WIP

Author: rzikm

src/libraries/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.OpenSsl.cs

@@ -439,9 +439,6 @@ internal static SafeSslHandle AllocateSslHandle(SslAuthenticationOptions sslAuth
                     // Client side always verifies the server's certificate.
                     Ssl.SslSetVerifyPeer(sslHandle);
 
-                    // HACK: set a bogus code to indicate that we did not perform the validation yet
-                    // Ssl.SslSetVerifyResult(sslHandle, -1);
-
                     if (!string.IsNullOrEmpty(sslAuthenticationOptions.TargetHost) && !IPAddress.IsValid(sslAuthenticationOptions.TargetHost))
                     {
                         // Similar to windows behavior, set SNI on openssl by default for client context, ignore errors.
@@ -474,8 +471,6 @@ internal static SafeSslHandle AllocateSslHandle(SslAuthenticationOptions sslAuth
                     if (sslAuthenticationOptions.RemoteCertRequired)
                     {
                         Ssl.SslSetVerifyPeer(sslHandle);
-                        // HACK: set a bogus code to indicate that we did not perform the validation yet
-                        Ssl.SslSetVerifyResult(sslHandle, -1);
                     }
 
                     if (sslAuthenticationOptions.CertificateContext != null)
@@ -552,8 +547,6 @@ internal static SecurityStatusPalErrorCode DoSslHandshake(SafeSslHandle context,
                 }
             }
 
-#pragma warning disable CS0618
-            System.Console.WriteLine($"[{AppDomain.GetCurrentThreadId()}] SSL_do_handshake");
             int retVal = Ssl.SslDoHandshake(context, out Ssl.SslErrorCode errorCode);
             if (retVal != 1)
             {
@@ -562,13 +555,6 @@ internal static SecurityStatusPalErrorCode DoSslHandshake(SafeSslHandle context,
                     return SecurityStatusPalErrorCode.CredentialsNeeded;
                 }
 
-                if (errorCode == Ssl.SslErrorCode.SSL_ERROR_WANT_ASYNC)
-                // if (errorCode == Ssl.SslErrorCode.SSL_ERROR_WANT_RETRY_VERIFY)
-                {
-                    System.Console.WriteLine($"[{AppDomain.GetCurrentThreadId()}] SSL_ERROR_WANT_ASYNC");
-                    return SecurityStatusPalErrorCode.PeerCertVerifyRequired;
-                }
-
                 if ((retVal != -1) || (errorCode != Ssl.SslErrorCode.SSL_ERROR_WANT_READ))
                 {
                     Exception? innerError = GetSslError(retVal, errorCode);

src/libraries/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.Ssl.cs

@@ -204,12 +204,6 @@ internal static SafeSharedX509StackHandle SslGetPeerCertChain(SafeSslHandle ssl)
         [LibraryImport(Libraries.CryptoNative, EntryPoint = "CryptoNative_SslSessionSetData")]
         internal static partial void SslSessionSetData(IntPtr session, IntPtr val);
 
-        [LibraryImport(Libraries.CryptoNative, EntryPoint = "CryptoNative_SslSetVerifyResult")]
-        internal static partial void SslSetVerifyResult(SafeSslHandle ssl, long verifyResult);
-
-        [LibraryImport(Libraries.CryptoNative, EntryPoint = "CryptoNative_SslGetVerifyResult")]
-        internal static partial long SslGetVerifyResult(SafeSslHandle ssl);
-
         internal static class Capabilities
         {
             // needs separate type (separate static cctor) to be sure OpenSSL is initialized.
@@ -346,9 +340,6 @@ internal enum SslErrorCode
             SSL_ERROR_SYSCALL = 5,
             SSL_ERROR_ZERO_RETURN = 6,
 
