Fix websocket broken when connecting via SSL/TLS (#611)

Kaliumhexacyanoferrat · web-flow · commit e98b3bb858ae · 2025-01-10T13:10:45.000+01:00
* Rework websocket connection to streams instead of sockets
diff --git a/API/Protocol/IRequest.cs b/API/Protocol/IRequest.cs
@@ -31,12 +31,12 @@ public interface IRequest : IDisposable
     IResponseBuilder Respond();
 
     /// <summary>
-    /// Upgrades the connection of the client, causing the underlying socket
+    /// Upgrades the connection of the client, causing the underlying socket and streams
     /// to be exposed and to be used by another protocol, such as a websocket handler.
     /// </summary>
     /// <returns>The upgrade information to use</returns>
     /// <remarks>
-    /// After upgrading a connection, the server will surrender this socket to your logic
+    /// After upgrading a connection, the server will surrender this socket and stream to your logic
     /// to no further interaction is done by the framework with the client and is up to
     /// your logic.
     /// </remarks>
diff --git a/API/Protocol/UpgradeInfo.cs b/API/Protocol/UpgradeInfo.cs
@@ -6,5 +6,6 @@ namespace GenHTTP.Api.Protocol;
 /// Returned when upgrading a connection.
 /// </summary>
 /// <param name="Socket">The raw socket the current client is connected to</param>
+/// <param name="Stream">The underlying network stream used for the connection (already authenticated in case of TLS)</param>
 /// <param name="Response">The response to return so that the server will ignore the connection further on</param>
-public record UpgradeInfo(Socket Socket, IResponse Response);
+public record UpgradeInfo(Socket Socket, Stream Stream, IResponse Response);
diff --git a/Engine/Internal/Protocol/ClientHandler.cs b/Engine/Internal/Protocol/ClientHandler.cs
@@ -153,7 +153,7 @@ private async PooledValueTask<ConnectionStatus> HandlePipe(PipeReader reader)
 
     private async PooledValueTask<ConnectionStatus> HandleRequest(RequestBuilder builder, bool dataRemaining)
     {
-        using var request = builder.Connection(Server, Connection, EndPoint, Connection.GetAddress(), ClientCertificate).Build();
+        using var request = builder.Connection(Server, Connection, Stream, EndPoint, Connection.GetAddress(), ClientCertificate).Build();
 
         KeepAlive ??= request["Connection"]?.Equals("Keep-Alive", StringComparison.InvariantCultureIgnoreCase) ?? request.ProtocolType == HttpProtocol.Http11;
 
diff --git a/Engine/Internal/Protocol/Request.cs b/Engine/Internal/Protocol/Request.cs
@@ -12,6 +12,7 @@ namespace GenHTTP.Engine.Internal.Protocol;
 internal sealed class Request : IRequest
 {
     private readonly Socket _Socket;
+    private readonly Stream _Stream;
 
     private FlexibleContentType? _ContentType;
     private ICookieCollection? _Cookies;
@@ -24,11 +25,12 @@ internal sealed class Request : IRequest
 
     #region Initialization
 
-    internal Request(IServer server, Socket socket, IEndPoint endPoint, IClientConnection client, IClientConnection localClient, HttpProtocol protocol, FlexibleRequestMethod method,
+    internal Request(IServer server, Socket socket, Stream stream, IEndPoint endPoint, IClientConnection client, IClientConnection localClient, HttpProtocol protocol, FlexibleRequestMethod method,
         RoutingTarget target, IHeaderCollection headers, ICookieCollection? cookies, IForwardingCollection? forwardings,
         IRequestQuery? query, Stream? content)
     {
         _Socket = socket;
+        _Stream = stream;
 
         Client = client;
         LocalClient = localClient;
@@ -55,7 +57,7 @@ internal Request(IServer server, Socket socket, IEndPoint endPoint, IClientConne
 
     public IResponseBuilder Respond() => new ResponseBuilder().Status(ResponseStatus.Ok);
 
-    public UpgradeInfo Upgrade() => new(_Socket, new Response() { Upgraded = true });
+    public UpgradeInfo Upgrade() => new(_Socket, _Stream, new Response { Upgraded = true });
 
