18d7158809
is required by client or server. An application can decide which certificate chain to present based on arbitrary criteria: for example supported signature algorithms. Add very simple example to s_server. This fixes many of the problems and restrictions of the existing client certificate callback: for example you can now clear existing certificates and specify the whole chain.
NOTE: Don't expect any of these programs to work with current OpenSSL releases, or even with later SSLeay releases. Original README: ============================================================================= Some demo programs sent to me by various people eric