SSL_get_verify_result 3 2005-04-23 0.9.9-dev OpenSSL

NAME

SSL_get_verify_result - get result of peer certificate verification

LIBRARY

libcrypto, -lcrypto

SYNOPSIS


 #include 


 long SSL_get_verify_result(const SSL *ssl);

DESCRIPTION

_S_S_L___g_e_t___v_e_r_i_f_y___r_e_s_u_l_t_(_) returns the result of the verification of the X509 certificate presented by the peer, if any.

NOTES

_S_S_L___g_e_t___v_e_r_i_f_y___r_e_s_u_l_t_(_) can only return one error code while the verification of a certificate can fail because of many reasons at the same time. Only the last verification error that occurred during the processing is available from _S_S_L___g_e_t___v_e_r_i_f_y___r_e_s_u_l_t_(_).

The verification result is part of the established session and is restored when a session is reused.

BUGS

If no peer certificate was presented, the returned result code is X509_V_OK. This is because no verification error occurred, it does however not indicate success. _S_S_L___g_e_t___v_e_r_i_f_y___r_e_s_u_l_t_(_) is only useful in connection with _S_S_L___g_e_t___p_e_e_r___c_e_r_t_i_f_i_c_a_t_e(3).

RETURN VALUES

The following return values can currently occur:
X509_V_OK The verification succeeded or no peer certificate was presented.
Any other value Documented in _o_p_e_n_s_s_l___v_e_r_i_f_y(1).

SEE ALSO

_s_s_l(3), _S_S_L___s_e_t___v_e_r_i_f_y___r_e_s_u_l_t(3), _S_S_L___g_e_t___p_e_e_r___c_e_r_t_i_f_i_c_a_t_e(3), _o_p_e_n_s_s_l___v_e_r_i_f_y(1)