SignalR Negotiate protocol versioning

[mikaelm12]

This includes the changes for the server and the .NET client. Still polishing but ready for some review
Spec: https://github.com/aspnet/specs/pull/325

[BrennanConroy]

Quick first pass

[halter73]

nit:

Suggested change

//urlBuilder.Query = $"version={_protocolVersionNumber}";

[halter73]

Suggested change

//urlBuilder.Query = $"version={_protocolVersionNumber}";

It looks like a follow up commit overwrote this.

[mikaelm12]

Yeah, idk what happened here

[halter73]

If the client doesn't pass a version and a minimum protocol version is specified via options, shouldn't that connection also be rejected?

[mikaelm12]

options, shouldn't that connection also be rejected?

No version from the client implies V1 so if the minimum specified through options on the server is greater than that (it should be greater than V1 it it's explicitly set) we should reject the connection.

[BrennanConroy]

It doesn't look like there is a check for that though

[mikaelm12]

Added

[halter73]

What if this is set to a non-default value and a client tries to connection without negotiating?

[mikaelm12]

Yeah, this was an open question in the design doc. I think your suggestion there of having an option to reject clients that skip negotiation seems reasonable. Otherwise you're left in a weird position where the client and server are unaware of each other's capabilities.

[halter73]

👍 We can always revisit if the default MinimumProtocolVersion ever goes above 0.

[BrennanConroy]

It doesn't look like there is a check for that though

[halter73]

Suggested change

	} else if (options.MinimumProtocolVersion > 0)
	}
	else if (options.MinimumProtocolVersion > 0)

[halter73]

I think this message should include what the server-configure min protocol version is.

[halter73]

It might be nice to rename the "version" query string parameter and negotiate property to "protocolVersion" or similar so customers don't think this is supposed to match the SiganlR package version.

[mikaelm12]

It might be nice to rename the "version" query string parameter and negotiate property to "protocolVersion"

ProtocolVersion is taken
https://github.com/aspnet/AspNetCore/blob/bcdc9b08dfbb79ca6b8780e9ef5f9cabba67f71d/src/SignalR/common/Http.Connections.Common/src/NegotiateProtocol.cs#L160-L163

We can use NegotiateVersion if no one hates it too much

[BrennanConroy]

Might want to log on the server here and the one below?

[BrennanConroy]

We should delay setting this until we know the client is compatible, and perhaps we should invalidate the ID too if there is an error. Or maybe we can delay even creating the connectionId and do the version checking earlier?

[mikaelm12]

Note to self to add a test for client sending an invalid version in the query string

[halter73]

I think NegotiateVersion is fine.

[BrennanConroy]

We need to update the transport spec document too!

[BrennanConroy]

Per the spec, the server should send back the version even for clients that don't support versions yet.

This could be useful for bug reports where we see people with "version" in the negotiate but are using <=3.0 clients.

[mikaelm12]

@aspnet-hello triage https://dev.azure.com/dnceng/public/_build/results?buildId=336108&view=logs

[aspnet-hello]

This comment was made automatically. If there is a problem contact [email protected].

I've triaged the above build. I've created/commented on the following issue(s)
https://github.com/aspnet/AspNetCore-Internal/issues/3057

[mikaelm12]

@aspnet-hello triage https://dev.azure.com/dnceng/public/_build/results?buildId=336109&view=logs