)]}'
{
  "commit": "a36255cd4dd2f74e36ee21ac3e33b6120b9d0ae2",
  "tree": "dab80226698e4e81f3d1a4a385028e931c3c08e3",
  "parents": [
    "4f57074bfa54b48122fa725627bdbd947fbbbca1"
  ],
  "author": {
    "name": "David Benjamin",
    "email": "davidben@google.com",
    "time": "Wed Dec 14 12:41:02 2016 -0500"
  },
  "committer": {
    "name": "Adam Langley",
    "email": "agl@google.com",
    "time": "Fri Dec 16 17:17:38 2016 +0000"
  },
  "message": "Fix RSA-PSS documentation.\n\n-2 is really weird. On sign, it\u0027s maximal length. On verify, it actually\naccepts all lengths. This sounds somewhat questionable to me, but just\ndocument the state of the world for now. Also add a recommendation to\nuse -1 (match digest length) to align with TLS 1.3, tokbind, and QUIC\nCrypto. Hopefully the first two is sufficient that the IETF will forever\nuse this option and stop the proliferation of RSA-PSS parameters.\n\nChange-Id: Ie0ad7ad451089df0e18d6413d1b21c5aaad9d0f2\nReviewed-on: https://boringssl-review.googlesource.com/12823\nCommit-Queue: David Benjamin \u003cdavidben@google.com\u003e\nReviewed-by: Adam Langley \u003cagl@google.com\u003e\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "58b388aa577125cf51ce6813604145392bc77d47",
      "old_mode": 33188,
      "old_path": "include/openssl/evp.h",
      "new_id": "e8deb109e5b3f46a9f39950d3fb5dce57a821d7b",
      "new_mode": 33188,
      "new_path": "include/openssl/evp.h"
    },
    {
      "type": "modify",
      "old_id": "78d5b32c639ce9778e6e7f58b0a6865e5d0077ff",
      "old_mode": 33188,
      "old_path": "include/openssl/rsa.h",
      "new_id": "19be3ba5d7a2e3f2400e2b21ee82ea1f2c0c4365",
      "new_mode": 33188,
      "new_path": "include/openssl/rsa.h"
    }
  ]
}