)]}'
{
  "commit": "aac19d31369cbeffc8d952be40a538ba08eca36d",
  "tree": "7257c98ac44cac034db760aa5567ee8ba4cbfa59",
  "parents": [
    "2198f95118035afcadc00c907404387b4e99501b"
  ],
  "author": {
    "name": "Joachim Reiersen",
    "email": "joachimr@meta.com",
    "time": "Tue May 09 10:05:54 2023"
  },
  "committer": {
    "name": "WebRTC LUCI CQ",
    "email": "webrtc-scoped@luci-project-accounts.iam.gserviceaccount.com",
    "time": "Tue May 09 11:03:39 2023"
  },
  "message": "Fix SSLStreamAdapterTestDTLSCertChain when building with OpenSSL\n\nThese tests were failing when building WebRTC against OpenSSL instead of\nBoringSSL. The reason is that OpenSSLStreamAdapter::SSLVerifyCallback in\nthe BoringSSL mode returns the full cert_chain by calling\nSSL_get0_peer_certificates. This API does not exist in OpenSSL, instead\nonly a single certificate is fetched via X509_STORE_CTX_get0_cert.\n\nifdef out the parts of the test that assert on cert[1] and cert[2].\n\nAn alternative but more involved way to fix these tests could be to use\nX509_STORE_CTX_get1_chain to fetch the full chain on the OpenSSL path.\n\nBug: webrtc:15153\nChange-Id: I1ede6a3c5a63d4afd2de849f5e44fcd67592aa3c\nReviewed-on: https://webrtc-review.googlesource.com/c/src/+/304400\nReviewed-by: Harald Alvestrand \u003chta@webrtc.org\u003e\nReviewed-by: Mirko Bonadei \u003cmbonadei@webrtc.org\u003e\nCommit-Queue: Mirko Bonadei \u003cmbonadei@webrtc.org\u003e\nCr-Commit-Position: refs/heads/main@{#40022}\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "fb909e7ea1840b4bd25c3af66b0b58d991217c35",
      "old_mode": 33188,
      "old_path": "rtc_base/ssl_stream_adapter_unittest.cc",
      "new_id": "8417314a3a62f9edb6b2e3e05e00b96d55d2cb30",
      "new_mode": 33188,
      "new_path": "rtc_base/ssl_stream_adapter_unittest.cc"
    }
  ]
}
