OpenSSL server sending certificate chain(inc. root cert) during handshake

Sam Roberts vieuxtech at
Fri May 31 19:32:43 UTC 2019

The root cert is not used for validation, so it doesn't have to be
sent. However, sending it does no harm, and it is useful for humans
who are attempting to diagnose problems, it allows them to see what
what root cert they are expected to have locally for sucessful cert
chain validation.

More information about the openssl-users mailing list