MBEDTLS_SSL_KEEP_PEER_CERTIFICATE is only used within mbedTLS.
 
Symbols
loading...
Files
loading...
SummarySyntaxReferences

Notes

If this option is disabled, mbedtls_ssl_get_peer_cert() is still defined, but always returns \c NULL. This option has no influence on the protection against the triple handshake attack. Even if it is disabled, Mbed TLS will still ensure that certificates do not change during renegotiation, for example by keeping a hash of the peer's certificate. This option is required if MBEDTLS_SSL_PROTO_TLS1_3 is set.

References