OpenVPN
Data Fields
tls_session Struct Reference

Security parameter state of a single session within a VPN tunnel. More...

#include <ssl_common.h>

Collaboration diagram for tls_session:
Collaboration graph
[legend]

Data Fields

struct tls_optionsopt
 
bool burst
 
struct tls_wrap_ctx tls_wrap
 
struct tls_wrap_ctx tls_wrap_reneg
 
int initial_opcode
 
struct session_id session_id
 
int key_id
 The current active key id, used to keep track of renegotiations. More...
 
int limit_next
 
int verify_maxlevel
 
char * common_name
 
struct cert_hash_setcert_hash_set
 
bool verified
 
struct link_socket_actual untrusted_addr
 
struct key_state key [KS_SIZE]
 

Detailed Description

Security parameter state of a single session within a VPN tunnel.

This structure represents an OpenVPN peer-to-peer control channel session.

A tls_session remains over soft resets, but a new instance is initialized for each hard reset.

See also

Definition at line 471 of file ssl_common.h.

Field Documentation

◆ burst

bool tls_session::burst

Definition at line 477 of file ssl_common.h.

◆ cert_hash_set

struct cert_hash_set* tls_session::cert_hash_set

Definition at line 502 of file ssl_common.h.

Referenced by tls_lock_cert_hash_set().

◆ common_name

char* tls_session::common_name

Definition at line 500 of file ssl_common.h.

Referenced by tls_common_name(), and tls_lock_common_name().

◆ initial_opcode

int tls_session::initial_opcode

Definition at line 486 of file ssl_common.h.

◆ key

struct key_state tls_session::key[KS_SIZE]

◆ key_id

int tls_session::key_id

The current active key id, used to keep track of renegotiations.

key_id increments with each soft reset to KEY_ID_MASK then recycles back to 1. This way you know that if key_id is 0, it is the first key.

Definition at line 494 of file ssl_common.h.

Referenced by tls_pre_decrypt().

◆ limit_next

int tls_session::limit_next

Definition at line 496 of file ssl_common.h.

◆ opt

struct tls_options* tls_session::opt

Definition at line 474 of file ssl_common.h.

Referenced by auth_token_test_timeout(), setup(), and teardown().

◆ session_id

struct session_id tls_session::session_id

Definition at line 487 of file ssl_common.h.

◆ tls_wrap

struct tls_wrap_ctx tls_session::tls_wrap

Definition at line 480 of file ssl_common.h.

◆ tls_wrap_reneg

struct tls_wrap_ctx tls_session::tls_wrap_reneg

Definition at line 484 of file ssl_common.h.

◆ untrusted_addr

struct link_socket_actual tls_session::untrusted_addr

Definition at line 507 of file ssl_common.h.

◆ verified

bool tls_session::verified

Definition at line 504 of file ssl_common.h.

◆ verify_maxlevel

int tls_session::verify_maxlevel

Definition at line 498 of file ssl_common.h.


The documentation for this struct was generated from the following file: