Hello, The bug report over on the apache tracker:
https://issues.apache.org/bugzilla/show_bug.cgi?id=46952 has been updated - there is a utility to generate a set of CA certificates, which should allow one to reproduce the problem and more information about when the failure has been seen. I also sent an analysis of the sequence of events leading up to the problem; and a "trial" fix - meaning that I see that it does fix the problem but I'd like the community's opinion on the approach. Could some of the openssl developers follow the link and consider the analysis and possibly the change? Thanks, David -- ------------------------------------------------------------------------- David Smith e-mail: david.sm...@cern.ch tel: +41 22 76 70677 Address: D. Smith, CERN G20610, Bat 31 2-004, 1211 Geneva 23, Switzerland -------------------------------------------------------------------------
smime.p7s
Description: S/MIME cryptographic signature
