Update CHANGES.

author: Rob Stradling <rob@comodo.com> 2013-09-12 22:05:17 +0100
committer: Ben Laurie <ben@links.org> 2013-09-16 15:17:37 +0100
commit: 13bca90ac5546a5c5703b6c9a68af36bae695bca (patch)
tree: 1602beeb18a3e038db117e62d9a8738cbc2743ba /CHANGES
parent: c9a6ddafc5ee927bf75e0d365cbb044b57262108 (diff)
1 files changed, 7 insertions, 1 deletions
diff --git a/CHANGES b/CHANGES
index 7333fc2314..cfaebba26a 100644
--- a/CHANGES
+++ b/CHANGES
@@ -4,7 +4,13 @@
 
  Changes between 1.0.1e and 1.0.1f [xx XXX xxxx]
 
-  *)
+  *) Add option SSL_OP_SAFARI_ECDHE_ECDSA_BUG (part of SSL_OP_ALL) which
+     avoids preferring ECDHE-ECDSA ciphers when the client appears to be
+     Safari on OS X.  Safari on OS X 10.8..10.8.3 advertises support for
+     several ECDHE-ECDSA ciphers, but fails to negotiate them.  The bug
+     is fixed in OS X 10.8.4, but Apple have ruled out both hot fixing
+     10.8..10.8.3 and forcing users to upgrade to 10.8.4 or newer.
+     [Rob Stradling, Adam Langley]
 
  Changes between 1.0.1d and 1.0.1e [11 Feb 2013]
author	Rob Stradling <rob@comodo.com>	2013-09-12 22:05:17 +0100
committer	Ben Laurie <ben@links.org>	2013-09-16 15:17:37 +0100
commit	13bca90ac5546a5c5703b6c9a68af36bae695bca (patch)
tree	1602beeb18a3e038db117e62d9a8738cbc2743ba /CHANGES
parent	c9a6ddafc5ee927bf75e0d365cbb044b57262108 (diff)