42 The functions described here set and manage the list of CA names that are sent
45 For TLS versions 1.2 and earlier the list of CA names is only sent from the
47 names set is never sent from client to server and the list of CA names retrieved
50 For TLS 1.3 the list of CA names is sent using the B<certificate_authorities>
54 In most cases it is not necessary to set CA names on the client side. The list
55 of CA names that are acceptable to the client will be sent in plaintext to the
58 and therefore setting CA names on the client side will have no impact if that
92 SSL_get0_peer_CA_list() retrieves the list of CA names (if any) the peer
98 sides. The lists of CA names managed are separate - so you cannot (for example)
99 set CA names using the "client CA list" functions and then get them using the
103 preference. As noted above in most cases it is not necessary to set CA names on
138 only contains the names, not the complete certificates); use
158 and SSL_get0_CA_list() return a stack of CA names or B<NULL> is no CA names are
164 SSL_get0_peer_CA_list() returns a stack of CA names sent by the peer or

Last Index update Tue Dec 03 00:04:52 UTC 2024

Dedicated to & Maintained by Room-11