Fix ALPN protocol list size field type and add boundary tests#124590
Merged
rzikm merged 5 commits intodotnet:mainfrom Feb 25, 2026
Merged
Fix ALPN protocol list size field type and add boundary tests#124590rzikm merged 5 commits intodotnet:mainfrom
rzikm merged 5 commits intodotnet:mainfrom
Conversation
- Change Sec_Application_Protocols.ProtocolListSize from short to ushort to match the native Windows SEC_APPLICATION_PROTOCOL_LIST struct (USHORT) - Update aggregate size limit from short.MaxValue (32,767) to ushort.MaxValue (65,535), aligning with RFC 7301 wire format - Add functional test for oversized ALPN list (Windows and Unix paths) - Add unit tests for individual protocol size boundaries Co-authored-by: Copilot <[email protected]>
Contributor
|
Tagging subscribers to this area: @dotnet/ncl, @bartonjs, @vcsjones |
Contributor
There was a problem hiding this comment.
Pull request overview
This PR fixes a type mismatch in the Windows SChannel interop layer where Sec_Application_Protocols.ProtocolListSize was incorrectly defined as short instead of ushort, aligning it with the native Windows SEC_APPLICATION_PROTOCOL_LIST structure and RFC 7301 specifications. The fix increases the maximum aggregate ALPN list size from 32,767 to 65,535 bytes and adds comprehensive tests to validate both individual protocol size limits and aggregate list size limits.
Changes:
- Fixed
ProtocolListSizefield type fromshorttoushortin the Windows SChannel interop struct - Updated aggregate ALPN list size validation limit from
short.MaxValue(32,767) toushort.MaxValue(65,535) - Added unit tests for individual protocol size boundaries (0, 1, 254, 255, 256, 512 bytes)
- Added functional test verifying aggregate ALPN list size limit enforcement with platform-specific exception handling
Reviewed changes
Copilot reviewed 3 out of 3 changed files in this pull request and generated no comments.
| File | Description |
|---|---|
Interop.Sec_Application_Protocols.cs |
Changed ProtocolListSize field from short to ushort and updated all casts and comparisons to use ushort.MaxValue instead of short.MaxValue |
SslApplicationProtocolTests.cs |
Added two theory-based boundary tests for individual protocol size validation via both byte array and string constructors |
SslStreamAlpnTests.cs |
Added functional test for aggregate ALPN list size limit, verifying ArgumentException on Windows and AuthenticationException on Linux/FreeBSD |
- Add ushort.MaxValue aggregate size check to Unix (OpenSSL) path - Add ushort.MaxValue aggregate size check to macOS (Network.framework and SecureTransport) paths - Add ushort.MaxValue aggregate size check to Android path - All platforms now consistently throw ArgumentException for oversized ALPN lists, matching the RFC 7301 wire format limit - Simplify test to assert ArgumentException on all platforms Co-authored-by: Copilot <[email protected]>
Contributor
There was a problem hiding this comment.
Pull request overview
Copilot reviewed 7 out of 7 changed files in this pull request and generated no new comments.
Comments suppressed due to low confidence (2)
src/libraries/System.Net.Security/tests/FunctionalTests/SslStreamAlpnTests.cs:285
- The explicit
server.Dispose()on line 285 will be followed by an implicit Dispose when the using statement exits, resulting in double disposal. While Dispose is idempotent and should be safe, this is redundant and could mask issues.
Since the Dispose is being used to force the server task to complete (by closing the underlying stream), consider restructuring the test to avoid the double disposal. One approach is to move the Dispose call outside the using block, or to rely on the using statement's implicit disposal after awaiting the server task. Alternatively, document why the explicit Dispose is necessary (to unblock the server that's waiting for client data that will never arrive).
server.Dispose();
src/libraries/System.Net.Security/tests/FunctionalTests/SslStreamAlpnTests.cs:284
- The PR description states that Linux/FreeBSD will throw AuthenticationException when OpenSSL fails during ClientHello construction. However, the code changes add managed validation to all platforms (Unix in Interop.Ssl.cs lines 256-259, macOS in both SafeDeleteSslContext.cs and SafeDeleteNwContext.cs, and Android in SafeDeleteSslContext.cs lines 326-337). All platforms now throw ArgumentException before calling native APIs, making the behavior consistent across all platforms.
