)]}'
{
  "commit": "d1831d78c867ba51b3992ccc213fd201d2f4b0f1",
  "tree": "debc77905a263d173b911e96684aa5c04610c893",
  "parents": [
    "b083a69e5b9a38fcbae710b0c2081de0235d509b"
  ],
  "author": {
    "name": "David Benjamin",
    "email": "davidben@google.com",
    "time": "Wed Dec 20 12:55:23 2023 -0500"
  },
  "committer": {
    "name": "Boringssl LUCI CQ",
    "email": "boringssl-scoped@luci-project-accounts.iam.gserviceaccount.com",
    "time": "Wed Dec 20 21:14:47 2023 +0000"
  },
  "message": "Simplify some logic around X509_verify_cert callbacks\n\nIf we simply set ctx-\u003eget_crl to get_crl, as the other callbacks do, we\ndon\u0027t need to branch at the call site. Also get_issuer no longer needs\nto be a callback. We can just check if X509_STORE_CTX_set0_trusted_stack\nwas called.\n\nChange-Id: I42235f141ee9f8463631f56471c12324a8755bba\nReviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/64988\nCommit-Queue: David Benjamin \u003cdavidben@google.com\u003e\nReviewed-by: Bob Beck \u003cbbe@google.com\u003e\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "bb256e5cae14a2e384baaf590bceff90f6854106",
      "old_mode": 33188,
      "old_path": "crypto/x509/internal.h",
      "new_id": "d6debd25cf7863930d5172c7ef527f5b2620be1d",
      "new_mode": 33188,
      "new_path": "crypto/x509/internal.h"
    },
    {
      "type": "modify",
      "old_id": "68effaf34434c4eb539799319bb3aab72f46a572",
      "old_mode": 33188,
      "old_path": "crypto/x509/x509_vfy.c",
      "new_id": "6bf366b2d309d82f420f6d81b2e148d1c6f7c001",
      "new_mode": 33188,
      "new_path": "crypto/x509/x509_vfy.c"
    },
    {
      "type": "modify",
      "old_id": "ba4d6a220dd872cd0ac96864ccc2d3ebcca3e791",
      "old_mode": 33188,
      "old_path": "include/openssl/x509.h",
      "new_id": "8fe59c7865849900a60486aca311ec79959ee8bb",
      "new_mode": 33188,
      "new_path": "include/openssl/x509.h"
    }
  ]
}
