)]}'
{
  "commit": "f449f7206f626a8c4cc5ea1f253e451d2e19bbe2",
  "tree": "fe682854d9c64fcea0eb2abd130a47b2645462d2",
  "parents": [
    "364eef1863bf11e80a3fd8a603ba69f14b910fdb"
  ],
  "author": {
    "name": "David Benjamin",
    "email": "davidben@google.com",
    "time": "Tue May 26 17:56:46 2026 -0400"
  },
  "committer": {
    "name": "boringssl-scoped@luci-project-accounts.iam.gserviceaccount.com",
    "email": "boringssl-scoped@luci-project-accounts.iam.gserviceaccount.com",
    "time": "Tue May 26 15:19:33 2026 -0700"
  },
  "message": "Reject legacy_cookie in DTLS 1.3\n\nThere\u0027s no practical consequence to this, but RFC 9147 says:\n\n\u003e legacy_cookie: A DTLS 1.3-only client MUST set the legacy_cookie field\n\u003e to zero length. If a DTLS 1.3 ClientHello is received with any other\n\u003e value in this field, the server MUST abort the handshake with an\n\u003e \"illegal_parameter\" alert.\n\nFixed: 516205743\nChange-Id: I9c3ee0f2dcb7f68275a3713fee95cc0942441c09\nReviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/95867\nCommit-Queue: David Benjamin \u003cdavidben@google.com\u003e\nReviewed-by: Adam Langley \u003cagl@google.com\u003e\nAuto-Submit: David Benjamin \u003cdavidben@google.com\u003e\nCommit-Queue: Adam Langley \u003cagl@google.com\u003e\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "aaa6565147c927183f1d705c7633563d4b7cf158",
      "old_mode": 33188,
      "old_path": "ssl/handshake_server.cc",
      "new_id": "0ffc246892743be48c9303a774269c6dc868ea80",
      "new_mode": 33188,
      "new_path": "ssl/handshake_server.cc"
    },
    {
      "type": "modify",
      "old_id": "a4d64136486eeb3a83c4b692909f7b7b61d0f5d7",
      "old_mode": 33188,
      "old_path": "ssl/test/runner/common.go",
      "new_id": "c241c418e90697b28e8bc7bafdbeec519b918a2a",
      "new_mode": 33188,
      "new_path": "ssl/test/runner/common.go"
    },
    {
      "type": "modify",
      "old_id": "b0e75ca0b8c6cb922cafd7ca9c968e397d247ef6",
      "old_mode": 33188,
      "old_path": "ssl/test/runner/curve_tests.go",
      "new_id": "956a7320389d7fca74fddd58168ebe9bf22a48bb",
      "new_mode": 33188,
      "new_path": "ssl/test/runner/curve_tests.go"
    },
    {
      "type": "modify",
      "old_id": "338ab58b841c4dbc9826a59f66b5c01cbcab46e8",
      "old_mode": 33188,
      "old_path": "ssl/test/runner/handshake_client.go",
      "new_id": "c514a80ac75af69f6f9151eae5b38b6f46a77d95",
      "new_mode": 33188,
      "new_path": "ssl/test/runner/handshake_client.go"
    },
    {
      "type": "modify",
      "old_id": "f66ebbf656ca2c73d75acad10cb0c724dcbb337f",
      "old_mode": 33188,
      "old_path": "ssl/test/runner/tls13_tests.go",
      "new_id": "44af4e7a323365ca247ab54335187b0f68f20c4d",
      "new_mode": 33188,
      "new_path": "ssl/test/runner/tls13_tests.go"
    }
  ]
}