Merge branch 'develop' into dependabot/nuget/dependencies-f0d2b07915

Author: Rob-Hague

src/Renci.SshNet/Security/Cryptography/Ciphers/AesGcmCipher.BclImpl.cs

@@ -39,7 +39,7 @@ public override void Decrypt(byte[] input, int cipherTextOffset, int cipherTextL
 
                 try
                 {
-                    _aesGcm.Decrypt(_nonce, cipherText, tag, output.AsSpan(plainTextOffset), associatedData);
+                    _aesGcm.Decrypt(_nonce, cipherText, tag, output.AsSpan(plainTextOffset, cipherTextLength), associatedData);
                 }
                 catch (AuthenticationTagMismatchException ex)
                 {

src/Renci.SshNet/Session.cs

@@ -200,6 +200,7 @@ public sealed class Session : ISession
         private Socket _socket;
 
         private ArrayBuffer _receiveBuffer = new(4 * 1024);
+        private byte[] _plaintextReceiveBuffer = new byte[4 * 1024];
 
         /// <summary>
         /// Gets the session semaphore that controls session channels.
@@ -1319,19 +1320,24 @@ private Message ReceiveMessage(Socket socket)
 
             // Construct buffer for holding the payload and the inbound packet sequence as we need both in order
             // to generate the hash.
-            var data = new byte[4 + totalPacketLength - serverMacLength];
+            var plaintextLength = 4 + totalPacketLength - serverMacLength;
 
-            BinaryPrimitives.WriteUInt32BigEndian(data, _inboundPacketSequence);
+            if (_plaintextReceiveBuffer.Length < plaintextLength)
+            {
+                Array.Resize(ref _plaintextReceiveBuffer, Math.Max(plaintextLength, 2 * _plaintextReceiveBuffer.Length));
+            }
+
+            BinaryPrimitives.WriteUInt32BigEndian(_plaintextReceiveBuffer, _inboundPacketSequence);
 
-            plainFirstBlock.AsSpan().CopyTo(data.AsSpan(4));
+            plainFirstBlock.AsSpan().CopyTo(_plaintextReceiveBuffer.AsSpan(4));
 
             if (_serverMac != null && _serverEtm)
             {
                 // ETM mac = MAC(key, sequence_number || packet_length || encrypted_packet)
 
                 // sequence_number
                 _ = _serverMac.TransformBlock(
-                    inputBuffer: data,
+                    inputBuffer: _plaintextReceiveBuffer,
                     inputOffset: 0,
                     inputCount: 4,
                     outputBuffer: null,
@@ -1363,21 +1369,23 @@ private Message ReceiveMessage(Socket socket)
                     input: _receiveBuffer.DangerousGetUnderlyingBuffer(),
                     offset: _receiveBuffer.ActiveStartOffset + blockSize,
                     length: numberOfBytesToDecrypt,
-                    output: data,
+                    output: _plaintextReceiveBuffer,
                     outputOffset: 4 + blockSize);
 
                 Debug.Assert(numberOfBytesDecrypted == numberOfBytesToDecrypt);
             }
             else
             {
-                _receiveBuffer.ActiveReadOnlySpan.Slice(blockSize, numberOfBytesToDecrypt).CopyTo(data.AsSpan(4 + blockSize));
+                _receiveBuffer.ActiveReadOnlySpan
+                    .Slice(blockSize, numberOfBytesToDecrypt)
+                    .CopyTo(_plaintextReceiveBuffer.AsSpan(4 + blockSize));
             }
 
             if (_serverMac != null && !_serverEtm)
             {
                 // non-ETM mac = MAC(key, sequence_number || unencrypted_packet)
 
-                var clientHash = _serverMac.ComputeHash(data);
+                var clientHash = _serverMac.ComputeHash(_plaintextReceiveBuffer, 0, plaintextLength);
 
                 if (!CryptoAbstraction.FixedTimeEquals(clientHash, _receiveBuffer.ActiveSpan.Slice(totalPacketLength - serverMacLength, serverMacLength)))
                 {
@@ -1387,19 +1395,16 @@ private Message ReceiveMessage(Socket socket)
 