-            SSL_ERROR_WANT_ASYNC = 9,
-            SSL_ERROR_WANT_RETRY_VERIFY = 12,
-
             // NOTE: this SslErrorCode value doesn't exist in OpenSSL, but
             // we use it to distinguish when a renegotiation is pending.
             // Choosing an arbitrarily large value that shouldn't conflict

src/libraries/System.Net.Mail/tests/Functional/SmtpClientTest.cs

@@ -9,6 +9,7 @@
 // (C) 2006 John Luke
 //
 
+using System.ComponentModel;
 using System.Collections.Generic;
 using System.Globalization;
 using System.IO;
@@ -338,6 +339,49 @@ public async Task SendMailAsync_CanBeCanceled_CancellationToken()
             Assert.Equal(GetClientDomain(), server.ClientDomain);
         }
 
+        [Fact]
+        public async Task SendAsync_CanBeCanceled_SendAsyncCancel()
+        {
+            using var server = new LoopbackSmtpServer(_output);
+            using SmtpClient client = server.CreateClient();
+
+            server.ReceiveMultipleConnections = true;
+
+            bool first = true;
+
+            server.OnConnected += _ =>
+            {
+                if (first)
+                {
+                    first = false;
+                    client.SendAsyncCancel();
+                }
+            };
+
+            var message = new MailMessage("[email protected]", "[email protected]", "Foo", "Bar");
+
+            TaskCompletionSource<AsyncCompletedEventArgs> tcs = new TaskCompletionSource<AsyncCompletedEventArgs>();
+            client.SendCompleted += (s, e) =>
+            {
+                tcs.SetResult(e);
+            };
+
+            client.SendAsync(message, null);
+            AsyncCompletedEventArgs e = await tcs.Task.WaitAsync(TestHelper.PassingTestTimeout);
+            Assert.True(e.Cancelled, "SendAsync should have been canceled");
+            _output.WriteLine(e.Error?.ToString() ?? "No error");
+            Assert.IsAssignableFrom<OperationCanceledException>(e.Error.InnerException);
+
+            // We should still be able to send mail on the SmtpClient instance
+            await client.SendMailAsync(message).WaitAsync(TestHelper.PassingTestTimeout);
+
+            Assert.Equal("<[email protected]>", server.MailFrom);
+            Assert.Equal("<[email protected]>", Assert.Single(server.MailTo));
+            Assert.Equal("Foo", server.Message.Subject);
+            Assert.Equal("Bar", server.Message.Body);
+            Assert.Equal(GetClientDomain(), server.ClientDomain);
+        }
+
         private static string GetClientDomain() => IPGlobalProperties.GetIPGlobalProperties().HostName.Trim().ToLower();
     }
 }

src/libraries/System.Net.Security/src/System/Net/Security/SslStream.IO.cs

@@ -297,8 +297,7 @@ private async Task ForceAuthenticationAsync<TIOAdapter>(bool receiveFirst, byte[
             {
                 if (!receiveFirst)
                 {
-                    int consumed;
-                    (token, consumed) = await NextMessage(reAuthenticationData).ConfigureAwait(false);
+                    token = NextMessage(reAuthenticationData, out int consumed);
                     Debug.Assert(consumed == (reAuthenticationData?.Length ?? 0));
 
                     if (token.Size > 0)
@@ -490,14 +489,14 @@ private ProtocolToken ProcessTlsFrame(int frameSize)
         {
             int chunkSize = frameSize;
 
-            ReadOnlyMemory<byte> availableData = _buffer.EncryptedReadOnlyMemory;
+            ReadOnlySpan<byte> availableData = _buffer.EncryptedReadOnlySpan;
 
             // Often more TLS messages fit into same packet. Get as many complete frames as we can.
             while (_buffer.EncryptedLength - chunkSize > TlsFrameHelper.HeaderSize)
             {
                 TlsFrameHeader nextHeader = default;
 