     #endregion
 
diff --git a/Engine/Internal/Protocol/RequestBuilder.cs b/Engine/Internal/Protocol/RequestBuilder.cs
@@ -12,6 +12,8 @@ namespace GenHTTP.Engine.Internal.Protocol;
 internal sealed class RequestBuilder : IBuilder<IRequest>
 {
     private Socket? _Socket;
+    private Stream? _Stream;
+
     private IPAddress? _Address;
     private X509Certificate? _ClientCertificate;
 
@@ -57,9 +59,11 @@ private ForwardingCollection Forwardings
 
     #region Functionality
 
-    public RequestBuilder Connection(IServer server, Socket socket, IEndPoint endPoint, IPAddress? address, X509Certificate? clientCertificate)
+    public RequestBuilder Connection(IServer server, Socket socket, Stream stream, IEndPoint endPoint, IPAddress? address, X509Certificate? clientCertificate)
     {
         _Socket = socket;
+        _Stream = stream;
+
         _Server = server;
         _Address = address;
         _EndPoint = endPoint;
@@ -130,6 +134,11 @@ public IRequest Build()
                 throw new BuilderMissingPropertyException("Socket");
             }
 
+            if (_Stream == null)
+            {
+                throw new BuilderMissingPropertyException("Stream");
+            }
+
             if (_EndPoint is null)
             {
                 throw new BuilderMissingPropertyException("EndPoint");
@@ -171,7 +180,7 @@ public IRequest Build()
 
             var client = Forwardings.DetermineClient(_ClientCertificate) ?? localClient;
 
-            return new Request(_Server, _Socket, _EndPoint, client, localClient, (HttpProtocol)_Protocol, _RequestMethod,
+            return new Request(_Server, _Socket, _Stream, _EndPoint, client, localClient, (HttpProtocol)_Protocol, _RequestMethod,
                                _Target, Headers, _Cookies, _Forwardings, _Query, _Content);
         }
         catch (Exception)
diff --git a/Modules/Websockets/Handler/WebsocketConnection.cs b/Modules/Websockets/Handler/WebsocketConnection.cs
@@ -1,6 +1,4 @@
-﻿using System.Net.Sockets;
-
-using Fleck;
+﻿using Fleck;
 
 using GenHTTP.Api.Protocol;
 
@@ -49,7 +47,7 @@ public bool IsAvailable
 
     #region Initialization
 
-    public WebsocketConnection(Socket socket, IRequest request, List<string> supportedProtocols,
+    public WebsocketConnection(ISocket socket, IRequest request, List<string> supportedProtocols,
         Action<IWebsocketConnection>? onOpen,
         Action<IWebsocketConnection>? onClose,
         Action<IWebsocketConnection, string>? onMessage,
@@ -58,11 +56,11 @@ public WebsocketConnection(Socket socket, IRequest request, List<string> support
         Action<IWebsocketConnection, byte[]>? onPong,
         Action<IWebsocketConnection, Exception>? onError)
     {
-        Socket = new SocketWrapper(socket);
+        Socket = socket;
         Request = request;
 
         SupportedProtocols = supportedProtocols;
-        
+
         OnOpen = (onOpen != null) ? () => onOpen(this) : () => { };
         OnClose = (onClose != null) ? () => onClose(this) : () => { };
         OnMessage = (onMessage != null) ? (x) => onMessage(this, x) : x => { };
@@ -152,7 +150,7 @@ public void Close(int code)
         }
 
         var bytes = Handler.FrameClose(code);
-        
+
         if (bytes.Length == 0)
             CloseSocket();
         else
diff --git a/Modules/Websockets/Handler/WebsocketHandler.cs b/Modules/Websockets/Handler/WebsocketHandler.cs
@@ -65,7 +65,9 @@ public WebsocketHandler(List<string> supportedProtocols,
 
         var upgrade = request.Upgrade();
 
