Clarify resumed sessions and NULL return.

[openssl.git] / doc / ssl / SSL_get_peer_cert_chain.pod

diff --git a/doc/ssl/SSL_get_peer_cert_chain.pod b/doc/ssl/SSL_get_peer_cert_chain.pod
index 649de145ba9cd705f3b12b74c1acd26405a01f32..1320bcbcff46e9176001dbe7c273447dd4bd762a 100644 (file)
--- a/doc/ssl/SSL_get_peer_cert_chain.pod
+++ b/doc/ssl/SSL_get_peer_cert_chain.pod
@@ -33,8 +33,9 @@ X509_V_OK) the chain may be incomplete or invalid.
 
 =head1 NOTES
 
-The peer certificate chain is not necessarily available after reusing
-a session, in which case a NULL pointer is returned.
+If the session is resumed peers do not send certificates so a NULL pointer
+is returned by these functions. Applications can call SSL_session_reused()
+to determine whether a session is resumed.
 
 The reference count of each certificate in the returned STACK_OF(X509) object
 is not incremented and the returned stack may be invalidated by renegotiation.