No obvious way to set SSL / TLS cipher

novastone-media / MQTT-Client-Framework

iOS, macOS, tvOS native ObjectiveC MQTT Client Framework

Other

1.84k stars 466 forks source link

No obvious way to set SSL / TLS cipher #423

Closed wesdyoung closed 6 years ago

wesdyoung commented 6 years ago

Looking through the API docs I cannot see a way to set the SSL / TLS ciphers or version. The client connects using SSL3 even though the Mosquitto broker TLS cipher is set to TLSv1.2 (and SSL2 and SSL3 is disabled: ciphers TLSv1.2:!aNULL:!eNULL:!LOW:!EXPORT:!SSLv2:!SSLv3:@STRENGTH).

jcavar commented 6 years ago

You are right. This is definitely something that we should support.

jcavar commented 6 years ago

Released 0.12.0. You can now set this property on MQTTSession but I think something is weird in your setup as well. If broker doesn't support SSLv3 then client should not be able to connect to it.