-        var connection = new WebsocketConnection(upgrade.Socket, request, SupportedProtocols, OnOpen, OnClose, OnMessage, OnBinary, OnPing, OnPong, OnError);
+        var socket = new WrappedSocket(upgrade);
+
+        var connection = new WebsocketConnection(socket, request, SupportedProtocols, OnOpen, OnClose, OnMessage, OnBinary, OnPing, OnPong, OnError);
 
         connection.Start();
 
diff --git a/Modules/Websockets/Handler/WrappedSocket.cs b/Modules/Websockets/Handler/WrappedSocket.cs
@@ -0,0 +1,112 @@
+﻿using System.Net;
+using System.Net.Sockets;
+using System.Security.Authentication;
+using System.Security.Cryptography.X509Certificates;
+using Fleck;
+using GenHTTP.Api.Protocol;
+
+namespace GenHTTP.Modules.Websockets.Handler;
+
+public sealed class WrappedSocket : ISocket
+{
+
+    #region Get-/Setters
+
+    public Socket Socket { get; }
+
+    public Stream Stream { get; }
+
+    public CancellationTokenSource TokenSource { get; }
+
+    public bool Connected => Socket.Connected;
+
+    public bool NoDelay
+    {
+        get => Socket.NoDelay;
+        set => Socket.NoDelay = value;
+    }
+
+    public string RemoteIpAddress => (Socket.RemoteEndPoint as IPEndPoint)?.Address.ToString() ?? string.Empty;
+
+    public int RemotePort => (Socket.RemoteEndPoint as IPEndPoint)?.Port ?? -1;
+
+    #endregion
+
+    #region Initialization
+
+    public WrappedSocket(UpgradeInfo upgradeInfo)
+    {
+        Socket = upgradeInfo.Socket;
+        Stream = upgradeInfo.Stream;
+
+        TokenSource = new();
+    }
+
+    #endregion
+
+    #region Functionality
+
+    public async Task Send(byte[] buffer, Action callback, Action<Exception> error)
+    {
+        try
+        {
+            await Stream.WriteAsync(buffer.AsMemory(), TokenSource.Token);
+            await Stream.FlushAsync();
+
+            callback();
+        }
+        catch (Exception ex)
+        {
+            error(ex);
+        }
+    }
+
+    public async Task<int> Receive(byte[] buffer, Action<int> callback, Action<Exception> error, int offset = 0)
+    {
+        try
+        {
+            var result = await Stream.ReadAsync(buffer.AsMemory(offset), TokenSource.Token);
+
+            callback(result);
+
+            return result;
+        }
+        catch (Exception ex)
+        {
+            error(ex);
+            return -1;
+        }
+    }
+
+    public void Close() => Dispose();
+
+    public void Dispose()
+    {
+        TokenSource.Cancel();
+        Stream.Dispose();
+        Socket.Dispose();
+    }
+
+    #endregion
+
+    #region Unnecessary stuff
+
+    private const string NotRequiredByIntegration = "Not required by integration";
+
+    public EndPoint LocalEndPoint => throw new NotImplementedException(NotRequiredByIntegration);
+
+    public Task<ISocket> Accept(Action<ISocket> callback, Action<Exception> error)
+        => throw new NotImplementedException(NotRequiredByIntegration);
+
+    public void Bind(EndPoint ipLocal)
+        => throw new NotImplementedException(NotRequiredByIntegration);
+
+    public void Listen(int backlog)
+        => throw new NotImplementedException(NotRequiredByIntegration);
+
+    public Task Authenticate(X509Certificate2 certificate, SslProtocols enabledSslProtocols, Action callback, Action<Exception> error)
+        => throw new NotImplementedException(NotRequiredByIntegration);
+
+    #endregion
+
+}

Original file line number	Diff line number	Diff line change
`@@ -153,7 +153,7 @@ private async PooledValueTask<ConnectionStatus> HandlePipe(PipeReader reader)`
`153`	`153`
`154`	`154`	`private async PooledValueTask<ConnectionStatus> HandleRequest(RequestBuilder builder, bool dataRemaining)`
`155`	`155`	`{`
`156`		`- using var request = builder.Connection(Server, Connection, EndPoint, Connection.GetAddress(), ClientCertificate).Build();`
	`156`	`+ using var request = builder.Connection(Server, Connection, Stream, EndPoint, Connection.GetAddress(), ClientCertificate).Build();`
`157`	`157`
`158`	`158`	`KeepAlive ??= request["Connection"]?.Equals("Keep-Alive", StringComparison.InvariantCultureIgnoreCase) ?? request.ProtocolType == HttpProtocol.Http11;`
`159`	`159`