:11 2016 +0100"
  },
  "message": "Tighten up logic around ChangeCipherSpec.\n\nChangeCipherSpec messages have a defined value. They also may not occur\nin the middle of a handshake message. The current logic will accept a\nChangeCipherSpec with value 2. It also would accept up to three bytes of\nhandshake data before the ChangeCipherSpec which it would discard\n(because s-\u003einit_num gets reset).\n\nInstead, require that s-\u003einit_num is 0 when a ChangeCipherSpec comes in.\n\nRT#4391\n\nReviewed-by: Andy Polyakov \u003cappro@openssl.org\u003e\nReviewed-by: Matt Caswell \u003cmatt@openssl.org\u003e\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "6ceb9ec39ead7278ddf2a8b0706d5977ae9bc458",
      "old_mode": 33188,
      "old_path": "ssl/statem/statem_lib.c",
      "new_id": "eb3e591080088cd4089d0c799ed6584cc0914daa",
      "new_mode": 33188,
      "new_path": "ssl/statem/statem_lib.c"
    }
  ]
}
