5 SSL_check_chain - check certificate chain suitability
11  int SSL_check_chain(SSL *s, X509 *x, EVP_PKEY *pk, STACK_OF(X509) *chain);
16 certificate chain B<chain> is suitable for use with the current session
22 chain.
24 B<CERT_PKEY_VALID>: the chain can be used with the current session.
52 B<CERT_PKEY_SUITEB>: chain is suitable for Suite B use.
61 function on each chain in turn: starting with the one it considers the
62 most secure. It could then use the chain of the first set which returns
65 As a minimum the flag B<CERT_PKEY_VALID> must be set for a chain to be
68 chain is suitable a server should fall back to the most secure chain which
71 The validity of a chain is determined by checking if it matches a supported
77 be very useful. Applications may wish to specify a different "legacy" chain

Last Index update Sat Nov 16 14:06:55 UTC 2024

Dedicated to & Maintained by Room-11