doc/go1.12: mention small RSA keys will cause some TLS handshakes to fail

Updates #29779

Change-Id: I9becaba41ab4cd0bac25b4bedf3f8b19761d8158
Reviewed-on: https://go-review.googlesource.com/c/158638
Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>

diff --git a/doc/go1.12.html b/doc/go1.12.html
index d3cbeb4525bf1a1ce03aa9e44906b07b045c0e74..0a998c06e01ae4846c883bf9fc07a93f972a8440 100644 (file)
--- a/doc/go1.12.html
+++ b/doc/go1.12.html
@@ -443,7 +443,9 @@ for {
   <dd>
     <p><!-- CL 146258 -->
       TLS 1.2 clients and servers will now advertise and accept RSA-PSS
-      signature algorithms for use with regular RSA public keys.
+      signature algorithms for use with regular RSA public keys. Certain
+      insecure certificate keys (including 512-bit RSA keys) will
+      now cause a handshake failure if RSA-PSS is selected.
     </p>
 
     <p><!-- CL 143177 -->