crypto/tls: deprecate SSLv3 support Updates #32716 Change-Id: Ia0c03918e8f2da4d9824c49c6d4cfca1b0787b0a Reviewed-on: https://go-review.googlesource.com/c/go/+/184102 Reviewed-by: Andrew Bonventre <andybons@golang.org>

commit: a6a7b148f874b32a34e833893971b471cd9cdeb7 [log] [tgz]
author: Filippo Valsorda <filippo@golang.org> Thu Jun 27 19:00:08 2019 -0400
committer: Filippo Valsorda <filippo@golang.org> Mon Jul 15 23:00:52 2019 +0000
tree: 5600f4d179874e4bb8f4a7f9a7d27f5f33105285
parent: 37b194a422f51893a89ec2823748ccbe612a2898 [diff] [blame]
diff --git a/doc/go1.13.html b/doc/go1.13.html
index 9d2c65b..4240d4b 100644
--- a/doc/go1.13.html
+++ b/doc/go1.13.html

@@ -534,6 +534,14 @@
 
 <dl id="crypto/tls"><dt><a href="/pkg/crypto/tls/">crypto/tls</a></dt>
   <dd>
+    <p>
+      Support for SSL version 3.0 (SSLv3) <a href="https://golang.org/issue/32716">
+      is now deprecated and will be removed in Go 1.14</a>. Note that SSLv3
+      <a href="https://tools.ietf.org/html/rfc7568">is cryptographically
+      broken</a>, is already disabled by default in <code>crypto/tls</code>,
+      and was never supported by Go clients.
+    </p>
+
     <p><!-- CL 177698 -->
       Ed25519 certificates are now supported in TLS versions 1.2 and 1.3.
     </p>
commit	a6a7b148f874b32a34e833893971b471cd9cdeb7	[log] [tgz]
author	Filippo Valsorda <filippo@golang.org>	Thu Jun 27 19:00:08 2019 -0400
committer	Filippo Valsorda <filippo@golang.org>	Mon Jul 15 23:00:52 2019 +0000
tree	5600f4d179874e4bb8f4a7f9a7d27f5f33105285
parent	37b194a422f51893a89ec2823748ccbe612a2898 [diff] [blame]