- Added ssl_get_peer_cert() to SSL API

commit: b0550d90c9c27c74edfe93c8ebbd10b9cb5e2832 [log] [tgz]
author: Paul Bakker <p.j.bakker@polarssl.org> Tue Oct 30 07:51:03 2012 +0000
committer: Paul Bakker <p.j.bakker@polarssl.org> Tue Oct 30 07:51:03 2012 +0000
tree: 75c6d6131ea16a1d5f5068b0aeb32701933cb160
parent: d2c167e9a8eb4b1178ce47dd4edc422d90835f37 [diff] [blame]
diff --git a/include/polarssl/ssl.h b/include/polarssl/ssl.h
index 3c812f2..8a1c19d 100644
--- a/include/polarssl/ssl.h
+++ b/include/polarssl/ssl.h

@@ -929,6 +929,22 @@
 const char *ssl_get_version( const ssl_context *ssl );
 
 /**
+ * \brief          Return the peer certificate from the current connection
+ *
+ *                 Note: Can be NULL in case no certificate was sent during
+ *                 the handshake. Different calls for the same connection can
+ *                 return the same or different pointers for the same
+ *                 certificate and even a different certificate altogether.
+ *                 The peer cert CAN change in a single connection if
+ *                 renegotiation is performed.
+ *
+ * \param ssl      SSL context
+ *
+ * \return         the current peer certificate
+ */
+const x509_cert *ssl_get_peer_cert( const ssl_context *ssl );
+
+/**
  * \brief          Perform the SSL handshake
  *
  * \param ssl      SSL context
commit	b0550d90c9c27c74edfe93c8ebbd10b9cb5e2832	[log] [tgz]
author	Paul Bakker <p.j.bakker@polarssl.org>	Tue Oct 30 07:51:03 2012 +0000
committer	Paul Bakker <p.j.bakker@polarssl.org>	Tue Oct 30 07:51:03 2012 +0000
tree	75c6d6131ea16a1d5f5068b0aeb32701933cb160
parent	d2c167e9a8eb4b1178ce47dd4edc422d90835f37 [diff] [blame]