SSL_get_peer_cert_chain (3)

Leading comments

Automatically generated by Pod::Man 4.07 (Pod::Simple 3.32)

Standard preamble:
========================================================================

(The comments found at the beginning of the groff file "man3/SSL_get_peer_cert_chain.3ssl".)

NAME

SSL_get_peer_cert_chain - get the X509 certificate chain of the peer

SYNOPSIS

 #include <openssl/ssl.h>

 STACK_OF(X509) *SSL_get_peer_cert_chain(const SSL *ssl);

DESCRIPTION

SSL_get_peer_cert_chain() returns a pointer to (X509) certificates forming the certificate chain of the peer. If called on the client side, the stack also contains the peer's certificate; if called on the server side, the peer's certificate must be obtained separately using SSL_get_peer_certificate(3). If the peer did not present a certificate, is returned.

NOTES

The peer certificate chain is not necessarily available after reusing a session, in which case a pointer is returned.

The reference count of the

(X509) object is not incremented. If the corresponding session is freed, the pointer must not be used any longer.

RETURN VALUES

The following return values can occur:

NULL

No certificate was presented by the peer or no connection was established or the certificate chain is no longer available when a session is reused.

Pointer to a

STACK_OF

(X509)

The return value points to the certificate chain presented by the peer.

SEE ALSO

ssl(3), SSL_get_peer_certificate(3)