Cypherpunks repositories - gostls13.git/commit

author	Adam Langley <agl@golang.org>
	Wed, 14 Sep 2011 19:32:19 +0000 (15:32 -0400)
committer	Adam Langley <agl@golang.org>
	Wed, 14 Sep 2011 19:32:19 +0000 (15:32 -0400)
commit	a775fbf8a446273ae35de95fb9a1cc7ccdcecdc6
tree	8008971d05bb1eaed5862d2e64397516285e68d7	tree
parent	514c9243f21fb8ec1df73ac63717d10e3136afa2	commit \| diff

crypto/tls: support SSLv3

It would be nice not to have to support this since all the clients
that we care about support TLSv1 by now. However, due to buggy
implementations of SSLv3 on the Internet which can't do version
negotiation correctly, browsers will sometimes switch to SSLv3. Since
there's no good way for a browser tell a network problem from a buggy
server, this downgrade can occur even if the server in question is
actually working correctly.

So we need to support SSLv3 for robustness :(

Fixes #1703.

R=bradfitz
CC=golang-dev
https://golang.org/cl/5018045

src/pkg/crypto/tls/cipher_suites.go		diff \| blob \| history
src/pkg/crypto/tls/common.go		diff \| blob \| history
src/pkg/crypto/tls/conn.go		diff \| blob \| history
src/pkg/crypto/tls/handshake_client.go		diff \| blob \| history
src/pkg/crypto/tls/handshake_client_test.go		diff \| blob \| history
src/pkg/crypto/tls/handshake_messages.go		diff \| blob \| history
src/pkg/crypto/tls/handshake_messages_test.go		diff \| blob \| history
src/pkg/crypto/tls/handshake_server.go		diff \| blob \| history
src/pkg/crypto/tls/handshake_server_test.go		diff \| blob \| history
src/pkg/crypto/tls/key_agreement.go		diff \| blob \| history
src/pkg/crypto/tls/prf.go		diff \| blob \| history
src/pkg/crypto/tls/prf_test.go		diff \| blob \| history