1*10e00d17Sschwarze.\"	$OpenBSD: SSL_CTX_get_verify_mode.3,v 1.5 2018/03/27 17:35:50 schwarze Exp $
2be8dc86aSschwarze.\"	OpenSSL b97fdb57 Nov 11 09:33:09 2016 +0100
3f1a3c524Sschwarze.\"
4be8dc86aSschwarze.\" This file was written by Lutz Jaenicke <jaenicke@openssl.org>.
5be8dc86aSschwarze.\" Copyright (c) 2000, 2005 The OpenSSL Project.  All rights reserved.
6f1a3c524Sschwarze.\"
7be8dc86aSschwarze.\" Redistribution and use in source and binary forms, with or without
8be8dc86aSschwarze.\" modification, are permitted provided that the following conditions
9be8dc86aSschwarze.\" are met:
10be8dc86aSschwarze.\"
11be8dc86aSschwarze.\" 1. Redistributions of source code must retain the above copyright
12be8dc86aSschwarze.\"    notice, this list of conditions and the following disclaimer.
13be8dc86aSschwarze.\"
14be8dc86aSschwarze.\" 2. Redistributions in binary form must reproduce the above copyright
15be8dc86aSschwarze.\"    notice, this list of conditions and the following disclaimer in
16be8dc86aSschwarze.\"    the documentation and/or other materials provided with the
17be8dc86aSschwarze.\"    distribution.
18be8dc86aSschwarze.\"
19be8dc86aSschwarze.\" 3. All advertising materials mentioning features or use of this
20be8dc86aSschwarze.\"    software must display the following acknowledgment:
21be8dc86aSschwarze.\"    "This product includes software developed by the OpenSSL Project
22be8dc86aSschwarze.\"    for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
23be8dc86aSschwarze.\"
24be8dc86aSschwarze.\" 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
25be8dc86aSschwarze.\"    endorse or promote products derived from this software without
26be8dc86aSschwarze.\"    prior written permission. For written permission, please contact
27be8dc86aSschwarze.\"    openssl-core@openssl.org.
28be8dc86aSschwarze.\"
29be8dc86aSschwarze.\" 5. Products derived from this software may not be called "OpenSSL"
30be8dc86aSschwarze.\"    nor may "OpenSSL" appear in their names without prior written
31be8dc86aSschwarze.\"    permission of the OpenSSL Project.
32be8dc86aSschwarze.\"
33be8dc86aSschwarze.\" 6. Redistributions of any form whatsoever must retain the following
34be8dc86aSschwarze.\"    acknowledgment:
35be8dc86aSschwarze.\"    "This product includes software developed by the OpenSSL Project
36be8dc86aSschwarze.\"    for use in the OpenSSL Toolkit (http://www.openssl.org/)"
37be8dc86aSschwarze.\"
38be8dc86aSschwarze.\" THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
39be8dc86aSschwarze.\" EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
40be8dc86aSschwarze.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
41be8dc86aSschwarze.\" PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
42be8dc86aSschwarze.\" ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
43be8dc86aSschwarze.\" SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
44be8dc86aSschwarze.\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
45be8dc86aSschwarze.\" LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
46be8dc86aSschwarze.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
47be8dc86aSschwarze.\" STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
48be8dc86aSschwarze.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
49be8dc86aSschwarze.\" OF THE POSSIBILITY OF SUCH DAMAGE.
