)]}' { "commit": "eccd103ac73b723b880f08bd8def1e4dc2e4ab14", "tree": "6297d612781df163e2655f1c3ca43c4f6bf9c8df", "parents": [ "ce65c1daf827f870cde6b54ee14e59117f38c0de" ], "author": { "name": "David Benjamin", "email": "davidben@google.com", "time": "Fri Aug 12 15:12:29 2022 -0400" }, "committer": { "name": "Boringssl LUCI CQ", "email": "boringssl-scoped@luci-project-accounts.iam.gserviceaccount.com", "time": "Fri Aug 12 20:12:43 2022 +0000" }, "message": "Add X509_V_FLAG_NO_CHECK_TIME.\n\nThis was added in OpenSSL 1.1.0. cryptography.io binds it. They don\u0027t\nactually use it, but this is a useful feature to have anyway. Projects\nlike Envoy currently implement such a mode with\nX509_STORE_set_verify_cb, which is a very problematic API to support.\nAdd this so we can move them to something more sustainable.\n\nChange-Id: Iaff2d08daa743e0b5f4be261cb785fdcd26a8281\nReviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/53965\nCommit-Queue: Adam Langley \u003cagl@google.com\u003e\nAuto-Submit: David Benjamin \u003cdavidben@google.com\u003e\nReviewed-by: Adam Langley \u003cagl@google.com\u003e\n", "tree_diff": [ { "type": "modify", "old_id": "8343fee39afa75603704a975a3649a58b3554c48", "old_mode": 33188, "old_path": "crypto/x509/x509_test.cc", "new_id": "58fdd264c38c5e7edb62c847dd4d367192cfe11a", "new_mode": 33188, "new_path": "crypto/x509/x509_test.cc" }, { "type": "modify", "old_id": "f6089cd85e00da055b6938853ed59229a7acad1f", "old_mode": 33188, "old_path": "crypto/x509/x509_vfy.c", "new_id": "eca2d1eb4673b8bce388b548fabccf0c778429bd", "new_mode": 33188, "new_path": "crypto/x509/x509_vfy.c" }, { "type": "modify", "old_id": "96b7495877ddf7a4fd5d4cd42986613e471e327a", "old_mode": 33188, "old_path": "include/openssl/x509.h", "new_id": "57eb002d6c47f35296c708bbb8947ac331dfe3c3", "new_mode": 33188, "new_path": "include/openssl/x509.h" } ] }