OpenVPN
Data Fields
tls_session Struct Reference

Security parameter state of a single session within a VPN tunnel. More...

#include <ssl_common.h>

Collaboration diagram for tls_session:
Collaboration graph
[legend]

Data Fields

struct tls_optionsopt
 
bool burst
 
struct tls_wrap_ctx tls_wrap
 
int initial_opcode
 
struct session_id session_id
 
int key_id
 The current active key id, used to keep track of renegotiations. More...
 
int limit_next
 
int verify_maxlevel
 
char * common_name
 
struct cert_hash_setcert_hash_set
 
bool verified
 
struct link_socket_actual untrusted_addr
 
struct key_state key [KS_SIZE]
 

Detailed Description

Security parameter state of a single session within a VPN tunnel.

This structure represents an OpenVPN peer-to-peer control channel session.

A tls_session remains over soft resets, but a new instance is initialized for each hard reset.

See also

Definition at line 398 of file ssl_common.h.

Field Documentation

◆ burst

bool tls_session::burst

Definition at line 404 of file ssl_common.h.

Referenced by tls_pre_decrypt().

◆ cert_hash_set

struct cert_hash_set* tls_session::cert_hash_set

◆ common_name

char* tls_session::common_name

◆ initial_opcode

int tls_session::initial_opcode

Definition at line 409 of file ssl_common.h.

Referenced by key_state_init(), and tls_session_init().

◆ key

struct key_state tls_session::key[KS_SIZE]

◆ key_id

int tls_session::key_id

The current active key id, used to keep track of renegotiations.

key_id increments with each soft reset to KEY_ID_MASK then recycles back to 1. This way you know that if key_id is 0, it is the first key.

Definition at line 417 of file ssl_common.h.

Referenced by key_state_init(), and tls_session_init().

◆ limit_next

int tls_session::limit_next

Definition at line 419 of file ssl_common.h.

◆ opt

struct tls_options* tls_session::opt

◆ session_id

struct session_id tls_session::session_id

◆ tls_wrap

struct tls_wrap_ctx tls_session::tls_wrap

◆ untrusted_addr

struct link_socket_actual tls_session::untrusted_addr

Definition at line 434 of file ssl_common.h.

Referenced by setenv_untrusted(), and tls_pre_decrypt().

◆ verified

bool tls_session::verified

Definition at line 431 of file ssl_common.h.

Referenced by key_method_1_read(), key_method_2_read(), verify_callback(), and verify_cert().

◆ verify_maxlevel

int tls_session::verify_maxlevel

Definition at line 421 of file ssl_common.h.

Referenced by verify_cert().


The documentation for this struct was generated from the following file: