diff options
Diffstat (limited to 'crypto/openssl/doc/man3/SSL_CTX_set_cert_verify_callback.pod')
| -rw-r--r-- | crypto/openssl/doc/man3/SSL_CTX_set_cert_verify_callback.pod | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/crypto/openssl/doc/man3/SSL_CTX_set_cert_verify_callback.pod b/crypto/openssl/doc/man3/SSL_CTX_set_cert_verify_callback.pod index 4d510f3041d4..d93916f3b248 100644 --- a/crypto/openssl/doc/man3/SSL_CTX_set_cert_verify_callback.pod +++ b/crypto/openssl/doc/man3/SSL_CTX_set_cert_verify_callback.pod @@ -63,6 +63,11 @@ on resumption, even though no chain is presented int that case. Moreover, the calling application will be informed about the detailed result of the verification procedure and may elect to base further decisions on it. +I<callback> may call L<X509_verify_cert(3)> to run the built-in verification +function. This may be useful if application wishes to dynamically reconfigure +I<x509_store_ctx> before verification, or postprocess the result. In this case, +L<X509_verify_cert(3)> will set the B<error> member as described above. + Within I<x509_store_ctx>, I<callback> has access to the I<verify_callback> function set using L<SSL_CTX_set_verify(3)>. |