-                if (!TlsFrameHelper.TryGetFrameHeader(availableData.Slice(chunkSize).Span, ref nextHeader))
+                if (!TlsFrameHelper.TryGetFrameHeader(availableData.Slice(chunkSize), ref nextHeader))
                 {
                     break;
                 }
@@ -515,7 +514,7 @@ private ProtocolToken ProcessTlsFrame(int frameSize)
                 chunkSize += frameSize;
             }
 
-            (ProtocolToken token, int consumed) = NextMessage(availableData.Slice(0, chunkSize)).GetAwaiter().GetResult();
+            ProtocolToken token = NextMessage(availableData.Slice(0, chunkSize), out int consumed);
             _buffer.DiscardEncrypted(consumed);
             return token;
         }
@@ -524,15 +523,20 @@ private ProtocolToken ProcessTlsFrame(int frameSize)
         //  This is to reset auth state on remote side.
         //  If this write succeeds we will allow auth retrying.
         //
-        private void SendAuthResetAndThrow(ReadOnlySpan<byte> alert, ExceptionDispatchInfo exception)
+        private void SendAuthResetSignal(ReadOnlySpan<byte> alert, ExceptionDispatchInfo exception)
         {
             SetException(exception.SourceException);
 
-            if (alert.Length >= 0)
+            if (alert.Length == 0)
             {
-                InnerStream.Write(alert);
+                //
+                // We don't have an alert to send so cannot retry and fail prematurely.
+                //
+                exception.Throw();
             }
 
+            InnerStream.Write(alert);
+
             exception.Throw();
         }
 
@@ -587,26 +591,21 @@ private void CompleteHandshake(SslAuthenticationOptions sslAuthenticationOptions
             ProtocolToken alertToken = default;
             if (!CompleteHandshake(ref alertToken, out SslPolicyErrors sslPolicyErrors, out X509ChainStatusFlags chainStatus))
             {
-                ProcessFailedCertificateValidation(sslAuthenticationOptions, ref alertToken, sslPolicyErrors, chainStatus);
-            }
-        }
-
-        private void ProcessFailedCertificateValidation(SslAuthenticationOptions sslAuthenticationOptions, ref ProtocolToken alertToken, SslPolicyErrors sslPolicyErrors, X509ChainStatusFlags chainStatus)
-        {
-            if (sslAuthenticationOptions!.CertValidationDelegate != null)
-            {
-                // there may be some chain errors but the decision was made by custom callback. Details should be tracing if enabled.
-                SendAuthResetAndThrow(new ReadOnlySpan<byte>(alertToken.Payload), ExceptionDispatchInfo.Capture(new AuthenticationException(SR.net_ssl_io_cert_custom_validation, null)));
-            }
-            else if (sslPolicyErrors == SslPolicyErrors.RemoteCertificateChainErrors && chainStatus != X509ChainStatusFlags.NoError)
-            {
-                // We failed only because of chain and we have some insight.
-                SendAuthResetAndThrow(new ReadOnlySpan<byte>(alertToken.Payload), ExceptionDispatchInfo.Capture(new AuthenticationException(SR.Format(SR.net_ssl_io_cert_chain_validation, chainStatus), null)));
-            }
-            else
-            {
-                // Simple add sslPolicyErrors as crude info.
-                SendAuthResetAndThrow(new ReadOnlySpan<byte>(alertToken.Payload), ExceptionDispatchInfo.Capture(new AuthenticationException(SR.Format(SR.net_ssl_io_cert_validation, sslPolicyErrors), null)));
+                if (sslAuthenticationOptions!.CertValidationDelegate != null)
+                {
+                    // there may be some chain errors but the decision was made by custom callback. Details should be tracing if enabled.
+                    SendAuthResetSignal(new ReadOnlySpan<byte>(alertToken.Payload), ExceptionDispatchInfo.Capture(new AuthenticationException(SR.net_ssl_io_cert_custom_validation, null)));
+                }
+                else if (sslPolicyErrors == SslPolicyErrors.RemoteCertificateChainErrors && chainStatus != X509ChainStatusFlags.NoError)
+                {
+                    // We failed only because of chain and we have some insight.
+                    SendAuthResetSignal(new ReadOnlySpan<byte>(alertToken.Payload), ExceptionDispatchInfo.Capture(new AuthenticationException(SR.Format(SR.net_ssl_io_cert_chain_validation, chainStatus), null)));
+                }
+                else
+                {
+                    // Simple add sslPolicyErrors as crude info.
+                    SendAuthResetSignal(new ReadOnlySpan<byte>(alertToken.Payload), ExceptionDispatchInfo.Capture(new AuthenticationException(SR.Format(SR.net_ssl_io_cert_validation, sslPolicyErrors), null)));
+                }
             }
         }
 

