Fix unsafe cast in SqlException for SerializationEntry.Value (#527)

Author: cheenamalhotra

src/Microsoft.Data.SqlClient/netcore/src/Microsoft/Data/SqlClient/SqlException.cs

@@ -36,9 +36,9 @@ private SqlException(SerializationInfo si, StreamingContext sc) : base(si, sc)
             HResult = SqlExceptionHResult;
             foreach (SerializationEntry siEntry in si)
             {
-                if ("ClientConnectionId" == siEntry.Name)
+                if (nameof(ClientConnectionId) == siEntry.Name)
                 {
-                    _clientConnectionId = (Guid)siEntry.Value;
+                    _clientConnectionId = (Guid)si.GetValue(nameof(ClientConnectionId), typeof(Guid));
                     break;
                 }
             }
@@ -49,7 +49,7 @@ public override void GetObjectData(SerializationInfo si, StreamingContext contex
         {
             base.GetObjectData(si, context);
             si.AddValue("Errors", null); // Not specifying type to enable serialization of null value of non-serializable type
-            si.AddValue("ClientConnectionId", _clientConnectionId, typeof(Guid));
+            si.AddValue("ClientConnectionId", _clientConnectionId, typeof(object));
 
             // Writing sqlerrors to base exception data table
             for (int i = 0; i < Errors.Count; i++)

src/Microsoft.Data.SqlClient/netfx/src/Microsoft/Data/SqlClient/SqlException.cs

@@ -38,25 +38,31 @@ private SqlException(SerializationInfo si, StreamingContext sc) : base(si, sc)
             HResult = HResults.SqlException;
             foreach (SerializationEntry siEntry in si)
             {
-                if ("ClientConnectionId" == siEntry.Name)
+                if (nameof(ClientConnectionId) == siEntry.Name)
                 {
-                    _clientConnectionId = (Guid)siEntry.Value;
+                    _clientConnectionId = (Guid)si.GetValue(nameof(ClientConnectionId), typeof(Guid));
                     break;
                 }
             }
-
         }
 
         /// <include file='..\..\..\..\..\..\..\doc\snippets\Microsoft.Data.SqlClient\SqlException.xml' path='docs/members[@name="SqlException"]/GetObjectData/*' />
         override public void GetObjectData(SerializationInfo si, StreamingContext context)
         {
-            if (null == si)
+            base.GetObjectData(si, context);
+            si.AddValue("Errors", null); // Not specifying type to enable serialization of null value of non-serializable type
+            si.AddValue("ClientConnectionId", _clientConnectionId, typeof(object));
+
+            // Writing sqlerrors to base exception data table
+            for (int i = 0; i < Errors.Count; i++)
             {
-                throw new ArgumentNullException("si");
+                string key = "SqlError " + (i + 1);
+                if (Data.Contains(key))
+                {
+                    Data.Remove(key);
+                }
+                Data.Add(key, Errors[i].ToString());
             }
-            si.AddValue("Errors", _errors, typeof(SqlErrorCollection));
-            si.AddValue("ClientConnectionId", _clientConnectionId, typeof(Guid));
-            base.GetObjectData(si, context);
         }
 
         /// <include file='..\..\..\..\..\..\..\doc\snippets\Microsoft.Data.SqlClient\SqlException.xml' path='docs/members[@name="SqlException"]/Errors/*' />

src/Microsoft.Data.SqlClient/tests/FunctionalTests/Microsoft.Data.SqlClient.Tests.csproj

@@ -36,6 +36,7 @@
     <Compile Include="BaseProviderAsyncTest\MockDataReader.cs" />
     <Compile Include="SqlCredentialTest.cs" />
     <Compile Include="SqlDataRecordTest.cs" />
+    <Compile Include="SqlExceptionTest.cs" />
     <Compile Include="SqlParameterTest.cs" />
     <Compile Include="SqlClientFactoryTest.cs" />
     <Compile Include="SqlErrorCollectionTest.cs" />

