Keep Server Online
If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.
or
A donation makes a contribution towards the costs, the time and effort that's going in this site and building.
Thank You! Steffen
Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
| |
|
 Topic: OpenSSL stapling issue |
|
| Author |
|
jeremydunn
Joined: 15 Dec 2025
Posts: 3
Location: USA, Becket
|
 Posted: Fri 19 Dec '25 5:04 Post subject: OpenSSL 3.6.0 regression |
 |
|
given the OpenSSL 3.6.0 regression :
https://github.com/openssl/openssl/issues/28902
which affects Chromium-based browsers, opening pages from servers with OCSP stapling enabled
this bug has been fixed.
when the next version of OpenSSL (3.6.1?) is released, will there be a new version of 2.4.66 built ? |
|
| Back to top |
|
admin
Site Admin
Joined: 15 Oct 2005
Posts: 714
|
| Posted: Fri 19 Dec '25 8:14 Post subject: |
|
|
A new Openssl is not available
Disable stapling, no issue. |
|
| Back to top |
|
jeremydunn
Joined: 15 Dec 2025
Posts: 3
Location: USA, Becket
|
| Posted: Fri 19 Dec '25 14:05 Post subject: |
|
|
| admin wrote: | A new Openssl is not available
Disable stapling, no issue.
|
thanks for taking time to reply.
yes, I understand the new version of OpenSSL is not yet released. I was asking about the future.
actually, I tried using /bin/libssl-3-x64.dll (v3.5.1) from 2.4.65, with my old Intermediate SSL cert, and that seems to work. phpinfo() still reports OpenSSL 3.6.0, but the presenting problem with Chromium-based browsers is gone.
to me that's a better workaround than disabling OCSP stapling. |
|
| Back to top |
|
|
|
|
|
|
