gnh1201/welsonjs
1
0
Fork 0
mirror of https://github.com/gnh1201/welsonjs.git synced 2026-03-14 15:48:45 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Add methods to ensure TLS security protocols are enabled

Browse Source 
Introduced EnsureSecurityProtocols and EnsureSecurityProtocolByName methods to programmatically enable TLS 1.2 and optionally TLS 1.3 if available. This improves security and compatibility by ensuring required protocols are set at runtime, with logging for protocol changes and error handling.
This commit is contained in:
Namhyeon, Go 2025-12-21 20:44:12 +09:00
parent 32e864271d
commit f6b32d3c88
1 changed files with 102 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

102
WelsonJS.Augmented/Catswords.Phantomizer/AssemblyLoader.cs
View File

@ -198,6 +198,10 @@ namespace Catswords.Phantomizer
throw;
}
EnsureSecurityProtocols(SecurityProtocolType.Tls12);
EnsureSecurityProtocolByName("Tls13"); // Add if available
// EnsureSecurityProtocols(SecurityProtocolType.Tls11, SecurityProtocolType.Tls); // Optional legacy compatibility (uncomment if needed)
AppDomain.CurrentDomain.AssemblyResolve += OnAssemblyResolve;
_registered = true;
@ -716,5 +720,103 @@ namespace Catswords.Phantomizer
verified = false;
}
}
// Adds protocol flags without overwriting existing ones.
// Safe on older .NET/Windows where some enum members (e.g., Tls13) may not exist.
private static void EnsureSecurityProtocols(params SecurityProtocolType[] protocols)
{
try
{
SecurityProtocolType original = ServicePointManager.SecurityProtocol;
SecurityProtocolType current = original;
foreach (var protocol in protocols)
current |= protocol;
if (current != original)
{
ServicePointManager.SecurityProtocol = current;
Trace.TraceInformation(
"SecurityProtocol updated: {0} -> {1}",
original, current
);
}
else
{
Trace.TraceInformation(
"SecurityProtocol unchanged: {0}",
original
);
}
}
catch (Exception ex)
{
Trace.TraceError(
"Failed to ensure security protocols ({0}): {1}",
string.Join(", ", protocols),
ex
);
}
}
// Adds protocol by enum name when available (e.g., "Tls13"), otherwise no-op.
public static void EnsureSecurityProtocolByName(string protocolName)
{
if (string.IsNullOrEmpty(protocolName))
return;
try
{
SecurityProtocolType original = ServicePointManager.SecurityProtocol;
SecurityProtocolType current = original;
try
{
SecurityProtocolType p =
(SecurityProtocolType)Enum.Parse(
typeof(SecurityProtocolType),
protocolName
);
current |= p;
}
catch (Exception ex)
{
Trace.TraceWarning(
"SecurityProtocol '{0}' not available in this runtime: {1}",
protocolName,
ex.Message
);
return;
}
if (current != original)
{
ServicePointManager.SecurityProtocol = current;
Trace.TraceInformation(
"SecurityProtocol '{0}' enabled: {1} -> {2}",
protocolName,
original,
current
);
}
else
{
Trace.TraceInformation(
"SecurityProtocol '{0}' already enabled: {1}",
protocolName,
original
);
}
}
catch (Exception ex)
{
Trace.TraceError(
"Failed to enable SecurityProtocol '{0}': {1}",
protocolName,
ex
);
}
}
}
}