diff options
author | Dr. Stephen Henson <steve@openssl.org> | 2016-02-07 23:20:53 +0000 |
---|---|---|
committer | Dr. Stephen Henson <steve@openssl.org> | 2016-02-08 02:35:51 +0000 |
commit | 99978d51d6ba1ae8e36c1f82e98e9b2052131948 (patch) | |
tree | bfd0dddc9e771197dbb1034be5a08c20fb13807b /doc/ssl | |
parent | 026e012b3d1aadb754e40b52250ea0d3be4eff6d (diff) |
Clarify resumed sessions and NULL return.
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
Diffstat (limited to 'doc/ssl')
-rw-r--r-- | doc/ssl/SSL_get_peer_cert_chain.pod | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/doc/ssl/SSL_get_peer_cert_chain.pod b/doc/ssl/SSL_get_peer_cert_chain.pod index 649de145ba..1320bcbcff 100644 --- a/doc/ssl/SSL_get_peer_cert_chain.pod +++ b/doc/ssl/SSL_get_peer_cert_chain.pod @@ -33,8 +33,9 @@ X509_V_OK) the chain may be incomplete or invalid. =head1 NOTES -The peer certificate chain is not necessarily available after reusing -a session, in which case a NULL pointer is returned. +If the session is resumed peers do not send certificates so a NULL pointer +is returned by these functions. Applications can call SSL_session_reused() +to determine whether a session is resumed. The reference count of each certificate in the returned STACK_OF(X509) object is not incremented and the returned stack may be invalidated by renegotiation. |