Serialize Exception.Data upfront to prevent stream corruption

Co-authored-by: stephentoub <2642209+stephentoub@users.noreply.github.com>

Author: Copilot

src/ModelContextProtocol.Core/McpSessionHandler.cs

@@ -207,17 +207,7 @@ ex is OperationCanceledException &&
                                 Context = new JsonRpcMessageContext { RelatedTransport = request.Context?.RelatedTransport },
                             };
 
-                            try
-                            {
-                                await SendMessageAsync(errorMessage, cancellationToken).ConfigureAwait(false);
-                            }
-                            catch (Exception sendException) when (sendException is JsonException or NotSupportedException && detail.Data is not null)
-                            {
-                                // If serialization fails (e.g., non-serializable data in Exception.Data),
-                                // retry without the data to ensure the client receives an error response.
-                                detail.Data = null;
-                                await SendMessageAsync(errorMessage, cancellationToken).ConfigureAwait(false);
-                            }
+                            await SendMessageAsync(errorMessage, cancellationToken).ConfigureAwait(false);
                         }
                         else if (ex is not OperationCanceledException)
                         {
@@ -782,28 +772,50 @@ private static TimeSpan GetElapsed(long startingTimestamp) =>
 
     /// <summary>
     /// Converts the <see cref="Exception.Data"/> dictionary to a serializable <see cref="Dictionary{TKey, TValue}"/>.
-    /// Returns null if the data dictionary is empty or contains no string keys.
+    /// Returns null if the data dictionary is empty or contains no string keys with serializable values.
     /// </summary>
     /// <remarks>
+    /// <para>
     /// Only entries with string keys are included in the result. Entries with non-string keys are ignored.
+    /// </para>
+    /// <para>
+    /// Each value is serialized to a <see cref="JsonElement"/> to ensure it can be safely included in the
+    /// JSON-RPC error response. Values that cannot be serialized are silently skipped.
+    /// </para>
     /// </remarks>
-    private static Dictionary<string, object?>? ConvertExceptionData(System.Collections.IDictionary data)
+    private static Dictionary<string, JsonElement>? ConvertExceptionData(System.Collections.IDictionary data)
     {
         if (data.Count == 0)
         {
             return null;
         }
 
-        var result = new Dictionary<string, object?>(data.Count);
+        var typeInfo = McpJsonUtilities.DefaultOptions.GetTypeInfo<object?>();
+
+        Dictionary<string, JsonElement>? result = null;
         foreach (System.Collections.DictionaryEntry entry in data)
         {
             if (entry.Key is string key)
             {
-                result[key] = entry.Value;
+                try
+                {
+                    // Serialize each value upfront to catch any serialization issues
+                    // before attempting to send the message. If the value is already a
+                    // JsonElement, use it directly.
+                    var element = entry.Value is JsonElement je
+                        ? je
+                        : JsonSerializer.SerializeToElement(entry.Value, typeInfo);
+                    result ??= new(data.Count);
+                    result[key] = element;
+                }
+                catch (Exception ex) when (ex is JsonException or NotSupportedException)
+                {
+                    // Skip non-serializable values silently
+                }
             }
         }
 
-        return result.Count > 0 ? result : null;
+        return result?.Count > 0 ? result : null;
     }
 
     [LoggerMessage(Level = LogLevel.Information, Message = "{EndpointName} message processing canceled.")]

