address PR comments + change port to high-value (no intersection with other tests)

DeagleGross · DeagleGross · commit 754adeea8af7 · 2025-01-15T19:47:27.000+01:00
diff --git a/scenarios/tls.benchmarks.yml b/scenarios/tls.benchmarks.yml
@@ -58,6 +58,7 @@ scenarios:
         tlsRenegotiation: true # enables client cert validation
         httpSysLogs: false # only for debug purposes
         certValidationConsoleEnabled: false # only for debug purposes
+        serverPort: 30000 # IMPORTANT: not to intersect with other tests 
     load:
       job: httpclient
       variables:
diff --git a/src/BenchmarksApps/TLS/HttpSys/NetShWrapper.cs b/src/BenchmarksApps/TLS/HttpSys/NetShWrapper.cs
@@ -5,6 +5,18 @@ namespace HttpSys
 {
     public static class NetShWrapper
     {
+        public static void DisableHttpSysMutualTlsIfExists(string ipPort)
+        {
+            try
+            {
+                DisableHttpSysMutualTls(ipPort);
+            }
+            catch
+            {
+                // ignore
+            }
+        }
+
         public static void DisableHttpSysMutualTls(string ipPort)
         {
             Console.WriteLine("Disabling mTLS for http.sys");
@@ -70,9 +82,10 @@ private static void ExecuteNetShCommand(string command, bool alwaysLogOutput = f
         }
 
 #pragma warning disable SYSLIB0057 // Type or member is obsolete
-        private static X509Certificate2 LoadCertificate() => File.Exists("testCert.pfx")
-            ? new X509Certificate2("testCert.pfx", "testPassword", X509KeyStorageFlags.MachineKeySet | X509KeyStorageFlags.Exportable)
-            : new X509Certificate2("../testCert.pfx", "testPassword", X509KeyStorageFlags.MachineKeySet | X509KeyStorageFlags.Exportable);
+        private static X509Certificate2 LoadCertificate()
+            => File.Exists("testCert.pfx")
+            ? X509CertificateLoader.LoadPkcs12FromFile("testCert.pfx", "testPassword", X509KeyStorageFlags.MachineKeySet | X509KeyStorageFlags.Exportable)
+            : X509CertificateLoader.LoadPkcs12FromFile("../testCert.pfx", "testPassword", X509KeyStorageFlags.MachineKeySet | X509KeyStorageFlags.Exportable)
 #pragma warning restore SYSLIB0057 // Type or member is obsolete
     }
 }
diff --git a/src/BenchmarksApps/TLS/HttpSys/Program.cs b/src/BenchmarksApps/TLS/HttpSys/Program.cs
@@ -64,6 +64,9 @@ void OnShutdown()
 
     try
     {
+        // if not executed, following command (enable http.sys mutual tls) will fail because binding exists
+        NetShWrapper.DisableHttpSysMutualTlsIfExists(ipPort: httpsIpPort);
+
         NetShWrapper.EnableHttpSysMutualTls(ipPort: httpsIpPort);
     }
     catch

Original file line number	Diff line number	Diff line change
`@@ -5,6 +5,18 @@ namespace HttpSys`
`5`	`5`	`{`
`6`	`6`	`public static class NetShWrapper`
`7`	`7`	`{`
	`8`	`+ public static void DisableHttpSysMutualTlsIfExists(string ipPort)`
	`9`	`+ {`
	`10`	`+ try`
	`11`	`+ {`
	`12`	`+ DisableHttpSysMutualTls(ipPort);`
	`13`	`+ }`
	`14`	`+ catch`
	`15`	`+ {`
	`16`	`+ // ignore`
	`17`	`+ }`
	`18`	`+ }`
	`19`	`+`
`8`	`20`	`public static void DisableHttpSysMutualTls(string ipPort)`
`9`	`21`	`{`
`10`	`22`	`Console.WriteLine("Disabling mTLS for http.sys");`
`@@ -70,9 +82,10 @@ private static void ExecuteNetShCommand(string command, bool alwaysLogOutput = f`
`70`	`82`	`}`
`71`	`83`
`72`	`84`	`#pragma warning disable SYSLIB0057 // Type or member is obsolete`
`73`		`- private static X509Certificate2 LoadCertificate() => File.Exists("testCert.pfx")`
`74`		`- ? new X509Certificate2("testCert.pfx", "testPassword", X509KeyStorageFlags.MachineKeySet \| X509KeyStorageFlags.Exportable)`
`75`		`- : new X509Certificate2("../testCert.pfx", "testPassword", X509KeyStorageFlags.MachineKeySet \| X509KeyStorageFlags.Exportable);`
	`85`	`+ private static X509Certificate2 LoadCertificate()`
	`86`	`+ => File.Exists("testCert.pfx")`
	`87`	`+ ? X509CertificateLoader.LoadPkcs12FromFile("testCert.pfx", "testPassword", X509KeyStorageFlags.MachineKeySet \| X509KeyStorageFlags.Exportable)`
	`88`	`+ : X509CertificateLoader.LoadPkcs12FromFile("../testCert.pfx", "testPassword", X509KeyStorageFlags.MachineKeySet \| X509KeyStorageFlags.Exportable)`
`76`	`89`	`#pragma warning restore SYSLIB0057 // Type or member is obsolete`
`77`	`90`	`}`
`78`	`91`	`}`
Original file line number	Diff line number	Diff line change
`@@ -64,6 +64,9 @@ void OnShutdown()`
`64`	`64`
`65`	`65`	`try`
`66`	`66`	`{`
	`67`	`+ // if not executed, following command (enable http.sys mutual tls) will fail because binding exists`
	`68`	`+ NetShWrapper.DisableHttpSysMutualTlsIfExists(ipPort: httpsIpPort);`
	`69`	`+`
`67`	`70`	`NetShWrapper.EnableHttpSysMutualTls(ipPort: httpsIpPort);`
`68`	`71`	`}`
`69`	`72`	`catch`