Function

SSLSetEnabledCiphers

Specifies a restricted set of SSL cipher suites to be enabled by the current SSL session context.

Declaration

OSStatus SSLSetEnabledCiphers(SSLContextRef context, const SSLCipherSuite *ciphers, size_t numCiphers);

Parameters

context

An SSL session context reference.

ciphers

A pointer to the cipher suites to enable.

numCiphers

The number of cipher suites to enable.

Return Value

A result code. See Secure Transport Result Codes.

Discussion

You can call this function, for example, to limit cipher suites to those that use exportable key sizes or to those supported by a particular protocol version.

This function can be called only when no session is active. The default set of enabled cipher suites is the complete set of supported cipher suites obtained by calling the SSLGetSupportedCiphers function.

Call the SSLGetEnabledCiphers function to determine which SSL cipher suites are currently enabled.

See Also

Ciphers

SSLGetNumberSupportedCiphers

Determines the number of cipher suites supported.

SSLGetSupportedCiphers

Determines the values of the supported cipher suites.

SSLGetNumberEnabledCiphers

Determines the number of cipher suites currently enabled.

SSLGetEnabledCiphers

Determines which SSL cipher suites are currently enabled.

SSLGetNegotiatedCipher

Retrieves the cipher suite negotiated for this session.

SSLSetDiffieHellmanParams

Specifies Diffie-Hellman parameters for a given context.

SSLGetDiffieHellmanParams

Retrieves the Diffie-Hellman parameters for a given context.

SSLCipherSuite

A type for storing cipher suite values.

SSLCiphersuiteGroup

A mechanism for grouping related cipher suites.

SSL Cipher Suite Values

Recognize the set of valid SSL cipher suite values.