The test correctly expects ArgumentException, but the PR description should be updated to reflect that all platforms now throw ArgumentException due to managed validation, not just Windows.
[ConditionalFact(nameof(BackendSupportsAlpn))]
public async Task SslStream_StreamToStream_AlpnListTotalSizeExceedsLimit_Throws()
{
// Each protocol is 255 bytes, serialized with a 1-byte length prefix = 256 bytes each.
// Per RFC 7301, TLS wire format limits ProtocolNameList to 2^16-1 (65,535) bytes.
// All platforms enforce this via managed validation before calling native APIs.
// 256 * 256 = 65,536 > 65,535
const int protocolCount = 256;
List<SslApplicationProtocol> oversizedProtocols = new List<SslApplicationProtocol>();
for (int i = 0; i < protocolCount; i++)
{
byte[] proto = new byte[255];
proto.AsSpan().Fill((byte)'a');
proto[0] = (byte)((i >> 8) + 1);
proto[1] = (byte)(i & 0xFF);
oversizedProtocols.Add(new SslApplicationProtocol(proto));
}
using X509Certificate2 certificate = Configuration.Certificates.GetServerCertificate();
SslClientAuthenticationOptions clientOptions = new SslClientAuthenticationOptions
{
ApplicationProtocols = oversizedProtocols,
RemoteCertificateValidationCallback = delegate { return true; },
TargetHost = Guid.NewGuid().ToString("N"),
};
SslServerAuthenticationOptions serverOptions = new SslServerAuthenticationOptions
{
ApplicationProtocols = new List<SslApplicationProtocol> { SslApplicationProtocol.Http2 },
ServerCertificateContext = SslStreamCertificateContext.Create(certificate, null)
};
(Stream clientStream, Stream serverStream) = TestHelper.GetConnectedStreams();
using (clientStream)
using (serverStream)
using (var client = new SslStream(clientStream, false))
using (var server = new SslStream(serverStream, false))
{
Task serverTask = server.AuthenticateAsServerAsync(TestAuthenticateAsync, serverOptions);
await Assert.ThrowsAsync<ArgumentException>(() => client.AuthenticateAsClientAsync(TestAuthenticateAsync, clientOptions));
This was referenced Feb 20, 2026
On non-Windows platforms, ArgumentException from ALPN validation was caught by the generic catch(Exception) block in HandshakeInternal and wrapped in AuthenticationException. Add an explicit catch for ArgumentException that re-throws, matching Windows behavior. Co-authored-by: Copilot <[email protected]>
On non-Windows platforms, ArgumentException from ALPN validation was caught by the generic catch(Exception) block in HandshakeInternal and wrapped in AuthenticationException. Use exception filter to skip ArgumentException, matching Windows behavior. Co-authored-by: Copilot <[email protected]>
rzikm
force-pushed
the
fix/sslstream-alpn-size-validation
branch
from
b0f4d97 to
da8b85f
Compare
Contributor
There was a problem hiding this comment.
Pull request overview
Copilot reviewed 9 out of 9 changed files in this pull request and generated no new comments.
Comments suppressed due to low confidence (5)
src/libraries/System.Net.Security/src/System/Net/Security/Pal.OSX/SafeDeleteSslContext.cs:413
ValidateAlpnProtocolListSizeonly checks the aggregate size; it should also validate each protocol’s length is within 1..255 (consistent with RFC 7301 and other platform implementations). Without this, a list containingdefault(SslApplicationProtocol)(length 0) will pass validation and potentially fail later in native code with a less clear error.
private static void ValidateAlpnProtocolListSize(List<SslApplicationProtocol> applicationProtocols)
{
int protocolListSize = 0;
foreach (SslApplicationProtocol protocol in applicationProtocols)
{
protocolListSize += protocol.Protocol.Length + 1;
if (protocolListSize > ushort.MaxValue)
{
throw new ArgumentException(SR.net_ssl_app_protocols_invalid, nameof(applicationProtocols));
}
}
src/libraries/System.Net.Security/src/System/Net/Security/Pal.Android/SafeDeleteSslContext.cs:336
ValidateAlpnProtocolListSizeshould also validate each protocol’s length is within 1..255, not just the aggregate. SinceSslApplicationProtocolis a struct, callers can passdefaultentries (0 length) which currently won’t be rejected here, leading to platform-specific behavior differences vs Windows/OpenSSL where invalid entries throwArgumentExceptionearlier.
