SSL_set_client_CA_list(ssl, NULL) problem?

Claus Assmann ca+ssl-users at
Thu Nov 21 19:37:03 UTC 2019

I'm trying to find what's wrong when I use
SSL_set_client_CA_list(ssl, NULL);
in a server:
openssl s_client still shows "Acceptable client CA names"
(those which are previously set using 
instead of the expected
"No client certificate CA names sent"
which happens if I use
SSL_CTX_set_client_CA_list(ctx, NULL)

Now sure what's wrong:
- my program
- openssl s_client
- SSL_set_client_CA_list(ssl, NULL)
- something else

PS: openssl version is 1.0.2t

More information about the openssl-users mailing list