)]}'
{
  "commit": "67ea2543edd3b6eeb6e400a46b6c27dcef7f83fa",
  "tree": "cbe69e23a0bc62401e58b166ca4cb18c639d2f92",
  "parents": [
    "c454aba2034a9f35aad7923de178b5ae5bf063d7"
  ],
  "author": {
    "name": "Ronald Cron",
    "email": "ronald.cron@arm.com",
    "time": "Thu Sep 15 17:34:42 2022 +0200"
  },
  "committer": {
    "name": "Ronald Cron",
    "email": "ronald.cron@arm.com",
    "time": "Tue Sep 20 14:26:32 2022 +0200"
  },
  "message": "tls13: server: Add sig alg checks when selecting best certificate\n\nWhen selecting the server certificate based on\nthe signature algorithms supported by the client,\ncheck the signature algorithms as close as possible\nto the way they are checked to compute the\nsignature for the server to prove it possesses\nthe private key associated to the certificate.\n\nThat way we minimize the odds of selecting a\ncertificate for which the server will not be\nable to compute the signature to prove it\npossesses the private key associated to the\ncertificate.\n\nSigned-off-by: Ronald Cron \u003cronald.cron@arm.com\u003e\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "a10e59bbc1ddabda561bff027337784dd89bdc32",
      "old_mode": 33188,
      "old_path": "library/ssl_tls13_server.c",
      "new_id": "a8540808475c91eacb89f16d6d07558ebe82a815",
      "new_mode": 33188,
      "new_path": "library/ssl_tls13_server.c"
    },
    {
      "type": "modify",
      "old_id": "11fc3572c1b1fcb0dc1c20a85279d5499788893d",
      "old_mode": 33261,
      "old_path": "tests/ssl-opt.sh",
      "new_id": "1ddd742310887d7107144bcf90da0d7822296f38",
      "new_mode": 33261,
      "new_path": "tests/ssl-opt.sh"
    }
  ]
}