Clarify resumed sessions and NULL return.

author Dr. Stephen Henson <steve@openssl.org>

Sun, 7 Feb 2016 23:20:53 +0000 (23:20 +0000)

committer Dr. Stephen Henson <steve@openssl.org>

Mon, 8 Feb 2016 02:35:51 +0000 (02:35 +0000)
author Dr. Stephen Henson <steve@openssl.org>
Sun, 7 Feb 2016 23:20:53 +0000 (23:20 +0000)
committer Dr. Stephen Henson <steve@openssl.org>
Mon, 8 Feb 2016 02:35:51 +0000 (02:35 +0000)
diff --git a/doc/ssl/SSL_get_peer_cert_chain.pod b/doc/ssl/SSL_get_peer_cert_chain.pod

index 649de145ba9cd705f3b12b74c1acd26405a01f32..1320bcbcff46e9176001dbe7c273447dd4bd762a 100644 (file)
--- a/doc/ssl/SSL_get_peer_cert_chain.pod
+++ b/doc/ssl/SSL_get_peer_cert_chain.pod
@@ -33,8 +33,9 @@ X509_V_OK) the chain may be incomplete or invalid.
  
  =head1 NOTES
  
-The peer certificate chain is not necessarily available after reusing
-a session, in which case a NULL pointer is returned.
+If the session is resumed peers do not send certificates so a NULL pointer
+is returned by these functions. Applications can call SSL_session_reused()
+to determine whether a session is resumed.
  
  The reference count of each certificate in the returned STACK_OF(X509) object
  is not incremented and the returned stack may be invalidated by renegotiation.
author	Dr. Stephen Henson <steve@openssl.org>
	Sun, 7 Feb 2016 23:20:53 +0000 (23:20 +0000)
committer	Dr. Stephen Henson <steve@openssl.org>
	Mon, 8 Feb 2016 02:35:51 +0000 (02:35 +0000)