)]}'
{
  "commit": "825bec8c8865e314bfc918c8ad352f154fdc4ba8",
  "tree": "55e92f6da5900c5301d24f00aab3120fba946984",
  "parents": [
    "f31b45dbd1a18ddb60f5869ead81cd6f90ce3820"
  ],
  "author": {
    "name": "David Benjamin",
    "email": "davidben@google.com",
    "time": "Wed May 24 10:35:18 2023 -0400"
  },
  "committer": {
    "name": "Boringssl LUCI CQ",
    "email": "boringssl-scoped@luci-project-accounts.iam.gserviceaccount.com",
    "time": "Wed May 24 17:25:03 2023 +0000"
  },
  "message": "Remove variable expansion from CONF fuzzer\n\nCONF supports a variable expansion feature, which allows a config file\nto easily grow exponentially.\n\n2d05568a7b7bc62affbd13ea97a81b5829b99794 (upstream\u0027s\n6a6213556a80ab0a9eb926a1d6023b8bf44f2afd) capped the expansion to 65536\nbytes, but this still allows a small input to produce a fairly large\noutput. (Once we have one large value, it only takes five characters\nmake a new key that references it, which is an expansion factor of\naround 13,000.) This, combined with the string-based extensions\nmachinery\u0027s many quadratic behaviors (see\nb92fcfdc17f3ad794c220a86f4ae6695d0a0fb61), means fuzzers hit timeouts.\n\nWe have very few uses of these APIs left, and none of them use this\nfeature. Just remove it. While none of these super-linear behaviors are\nDoS bugs per se (they should never be passed untrusted input), there\u0027s\nno sense in carrying an unused feature that only frustrates the fuzzers.\n\nUpdate-Note: NCONF_load and NCONF_load_bio no longer support the $foo\nvariable expansion syntax. If you are using these functions in your\nproject, remove them.\n\nBug: oss-fuzz:59049\nChange-Id: I85832ae1d05373ee420f4fb68197786736ca8272\nReviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/60105\nCommit-Queue: David Benjamin \u003cdavidben@google.com\u003e\nReviewed-by: Adam Langley \u003cagl@google.com\u003e\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "14caa70c417b3caf3e79c59e68ca9567b1714542",
      "old_mode": 33188,
      "old_path": "crypto/conf/conf.c",
      "new_id": "523de78fb6134d749afc1d0d8fba2b9874b39f05",
      "new_mode": 33188,
      "new_path": "crypto/conf/conf.c"
    },
    {
      "type": "modify",
      "old_id": "f913d1e8198e5fa30c96ce4aba879cc87e19ed3a",
      "old_mode": 33188,
      "old_path": "crypto/conf/conf_test.cc",
      "new_id": "b243411db34738b798ed3ad00b6a49a34b981ed8",
      "new_mode": 33188,
      "new_path": "crypto/conf/conf_test.cc"
    },
    {
      "type": "modify",
      "old_id": "e6226e43884b92991a1b68e23c23f09a69b98008",
      "old_mode": 33188,
      "old_path": "crypto/err/conf.errordata",
      "new_id": "d01f50dec3dd8e1a35a319e172406be4052b06f4",
      "new_mode": 33188,
      "new_path": "crypto/err/conf.errordata"
    },
    {
      "type": "modify",
      "old_id": "7529190226ad3920a0dc437f28d9d9e4222c3d9f",
      "old_mode": 33188,
      "old_path": "include/openssl/conf.h",
      "new_id": "c9027c1db5a62f22d613ffae30ce0219caa9fbe6",
      "new_mode": 33188,
      "new_path": "include/openssl/conf.h"
    }
  ]
}