https://bz.apache.org/bugzilla/show_bug.cgi?id=61394
--- Comment #1 from Rainer Jung <rainer.j...@kippdata.de> --- The OpenSSL call for this should be SSL_CTX_set_client_CA_list() (at least mod_ssl in Apache httpd uses it). We already wired that functionality in tcnative, file native/src/sslcontext.c, function setCACertificate. It gets alrady called in org.apache.tomcat.jni.SSLContext.setCACertificate(long ctx, String file, String path) which in trun is (conditionally) called from org.apache.tomcat.util.net.openssl.OpenSSLContext.init(...) and org.apache.tomcat.util.net.AprEndpoint.createSSLContext(...). Maybe something with the setup is wrong? Regards, Rainer -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org