src/Microsoft.Data.SqlClient/tests/FunctionalTests/SqlExceptionTest.cs

@@ -0,0 +1,95 @@
+// Licensed to the .NET Foundation under one or more agreements.
+// The .NET Foundation licenses this file to you under the MIT license.
+// See the LICENSE file in the project root for more information.
+
+using System;
+using Newtonsoft.Json;
+using Xunit;
+
+namespace Microsoft.Data.SqlClient.Tests
+{
+    public class SqlExceptionTest
+    {
+        private const string badServer = "92B96911A0BD43E8ADA4451031F7E7CF";
+
+        [Fact]
+        [ActiveIssue("12161", TestPlatforms.AnyUnix)]
+        public void SerializationTest()
+        {
+            SqlException e = CreateException();
+            string json = JsonConvert.SerializeObject(e);
+
+            var settings = new JsonSerializerSettings()
+            {
+                TypeNameHandling = TypeNameHandling.All,
+            };
+
+            // TODO: Deserialization fails on Unix with "Member 'ClassName' was not found."
+            var sqlEx = JsonConvert.DeserializeObject<SqlException>(json, settings);
+
+            Assert.Equal(e.ClientConnectionId, sqlEx.ClientConnectionId);
+            Assert.Equal(e.StackTrace, sqlEx.StackTrace);
+        }
+
+        [Fact]
+        public void JSONSerializationTest()
+        {
+            string clientConnectionId = "90cdab4d-2145-4c24-a354-c8ccff903542";
+            string json = @"{""ClassName"":""Microsoft.Data.SqlClient.SqlException"","
+                        + @"""Message"":""A network-related or instance-specific error occurred while establishing a connection to SQL Server. The server was not found or was not accessible. Verify that the instance name is correct and that SQL Server is configured to allow remote connections. (provider: TCP Provider, error: 40 - Could not open a connection to SQL Server)"","
+                        + @"""Data"":{""HelpLink.ProdName"":""Microsoft SQL Server"","
+                        + @"""HelpLink.EvtSrc"":""MSSQLServer"","
+                        + @"""HelpLink.EvtID"":""0"","
+                        + @"""HelpLink.BaseHelpUrl"":""http://go.microsoft.com/fwlink"","
+                        + @"""HelpLink.LinkId"":""20476"","
+                        + @"""SqlError 1"":""Microsoft.Data.SqlClient.SqlError: A network-related or instance-specific error occurred while establishing a connection to SQL Server. The server was not found or was not accessible. Verify that the instance name is correct and that SQL Server is configured to allow remote connections. (provider: TCP Provider, error: 40 - Could not open a connection to SQL Server)"","
+                        + @"""$type"":""System.Collections.ListDictionaryInternal, System.Private.CoreLib""},"
+                        + @"""InnerException"":null,"
+                        + @"""HelpURL"":null,"
+                        + @"""StackTraceString"":""   at Microsoft.Data.SqlClient.SqlInternalConnectionTds..ctor(DbConnectionPoolIdentity identity, SqlConnectionString connectionOptions, SqlCredential credential, Object providerInfo, String newPassword, SecureString newSecurePassword, Boolean redirectedUserInstance, SqlConnectionString userConnectionOptions, SessionData reconnectSessionData, Boolean applyTransientFaultHandling, String accessToken)\\n   at Microsoft.Data.SqlClient.SqlConnectionFactory.CreateConnection(DbConnectionOptions options, DbConnectionPoolKey poolKey, Object poolGroupProviderInfo, DbConnectionPool pool, DbConnection owningConnection, DbConnectionOptions userOptions)\\n   at System.Data.ProviderBase.DbConnectionFactory.CreatePooledConnection(DbConnectionPool pool, DbConnection owningObject, DbConnectionOptions options, DbConnectionPoolKey poolKey, DbConnectionOptions userOptions)\\n   at System.Data.ProviderBase.DbConnectionPool.CreateObject(DbConnection owningObject, DbConnectionOptions userOptions, DbConnectionInternal oldConnection)\\n   at System.Data.ProviderBase.DbConnectionPool.UserCreateRequest(DbConnection owningObject, DbConnectionOptions userOptions, DbConnectionInternal oldConnection)\\n   at System.Data.ProviderBase.DbConnectionPool.TryGetConnection(DbConnection owningObject, UInt32 waitForMultipleObjectsTimeout, Boolean allowCreate, Boolean onlyOneCheckConnection, DbConnectionOptions userOptions, DbConnectionInternal& connection)\\n   at System.Data.ProviderBase.DbConnectionPool.WaitForPendingOpen()\\n"","
+                        + @"""RemoteStackTraceString"":null,"
+                        + @"""RemoteStackIndex"":0,"
+                        + @"""ExceptionMethod"":null,"
+                        + @"""HResult"":-2146232060,"
+                        + @"""Source"":""Core .Net SqlClient Data Provider"","
+                        + @"""WatsonBuckets"":null,"
+                        + @"""Errors"":null,"
+                        + @"""ClientConnectionId"":""90cdab4d-2145-4c24-a354-c8ccff903542""}";
+
+            var settings = new JsonSerializerSettings()
+            {
+                TypeNameHandling = TypeNameHandling.All,
+            };
+
+            var sqlEx = JsonConvert.DeserializeObject<SqlException>(json, settings);
+            Assert.IsType<SqlException>(sqlEx);
+            Assert.Equal(clientConnectionId, sqlEx.ClientConnectionId.ToString());
+        }
+
+        private static SqlException CreateException()
+        {
+            var builder = new SqlConnectionStringBuilder()
+            {
+                DataSource = badServer,
+                ConnectTimeout = 1,
+                Pooling = false
+            };
+
+            using (var connection = new SqlConnection(builder.ConnectionString))
+            {
+                try
+                {
+                    connection.Open();
+                }
+                catch (SqlException ex)
+                {
+                    Assert.NotNull(ex.Errors);
+                    Assert.Single(ex.Errors);
+
+                    return ex;
+                }
+            }
+            throw new InvalidOperationException("SqlException should have been returned.");
+        }
+    }
+}