|SSL_GET_PEER_CERT_CHAIN(3)||Library Functions Manual||SSL_GET_PEER_CERT_CHAIN(3)|
SSL_get_peer_cert_chain() returns a pointer to
STACK_OF(X509) certificates forming the certificate chain of the peer. If called on the client side, the stack also contains the peer's certificate; if called on the server side, the peer's certificate must be obtained separately using SSL_get_peer_certificate(3). If the peer did not present a certificate,
SSL_get_peer_cert_chain() returns the peer
chain as sent by the peer: it only consists of certificates the peer has
sent (in the order the peer has sent them) and it is not a verified
If the session is resumed, peers do not send certificates, so a
NULL pointer is returned. Applications can call
SSL_session_reused() to determine whether a session
The reference count of the
STACK_OF(X509) object is not
incremented. If the corresponding session is freed, the pointer must not be
used any longer.
SSL_get_peer_cert_chain() first appeared in SSLeay 0.8.0 and has been available since OpenBSD 2.4.
|March 27, 2018||OpenBSD-current|