Hi All, Could someone help me understand why there is a function SSL_CTX_set_client_CA_list() for telling the client which CAs the server will recognize but no function for telling the server which CAs the client will recognize? In other words, could you please explain the asymmetry? It doesn't make a whole lot of sense to me. Whether a client or server I give the same cert bundle file argument to SSL_CTX_load_verify_locations(). It seems like the latter function should be sufficient in determining which CAs are recognized.
Thanks, Dallas ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
