]> Cypherpunks repositories - gostls13.git/commit
projects / gostls13.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 1965b03) | patch
crypto/tls: change default minimum version to TLS 1.0.
authorAdam Langley <agl@golang.org>
Thu, 18 Dec 2014 19:31:14 +0000 (11:31 -0800)
committerAdam Langley <agl@golang.org>
Thu, 18 Dec 2014 19:49:41 +0000 (19:49 +0000)
commit604fa4d5a149c334ff0bd5d191c4c4e29f75545d
treec81eb5b26a5091d6040e02e3f93a02418091b640tree
parent1965b035844b3e8e8b9dd3c21a113345c7eee8b1commit | diff
crypto/tls: change default minimum version to TLS 1.0.

SSLv3 (the old minimum) is still supported and can be enabled via the
tls.Config, but this change increases the default minimum version to TLS
1.0. This is now common practice in light of the POODLE[1] attack
against SSLv3's CBC padding format.

[1] https://www.imperialviolet.org/2014/10/14/poodle.html

Fixes #9364.

Change-Id: Ibae6666ee038ceee0cb18c339c393155928c6510
Reviewed-on: https://go-review.googlesource.com/1791
Reviewed-by: Minux Ma <minux@golang.org>
src/crypto/tls/common.go diff | blob | history
Go GOST TLS 1.3