TlsClientConnectionImpl

Creates a new instance of TlsClientConnection for the provided CPointer.

A list of the distinguished names of the Certificate Authorities that the server will accept client certificates signed by. If the server requests a client certificate during the handshake, then this property will be set after the handshake completes.

The name of the TLS ciphersuite in use. See g_tls_connection_get_ciphersuite_name().

The certificate database to use when verifying this TLS connection. If no certificate database is set, then the default database will be used. See g_tls_backend_get_default_database().

The class@Gio.InputStream to read from.

A #GTlsInteraction object to be used when the connection or certificate database need to interact with the user. This will be used to prompt the user for passwords where necessary.

The application-layer protocol negotiated during the TLS handshake. See g_tls_connection_get_negotiated_protocol().

The class@Gio.OutputStream to write to.

The connection's peer's certificate, after the TLS handshake has completed or failed. Note in particular that this is not yet set during the emission of #GTlsConnection::accept-certificate.

The errors noticed while verifying #GTlsConnection:peer-certificate. Normally this should be 0, but it may not be if #GTlsClientConnection:validation-flags is not %G_TLS_CERTIFICATE_VALIDATE_ALL, or if #GTlsConnection::accept-certificate overrode the default behavior.

The TLS protocol version in use. See g_tls_connection_get_protocol_version().

The rehandshaking mode. See g_tls_connection_set_rehandshake_mode().

Whether or not proper TLS close notification is required. See g_tls_connection_set_require_close_notify().

SSL 3.0 is no longer supported. See g_tls_client_connection_set_use_ssl3() for details.

Whether or not the system certificate database will be used to verify peer certificates. See g_tls_connection_set_use_system_certdb().

What steps to perform when validating a certificate received from a server. Server certificates that fail to validate in any of the ways indicated here will be rejected unless the application overrides the default via #GTlsConnection::accept-certificate.

Clears the pending flag on @stream.

Closes the stream, releasing resources related to it. This will also close the individual input and output streams, if they are not already closed.

Requests an asynchronous close of the stream, releasing resources related to it. When the operation is finished @callback will be called. You can then call g_io_stream_close_finish() to get the result of the operation.

Closes a stream.

Given @connection to communicate with a proxy (eg, a #GSocketConnection that is connected to the proxy server), this does the necessary handshake to connect to @proxy_address, and if required, wraps the #GIOStream to handle proxy payload.

Asynchronous version of g_proxy_connect().

See g_proxy_connect().

Possibly copies session state from one connection to another, for use in TLS session resumption. This is not normally needed, but may be used when the same session needs to be used between different endpoints, as is required by some protocols, such as FTP over TLS.

Used by #GTlsConnection implementations to emit the #GTlsConnection::accept-certificate signal.

Gets the list of distinguished names of the Certificate Authorities that the server will accept certificates from. This will be set during the TLS handshake if the server requests a certificate. Otherwise, it will be null.

Gets @conn's certificate, as set by g_tls_connection_set_certificate().

Gets @conn's expected server identity

SSL 3.0 is no longer supported. See g_tls_client_connection_set_use_ssl3() for details.

Gets @conn's validation flags

Attempts a TLS handshake on @conn.

Asynchronously performs a TLS handshake on @conn. See g_tls_connection_handshake() for more information.

Finish an asynchronous TLS handshake operation. See g_tls_connection_handshake() for more information.

Checks if a stream has pending actions.

Checks if a stream is closed.

Emitted during the TLS handshake after the peer certificate has been received. You can examine @peer_cert's certification path by calling g_tls_certificate_get_issuer() on it.

Sets the list of application-layer protocols to advertise that the caller is willing to speak on this connection. The Application-Layer Protocol Negotiation (ALPN) extension will be used to negotiate a compatible protocol with the peer; use g_tls_connection_get_negotiated_protocol() to find the negotiated protocol after the handshake. Specifying null for the the value of @protocols will disable ALPN negotiation.

This sets the certificate that @conn will present to its peer during the TLS handshake. For a #GTlsServerConnection, it is mandatory to set this, and that will normally be done at construct time.

Sets @stream to have actions pending. If the pending flag is already set or @stream is closed, it will return false and set

Sets @conn's expected server identity, which is used both to tell servers on virtual hosts which certificate to present, and also to let @conn know what name to look for in the certificate when performing %G_TLS_CERTIFICATE_BAD_IDENTITY validation, if enabled.

Since GLib 2.42.1, SSL 3.0 is no longer supported.

Sets @conn's validation flags, to override the default set of checks performed when validating a server certificate. By default, %G_TLS_CERTIFICATE_VALIDATE_ALL is used.

Asynchronously splice the output stream of @stream1 to the input stream of

Some proxy protocols expect to be passed a hostname, which they will resolve to an IP address themselves. Others, like SOCKS4, do not allow this. This function will return false if @proxy is implementing such a protocol. When false is returned, the caller should resolve the destination hostname first, and then pass a #GProxyAddress containing the stringified IP address to g_proxy_connect() or g_proxy_connect_async().