diff options
| author | Jeffrey Walton <noloader@gmail.com> | 2014-06-27 16:33:06 +0100 |
|---|---|---|
| committer | Janusz Kozerski <j.kozerski@samsung.com> | 2014-10-20 15:25:27 +0200 |
| commit | 478f77622aa432313288905aa15383b75c3a3113 (patch) | |
| tree | 38be036fb1931574014cd33255c1ffbc49ed3a85 /doc | |
| parent | 375641d35a99f1e9d34204360e3538ef97693a8f (diff) | |
| download | openssl-478f77622aa432313288905aa15383b75c3a3113.tar.gz openssl-478f77622aa432313288905aa15383b75c3a3113.tar.bz2 openssl-478f77622aa432313288905aa15383b75c3a3113.zip | |
Clarify docs.
Document that the certificate passed to SSL_CTX_add_extra_chain_cert()
should not be freed by the application.
PR#3409
(cherry picked from commit 0535c2d67ca2d684087ef90be35d5fb207aab227)
Add restrictions section present in other branches.
Conflicts:
doc/ssl/SSL_CTX_add_extra_chain_cert.pod
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/ssl/SSL_CTX_add_extra_chain_cert.pod | 10 |
1 files changed, 10 insertions, 0 deletions
diff --git a/doc/ssl/SSL_CTX_add_extra_chain_cert.pod b/doc/ssl/SSL_CTX_add_extra_chain_cert.pod index ee28f5c..5955ee1 100644 --- a/doc/ssl/SSL_CTX_add_extra_chain_cert.pod +++ b/doc/ssl/SSL_CTX_add_extra_chain_cert.pod @@ -24,6 +24,16 @@ the library will try to complete the chain from the available CA certificates in the trusted CA storage, see L<SSL_CTX_load_verify_locations(3)|SSL_CTX_load_verify_locations(3)>. +The B<x509> certificate provided to SSL_CTX_add_extra_chain_cert() will be freed by the library when the B<SSL_CTX> is destroyed. An application B<should not> free the B<x509> object. + +=head1 RESTRICTIONS + +Only one set of extra chain certificates can be specified per SSL_CTX +structure. Different chains for different certificates (for example if both +RSA and DSA certificates are specified by the same server) or different SSL +structures with the same parent SSL_CTX cannot be specified using this +function. + =head1 RETURN VALUES SSL_CTX_add_extra_chain_cert() returns 1 on success. Check out the |