[openssl-commits] [openssl] master update
Dr. Stephen Henson
steve at openssl.org
Mon Feb 8 02:36:32 UTC 2016
The branch master has been updated
via 99978d51d6ba1ae8e36c1f82e98e9b2052131948 (commit)
from 026e012b3d1aadb754e40b52250ea0d3be4eff6d (commit)
- Log -----------------------------------------------------------------
commit 99978d51d6ba1ae8e36c1f82e98e9b2052131948
Author: Dr. Stephen Henson <steve at openssl.org>
Date: Sun Feb 7 23:20:53 2016 +0000
Clarify resumed sessions and NULL return.
Reviewed-by: Viktor Dukhovni <viktor at openssl.org>
-----------------------------------------------------------------------
Summary of changes:
doc/ssl/SSL_get_peer_cert_chain.pod | 5 +++--
1 file changed, 3 insertions(+), 2 deletions(-)
diff --git a/doc/ssl/SSL_get_peer_cert_chain.pod b/doc/ssl/SSL_get_peer_cert_chain.pod
index 649de14..1320bcb 100644
--- a/doc/ssl/SSL_get_peer_cert_chain.pod
+++ b/doc/ssl/SSL_get_peer_cert_chain.pod
@@ -33,8 +33,9 @@ X509_V_OK) the chain may be incomplete or invalid.
=head1 NOTES
-The peer certificate chain is not necessarily available after reusing
-a session, in which case a NULL pointer is returned.
+If the session is resumed peers do not send certificates so a NULL pointer
+is returned by these functions. Applications can call SSL_session_reused()
+to determine whether a session is resumed.
The reference count of each certificate in the returned STACK_OF(X509) object
is not incremented and the returned stack may be invalidated by renegotiation.
More information about the openssl-commits
mailing list