OpenVPN
Data Fields
tls_session Struct Reference

Security parameter state of a single session within a VPN tunnel. More...

#include <ssl_common.h>

Collaboration diagram for tls_session:
Collaboration graph
[legend]

Data Fields

struct tls_optionsopt
 
bool burst
 
struct tls_wrap_ctx tls_wrap
 
int initial_opcode
 
struct session_id session_id
 
int key_id
 The current active key id, used to keep track of renegotiations. More...
 
int limit_next
 
int verify_maxlevel
 
char * common_name
 
struct cert_hash_setcert_hash_set
 
bool verified
 
struct link_socket_actual untrusted_addr
 
struct key_state key [KS_SIZE]
 

Detailed Description

Security parameter state of a single session within a VPN tunnel.

This structure represents an OpenVPN peer-to-peer control channel session.

A tls_session remains over soft resets, but a new instance is initialized for each hard reset.

See also

Definition at line 407 of file ssl_common.h.

Field Documentation

◆ burst

bool tls_session::burst

Definition at line 413 of file ssl_common.h.

Referenced by tls_pre_decrypt().

◆ cert_hash_set

struct cert_hash_set* tls_session::cert_hash_set

◆ common_name

char* tls_session::common_name

◆ initial_opcode

int tls_session::initial_opcode

Definition at line 418 of file ssl_common.h.

Referenced by key_state_init(), and tls_session_init().

◆ key

struct key_state tls_session::key[KS_SIZE]

◆ key_id

int tls_session::key_id

The current active key id, used to keep track of renegotiations.

key_id increments with each soft reset to KEY_ID_MASK then recycles back to 1. This way you know that if key_id is 0, it is the first key.

Definition at line 426 of file ssl_common.h.

Referenced by key_state_init(), and tls_session_init().

◆ limit_next

int tls_session::limit_next

Definition at line 428 of file ssl_common.h.

◆ opt

struct tls_options* tls_session::opt

◆ session_id

struct session_id tls_session::session_id

◆ tls_wrap

struct tls_wrap_ctx tls_session::tls_wrap

◆ untrusted_addr

struct link_socket_actual tls_session::untrusted_addr

Definition at line 443 of file ssl_common.h.

Referenced by setenv_untrusted(), and tls_pre_decrypt().

◆ verified

bool tls_session::verified

Definition at line 440 of file ssl_common.h.

Referenced by key_method_1_read(), key_method_2_read(), verify_callback(), and verify_cert().

◆ verify_maxlevel

int tls_session::verify_maxlevel

Definition at line 430 of file ssl_common.h.

Referenced by verify_cert().


The documentation for this struct was generated from the following file: