aboutsummaryrefslogtreecommitdiff
path: root/_content/doc/go1.23.md
diff options
context:
space:
mode:
Diffstat (limited to '_content/doc/go1.23.md')
-rw-r--r--_content/doc/go1.23.md2
1 files changed, 2 insertions, 0 deletions
diff --git a/_content/doc/go1.23.md b/_content/doc/go1.23.md
index cc098034..3f9133ac 100644
--- a/_content/doc/go1.23.md
+++ b/_content/doc/go1.23.md
@@ -293,6 +293,8 @@ the GODEBUG environment variable.
The experimental post-quantum key exchange mechanism X25519Kyber768Draft00
is now enabled by default when [`Config.CurvePreferences`](/pkg/crypto/tls#Config.CurvePreferences) is nil.
The default can be reverted by adding `tlskyber=0` to the GODEBUG environment variable.
+This can be useful when dealing with buggy TLS servers that do not handle large records correctly,
+causing a timeout during the handshake (see [TLS post-quantum TL;DR fail](https://tldr.fail/)).
Go 1.23 changed the behavior of [`X509KeyPair`](/pkg/crypto/tls#X509KeyPair) and [`LoadX509KeyPair`](/pkg/crypto/tls#LoadX509KeyPair)
to populate the [`Certificate.Leaf`](/pkg/crypto/tls#Certificate.Leaf) field of the returned [`Certificate`](/pkg/crypto/tls#Certificate).
generated by cgit v1.3 (git 2.53.0) at 2026-04-15 05:36:23 +0000