private static void ValidateAlpnProtocolListSize(List<SslApplicationProtocol> applicationProtocols)
{
int protocolListSize = 0;
foreach (SslApplicationProtocol protocol in applicationProtocols)
{
protocolListSize += protocol.Protocol.Length + 1;
if (protocolListSize > ushort.MaxValue)
{
throw new ArgumentException(SR.net_ssl_app_protocols_invalid, nameof(applicationProtocols));
}
}
src/libraries/System.Net.Security/src/System/Net/Security/SslStreamPal.Unix.cs:236
- The
catch (ArgumentException) { throw; }block is only here to prevent the subsequentcatch (Exception)from wrapping validation failures into anInternalErrortoken. Consider simplifying by changing the general catch tocatch (Exception exc) when (exc is not ArgumentException)and removing this dedicated catch block, which reduces noise while preserving the behavior of surfacingArgumentExceptionto the caller.
catch (Exception exc) when (exc is not ArgumentException)
{
token.Status = new SecurityStatusPal(SecurityStatusPalErrorCode.InternalError, exc);
}
src/libraries/System.Net.Security/src/System/Net/Security/SslStreamPal.OSX.cs:365
- Same pattern as Unix:
catch (ArgumentException) { throw; }can be replaced with an exception filter on the broad catch (e.g.,catch (Exception exc) when (exc is not ArgumentException)) to avoid an otherwise redundant catch block while still letting argument validation failures propagate to callers.
catch (Exception exc) when (exc is not ArgumentException)
{
token.Status = new SecurityStatusPal(SecurityStatusPalErrorCode.InternalError, exc);
return token;
src/libraries/System.Net.Security/src/System/Net/Security/Pal.OSX/SafeDeleteNwContext.cs:456
GetAlpnProtocolListSerializedLengthvalidates the aggregate ALPN wire size, but it doesn’t validate each protocol’s length (must be 1..255). BecauseSslApplicationProtocolis a struct, callers can includedefaultvalues (length 0), andSerializeAlpnProtocolListwill silently emit a zero-length entry (and would truncate >255 via the(byte)cast). Add per-protocol validation here (matching Windows/OpenSSL paths) before computing sizes.
int protocolSize = 0;
int wireSize = 0;
foreach (SslApplicationProtocol protocol in applicationProtocols)
{
protocolSize += protocol.Protocol.Length + 2;
wireSize += protocol.Protocol.Length + 1;
if (wireSize > ushort.MaxValue)
{
throw new ArgumentException(SR.net_ssl_app_protocols_invalid, nameof(applicationProtocols));
}
}
This was referenced Feb 24, 2026
Open
ManickaP
approved these changes
Feb 25, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Fix
Sec_Application_Protocols.ProtocolListSizefield type fromshorttoushortto match the native WindowsSEC_APPLICATION_PROTOCOL_LISTstruct (USHORT), and add tests for ALPN list size validation.Changes
Bug fix
Interop.Sec_Application_Protocols.cs: ChangedProtocolListSizefromshorttoushortand updated the aggregate size limit fromshort.MaxValue(32,767) toushort.MaxValue(65,535), aligning with both the native Windows API and the RFC 7301 TLS wire format.Tests
SslStreamAlpnTests.cs: AddedSslStream_StreamToStream_AlpnListTotalSizeExceedsLimit_Throws— verifies that exceeding the 65,535-byte aggregate ALPN list limit throws:ArgumentExceptionon Windows (managed validation inGetProtocolLength())AuthenticationExceptionon Linux/FreeBSD (OpenSSL fails during ClientHello construction)SslApplicationProtocolTests.cs: Added boundary tests for individual protocol sizes (0, 1, 254, 255, 256, 512 bytes) via bothbyte[]andstringconstructors.