diff --git a/doc/go1.11.html b/doc/go1.11.html index e3a2f5f0f57..a18dbd17c74 100644 --- a/doc/go1.11.html +++ b/doc/go1.11.html @@ -218,9 +218,9 @@ Do not send CLs removing the interior tags from such phrases.

Certain crypto operations, including - crypto/ecdsa.Sign, - crypto/rsa.EncryptPKCS1v15 and - crypto/rsa.GenerateKey, + ecdsa.Sign, + rsa.EncryptPKCS1v15 and + rsa.GenerateKey, now randomly read an extra byte of randomness to ensure tests don't rely on internal behavior.

@@ -229,7 +229,7 @@ Do not send CLs removing the interior tags from such phrases.
crypto/cipher

- The new NewGCMWithTagSize + The new function NewGCMWithTagSize implements Galois Counter Mode with non-standard tag lengths for compatibility with existing cryptosystems.

@@ -258,10 +258,10 @@ Do not send CLs removing the interior tags from such phrases.
crypto/x509

- The deprecated, legacy behavior of treating the Common Name field as + The deprecated, legacy behavior of treating the CommonName field as a hostname when no Subject Alternative Names are present is now disabled when the CN is not a valid hostname. - The Common Name can be completely ignored by adding the experimental value + The CommonName can be completely ignored by adding the experimental value x509ignoreCN=1 to the GODEBUG environment variable. When the CN is ignored, certificates without SANs validate under chains with name constraints instead of returning NameConstraintsWithoutSANs. @@ -269,7 +269,8 @@ Do not send CLs removing the interior tags from such phrases.

Extended key usage restrictions are again checked only if they appear in the KeyUsages - field of VerifyOptions, instead of all at once. + field of VerifyOptions, instead of always being checked. + This matches the behavior of Go 1.9 and earlier.