[2.7] closes bpo-32008: don't use PROTOCOL_TLSv1 in example (GH-5789) (#5792) It's bad form to pin to an old version of TLS. ssl.SSLContext has the right protocol default, so let's not pass anyway.. (cherry picked from commit e9edee0b65650c4f9db90cefc2e9a8125bad762c)

commit: 6c7edba1665ea676328c6b50f92e8423c8f0d164 [log] [tgz]
author: Benjamin Peterson <benjamin@python.org> Tue Feb 20 22:17:10 2018 -0800
committer: GitHub <noreply@github.com> Tue Feb 20 22:17:10 2018 -0800
tree: c71f49b2ed90b5d91201d8efc8c60df1a2dd7a09
parent: 5dc275a2c00839cce4cd717f64fc9456e05d5af3 [diff] [blame]
diff --git a/Doc/library/ssl.rst b/Doc/library/ssl.rst
index 5b55a82..0ac06fa 100644
--- a/Doc/library/ssl.rst
+++ b/Doc/library/ssl.rst

@@ -1330,7 +1330,7 @@
 
       import socket, ssl
 
-      context = ssl.SSLContext(ssl.PROTOCOL_TLSv1)
+      context = ssl.SSLContext(ssl.PROTOCOL_TLS)
       context.verify_mode = ssl.CERT_REQUIRED
       context.check_hostname = True
       context.load_default_certs()
@@ -1536,7 +1536,7 @@
 a context from scratch (but beware that you might not get the settings
 right)::
 
-   >>> context = ssl.SSLContext(ssl.PROTOCOL_SSLv23)
+   >>> context = ssl.SSLContext(ssl.PROTOCOL_TLS)
    >>> context.verify_mode = ssl.CERT_REQUIRED
    >>> context.check_hostname = True
    >>> context.load_verify_locations("/etc/ssl/certs/ca-bundle.crt")
commit	6c7edba1665ea676328c6b50f92e8423c8f0d164	[log] [tgz]
author	Benjamin Peterson <benjamin@python.org>	Tue Feb 20 22:17:10 2018 -0800
committer	GitHub <noreply@github.com>	Tue Feb 20 22:17:10 2018 -0800
tree	c71f49b2ed90b5d91201d8efc8c60df1a2dd7a09
parent	5dc275a2c00839cce4cd717f64fc9456e05d5af3 [diff] [blame]