Index Index for
Section 3
Index Alphabetical
listing for S
Bottom of page Bottom of
page		 

SSL_get_peer_certificate(3)


NAME

  SSL_get_peer_certificate - Get the X509 certificate of the peer


SYNOPSIS

   #include <openssl/ssl.h>

  X509 *SSL_get_peer_certificate(
	  SSL *ssl );


DESCRIPTION

  The SSL_get_peer_certificate() function returns a pointer to the X509
  certificate the peer presented. If the peer did not present a certificate,
  NULL is returned.


NOTES

  Due to the protocol definition, a TLS/SSL server will always send a
  certificate, if present. A client will only send a certificate when
  explicitly requested to do so by the server. (See SSL_CTX_set_verify()).
  If an anonymous cipher is used, no certificates are sent.

  The reference count of the X509 object is incremented by one, so that it
  will not be destroyed when the session containing the peer certificate is
  freed. The X509 object must be explicitly freed using the X509_free()
  function.


RETURN VALUES

  The following return values can occur:

  NULL	  No certificate was presented by the peer or no connection was
	  established.

  Pointer to an X509 certificate
	  The return value points to the certificate presented by the peer.


SEE ALSO

  Functions: ssl(3), SSL_get_verify_result(3), SSL_CTX_set_verify(3)

Index Index for
Section 3
Index Alphabetical
listing for S
Top of page Top of
page