clean up

irvingoujAtDevolution · irvingoujAtDevolution · commit c54e49601e37 · 2025-10-08T15:32:16.000-04:00
diff --git a/ffi/dotnet/Devolutions.IronRdp/src/Connection.cs b/ffi/dotnet/Devolutions.IronRdp/src/Connection.cs
@@ -17,22 +17,11 @@ public static class Connection
 
         var connector = ClientConnector.New(config, clientAddr);
 
-        connector.WithDynamicChannelDisplayControl();
-        var dvcPipeProxy = config.DvcPipeProxy;
-        if (dvcPipeProxy != null)
-        {
-            connector.WithDynamicChannelPipeProxy(dvcPipeProxy);
-        }
-
-        if (factory != null)
-        {
-            var cliprdr = factory.BuildCliprdr();
-            connector.AttachStaticCliprdr(cliprdr);
-        }
+        ConnectionHelpers.SetupConnector(connector, config, factory);
 
         await ConnectBegin(framed, connector);
         var (serverPublicKey, framedSsl) = await SecurityUpgrade(framed, connector);
-        var result = await ConnectFinalize(serverName, connector, serverPublicKey, framedSsl);
+        var result = await ConnectionHelpers.ConnectFinalize(serverName, connector, serverPublicKey, framedSsl);
 
         return (result, framedSsl);
     }
@@ -67,74 +56,6 @@ private static async Task ConnectBegin(Framed<NetworkStream> framed, ClientConne
         }
     }
 