             _receiveBuffer.Discard(totalPacketLength);
 
-            var paddingLength = data[inboundPacketSequenceLength + packetLengthFieldLength];
-            var messagePayloadLength = packetLength - paddingLength - paddingLengthFieldLength;
-            var messagePayloadOffset = inboundPacketSequenceLength + packetLengthFieldLength + paddingLengthFieldLength;
+            var paddingLength = _plaintextReceiveBuffer[inboundPacketSequenceLength + packetLengthFieldLength];
+
+            ArraySegment<byte> payload = new(
+                _plaintextReceiveBuffer,
+                offset: inboundPacketSequenceLength + packetLengthFieldLength + paddingLengthFieldLength,
+                count: packetLength - paddingLength - paddingLengthFieldLength);
 
             if (_serverDecompression != null)
             {
-                data = _serverDecompression.Decompress(data, messagePayloadOffset, messagePayloadLength);
-
-                // Data now only contains the decompressed payload, and as such the offset is reset to zero
-                messagePayloadOffset = 0;
-
-                // The length of the payload is now the complete decompressed content
-                messagePayloadLength = data.Length;
+                payload = new(_serverDecompression.Decompress(payload.Array, payload.Offset, payload.Count));
             }
 
             _inboundPacketSequence++;
@@ -1411,7 +1416,7 @@ private Message ReceiveMessage(Socket socket)
                 throw new SshConnectionException("Inbound packet sequence number is about to wrap during initial key exchange.", DisconnectReason.KeyExchangeFailed);
             }
 
-            return LoadMessage(data, messagePayloadOffset, messagePayloadLength);
+            return LoadMessage(payload.Array, payload.Offset, payload.Count);
         }
 
         private void TrySendDisconnect(DisconnectReason reasonCode, string message)

test/Renci.SshNet.Tests/Classes/Connection/DirectConnectorTest_Connect_TimeoutConnectingToServer.cs

@@ -3,14 +3,12 @@
 using System.Globalization;
 using System.Net;
 using System.Net.Sockets;
-using System.Runtime.InteropServices;
 
 using Microsoft.VisualStudio.TestTools.UnitTesting;
 
 using Moq;
 
 using Renci.SshNet.Common;
-using Renci.SshNet.Tests.Common;
 
 namespace Renci.SshNet.Tests.Classes.Connection
 {
@@ -72,23 +70,26 @@ protected override void Act()
             }
         }
 
-        [TestMethodForPlatform(nameof(OSPlatform.Windows))]
+        [TestMethod]
+        [OSCondition(OperatingSystems.Windows)]
         public void ConnectShouldHaveThrownSshOperationTimeoutExceptionOnWindows()
         {
             Assert.IsNull(_actualException.InnerException);
             Assert.IsInstanceOfType<SshOperationTimeoutException>(_actualException);
             Assert.AreEqual(string.Format(CultureInfo.InvariantCulture, "Connection failed to establish within {0} milliseconds.", _connectionInfo.Timeout.TotalMilliseconds), _actualException.Message);
         }
 
-        [TestMethodForPlatform(nameof(OSPlatform.Linux))]
+        [TestMethod]
+        [OSCondition(OperatingSystems.Linux)]
         public void ConnectShouldHaveThrownSocketExceptionOnLinux()
         {
             Assert.IsNull(_actualException.InnerException);
             Assert.IsInstanceOfType<SocketException>(_actualException);
             Assert.AreEqual("Connection refused", _actualException.Message);
         }
 
-        [TestMethodForPlatform(nameof(OSPlatform.Windows))]
+        [TestMethod]
+        [OSCondition(OperatingSystems.Windows)]
         public void ConnectShouldHaveRespectedTimeoutOnWindows()
         {
             var errorText = string.Format("Elapsed: {0}, Timeout: {1}",

test/Renci.SshNet.Tests/Classes/Connection/HttpConnectorTest_Connect_TimeoutConnectingToProxy.cs

