get result of peer certificate verification
() returns the result of
the verification of the X509 certificate presented by the peer, if any.
() can only return one
error code while the verification of a certificate can fail because of many
reasons at the same time. Only the last verification error that occurred
during the processing is available from
The verification result is part of the established session and is restored when
a session is reused.
The following return values can currently occur:
- The verification succeeded or no peer certificate was presented.
- Any other value
- Documented in
() first appeared in
SSLeay 0.6.1 and has been available since OpenBSD 2.4
If no peer certificate was presented, the returned result code is
. This is because no verification
error occurred; however, it does not indicate success.
() is only useful in