Fix SslStream_StreamToStream_Alpn_NonMatchingProtocols (dotnet/corefx#33911)

author Krzysztof Wicher <mordotymoja@gmail.com>

Sat, 8 Dec 2018 06:53:52 +0000 (22:53 -0800)

committer GitHub <noreply@github.com>

Sat, 8 Dec 2018 06:53:52 +0000 (22:53 -0800)
author Krzysztof Wicher <mordotymoja@gmail.com>
Sat, 8 Dec 2018 06:53:52 +0000 (22:53 -0800)
committer GitHub <noreply@github.com>
Sat, 8 Dec 2018 06:53:52 +0000 (22:53 -0800)
diff --git a/src/libraries/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.OpenSsl.cs b/src/libraries/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.OpenSsl.cs

index 1f0d4a9..6620b47 100644 (file)
--- a/src/libraries/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.OpenSsl.cs
+++ b/src/libraries/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.OpenSsl.cs
@@ -199,7 +199,7 @@ internal static partial class Interop
          {
              sendBuf = null;
              sendCount = 0;
-            
+
              if ((recvBuf != null) && (recvCount > 0))
              {
                  if (BioWrite(context.InputBio, recvBuf, recvOffset, recvCount) <= 0)
@@ -403,7 +403,7 @@ internal static partial class Interop
              GCHandle protocolHandle = GCHandle.FromIntPtr(arg);
              if (!(protocolHandle.Target is List<SslApplicationProtocol> protocolList))
              {
-                return Ssl.SSL_TLSEXT_ERR_NOACK;
+                return Ssl.SSL_TLSEXT_ERR_ALERT_FATAL;
              }
  
              try
@@ -432,14 +432,14 @@ internal static partial class Interop
                  // It is ok to clear the handle value here, this results in handshake failure, so the SslStream object is disposed.
                  protocolHandle.Target = null;
  
-                return Ssl.SSL_TLSEXT_ERR_NOACK;
+                return Ssl.SSL_TLSEXT_ERR_ALERT_FATAL;
              }
  
              // No common application protocol was negotiated, set the target on the alpnHandle to null.
              // It is ok to clear the handle value here, this results in handshake failure, so the SslStream object is disposed.
              protocolHandle.Target = null;
  
-            return Ssl.SSL_TLSEXT_ERR_NOACK;
+            return Ssl.SSL_TLSEXT_ERR_ALERT_FATAL;
          }
  
          private static int BioRead(SafeBioHandle bio, byte[] buffer, int count)
diff --git a/src/libraries/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.Ssl.cs b/src/libraries/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.Ssl.cs

index 8e9db6f..c03d147 100644 (file)
--- a/src/libraries/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.Ssl.cs
+++ b/src/libraries/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.Ssl.cs
@@ -14,6 +14,7 @@ internal static partial class Interop
      {
          internal const int SSL_TLSEXT_ERR_OK = 0;
          internal const int OPENSSL_NPN_NEGOTIATED = 1;
+        internal const int SSL_TLSEXT_ERR_ALERT_FATAL = 2;
          internal const int SSL_TLSEXT_ERR_NOACK = 3;
  
          internal delegate int SslCtxSetVerifyCallback(int preverify_ok, IntPtr x509_ctx);
author	Krzysztof Wicher <mordotymoja@gmail.com>
	Sat, 8 Dec 2018 06:53:52 +0000 (22:53 -0800)
committer	GitHub <noreply@github.com>
	Sat, 8 Dec 2018 06:53:52 +0000 (22:53 -0800)
src/libraries/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.OpenSsl.cs		patch \| blob \| history
src/libraries/Common/src/Interop/Unix/System.Security.Cryptography.Native/Interop.Ssl.cs		patch \| blob \| history