|SSL_CTX_ADD_EXTRA_CHAIN_CERT(3)||Library Functions Manual||SSL_CTX_ADD_EXTRA_CHAIN_CERT(3)|
SSL_CTX_add_extra_chain_cert() adds the certificate x509 to the extra chain certificates associated with ctx. Several certificates can be added one after another.
all extra chain certificates associated with ctx.
These functions are implemented as macros.
When sending a certificate chain, extra chain certificates are sent in order following the end entity certificate.
If no chain is specified, the library will try to complete the chain from the available CA certificates in the trusted CA storage, see SSL_CTX_load_verify_locations(3).
The x509 certificate provided to
SSL_CTX_add_extra_chain_cert() will be freed by the
library when the SSL_CTX is destroyed. An application
should not free the x509 object.
SSL_CTX_clear_extra_chain_certs() return 1 on success or 0 for failure. Check out the error stack to find out the reason for failure.
SSL_CTX_add_extra_chain_cert() first appeared in SSLeay 0.9.1 and has been available since OpenBSD 2.6.
appeared in OpenSSL 1.0.1 and has been available since
|March 23, 2018||OpenBSD-current|