@@ -3,14 +3,12 @@
 using System.Globalization;
 using System.Net;
 using System.Net.Sockets;
-using System.Runtime.InteropServices;
 
 using Microsoft.VisualStudio.TestTools.UnitTesting;
 
 using Moq;
 
 using Renci.SshNet.Common;
-using Renci.SshNet.Tests.Common;
 
 namespace Renci.SshNet.Tests.Classes.Connection
 {
@@ -82,23 +80,26 @@ protected override void Act()
             }
         }
 
-        [TestMethodForPlatform(nameof(OSPlatform.Windows))]
+        [TestMethod]
+        [OSCondition(OperatingSystems.Windows)]
         public void ConnectShouldHaveThrownSshOperationTimeoutExceptionOnWindows()
         {
             Assert.IsNull(_actualException.InnerException);
             Assert.IsInstanceOfType<SshOperationTimeoutException>(_actualException);
             Assert.AreEqual(string.Format(CultureInfo.InvariantCulture, "Connection failed to establish within {0} milliseconds.", _connectionInfo.Timeout.TotalMilliseconds), _actualException.Message);
         }
 
-        [TestMethodForPlatform(nameof(OSPlatform.Linux))]
+        [TestMethod]
+        [OSCondition(OperatingSystems.Linux)]
         public void ConnectShouldHaveThrownSshOperationTimeoutExceptionOnLinux()
         {
             Assert.IsNull(_actualException.InnerException);
             Assert.IsInstanceOfType<SocketException>(_actualException);
             Assert.AreEqual("Connection refused", _actualException.Message);
         }
 
-        [TestMethodForPlatform(nameof(OSPlatform.Windows))]
+        [TestMethod]
+        [OSCondition(OperatingSystems.Windows)]
         public void ConnectShouldHaveRespectedTimeoutOnWindows()
         {
             var errorText = string.Format("Elapsed: {0}, Timeout: {1}",

test/Renci.SshNet.Tests/Classes/Connection/Socks4ConnectorTest_Connect_TimeoutConnectingToProxy.cs

@@ -2,14 +2,12 @@
 using System.Diagnostics;
 using System.Globalization;
 using System.Net.Sockets;
-using System.Runtime.InteropServices;
 
 using Microsoft.VisualStudio.TestTools.UnitTesting;
 
 using Moq;
 
 using Renci.SshNet.Common;
-using Renci.SshNet.Tests.Common;
 
 namespace Renci.SshNet.Tests.Classes.Connection
 {
@@ -70,23 +68,26 @@ protected override void Act()
             }
         }
 
-        [TestMethodForPlatform(nameof(OSPlatform.Windows))]
+        [TestMethod]
+        [OSCondition(OperatingSystems.Windows)]
         public void ConnectShouldHaveThrownSshOperationTimeoutExceptionOnWindows()
         {
             Assert.IsNull(_actualException.InnerException);
             Assert.IsInstanceOfType<SshOperationTimeoutException>(_actualException);
             Assert.AreEqual(string.Format(CultureInfo.InvariantCulture, "Connection failed to establish within {0} milliseconds.", _connectionInfo.Timeout.TotalMilliseconds), _actualException.Message);
         }
 
-        [TestMethodForPlatform(nameof(OSPlatform.Linux))]
+        [TestMethod]
+        [OSCondition(OperatingSystems.Linux)]
         public void ConnectShouldHaveThrownSshOperationTimeoutExceptionOnLinux()
         {
             Assert.IsNull(_actualException.InnerException);
             Assert.IsInstanceOfType<SocketException>(_actualException);
             Assert.AreEqual("Connection refused", _actualException.Message);
         }
 
-        [TestMethodForPlatform(nameof(OSPlatform.Windows))]
+        [TestMethod]
+        [OSCondition(OperatingSystems.Windows)]
         public void ConnectShouldHaveRespectedTimeoutOnWindows()
         {
             var errorText = string.Format("Elapsed: {0}, Timeout: {1}",

test/Renci.SshNet.Tests/Classes/Connection/Socks5ConnectorTest_Connect_TimeoutConnectingToProxy.cs

