Update CHANGES.

2013-09-12 22:12:21 +01:00 · 2013-09-12 22:12:21 +01:00 · 785da0e610
commit 785da0e610
parent cbf8123512
1 changed files with 8 additions and 0 deletions
--- a/8
+++ b/8
@ -4,6 +4,14 @@

 Changes between 1.0.x and 1.1.0  [xx XXX xxxx]

+  *) Add option SSL_OP_SAFARI_ECDHE_ECDSA_BUG (part of SSL_OP_ALL) which
+     avoids preferring ECDHE-ECDSA ciphers when the client appears to be
+     Safari on OS X.  Safari on OS X 10.8..10.8.3 advertises support for
+     several ECDHE-ECDSA ciphers, but fails to negotiate them.  The bug
+     is fixed in OS X 10.8.4, but Apple have ruled out both hot fixing
+     10.8..10.8.3 and forcing users to upgrade to 10.8.4 or newer.
+     [Rob Stradling, Adam Langley]
+
  *) Experimental encrypt-then-mac support.
    
     Experimental support for encrypt then mac from