ensure remote server HTTP2 tests are actually using HTTP2

[geoffkizer]

Fixes #39178
Contributes to #34460

Update many remote server tests to take a RemoteServer argument (instead of just server uri) and use CreateHttpClientForRemoteServer to set the HttpClient's DefaultRequestVersion property based on the definition of the RemoteServer.

Also, validate during request processing that we are sending the correct request version and receiving the expected response version.

Also, update some remote server tests to run against the HTTP2 remote server as well.

[geoffkizer]

/azp run corefx-outerloop-windows

[azure-pipelines]

Azure Pipelines successfully started running 1 pipeline(s).

[geoffkizer]

/azp run corefx-outerloop-linux

[azure-pipelines]

Azure Pipelines successfully started running 1 pipeline(s).

[davidsh]

nit: add space after ":" for named parameters.

(comment applies to other places in the PR)

[davidsh]

Windows 7 CI runs are failing with the HTTP/2.0 check. That's probably because Windows 7 doesn't support ALPN.

[geoffkizer]

Yeah, makes sense. Will fix. Thanks.

[geoffkizer]

/azp run corefx-outerloop-windows

[azure-pipelines]

Azure Pipelines successfully started running 1 pipeline(s).

[geoffkizer]

/azp run corefx-outerloop-linux

[azure-pipelines]

Azure Pipelines successfully started running 1 pipeline(s).

[geoffkizer]

/azp run corefx-outerloop-windows

[geoffkizer]

/azp run corefx-outerloop-linux

[azure-pipelines]

Azure Pipelines successfully started running 1 pipeline(s).

[azure-pipelines]

Azure Pipelines successfully started running 1 pipeline(s).

[geoffkizer]

@stephentoub Can you review?

[stephentoub]

This HttpClientHandlerTest class has derivations for both 1.1:

corefx/src/System.Net.Http/tests/FunctionalTests/SocketsHttpHandlerTest.cs

Line 944 in 290a6e5

public sealed class SocketsHttpHandler_HttpClientHandlerTest : HttpClientHandlerTest

and 2.0:

corefx/src/System.Net.Http/tests/FunctionalTests/SocketsHttpHandlerTest.cs

Line 2232 in 290a6e5

public sealed class SocketsHttpHandlerTest_HttpClientHandlerTest_Http2 : HttpClientHandlerTest

In conjunction with this remote server approach, that then means we're running the same tests more than we should be? e.g. for both the 1.1 and 2.0 derivations, we'll run both 1.1 and 2.0 tests?

[geoffkizer]

Yep. See #39345.

[geoffkizer]

Note also that since a bunch of the tests in HttpClientHandlerTest are 1.1-loopback based (not generic loopback), we're also running these tests twice for 1.1, since in the "2.0" derivation they still run as 1.1.

The "2.0" derivation really means "use the 2.0 loopback server". It would be nice to clarify this, but it's not urgent.

[stephentoub]

Other than my two comments/questions, LGTM. Thanks.

[geoffkizer]

/azp run corefx-outerloop-windows

[azure-pipelines]

Azure Pipelines successfully started running 1 pipeline(s).

[geoffkizer]

/azp run corefx-outerloop-linux

[azure-pipelines]

Azure Pipelines successfully started running 1 pipeline(s).

[geoffkizer]

I'm seeing an assert in the certificate code on Linux. Seems to be happening for both CurlHandler and SocketsHttpHandler. @bartonjs any idea what's going on here?