src/libraries/System.Net.Security/src/System/Net/Security/SslStream.Protocol.cs

@@ -11,7 +11,6 @@
 using System.Security.Authentication.ExtendedProtection;
 using System.Security.Cryptography;
 using System.Security.Cryptography.X509Certificates;
-using System.Threading.Tasks;
 
 namespace System.Net.Security
 {
@@ -814,10 +813,9 @@ static DateTime GetExpiryTimestamp(SslStreamCertificateContext certificateContex
         }
 
         //
-        internal async Task<(ProtocolToken, int)> NextMessage(ReadOnlyMemory<byte> incomingBuffer)
+        internal ProtocolToken NextMessage(ReadOnlySpan<byte> incomingBuffer, out int consumed)
         {
-            (ProtocolToken token, int consumed) = await GenerateToken(incomingBuffer).ConfigureAwait(false);
-
+            ProtocolToken token = GenerateToken(incomingBuffer, out consumed);
             if (NetEventSource.Log.IsEnabled())
             {
                 if (token.Failed)
@@ -826,7 +824,7 @@ static DateTime GetExpiryTimestamp(SslStreamCertificateContext certificateContex
                 }
             }
 
-            return (token, consumed);
+            return token;
         }
 
         /*++
@@ -842,7 +840,7 @@ generates a set of bytes that will be sent next to
             Return:
                 token - ProtocolToken with status and optionally buffer.
         --*/
-        private async Task<(ProtocolToken, int)> GenerateToken(ReadOnlyMemory<byte> inputBuffer)
+        private ProtocolToken GenerateToken(ReadOnlySpan<byte> inputBuffer, out int consumed)
         {
             bool cachedCreds = false;
             bool sendTrustList = false;
@@ -851,9 +849,6 @@ generates a set of bytes that will be sent next to
             ProtocolToken token = default;
             token.RentBuffer = true;
 
-            int consumed = 0;
-            int tmpConsumed;
-
             // We need to try get credentials at the beginning.
             // _credentialsHandle may be always null on some platforms but
             // _securityContext will be allocated on first call.
@@ -866,7 +861,6 @@ generates a set of bytes that will be sent next to
             {
                 do
                 {
-                retry:
                     thumbPrint = null;
                     if (refreshCredentialNeeded)
                     {
@@ -882,8 +876,8 @@ generates a set of bytes that will be sent next to
                         token = SslStreamPal.AcceptSecurityContext(
                                       ref _credentialsHandle!,
                                       ref _securityContext,
-                                      inputBuffer.Span,
-                                      out tmpConsumed,
+                                      inputBuffer,
+                                      out consumed,
                                       _sslAuthenticationOptions);
                         if (token.Status.ErrorCode == SecurityStatusPalErrorCode.HandshakeStarted)
                         {
@@ -911,8 +905,8 @@ generates a set of bytes that will be sent next to
                                        ref _credentialsHandle!,
                                        ref _securityContext,
                                        hostName,
-                                       inputBuffer.Span,
-                                       out tmpConsumed,
+                                       inputBuffer,
+                                       out consumed,
                                        _sslAuthenticationOptions);
 
