NIORenegotiationSupport

public enum NIORenegotiationSupport

Support for TLS renegotiation.

In general, renegotiation should not be enabled except in circumstances where it is absolutely necessary. Renegotiation is only supported in TLS 1.2 and earlier, and generally does not work very well. NIOSSL will disallow most uses of renegotiation: the only supported use-case is to perform post-connection authentication as a client. There is no way to initiate a TLS renegotiation in NIOSSL.

  • No support for TLS renegotiation. The default and recommended setting.

    Declaration

    Swift

    case none
  • Allow renegotiation exactly once. If you must use renegotiation, use this setting.

    Declaration

    Swift

    case once
  • Allow repeated renegotiation. To be avoided.

    Declaration

    Swift

    case always