Process terminated. Assertion failed.
Unrecognized X509VerifyStatusCode:44
   at Internal.Cryptography.Pal.OpenSslX509ChainProcessor.MapVerifyErrorToChainStatus(X509VerifyStatusCode code) in /_/src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/OpenSslX509ChainProcessor.cs:line 819
   at Internal.Cryptography.Pal.OpenSslX509ChainProcessor.AddElementStatus(X509VerifyStatusCode errorCode, List`1 elementStatus, List`1 overallStatus) in /_/src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/OpenSslX509ChainProcessor.cs:line 703
   at Internal.Cryptography.Pal.OpenSslX509ChainProcessor.AddElementStatus(ErrorCollection errorCodes, List`1 elementStatus, List`1 overallStatus) in /_/src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/OpenSslX509ChainProcessor.cs:line 694
   at Internal.Cryptography.Pal.OpenSslX509ChainProcessor.BuildChainElements(WorkingChain workingChain, List`1& overallStatus) in /_/src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/OpenSslX509ChainProcessor.cs:line 599
   at Internal.Cryptography.Pal.OpenSslX509ChainProcessor.Finish(OidCollection applicationPolicy, OidCollection certificatePolicy) in /_/src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/OpenSslX509ChainProcessor.cs:line 393
   at Internal.Cryptography.Pal.ChainPal.BuildChain(Boolean useMachineContext, ICertificatePal cert, X509Certificate2Collection extraStore, OidCollection applicationPolicy, OidCollection certificatePolicy, X509RevocationMode revocationMode, X509RevocationFlag revocationFlag, DateTime verificationTime, TimeSpan timeout) in /_/src/System.Security.Cryptography.X509Certificates/src/Internal/Cryptography/Pal.Unix/ChainPal.cs:line 99
   at System.Security.Cryptography.X509Certificates.X509Chain.Build(X509Certificate2 certificate, Boolean throwOnException) in /_/src/System.Security.Cryptography.X509Certificates/src/System/Security/Cryptography/X509Certificates/X509Chain.cs:line 118
   at System.Security.Cryptography.X509Certificates.X509Chain.Build(X509Certificate2 certificate) in /_/src/System.Security.Cryptography.X509Certificates/src/System/Security/Cryptography/X509Certificates/X509Chain.cs:line 105
   at System.Net.Security.CertificateValidation.BuildChainAndVerifyProperties(X509Chain chain, X509Certificate2 remoteCertificate, Boolean checkCertName, String hostName) in /_/src/Common/src/System/Net/Security/CertificateValidation.Unix.cs:line 18
   at System.Net.CertificateValidationPal.VerifyCertificateProperties(SafeDeleteContext securityContext, X509Chain chain, X509Certificate2 remoteCertificate, Boolean checkCertName, Boolean isServer, String hostName) in /_/src/System.Net.Security/src/System/Net/CertificateValidationPal.Unix.cs:line 22
   at System.Net.Security.SecureChannel.VerifyRemoteCertificate(RemoteCertValidationCallback remoteCertValidationCallback, ProtocolToken& alertToken) in /_/src/System.Net.Security/src/System/Net/Security/SecureChannel.cs:line 1010
   at System.Net.Security.SslStream.CompleteHandshake(ProtocolToken& alertToken) in /_/src/System.Net.Security/src/System/Net/Security/SslStream.Implementation.cs:line 754

Unfortuately, it's not obvious which test is causing this. Likely it's an existing test that didn't run over SSL before, but does now because of HTTP2.

[azure-pipelines]

Azure Pipelines successfully started running 1 pipeline(s).

[azure-pipelines]

Azure Pipelines successfully started running 1 pipeline(s).

[geoffkizer]

Interestingly, we're still hitting the same assert even with the code I added to try to skip cert validation on Linux for the HTTP2 endpoint.

I don't see anything wrong with the code I added, so this would seem to imply that we see this even with HTTP/1.1 over SSL. Not sure what to make of this. There must be a test that wasn't running over SSL before and now is, and it's hitting this assert. But all the tests are running against the same endpoint, so I have no idea why it would cause this assert now.

[geoffkizer]

/azp run corefx-outerloop-windows

[azure-pipelines]

Pull request contains merge conflicts.

[geoffkizer]

/azp run corefx-outerloop-windows

[geoffkizer]

/azp run corefx-outerloop-linux

[azure-pipelines]

Azure Pipelines successfully started running 1 pipeline(s).

[geoffkizer]

/azp run corefx-outerloop-osx

[azure-pipelines]

Azure Pipelines successfully started running 1 pipeline(s).

[azure-pipelines]

Azure Pipelines successfully started running 1 pipeline(s).

[geoffkizer]

/azp run corefx-outerloop-linux

[azure-pipelines]

Azure Pipelines successfully started running 1 pipeline(s).

[geoffkizer]

/azp run

[azure-pipelines]

Azure Pipelines successfully started running 4 pipeline(s).

[geoffkizer]

Failures are unrelated