doc/ssl/SSL_get_peer_cert_chain.pod

296403Sbdrewery=pod
296403Sbdrewery
296403Sbdrewery=head1 NAME
296403Sbdrewery
296403SbdrewerySSL_get_peer_cert_chain - get the X509 certificate chain of the peer
296403Sbdrewery
296403Sbdrewery=head1 SYNOPSIS
296403Sbdrewery
296403Sbdrewery #include <openssl/ssl.h>
296403Sbdrewery
296403Sbdrewery STACKOF(X509) *SSL_get_peer_cert_chain(SSL *ssl);
296403Sbdrewery
296403Sbdrewery=head1 DESCRIPTION
296403Sbdrewery
296403SbdrewerySSL_get_peer_cert_chain() returns a pointer to STACKOF(X509) certificates
296403Sbdreweryforming the certificate chain of the peer. If called on the client side,
296403Sbdrewerythe stack also contains the peer's certificate; if called on the server
296403Sbdreweryside, the peer's certificate must be obtained seperately using
296403SbdreweryL<SSL_get_peer_certificate(3)|SSL_get_peer_certificate(3)>.
296403SbdreweryIf the peer did not present a certificate, NULL is returned.
296403Sbdrewery
296403Sbdrewery=head1 NOTES
296403Sbdrewery
The peer certificate chain is not necessarily available after reusing
a session, in which case a NULL pointer is returned.

The reference count of the STACKOF(X509) object is not incremented.
If the corresponding session is freed, the pointer must not be used
any longer.

=head1 RETURN VALUES

The following return values can occur:

=over 4

=item NULL

No certificate was presented by the peer or no connection was established
or the certificate chain is no longer available when a session is reused.

=item Pointer to a STACKOF(X509)

The return value points to the certificate chain presented by the peer.

=back

=head1 SEE ALSO

L<ssl(3)|ssl(3)>, L<SSL_get_peer_certificate(3)|SSL_get_peer_certificate(3)>

=cut