-
-    private static async Task<ConnectionResult> ConnectFinalize(string serverName, ClientConnector connector,
-        byte[] serverPubKey, Framed<SslStream> framedSsl)
-    {
-        var writeBuf2 = WriteBuf.New();
-        if (connector.ShouldPerformCredssp())
-        {
-            await PerformCredsspSteps(connector, serverName, writeBuf2, framedSsl, serverPubKey);
-        }
-
-        while (!connector.GetDynState().IsTerminal())
-        {
-            await SingleSequenceStep(connector, writeBuf2, framedSsl);
-        }
-
-        ClientConnectorState state = connector.ConsumeAndCastToClientConnectorState();
-
-        if (state.GetEnumType() == ClientConnectorStateType.Connected)
-        {
-            return state.GetConnectedResult();
-        }
-        else
-        {
-            throw new IronRdpLibException(IronRdpLibExceptionType.ConnectionFailed, "Connection failed");
-        }
-    }
-
-    private static async Task PerformCredsspSteps(ClientConnector connector, string serverName, WriteBuf writeBuf,
-        Framed<SslStream> framedSsl, byte[] serverpubkey)
-    {
-        var credsspSequenceInitResult = CredsspSequence.Init(connector, serverName, serverpubkey, null);
-        var credsspSequence = credsspSequenceInitResult.GetCredsspSequence();
-        var tsRequest = credsspSequenceInitResult.GetTsRequest();
-        var tcpClient = new TcpClient();
-        while (true)
-        {
-            var generator = credsspSequence.ProcessTsRequest(tsRequest);
-            var clientState = await ResolveGenerator(generator, tcpClient);
-            writeBuf.Clear();
-            var written = credsspSequence.HandleProcessResult(clientState, writeBuf);
-
-            if (written.GetSize().IsSome())
-            {
-                var actualSize = (int)written.GetSize().Get();
-                var response = new byte[actualSize];
-                writeBuf.ReadIntoBuf(response);
-                await framedSsl.Write(response);
-            }
-
-            var pduHint = credsspSequence.NextPduHint();
-            if (pduHint == null)
-            {
-                break;
-            }
-
-            var pdu = await framedSsl.ReadByHint(pduHint);
-            var decoded = credsspSequence.DecodeServerMessage(pdu);
-
-            // Don't remove, DecodeServerMessage is generated, and it can return null
-            if (null == decoded)
-            {
-                break;
-            }
-
-            tsRequest = decoded;
-        }
-    }
-
     internal static async Task<ClientState> ResolveGenerator(CredsspProcessGenerator generator, TcpClient tcpClient)
     {
         var state = generator.Start();
diff --git a/ffi/dotnet/Devolutions.IronRdp/src/ConnectionHelpers.cs b/ffi/dotnet/Devolutions.IronRdp/src/ConnectionHelpers.cs
@@ -0,0 +1,121 @@
+using System.Net.Sockets;
+
+namespace Devolutions.IronRdp;
+
+/// <summary>
+/// Internal helper class providing shared connection logic for both direct and RDCleanPath connections.
+/// </summary>
+internal static class ConnectionHelpers
+{
+    /// <summary>
+    /// Sets up common connector configuration including dynamic channels and clipboard.
+    /// </summary>
+    internal static void SetupConnector(ClientConnector connector, Config config, CliprdrBackendFactory? factory)
+    {
+        connector.WithDynamicChannelDisplayControl();
+
+        var dvcPipeProxy = config.DvcPipeProxy;
+        if (dvcPipeProxy != null)
+        {
+            connector.WithDynamicChannelPipeProxy(dvcPipeProxy);
+        }
+
+        if (factory != null)
+        {
+            var cliprdr = factory.BuildCliprdr();
+            connector.AttachStaticCliprdr(cliprdr);
+        }
+    }
+
+    /// <summary>
+    /// Performs CredSSP authentication steps over any stream type.
+    /// </summary>
+    internal static async Task PerformCredsspSteps<T>(
+        ClientConnector connector,
+        string serverName,
+        WriteBuf writeBuf,
+        Framed<T> framed,
+        byte[] serverpubkey) where T : Stream
+    {
+        // Extract hostname from "hostname:port" format if needed
+        // CredSSP needs just the hostname for the service principal name (TERMSRV/hostname)
+        var hostname = serverName;
+        var colonIndex = serverName.IndexOf(':');
+        if (colonIndex > 0)
+        {
+            hostname = serverName.Substring(0, colonIndex);
+        }
+
+        var credsspSequenceInitResult = CredsspSequence.Init(connector, hostname, serverpubkey, null);
+        var credsspSequence = credsspSequenceInitResult.GetCredsspSequence();
+        var tsRequest = credsspSequenceInitResult.GetTsRequest();
+        var tcpClient = new TcpClient();
+
+        while (true)
+        {
+            var generator = credsspSequence.ProcessTsRequest(tsRequest);
+            var clientState = await Connection.ResolveGenerator(generator, tcpClient);
+            writeBuf.Clear();
+            var written = credsspSequence.HandleProcessResult(clientState, writeBuf);
+
+            if (written.GetSize().IsSome())
+            {
+                var actualSize = (int)written.GetSize().Get();
+                var response = new byte[actualSize];
+                writeBuf.ReadIntoBuf(response);
+                await framed.Write(response);
+            }
+
+            var pduHint = credsspSequence.NextPduHint();
+            if (pduHint == null)
+            {
+                break;
+            }
+
+            var pdu = await framed.ReadByHint(pduHint);
+            var decoded = credsspSequence.DecodeServerMessage(pdu);
+
+            // Don't remove, DecodeServerMessage is generated, and it can return null
+            if (null == decoded)
+            {
+                break;
+            }
+
+            tsRequest = decoded;
+        }
+    }
+
+    /// <summary>
+    /// Finalizes the RDP connection after security upgrade, performing CredSSP if needed
+    /// and completing the connection sequence.
+    /// </summary>
+    internal static async Task<ConnectionResult> ConnectFinalize<T>(
+        string serverName,
+        ClientConnector connector,
+        byte[] serverPubKey,
+        Framed<T> framedSsl) where T : Stream
+    {
+        var writeBuf = WriteBuf.New();
+
+        if (connector.ShouldPerformCredssp())
+        {
+            await PerformCredsspSteps(connector, serverName, writeBuf, framedSsl, serverPubKey);
+        }
+
+        while (!connector.GetDynState().IsTerminal())
+        {
+            await Connection.SingleSequenceStep(connector, writeBuf, framedSsl);
+        }
+
+        ClientConnectorState state = connector.ConsumeAndCastToClientConnectorState();
+
+        if (state.GetEnumType() == ClientConnectorStateType.Connected)
+        {
+            return state.GetConnectedResult();
+        }
+        else
+        {
+            throw new IronRdpLibException(IronRdpLibExceptionType.ConnectionFailed, "Connection failed");
+        }
+    }
+}
diff --git a/ffi/dotnet/Devolutions.IronRdp/src/RDCleanPathConnection.cs b/ffi/dotnet/Devolutions.IronRdp/src/RDCleanPathConnection.cs
@@ -37,20 +37,7 @@ public static class RDCleanPathConnection
 
         // Step 3: Setup ClientConnector
         var connector = ClientConnector.New(config, clientAddr);
-
-        // Attach optional dynamic/static channels
-        connector.WithDynamicChannelDisplayControl();
-        var dvcPipeProxy = config.DvcPipeProxy;
-        if (dvcPipeProxy != null)
-        {
-            connector.WithDynamicChannelPipeProxy(dvcPipeProxy);
-        }
-
-        if (factory != null)
-        {
-            var cliprdr = factory.BuildCliprdr();
-            connector.AttachStaticCliprdr(cliprdr);
-        }
+        ConnectionHelpers.SetupConnector(connector, config, factory);
 