tests/ModelContextProtocol.Tests/McpProtocolExceptionDataTests.cs

@@ -0,0 +1,113 @@
+using Microsoft.Extensions.DependencyInjection;
+using ModelContextProtocol.Client;
+using ModelContextProtocol.Protocol;
+using ModelContextProtocol.Server;
+using ModelContextProtocol.Tests.Utils;
+
+namespace ModelContextProtocol.Tests;
+
+/// <summary>
+/// Tests for McpProtocolException.Data propagation to JSON-RPC error responses.
+/// </summary>
+public class McpProtocolExceptionDataTests : ClientServerTestBase
+{
+    public McpProtocolExceptionDataTests(ITestOutputHelper testOutputHelper)
+        : base(testOutputHelper)
+    {
+    }
+
+    protected override void ConfigureServices(ServiceCollection services, IMcpServerBuilder mcpServerBuilder)
+    {
+        mcpServerBuilder.WithCallToolHandler((request, cancellationToken) =>
+        {
+            var toolName = request.Params?.Name;
+            
+            switch (toolName)
+            {
+                case "throw_with_serializable_data":
+                    throw new McpProtocolException("Resource not found", (McpErrorCode)(-32002))
+                    {
+                        Data =
+                        {
+                            { "uri", "file:///path/to/resource" },
+                            { "code", 404 }
+                        }
+                    };
+
+                case "throw_with_nonserializable_data":
+                    throw new McpProtocolException("Resource not found", (McpErrorCode)(-32002))
+                    {
+                        Data =
+                        {
+                            // Circular reference - cannot be serialized
+                            { "nonSerializable", new NonSerializableObject() },
+                            // This one should still be included
+                            { "uri", "file:///path/to/resource" }
+                        }
+                    };
+
+                case "throw_with_only_nonserializable_data":
+                    throw new McpProtocolException("Resource not found", (McpErrorCode)(-32002))
+                    {
+                        Data =
+                        {
+                            // Only non-serializable data - should result in null data
+                            { "nonSerializable", new NonSerializableObject() }
+                        }
+                    };
+
+                default:
+                    throw new McpProtocolException($"Unknown tool: '{toolName}'", McpErrorCode.InvalidParams);
+            }
+        });
+    }
+
+    [Fact]
+    public async Task Exception_With_Serializable_Data_Propagates_To_Client()
+    {
+        await using McpClient client = await CreateMcpClientForServer();
+
+        var exception = await Assert.ThrowsAsync<McpProtocolException>(async () =>
+            await client.CallToolAsync("throw_with_serializable_data", cancellationToken: TestContext.Current.CancellationToken));
+
+        Assert.Equal("Request failed (remote): Resource not found", exception.Message);
+        Assert.Equal((McpErrorCode)(-32002), exception.ErrorCode);
+    }
+
+    [Fact]
+    public async Task Exception_With_NonSerializable_Data_Still_Propagates_Error_To_Client()
+    {
+        await using McpClient client = await CreateMcpClientForServer();
+
+        // The tool throws McpProtocolException with non-serializable data in Exception.Data.
+        // The server should still send a proper error response to the client, with non-serializable
+        // values filtered out.
+        var exception = await Assert.ThrowsAsync<McpProtocolException>(async () =>
+            await client.CallToolAsync("throw_with_nonserializable_data", cancellationToken: TestContext.Current.CancellationToken));
+
+        Assert.Equal("Request failed (remote): Resource not found", exception.Message);
+        Assert.Equal((McpErrorCode)(-32002), exception.ErrorCode);
+    }
+
+    [Fact]
+    public async Task Exception_With_Only_NonSerializable_Data_Still_Propagates_Error_To_Client()
+    {
+        await using McpClient client = await CreateMcpClientForServer();
+
+        // When all data is non-serializable, the error should still be sent (with null data)
+        var exception = await Assert.ThrowsAsync<McpProtocolException>(async () =>
+            await client.CallToolAsync("throw_with_only_nonserializable_data", cancellationToken: TestContext.Current.CancellationToken));
+
+        Assert.Equal("Request failed (remote): Resource not found", exception.Message);
+        Assert.Equal((McpErrorCode)(-32002), exception.ErrorCode);
+    }
+
+    /// <summary>
+    /// A class that cannot be serialized by System.Text.Json due to circular reference.
+    /// </summary>
+    private sealed class NonSerializableObject
+    {
+        public NonSerializableObject() => Self = this;
+        public NonSerializableObject Self { get; set; }
+    }
+}

tests/ModelContextProtocol.Tests/Server/McpServerTests.cs

@@ -6,7 +6,6 @@
 using System.Runtime.InteropServices;
 using System.Text.Json;
 using System.Text.Json.Nodes;
-using System.Threading.Channels;
 
 namespace ModelContextProtocol.Tests.Server;
 
@@ -721,103 +720,15 @@ await transport.SendMessageAsync(
         Assert.Equal(ErrorMessage, error.Error.Message);
         Assert.NotNull(error.Error.Data);
 
