using System; using System.Collections.Generic; using System.IO; using System.Linq; using System.Runtime.InteropServices.WindowsRuntime; using System.Threading.Tasks; using Windows.Networking; using Windows.Networking.Sockets; using Windows.Security.Cryptography.Certificates; using MQTTnet.Core.Channel; using MQTTnet.Core.Client; namespace MQTTnet.Implementations { public sealed class MqttTcpChannel : IMqttCommunicationChannel, IDisposable { private readonly MqttClientTcpOptions _options; private StreamSocket _socket; public MqttTcpChannel(MqttClientTcpOptions options) { _options = options ?? throw new ArgumentNullException(nameof(options)); } public MqttTcpChannel(StreamSocket socket) { _socket = socket ?? throw new ArgumentNullException(nameof(socket)); CreateStreams(); } public Stream SendStream { get; private set; } public Stream ReceiveStream { get; private set; } public Stream RawReceiveStream { get; private set; } public static Func> CustomIgnorableServerCertificateErrorsResolver { get; set; } public async Task ConnectAsync() { if (_socket == null) { _socket = new StreamSocket(); } if (!_options.TlsOptions.UseTls) { await _socket.ConnectAsync(new HostName(_options.Server), _options.GetPort().ToString()); } else { _socket.Control.ClientCertificate = LoadCertificate(_options); foreach (var ignorableChainValidationResult in ResolveIgnorableServerCertificateErrors()) { _socket.Control.IgnorableServerCertificateErrors.Add(ignorableChainValidationResult); } await _socket.ConnectAsync(new HostName(_options.Server), _options.GetPort().ToString(), SocketProtectionLevel.Tls12); } CreateStreams(); } public Task DisconnectAsync() { Dispose(); return Task.FromResult(0); } public void Dispose() { RawReceiveStream?.Dispose(); RawReceiveStream = null; SendStream?.Dispose(); SendStream = null; ReceiveStream?.Dispose(); ReceiveStream = null; _socket?.Dispose(); _socket = null; } private void CreateStreams() { SendStream = _socket.OutputStream.AsStreamForWrite(); ReceiveStream = _socket.InputStream.AsStreamForRead(); RawReceiveStream = ReceiveStream; } private static Certificate LoadCertificate(MqttClientTcpOptions options) { if (options.TlsOptions.Certificates == null || !options.TlsOptions.Certificates.Any()) { return null; } if (options.TlsOptions.Certificates.Count > 1) { throw new NotSupportedException("Only one client certificate is supported for UWP."); } return new Certificate(options.TlsOptions.Certificates.First().AsBuffer()); } private IEnumerable ResolveIgnorableServerCertificateErrors() { if (CustomIgnorableServerCertificateErrorsResolver != null) { return CustomIgnorableServerCertificateErrorsResolver(_options); } var result = new List(); if (_options.TlsOptions.IgnoreCertificateRevocationErrors) { result.Add(ChainValidationResult.RevocationInformationMissing); //_socket.Control.IgnorableServerCertificateErrors.Add(ChainValidationResult.Revoked); Not supported. result.Add(ChainValidationResult.RevocationFailure); } if (_options.TlsOptions.IgnoreCertificateChainErrors) { result.Add(ChainValidationResult.IncompleteChain); } if (_options.TlsOptions.AllowUntrustedCertificates) { result.Add(ChainValidationResult.Untrusted); } return result; } } }