Home Explore Help
Sign In
opc-ua
/
open62541
Watch 2
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

add UA_Client_renewSecureChannel, make the securechannel lifetime user-definable in the client config

Julius Pfrommer 10 years ago
parent
9e15be02c1
commit
624f7089fa
2 changed files with 22 additions and 12 deletions
Split View Show Diff Stats
  1. 3 0
      include/ua_client.h
  2. 19 12
      src/client/ua_client.c

+ 3 - 0
include/ua_client.h
View File 

@@ -22,6 +22,7 @@ typedef UA_Connection (*UA_ConnectClientConnection)(char *endpointUrl, UA_Logger
 
 
 typedef struct UA_ClientConfig {
 
     UA_Int32 timeout; //sync response timeout
 
+    UA_Int32 secureChannelLifeTime; // lifetime in ms (then the channel needs to be renewed)
 
     UA_ConnectionConfig localConnectionConfig;
 
 } UA_ClientConfig;
 
 
@@ -33,6 +34,8 @@ UA_EXPORT void UA_Client_delete(UA_Client* client);
 
 UA_StatusCode UA_EXPORT UA_Client_connect(UA_Client *client, UA_ConnectClientConnection connFunc, char *endpointUrl);
 
 UA_StatusCode UA_EXPORT UA_Client_disconnect(UA_Client *client);
 
 
+UA_StatusCode UA_EXPORT UA_Client_renewSecureChannel(UA_Client *client);
 
+
 
 /* Attribute Service Set */
 
 UA_ReadResponse UA_EXPORT UA_Client_read(UA_Client *client, UA_ReadRequest *request);
 
 UA_WriteResponse UA_EXPORT UA_Client_write(UA_Client *client, UA_WriteRequest *request);

+ 19 - 12
src/client/ua_client.c
View File 

@@ -32,8 +32,9 @@ struct UA_Client {
 
 };
 
 
 const UA_EXPORT UA_ClientConfig UA_ClientConfig_standard =
 
-    { 5 /* ms receive timout */, {.protocolVersion = 0, .sendBufferSize = 65536, .recvBufferSize  = 65536,
 
-                                  .maxMessageSize = 65536, .maxChunkCount = 1}};
 
+    { 5 /* ms receive timout */, 30000,
 
+      {.protocolVersion = 0, .sendBufferSize = 65536, .recvBufferSize  = 65536,
 
+       .maxMessageSize = 65536, .maxChunkCount = 1}};
 
 
 UA_Client * UA_Client_new(UA_ClientConfig config, UA_Logger logger) {
 
     UA_Client *client = UA_malloc(sizeof(UA_Client));
 
@@ -126,7 +127,7 @@ static UA_StatusCode HelAckHandshake(UA_Client *c) {
 
     return UA_STATUSCODE_GOOD;
 
 }
 
 
-static UA_StatusCode SecureChannelHandshake(UA_Client *client) {
 
+static UA_StatusCode SecureChannelHandshake(UA_Client *client, UA_Boolean renew) {
 
     UA_ByteString_deleteMembers(&client->clientNonce); // if the handshake is repeated
 
     UA_ByteString_newMembers(&client->clientNonce, 1);
 
     client->clientNonce.data[0] = 0;
 
@@ -149,13 +150,15 @@ static UA_StatusCode SecureChannelHandshake(UA_Client *client) {
 
     UA_OpenSecureChannelRequest opnSecRq;
 
     UA_OpenSecureChannelRequest_init(&opnSecRq);
 
     opnSecRq.requestHeader.timestamp = UA_DateTime_now();
 
-    UA_ByteString_copy(&client->clientNonce, &opnSecRq.clientNonce);
 
-    opnSecRq.requestedLifetime = 30000;
 
-    opnSecRq.securityMode = UA_MESSAGESECURITYMODE_NONE;
 
-    opnSecRq.requestType = UA_SECURITYTOKENREQUESTTYPE_ISSUE;
 
-    opnSecRq.requestHeader.authenticationToken.identifier.numeric = 10;
 
-    opnSecRq.requestHeader.authenticationToken.identifierType = UA_NODEIDTYPE_NUMERIC;
 
-    opnSecRq.requestHeader.authenticationToken.namespaceIndex = 10;
 
+    opnSecRq.requestHeader.authenticationToken = client->authenticationToken;
 
+    opnSecRq.requestedLifetime = client->config.secureChannelLifeTime;
 
+    if(renew) {
 
+        opnSecRq.requestType = UA_SECURITYTOKENREQUESTTYPE_RENEW;
 
+    } else {
 
+        opnSecRq.requestType = UA_SECURITYTOKENREQUESTTYPE_ISSUE;
 
+        UA_ByteString_copy(&client->clientNonce, &opnSecRq.clientNonce);
 
+        opnSecRq.securityMode = UA_MESSAGESECURITYMODE_NONE;
 
+    }
 
 
     messageHeader.messageHeader.messageSize =
 
         UA_SecureConversationMessageHeader_calcSizeBinary(&messageHeader) +
 
@@ -216,7 +219,7 @@ static UA_StatusCode SecureChannelHandshake(UA_Client *client) {
 
     client->connection.releaseBuffer(&client->connection, &reply);
 
     retval = response.responseHeader.serviceResult;
 
 
-    if(retval == UA_STATUSCODE_GOOD) {
 
+    if(!renew && retval == UA_STATUSCODE_GOOD) {
 
         UA_ChannelSecurityToken_copy(&response.securityToken, &client->securityToken);
 
         UA_ByteString_deleteMembers(&client->serverNonce); // if the handshake is repeated
 
         UA_ByteString_copy(&response.serverNonce, &client->serverNonce);
 
@@ -500,7 +503,7 @@ UA_StatusCode UA_Client_connect(UA_Client *client, UA_ConnectClientConnection co
 
     client->connection.localConf = client->config.localConnectionConfig;
 
     UA_StatusCode retval = HelAckHandshake(client);
 
     if(retval == UA_STATUSCODE_GOOD)
 
-        retval = SecureChannelHandshake(client);
 
+        retval = SecureChannelHandshake(client, UA_FALSE);
 
     if(retval == UA_STATUSCODE_GOOD)
 
         retval = EndpointsHandshake(client);
 
     if(retval == UA_STATUSCODE_GOOD)
 
@@ -518,6 +521,10 @@ UA_StatusCode UA_Client_disconnect(UA_Client *client) {
 
     return retval;
 
 }
 
 
+UA_StatusCode UA_Client_renewSecureChannel(UA_Client *client) {
 
+    return SecureChannelHandshake(client, UA_TRUE);
 
+}
 
+
 
 UA_ReadResponse UA_Client_read(UA_Client *client, UA_ReadRequest *request) {
 
     UA_ReadResponse response;
 
     synchronousRequest(request, &UA_TYPES[UA_TYPES_READREQUEST], &response,