-        // Verify the data contains the uri
-        var dataDict = Assert.IsType<Dictionary<string, object?>>(error.Error.Data);
+        // Verify the data contains the uri (values are now JsonElements after serialization)
+        var dataDict = Assert.IsType<Dictionary<string, JsonElement>>(error.Error.Data);
         Assert.True(dataDict.ContainsKey("uri"));
-        Assert.Equal(ResourceUri, dataDict["uri"]);
+        Assert.Equal(ResourceUri, dataDict["uri"].GetString());
 
         await transport.DisposeAsync();
         await runTask;
     }
 
-    [Fact]
-    public async Task Can_Handle_Call_Tool_Requests_With_McpProtocolException_And_NonSerializableData()
-    {
-        const string ErrorMessage = "Resource not found";
-        const McpErrorCode ErrorCode = (McpErrorCode)(-32002);
-
-        await using var transport = new SerializingTestServerTransport();
-        var options = CreateOptions(new ServerCapabilities { Tools = new() });
-        options.Handlers.CallToolHandler = async (request, ct) =>
-        {
-            throw new McpProtocolException(ErrorMessage, ErrorCode)
-            {
-                Data =
-                {
-                    // Add a non-serializable object (an object with circular reference)
-                    { "nonSerializable", new NonSerializableObject() }
-                }
-            };
-        };
-        options.Handlers.ListToolsHandler = (request, ct) => throw new NotImplementedException();
-
-        await using var server = McpServer.Create(transport, options, LoggerFactory);
-
-        var runTask = server.RunAsync(TestContext.Current.CancellationToken);
-
-        var receivedMessage = new TaskCompletionSource<JsonRpcError>();
-
-        transport.OnMessageSent = (message) =>
-        {
-            if (message is JsonRpcError error && error.Id.ToString() == "55")
-                receivedMessage.SetResult(error);
-        };
-
-        await transport.SendMessageAsync(
-            new JsonRpcRequest
-            {
-                Method = RequestMethods.ToolsCall,
-                Id = new RequestId(55)
-            },
-            TestContext.Current.CancellationToken
-        );
-
-        // Client should still receive an error response, even though the data couldn't be serialized
-        var error = await receivedMessage.Task.WaitAsync(TimeSpan.FromSeconds(10), TestContext.Current.CancellationToken);
-        Assert.NotNull(error);
-        Assert.NotNull(error.Error);
-        Assert.Equal((int)ErrorCode, error.Error.Code);
-        Assert.Equal(ErrorMessage, error.Error.Message);
-        // Data should be null since it couldn't be serialized
-        Assert.Null(error.Error.Data);
-
-        await transport.DisposeAsync();
-        await runTask;
-    }
-
-    /// <summary>
-    /// A class that cannot be serialized by System.Text.Json due to circular reference.
-    /// </summary>
-    private sealed class NonSerializableObject
-    {
-        public NonSerializableObject() => Self = this;
-        public NonSerializableObject Self { get; set; }
-    }
-
-    /// <summary>
-    /// A test transport that simulates JSON serialization failure for non-serializable data.
-    /// </summary>
-    private sealed class SerializingTestServerTransport : ITransport
-    {
-        private readonly TestServerTransport _inner = new();
-
-        public bool IsConnected => _inner.IsConnected;
-        public ChannelReader<JsonRpcMessage> MessageReader => _inner.MessageReader;
-        public string? SessionId => _inner.SessionId;
-        public Action<JsonRpcMessage>? OnMessageSent { get => _inner.OnMessageSent; set => _inner.OnMessageSent = value; }
-
-        public Task SendMessageAsync(JsonRpcMessage message, CancellationToken cancellationToken = default)
-        {
-            // Serialize the message to verify it can be serialized (this will throw JsonException if not)
-            // We serialize synchronously before any async operations to ensure the exception propagates correctly
-            _ = JsonSerializer.Serialize(message, McpJsonUtilities.DefaultOptions);
-
-            return _inner.SendMessageAsync(message, cancellationToken);
-        }
-
-        public ValueTask DisposeAsync() => _inner.DisposeAsync();
-    }
-
     private async Task Can_Handle_Requests(ServerCapabilities? serverCapabilities, string method, Action<McpServerOptions>? configureOptions, Action<McpServer, JsonNode?> assertResult)
     {
         await using var transport = new TestServerTransport();