                         if (token.Status.ErrorCode == SecurityStatusPalErrorCode.CredentialsNeeded)
@@ -932,20 +926,6 @@ generates a set of bytes that will be sent next to
                                        _sslAuthenticationOptions);
                         }
                     }
-                    consumed += tmpConsumed;
-                    inputBuffer = inputBuffer.Slice(tmpConsumed);
-
-                    if (token.Status.ErrorCode == SecurityStatusPalErrorCode.PeerCertVerifyRequired)
-                    {
-                        await Task.Yield();
-                        if (!VerifyRemoteCertificate(_sslAuthenticationOptions.CertValidationDelegate, _sslAuthenticationOptions.CertificateContext?.Trust, ref token, out SslPolicyErrors sslPolicyErrors, out X509ChainStatusFlags chainStatus))
-                        {
-                            ProcessFailedCertificateValidation(_sslAuthenticationOptions, ref token, sslPolicyErrors, chainStatus);
-                        }
-
-                        goto retry;
-
-                    }
                 } while (cachedCreds && _credentialsHandle == null);
             }
             finally
@@ -977,7 +957,7 @@ generates a set of bytes that will be sent next to
                 }
             }
 
-            return (token, consumed);
+            return token;
         }
 
         internal ProtocolToken Renegotiate()
@@ -1236,12 +1216,12 @@ private ProtocolToken CreateShutdownToken()
                 return default;
             }
 
-            return GenerateToken(default).GetAwaiter().GetResult().Item1;
+            return GenerateToken(default, out _);
         }
 
         private ProtocolToken GenerateAlertToken()
         {
-            return GenerateToken(default).GetAwaiter().GetResult().Item1;
+            return GenerateToken(default, out _);
         }
 
         private static TlsAlertMessage GetAlertMessageFromChain(X509Chain chain)

src/libraries/System.Net.Security/src/System/Net/Security/SslStreamPal.Unix.cs

@@ -207,16 +207,6 @@ private static ProtocolToken HandshakeInternal(ref SafeDeleteSslContext? context
                     errorCode = Interop.OpenSsl.DoSslHandshake((SafeSslHandle)context, ReadOnlySpan<byte>.Empty, ref token);
                 }
 
-                if (errorCode == SecurityStatusPalErrorCode.PeerCertVerifyRequired)
-                {
-                    token.Status = new SecurityStatusPal(SecurityStatusPalErrorCode.PeerCertVerifyRequired);
-                    return token;
-                    // System.Console.WriteLine($"Peer certificate verification required. setting VerifyResult to an error");
-                    // Interop.Ssl.SslSetVerifyResult((SafeSslHandle)context, 0);
-                    // // continue with the handshake, the callback will be invoked later.
-                    // errorCode = Interop.OpenSsl.DoSslHandshake((SafeSslHandle)context, ReadOnlySpan<byte>.Empty, ref token);
-                }
-
                 // sometimes during renegotiation processing message does not yield new output.
                 // That seems to be flaw in OpenSSL state machine and we have workaround to peek it and try it again.
                 if (token.Size == 0 && Interop.Ssl.IsSslRenegotiatePending((SafeSslHandle)context))
@@ -249,9 +239,6 @@ private static ProtocolToken HandshakeInternal(ref SafeDeleteSslContext? context
 
         public static SecurityStatusPal ApplyAlertToken(SafeDeleteContext? securityContext, TlsAlertType alertType, TlsAlertMessage alertMessage)
         {
-            // All the alerts that we manually propagate do with certificate validation
-            Interop.Ssl.SslSetVerifyResult((SafeSslHandle)securityContext!, 28);
-
             // There doesn't seem to be an exposed API for writing an alert,
             // the API seems to assume that all alerts are generated internally by
             // SSLHandshake.

src/libraries/System.Net.Security/src/System/Net/SecurityStatusPal.cs

@@ -34,7 +34,6 @@ internal enum SecurityStatusPalErrorCode
         Renegotiate,
         TryAgain,
         HandshakeStarted,
-        PeerCertVerifyRequired,
 
         // Errors
         OutOfMemory,