Method SSL.Context()->get_suites()
- Method get_suites
array(int) get_suites(int(-1..)|voidmin_keylength,int(0..2)|voidke_flags,multiset(int)|voidblacklisted_ciphers,multiset(KeyExchangeType)|voidblacklisted_kes,multiset(HashAlgorithm)|voidblacklisted_hashes,multiset(CipherModes)|voidblacklisted_ciphermodes)- Description
Get the prioritized list of supported cipher suites that satisfy the requirements.
- Parameter
min_keylength Minimum supported effective keylength in bits. Defaults to
128. Specify-1to enable null ciphers.- Parameter
ke_mode Level of protection for the key exchange.
0Require forward secrecy (ephemeral keys).
1Also allow certificate based key exchanges.
2Allow anonymous server key exchange. Note that this allows for man in the middle attacks.
- Parameter
blacklisted_ciphers Multiset of ciphers that are NOT to be used.
- Parameter
blacklisted_kes Multiset of key exchange methods that are NOT to be used.
- Parameter
blacklisted_hashes Multiset of hash algoriths that are NOT to be used.
- Parameter
blacklisted_ciphermodes Multiset of cipher modes that are NOT to be used.
- Note
Note that the effective keylength may differ from the actual keylength for old ciphers where there are known attacks.