)]}'
{
  "commit": "d663df2399d1d9d6015bcfd2ec87b925ea3558a2",
  "tree": "088b028800ef69149db550d83e26180df5548168",
  "parents": [
    "49b0dfc5026338f1227fdb0f9b3c18485dc459e9"
  ],
  "author": {
    "name": "Emilia Kasper",
    "email": "emilia@openssl.org",
    "time": "Tue Oct 28 17:35:59 2014 +0100"
  },
  "committer": {
    "name": "Emilia Kasper",
    "email": "emilia@openssl.org",
    "time": "Tue Oct 28 17:35:59 2014 +0100"
  },
  "message": "Tighten session ticket handling\n\nTighten client-side session ticket handling during renegotiation:\nensure that the client only accepts a session ticket if the server sends\nthe extension anew in the ServerHello. Previously, a TLS client would\nreuse the old extension state and thus accept a session ticket if one was\nannounced in the initial ServerHello.\n\nReviewed-by: Bodo Moeller \u003cbodo@openssl.org\u003e\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "6aee70f2b4881e674ee6269061bb35840234cd6b",
      "old_mode": 33188,
      "old_path": "CHANGES",
      "new_id": "d90febcd514fb1fe8c5e5f4197fb17bbbc623921",
      "new_mode": 33188,
      "new_path": "CHANGES"
    },
    {
      "type": "modify",
      "old_id": "d3836bfd772321160b54adf356255fb0c3054599",
      "old_mode": 33188,
      "old_path": "ssl/s3_clnt.c",
      "new_id": "68c00c52c769869a449e6656868bf0ab71687c98",
      "new_mode": 33188,
      "new_path": "ssl/s3_clnt.c"
    },
    {
      "type": "modify",
      "old_id": "73d87fd6c1a3c3088606370d04e04d1473b2fb62",
      "old_mode": 33188,
      "old_path": "ssl/ssl_sess.c",
      "new_id": "3f9bad10a4d3769df4b6bb7eacfcdef45ed355db",
      "new_mode": 33188,
      "new_path": "ssl/ssl_sess.c"
    }
  ]
}