Scroll to navigation

SSL_get_client_CA_list(3) OpenSSL SSL_get_client_CA_list(3)

NAME

SSL_get_client_CA_list, SSL_CTX_get_client_CA_list - get list of client CAs

SYNOPSIS

 #include <openssl/ssl.h>
 STACK_OF(X509_NAME) *SSL_get_client_CA_list(const SSL *s);
 STACK_OF(X509_NAME) *SSL_CTX_get_client_CA_list(const SSL_CTX *ctx);

DESCRIPTION

SSL_CTX_get_client_CA_list() returns the list of client CAs explicitly set for ctx using SSL_CTX_set_client_CA_list(3).

SSL_get_client_CA_list() returns the list of client CAs explicitly set for ssl using SSL_set_client_CA_list() or ssl's SSL_CTX object with SSL_CTX_set_client_CA_list(3), when in server mode. In client mode, SSL_get_client_CA_list returns the list of client CAs sent from the server, if any.

RETURN VALUES

SSL_CTX_set_client_CA_list() and SSL_set_client_CA_list() do not return diagnostic information.

SSL_CTX_add_client_CA() and SSL_add_client_CA() have the following return values:

List of CA names explicitly set (for ctx or in server mode) or send by the server (client mode).
No client CA list was explicitly set (for ctx or in server mode) or the server did not send a list of CAs (client mode).

SEE ALSO

ssl(3), SSL_CTX_set_client_CA_list(3), SSL_CTX_set_client_cert_cb(3)

2017-01-26 1.0.2k