Update CHANGES.

author Rob Stradling <rob@comodo.com>

Thu, 12 Sep 2013 21:02:04 +0000 (22:02 +0100)

committer Ben Laurie <ben@links.org>

Fri, 4 Oct 2013 13:25:36 +0000 (14:25 +0100)
author Rob Stradling <rob@comodo.com>
Thu, 12 Sep 2013 21:02:04 +0000 (22:02 +0100)
committer Ben Laurie <ben@links.org>
Fri, 4 Oct 2013 13:25:36 +0000 (14:25 +0100)
diff --git a/CHANGES b/CHANGES

index 32e1fb1f1163dd2122abe7b0ed94981f1eb54665..b3d44ef6660c5e0a8dfd745e2e90c1013a3b1b07 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -4,7 +4,13 @@
  
   Changes between 1.0.0k and 1.0.0l [xx XXX xxxx]
  
-  *)
+  *) Add option SSL_OP_SAFARI_ECDHE_ECDSA_BUG (part of SSL_OP_ALL) which
+     avoids preferring ECDHE-ECDSA ciphers when the client appears to be
+     Safari on OS X.  Safari on OS X 10.8..10.8.3 advertises support for
+     several ECDHE-ECDSA ciphers, but fails to negotiate them.  The bug
+     is fixed in OS X 10.8.4, but Apple have ruled out both hot fixing
+     10.8..10.8.3 and forcing users to upgrade to 10.8.4 or newer.
+     [Rob Stradling, Adam Langley]
  
   Changes between 1.0.0j and 1.0.0k [5 Feb 2013]
author	Rob Stradling <rob@comodo.com>
	Thu, 12 Sep 2013 21:02:04 +0000 (22:02 +0100)
committer	Ben Laurie <ben@links.org>
	Fri, 4 Oct 2013 13:25:36 +0000 (14:25 +0100)