SSL_get_peer_certificate(3) OpenSSL SSL_get_peer_certificate(3)NAME
SSL_get_peer_certificate - get the X509 certificate of the peer
SYNOPSIS
#include <openssl/ssl.h>
X509 *SSL_get_peer_certificate(SSL *ssl);
DESCRIPTION
SSL_get_peer_certificate() returns a pointer to the X509 certificate the peer presented. If the peer did not present a certificate, NULL is
returned.
NOTES
Due to the protocol definition, a TLS/SSL server will always send a certificate, if present. A client will only send a certificate when
explicitly requested to do so by the server (see SSL_CTX_set_verify(3)). If an anonymous cipher is used, no certificates are sent.
That a certificate is returned does not indicate information about the verification state, use SSL_get_verify_result(3) to check the veri-
fication state.
The reference count of the X509 object is incremented by one, so that it will not be destroyed when the session containing the peer cer-
tificate is freed. The X509 object must be explicitly freed using X509_free().
RETURN VALUES
The following return values can occur:
NULL
No certificate was presented by the peer or no connection was established.
Pointer to an X509 certificate
The return value points to the certificate presented by the peer.
SEE ALSO ssl(3), SSL_get_verify_result(3), SSL_CTX_set_verify(3)0.9.7d 2002-12-01 SSL_get_peer_certificate(3)
Check Out this Related Man Page
SSL_get_peer_certificate(3) OpenSSL SSL_get_peer_certificate(3)NAME
SSL_get_peer_certificate - get the X509 certificate of the peer
SYNOPSIS
#include <openssl/ssl.h>
X509 *SSL_get_peer_certificate(const SSL *ssl);
DESCRIPTION
SSL_get_peer_certificate() returns a pointer to the X509 certificate the peer presented. If the peer did not present a certificate, NULL is
returned.
NOTES
Due to the protocol definition, a TLS/SSL server will always send a certificate, if present. A client will only send a certificate when
explicitly requested to do so by the server (see SSL_CTX_set_verify(3)). If an anonymous cipher is used, no certificates are sent.
That a certificate is returned does not indicate information about the verification state, use SSL_get_verify_result(3) to check the
verification state.
The reference count of the X509 object is incremented by one, so that it will not be destroyed when the session containing the peer
certificate is freed. The X509 object must be explicitly freed using X509_free().
RETURN VALUES
The following return values can occur:
NULL
No certificate was presented by the peer or no connection was established.
Pointer to an X509 certificate
The return value points to the certificate presented by the peer.
SEE ALSO ssl(3), SSL_get_verify_result(3), SSL_CTX_set_verify(3)50 2013-03-05 SSL_get_peer_certificate(3)
Hey all !
I have a nice question ( maybe simple one ).
I coded a simple server , chat server. I want to implement send files options. But here I come to a nasty thing .. I cannot face out.
Let's say that two clients are already connected to the server.( clients are just from another contry... (0 Replies)
Hello,
I want to automate the process of importing a SSL certificate name *.cer to cacerts through perl script. both the certificates belong to same folder.
The usual way of doing it is by executing the below command which imports the key name certnew.cer to cacerts in the same folder.
... (4 Replies)
Hello,
I am new in UNIX, and some one asks me to install SSL certificates to allow exchange with an external system.
Can someone tell how to install certificate (ex : verisignxxx.cer) on a UNIX server?
Many thanks.
Tibo (4 Replies)
hi, everyone.
i am having trouble configuring SSL for an IBM HTTP Server. system is running websphere with oracle db on aix5.3tl10.
looking at google, the best way to generate ssl is with ikeyman. however, the gui has been disabled, so i only have the command line to work from.
please help (1 Reply)
Hi,
I want to renew the ssl certificate for one of my application on tomcat without down time. I want to know what would the possible impacts for the users who currently have sessions to the app.
Regards,
Arumon (1 Reply)
We have a RHEL 5.8 server at the production level and we have a Java application on this server. I know of the SSL certificate generation at the OS (RHEL) level but it is implemented on the Java application by our development team using the Java keytool. My doubt is that is the SSL generation can... (3 Replies)
Hi everyone,
I am working on a Nginx + Apache installation for learning purposes, and just got to the point of installing a self-signed certificate for securing some pages that will be used to send "sensitive" information such as login credentials. So far so good.
What a I want to know is how can... (2 Replies)
hi
how to check ssl certificate expiry date using openssl command
try below code it is not working, any help
echo q | openssl s_client -connect akamai.com:443 | openssl x509 -noout -enddate
socket: Bad file descriptor
connect:errno=9
unable to load certificate... (0 Replies)