         // Step 4: Perform RDCleanPath handshake
         System.Diagnostics.Debug.WriteLine("Performing RDCleanPath handshake...");
@@ -62,7 +49,7 @@ public static class RDCleanPathConnection
 
         // Step 6: Finalize connection
         System.Diagnostics.Debug.WriteLine("Finalizing RDP connection...");
-        var result = await ConnectFinalize(destination, connector, serverPublicKey, framedAfterHandshake);
+        var result = await ConnectionHelpers.ConnectFinalize(destination, connector, serverPublicKey, framedAfterHandshake);
 
         System.Diagnostics.Debug.WriteLine("Gateway connection established successfully!");
         return (result, framedAfterHandshake);
@@ -165,103 +152,6 @@ public static class RDCleanPathConnection
         }
     }
 
-    /// <summary>
-    /// Finalizes the RDP connection after RDCleanPath handshake.
-    /// </summary>
-    private static async Task<ConnectionResult> ConnectFinalize(
-        string serverName,
-        ClientConnector connector,
-        byte[] serverPubKey,
-        Framed<WebSocketStream> framedSsl)
-    {
-        var writeBuf = WriteBuf.New();
-
-        // Perform CredSSP if needed
-        if (connector.ShouldPerformCredssp())
-        {
-            System.Diagnostics.Debug.WriteLine("Performing CredSSP authentication...");
-            await PerformCredsspSteps(connector, serverName, writeBuf, framedSsl, serverPubKey);
-        }
-
-        // Continue with remaining connection steps
-        System.Diagnostics.Debug.WriteLine("Completing connection sequence...");
-        while (!connector.GetDynState().IsTerminal())
-        {
-            await Connection.SingleSequenceStep(connector, writeBuf, framedSsl);
-        }
-
-        // Get final connection result
-        ClientConnectorState state = connector.ConsumeAndCastToClientConnectorState();
-
-        if (state.GetEnumType() == ClientConnectorStateType.Connected)
-        {
-            return state.GetConnectedResult();
-        }
-        else
-        {
-            throw new IronRdpLibException(
-                IronRdpLibExceptionType.ConnectionFailed,
-                "Connection failed after RDCleanPath handshake");
-        }
-    }
-
-    /// <summary>
-    /// Performs CredSSP authentication steps.
-    /// </summary>
-    private static async Task PerformCredsspSteps(
-        ClientConnector connector,
-        string serverName,
-        WriteBuf writeBuf,
-        Framed<WebSocketStream> framedSsl,
-        byte[] serverpubkey)
-    {
-        // Extract hostname from "hostname:port" format for CredSSP
-        // CredSSP needs just the hostname for the service principal name (TERMSRV/hostname)
-        var hostname = serverName;
-        var colonIndex = serverName.IndexOf(':');
-        if (colonIndex > 0)
-        {
-            hostname = serverName.Substring(0, colonIndex);
-        }
-
-        var credsspSequenceInitResult = CredsspSequence.Init(connector, hostname, serverpubkey, null);
-        var credsspSequence = credsspSequenceInitResult.GetCredsspSequence();
-        var tsRequest = credsspSequenceInitResult.GetTsRequest();
-        var tcpClient = new System.Net.Sockets.TcpClient();
-
-        while (true)
-        {
-            var generator = credsspSequence.ProcessTsRequest(tsRequest);
-            var clientState = await Connection.ResolveGenerator(generator, tcpClient);
-            writeBuf.Clear();
-            var written = credsspSequence.HandleProcessResult(clientState, writeBuf);
-
-            if (written.GetSize().IsSome())
-            {
-                var actualSize = (int)written.GetSize().Get();
-                var response = new byte[actualSize];
-                writeBuf.ReadIntoBuf(response);
-                await framedSsl.Write(response);
-            }
-
-            var pduHint = credsspSequence.NextPduHint();
-            if (pduHint == null)
-            {
-                break;
-            }
-
-            var pdu = await framedSsl.ReadByHint(pduHint);
-            var decoded = credsspSequence.DecodeServerMessage(pdu);
-
-            if (null == decoded)
-            {
-                break;
-            }
-
-            tsRequest = decoded;
-        }
-    }
-
     /// <summary>
     /// Extracts the public key from an X.509 certificate in DER format.
     /// </summary>