@@ -2,14 +2,12 @@
 using System.Diagnostics;
 using System.Globalization;
 using System.Net.Sockets;
-using System.Runtime.InteropServices;
 
 using Microsoft.VisualStudio.TestTools.UnitTesting;
 
 using Moq;
 
 using Renci.SshNet.Common;
-using Renci.SshNet.Tests.Common;
 
 namespace Renci.SshNet.Tests.Classes.Connection
 {
@@ -71,23 +69,26 @@ protected override void Act()
             }
         }
 
-        [TestMethodForPlatform(nameof(OSPlatform.Windows))]
+        [TestMethod]
+        [OSCondition(OperatingSystems.Windows)]
         public void ConnectShouldHaveThrownSshOperationTimeoutExceptionOnWindows()
         {
             Assert.IsNull(_actualException.InnerException);
             Assert.IsInstanceOfType<SshOperationTimeoutException>(_actualException);
             Assert.AreEqual(string.Format(CultureInfo.InvariantCulture, "Connection failed to establish within {0} milliseconds.", _connectionInfo.Timeout.TotalMilliseconds), _actualException.Message);
         }
 
-        [TestMethodForPlatform(nameof(OSPlatform.Linux))]
+        [TestMethod]
+        [OSCondition(OperatingSystems.Linux)]
         public void ConnectShouldHaveThrownSshOperationTimeoutExceptionOnLinux()
         {
             Assert.IsNull(_actualException.InnerException);
             Assert.IsInstanceOfType<SocketException>(_actualException);
             Assert.AreEqual("Connection refused", _actualException.Message);
         }
 
-        [TestMethodForPlatform(nameof(OSPlatform.Windows))]
+        [TestMethod]
+        [OSCondition(OperatingSystems.Windows)]
         public void ConnectShouldHaveRespectedTimeoutOnWindows()
         {
             var errorText = string.Format("Elapsed: {0}, Timeout: {1}",

test/Renci.SshNet.Tests/Classes/ForwardedPortDynamicTest_Dispose_PortStarted_ChannelNotBound.cs

@@ -2,7 +2,6 @@
 using System.Collections.Generic;
 using System.Net;
 using System.Net.Sockets;
-using System.Runtime.InteropServices;
 using System.Threading;
 
 using Microsoft.Extensions.Logging.Abstractions;
@@ -12,7 +11,6 @@
 
 using Renci.SshNet.Channels;
 using Renci.SshNet.Common;
-using Renci.SshNet.Tests.Common;
 
 namespace Renci.SshNet.Tests.Classes
 {
@@ -108,7 +106,8 @@ public void ForwardedPortShouldRefuseNewConnections()
         }
 
         // TODO We should investigate why this method doesn't work on Linux
-        [TestMethodForPlatform(nameof(OSPlatform.Windows))]
+        [TestMethod]
+        [OSCondition(OperatingSystems.Windows)]
         public void ExistingConnectionShouldBeClosed()
         {
             try

test/Renci.SshNet.Tests/Classes/ForwardedPortDynamicTest_Stop_PortStarted_ChannelNotBound.cs

@@ -2,7 +2,6 @@
 using System.Collections.Generic;
 using System.Net;
 using System.Net.Sockets;
-using System.Runtime.InteropServices;
 using System.Threading;
 
 using Microsoft.Extensions.Logging.Abstractions;
@@ -12,7 +11,6 @@
 
 using Renci.SshNet.Channels;
 using Renci.SshNet.Common;
-using Renci.SshNet.Tests.Common;
 
 namespace Renci.SshNet.Tests.Classes
 {
@@ -112,7 +110,8 @@ public void ForwardedPortShouldRefuseNewConnections()
         }
 
         // TODO We should investigate why this method doesn't work on Linux
-        [TestMethodForPlatform(nameof(OSPlatform.Windows))]
+        [TestMethod]
+        [OSCondition(OperatingSystems.Windows)]
         public void ExistingConnectionShouldBeClosed()
         {
             try