get result of peer certificate
returns the result of the verification of the X509 certificate presented by
the peer, if any.
can only return one error code while the verification of a certificate can
fail because of many reasons at the same time. Only the last verification
error that occurred during the processing is available from
The verification result is part of the established session and is restored when a session is reused.
The following return values can currently occur:
- The verification succeeded or no peer certificate was presented.
- Any other value
- Documented in openssl(1).
openssl(1), ssl(3), SSL_CTX_set_verify(3), SSL_get0_peername(3), SSL_get_peer_certificate(3), SSL_set_verify_result(3)
SSL_get_verify_result() first appeared in
SSLeay 0.6.1 and has been available since OpenBSD
If no peer certificate was presented, the returned result code is
X509_V_OK. This is because no verification error
occurred; however, it does not indicate success.
SSL_get_verify_result() is only useful in connection