LinuxGuruz
  • Last 5 Forum Topics
    Replies
    Views
    Last post


The Web Only This Site
  • BOOKMARK

  • ADD TO FAVORITES

  • REFERENCES


  • MARC

    Mailing list ARChives
    - Search by -
     Subjects
     Authors
     Bodies





    FOLDOC

    Computing Dictionary




  • Text Link Ads






  • LINUX man pages
  • Linux Man Page Viewer


    The following form allows you to view linux man pages.

    Command:

    SSL_CTX_set_client_CA_list

    
           client when requesting a client certificate
    
    
    

    SYNOPSIS

            #include <openssl/ssl.h>
    
            void SSL_CTX_set_client_CA_list(SSL_CTX *ctx, STACK_OF(X509_NAME) *list);
            void SSL_set_client_CA_list(SSL *s, STACK_OF(X509_NAME) *list);
            int SSL_CTX_add_client_CA(SSL_CTX *ctx, X509 *cacert);
            int SSL_add_client_CA(SSL *ssl, X509 *cacert);
    
    
    

    DESCRIPTION

           SSL_CTX_set_client_CA_list() sets the list of CAs sent to the client
           when requesting a client certificate for ctx.
    
           SSL_set_client_CA_list() sets the list of CAs sent to the client when
           requesting a client certificate for the chosen ssl, overriding the
           setting valid for ssl's SSL_CTX object.
    
           SSL_CTX_add_client_CA() adds the CA name extracted from cacert to the
           list of CAs sent to the client when requesting a client certificate for
           ctx.
    
           SSL_add_client_CA() adds the CA name extracted from cacert to the list
           of CAs sent to the client when requesting a client certificate for the
           chosen ssl, overriding the setting valid for ssl's SSL_CTX object.
    
    
    

    NOTES

           When a TLS/SSL server requests a client certificate (see
           SSSSLL_CCTTXX_sseett_vveerriiffyy_ooppttiioonnss(())), it sends a list of CAs, for which it
           will accept certificates, to the client.
    
           This list must explicitly be set using SSL_CTX_set_client_CA_list() for
           ctx and SSL_set_client_CA_list() for the specific ssl. The list
           specified overrides the previous setting. The CAs listed do not become
           trusted (list only contains the names, not the complete certificates);
           use SSL_CTX_load_verify_locations(3) to additionally load them for
           verification.
    
           If the list of acceptable CAs is compiled in a file, the
           SSL_load_client_CA_file(3) function can be used to help importing the
           necessary data.
    
           SSL_CTX_add_client_CA() and SSL_add_client_CA() can be used to add
           additional items the list of client CAs. If no list was specified
           before using SSL_CTX_set_client_CA_list() or SSL_set_client_CA_list(),
           a new client CA list for ctx or ssl (as appropriate) is opened.
    
           These functions are only useful for TLS/SSL servers.
    
    
    

    RETURN VALUES

           SSL_CTX_set_client_CA_list() and SSL_set_client_CA_list() do not return
           diagnostic information.
    
    
    

    SEE ALSO

           ssl(3), SSL_get_client_CA_list(3), SSL_load_client_CA_file(3),
           SSL_CTX_load_verify_locations(3)
    
    
    

    1.0.1e 2016-01-07 SSL_CTX_set_client_CA_list(3)

    
    
  • MORE RESOURCE


  • Linux

    The Distributions





    Linux

    The Software





    Linux

    The News



  • MARKETING






  • Toll Free

webmaster@linuxguruz.com
Copyright © 1999 - 2016 by LinuxGuruz