private async Task EncryptStream()

in src/DotPulsar/Internal/Connector.cs [118:154]

• 33 lines of code
• 5 McCabe index (conditional complexity)

    private async Task<Stream> EncryptStream(Stream stream, string host, CancellationToken cancellationToken)
    {
        SslStream? sslStream = null;
        var policyErrors = SslPolicyErrors.None;

        bool Validate(object sender, X509Certificate? certificate, X509Chain? chain, SslPolicyErrors sslPolicyErrors)
        {
            policyErrors = sslPolicyErrors;
            return ValidateServerCertificate(sender, certificate, chain, sslPolicyErrors);
        }

        try
        {
            sslStream = new SslStream(stream, false, Validate, null);
            var options = new SslClientAuthenticationOptions
            {
                TargetHost = host,
                ClientCertificates = _clientCertificates,
                EnabledSslProtocols = SslProtocols.None,
                CertificateRevocationCheckMode = _checkCertificateRevocation ? X509RevocationMode.Online : X509RevocationMode.NoCheck
            };
            await sslStream.AuthenticateAsClientAsync(options, cancellationToken).ConfigureAwait(false);
            return sslStream;
        }
        catch (Exception exception)
        {
            if (sslStream is null)
                await stream.DisposeAsync().ConfigureAwait(false);
            else
                await sslStream.DisposeAsync().ConfigureAwait(false);

            if (policyErrors != SslPolicyErrors.None)
                exception.Data.Add("SslPolicyErrors", policyErrors);

            throw;
        }
    }