)]}'
{
  "commit": "b0921929650fb0a4a993a697baf8ad4f655748a3",
  "tree": "bc8986d93a460fe322443d4a65a5cd36f411e598",
  "parents": [
    "6432bb46ab44731567ec923e6c8fc182f13d0070"
  ],
  "author": {
    "name": "David Benjamin",
    "email": "davidben@google.com",
    "time": "Thu Feb 20 12:33:28 2020 -0500"
  },
  "committer": {
    "name": "CQ bot account: commit-bot@chromium.org",
    "email": "commit-bot@chromium.org",
    "time": "Mon Feb 24 22:16:24 2020 +0000"
  },
  "message": "Keep the encryption state and encryption level in sync.\n\nThis is a little bit of internal cleanup. The original intent was so\nQUIC could install secrets in set_(read|write)_state, but that was\nsomewhat annoying, so I\u0027ve left it just before the call for now.\n\nThere is one TLS 1.3 state transition which doesn\u0027t carry an encryption\nlevel: switching from 0-RTT keys back to unencrypted on an HRR-based\n0-RTT reject. The TCP code doesn\u0027t care about write_level and the QUIC\ncode is currently fine because we never \"install\" the 0-RTT keys. But we\nshould get this correct.\n\nThis also opens the door for DTLS 1.3, if we ever implement it, because\nDTLS 1.3 will need to know which level it is to handle 0-RTT keys funny.\n(Clients sending 0-RTT will briefly have handshake and 0-RTT write keys\nactive simultaneously.)\n\nQUIC has the same property, but we can fudge it because only the caller\nis aware of this.\n\nChange-Id: Ia76d787e1b96a058d9818948b6d9a051e8592207\nReviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/40124\nReviewed-by: Steven Valdez \u003csvaldez@google.com\u003e\nCommit-Queue: David Benjamin \u003cdavidben@google.com\u003e\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "620a2e15239b8c4f7a50d8b5b3ff7e569a731038",
      "old_mode": 33188,
      "old_path": "ssl/dtls_method.cc",
      "new_id": "ae26de7b15f2385d05b55df31170c9db665ccf14",
      "new_mode": 33188,
      "new_path": "ssl/dtls_method.cc"
    },
    {
      "type": "modify",
      "old_id": "a6b58c5ea82272231fed6748935ff8d0937ca46a",
      "old_mode": 33188,
      "old_path": "ssl/internal.h",
      "new_id": "78c56b6105ca21fe395b14eb626428c7a8145b37",
      "new_mode": 33188,
      "new_path": "ssl/internal.h"
    },
    {
      "type": "modify",
      "old_id": "4c2fffb3071aaa84fb1c6d947ff4b2f67cf1c560",
      "old_mode": 33188,
      "old_path": "ssl/t1_enc.cc",
      "new_id": "80910219a29479d62f1fbd729a92c924bbdd421d",
      "new_mode": 33188,
      "new_path": "ssl/t1_enc.cc"
    },
    {
      "type": "modify",
      "old_id": "e22c1e1447c4f74deaaf59c811e4f5645dadf5c9",
      "old_mode": 33188,
      "old_path": "ssl/tls13_client.cc",
      "new_id": "716c7b42e4d72e2dcc5bf78e3be2933505eb83a9",
      "new_mode": 33188,
      "new_path": "ssl/tls13_client.cc"
    },
    {
      "type": "modify",
      "old_id": "d0c27b6b180ee5d20a882bd974baab000072dd77",
      "old_mode": 33188,
      "old_path": "ssl/tls13_enc.cc",
      "new_id": "bd12f635b04ff7e651efd6affad3201b01b6954f",
      "new_mode": 33188,
      "new_path": "ssl/tls13_enc.cc"
    },
    {
      "type": "modify",
      "old_id": "241a3fd95f51b3acd36c0461b81e93c8c4800a6e",
      "old_mode": 33188,
      "old_path": "ssl/tls_method.cc",
      "new_id": "3868852d1c64e0b28dda9b3684850325ede4e58b",
      "new_mode": 33188,
      "new_path": "ssl/tls_method.cc"
    }
  ]
}