50be8dc86aSschwarze.\"
51*10e00d17Sschwarze.Dd $Mdocdate: March 27 2018 $
52f1a3c524Sschwarze.Dt SSL_CTX_GET_VERIFY_MODE 3
53f1a3c524Sschwarze.Os
54f1a3c524Sschwarze.Sh NAME
55f1a3c524Sschwarze.Nm SSL_CTX_get_verify_mode ,
56f1a3c524Sschwarze.Nm SSL_get_verify_mode ,
57f1a3c524Sschwarze.Nm SSL_CTX_get_verify_depth ,
58f1a3c524Sschwarze.Nm SSL_get_verify_depth ,
59f1a3c524Sschwarze.Nm SSL_get_verify_callback ,
60f1a3c524Sschwarze.Nm SSL_CTX_get_verify_callback
61f1a3c524Sschwarze.Nd get currently set verification parameters
62f1a3c524Sschwarze.Sh SYNOPSIS
63f1a3c524Sschwarze.In openssl/ssl.h
64f1a3c524Sschwarze.Ft int
65f1a3c524Sschwarze.Fn SSL_CTX_get_verify_mode "const SSL_CTX *ctx"
66f1a3c524Sschwarze.Ft int
67f1a3c524Sschwarze.Fn SSL_get_verify_mode "const SSL *ssl"
68f1a3c524Sschwarze.Ft int
69f1a3c524Sschwarze.Fn SSL_CTX_get_verify_depth "const SSL_CTX *ctx"
70f1a3c524Sschwarze.Ft int
71f1a3c524Sschwarze.Fn SSL_get_verify_depth "const SSL *ssl"
72f1a3c524Sschwarze.Ft int
73f1a3c524Sschwarze.Fo "(*SSL_CTX_get_verify_callback(const SSL_CTX *ctx))"
74f1a3c524Sschwarze.Fa int "X509_STORE_CTX *"
75f1a3c524Sschwarze.Fc
76f1a3c524Sschwarze.Ft int
77f1a3c524Sschwarze.Fo "(*SSL_get_verify_callback(const SSL *ssl))"
78f1a3c524Sschwarze.Fa int "X509_STORE_CTX *"
79f1a3c524Sschwarze.Fc
80f1a3c524Sschwarze.Sh DESCRIPTION
81f1a3c524Sschwarze.Fn SSL_CTX_get_verify_mode
82f1a3c524Sschwarzereturns the verification mode currently set in
83f1a3c524Sschwarze.Fa ctx .
84f1a3c524Sschwarze.Pp
85f1a3c524Sschwarze.Fn SSL_get_verify_mode
86f1a3c524Sschwarzereturns the verification mode currently set in
87f1a3c524Sschwarze.Fa ssl .
88f1a3c524Sschwarze.Pp
89f1a3c524Sschwarze.Fn SSL_CTX_get_verify_depth
90f1a3c524Sschwarzereturns the verification depth limit currently set
91f1a3c524Sschwarzein
92f1a3c524Sschwarze.Fa ctx .
93f1a3c524SschwarzeIf no limit has been explicitly set,
94f1a3c524Sschwarze\(mi1 is returned and the default value will be used.
95f1a3c524Sschwarze.Pp
96f1a3c524Sschwarze.Fn SSL_get_verify_depth
97f1a3c524Sschwarzereturns the verification depth limit currently set in
98f1a3c524Sschwarze.Fa ssl .
99f1a3c524SschwarzeIf no limit has been explicitly set,
100f1a3c524Sschwarze\(mi1 is returned and the default value will be used.
101f1a3c524Sschwarze.Pp
102f1a3c524Sschwarze.Fn SSL_CTX_get_verify_callback
103f1a3c524Sschwarzereturns a function pointer to the verification callback currently set in
104f1a3c524Sschwarze.Fa ctx .
105f1a3c524SschwarzeIf no callback was explicitly set, the
106f1a3c524Sschwarze.Dv NULL
107f1a3c524Sschwarzepointer is returned and the default callback will be used.
108f1a3c524Sschwarze.Pp
109f1a3c524Sschwarze.Fn SSL_get_verify_callback
110f1a3c524Sschwarzereturns a function pointer to the verification callback currently set in
111f1a3c524Sschwarze.Fa ssl .
112f1a3c524SschwarzeIf no callback was explicitly set, the
113f1a3c524Sschwarze.Dv NULL
114f1a3c524Sschwarzepointer is returned and the default callback will be used.
115f1a3c524Sschwarze.Sh SEE ALSO
116f1a3c524Sschwarze.Xr ssl 3 ,
117f1a3c524Sschwarze.Xr SSL_CTX_set_verify 3
1188fba1ec8Sschwarze.Sh HISTORY
1198fba1ec8Sschwarze.Fn SSL_CTX_get_verify_mode ,
1208fba1ec8Sschwarze.Fn SSL_get_verify_mode ,
1218fba1ec8Sschwarze.Fn SSL_get_verify_callback ,
1228fba1ec8Sschwarzeand
1238fba1ec8Sschwarze.Fn SSL_CTX_get_verify_callback
124*10e00d17Sschwarzefirst appeared in SSLeay 0.8.0 and have been available since
1258fba1ec8Sschwarze.Ox 2.4 .
126684e8488Sschwarze.Pp
127684e8488Sschwarze.Fn SSL_CTX_get_verify_depth
128684e8488Sschwarzeand
129684e8488Sschwarze.Fn SSL_get_verify_depth
130684e8488Sschwarzefirst appeared in OpenSSL 0.9.3 and have been available since
131684e8488Sschwarze.Ox 2.6 .
132