Next: , Previous: x509 record, Up: SSL Analyzer


7.26.2 The ssl_connection_info record

The main data structure managed by the SSL analyzer is a collection of ssl_connection_info records, where the record type is shown below.

     type ssl_connection_info: record {
     id: count;                      # the log identifier number
     connection_id: conn_id;         # IP connection information
     version: count;                 # version associated with connection
     client_cert: x509;
     server_cert: x509;
     id_index: string;               # index for associated sessionID
     handshake_cipher: count;        # cipher suite client and server agreed upon
     };

The corresponding fields are Fixme: the description here is out of date:

`id'
The unique connection identifier assigned to this connection. Connections are numbered starting at 1 and incrementing with each new connection.
`connection_id'
The TCP connection which this SSL connection is based on.
`version '
The SSL version number for this connection. Possible values are SSLv20, for SSL version 2.0, SSLv30 for version 3.0, and SSLv31 for version 3.1.
`client_cert '
The information from the client certificate, if available.
`server_cert '
The information from the server certificate, if available.
`id_index '
Index into associated SSL_sessionID_record table.
`handshake_cipher '
The cipher suite client and server agreed upon. Note: For SSLv2 cached sessions, this is a placeholder (0xABCD).