Stowage/go
2
0
Fork 0
mirror of https://github.com/golang/go.git synced 2025-12-08 06:10:04 +00:00
Code Issues Projects Releases Packages Wiki Activity

crypto/tls: better error message when connecting to SSLv3 servers.

Browse source 
We support SSLv3 as a server but not as a client (and we don't want to
support it as a client). This change fixes the error message when
connecting to an SSLv3 server since SSLv3 support on the server side
made mutualVersion accept SSLv3.

R=golang-dev, rsc
CC=golang-dev
https://golang.org/cl/5545073
This commit is contained in:
Adam Langley 2012-01-31 11:22:47 -05:00
parent 31d908baaf
commit c86e03975c
1 changed files with 2 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

3
src/pkg/crypto/tls/handshake_client.go
View file

@ -59,7 +59,8 @@ func (c *Conn) clientHandshake() error {
finishedHash.Write(serverHello.marshal()) finishedHash.Write(serverHello.marshal())
vers, ok := mutualVersion(serverHello.vers) vers, ok := mutualVersion(serverHello.vers)
if !ok { if !ok || vers < versionTLS10 {
// TLS 1.0 is the minimum version supported as a client.
return c.sendAlert(alertProtocolVersion) return c.sendAlert(alertProtocolVersion)
} }
c.vers = vers c.vers = vers