Home Explore Help
Sign In
opc-ua
/
open62541
Watch 2
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 79da75482a
Branches Tags
open62541
/
src
/
ua_securechannel.c

ua_securechannel.c 6.3 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163 
  1. #include "ua_util.h"
    2. 

  2. #include "ua_securechannel.h"
    3. 

  3. #include "ua_statuscodes.h"
    4. 

  4. #include "ua_types_encoding_binary.h"
    5. 

  5. 

  6. // max message size is 64k
    7. 

  7. const UA_ConnectionConfig UA_ConnectionConfig_standard =
    8. 

  8.     {.protocolVersion = 0, .sendBufferSize = 65536, .recvBufferSize  = 65536,
    9. 

  9.      .maxMessageSize = 65536, .maxChunkCount   = 1};
    10. 

  10. 

  11. UA_ByteString UA_Connection_completeMessages(UA_Connection *connection, UA_ByteString received)
    12. 

  12. {
    13. 

  13.     if(received.length == -1)
    14. 

  14.         return received;
    15. 

  15. 

  16.     /* concat the existing incomplete message with the new message */
    17. 

  17.     UA_ByteString current;
    18. 

  18.     if(connection->incompleteMessage.length < 0)
    19. 

  19.         current = received;
    20. 

  20.     else {
    21. 

  21.         current.data = UA_realloc(connection->incompleteMessage.data,
    22. 

  22.                                   connection->incompleteMessage.length + received.length);
    23. 

  23.         if(!current.data) {
    24. 

  24.             /* not enough memory */
    25. 

  25.             UA_ByteString_deleteMembers(&connection->incompleteMessage);
    26. 

  26.             connection->incompleteMessage.length = -1;
    27. 

  27.             UA_ByteString_deleteMembers(&received);
    28. 

  28.             received.length = -1;
    29. 

  29.             return received;
    30. 

  30.         }
    31. 

  31.         UA_memcpy(current.data + connection->incompleteMessage.length, received.data, received.length);
    32. 

  32.         current.length = connection->incompleteMessage.length + received.length;
    33. 

  33.         UA_ByteString_deleteMembers(&received);
    34. 

  34.         UA_ByteString_init(&connection->incompleteMessage);
    35. 

  35.     }
    36. 

  36. 

  37.     /* find the first non-complete message */
    38. 

  38.     size_t end_pos = 0; // the end of the last complete message
    39. 

  39.     while(current.length - end_pos >= 32) {
    40. 

  40.         if(!(current.data[0] == 'M' && current.data[1] == 'S' && current.data[2] == 'G') &&
    41. 

  41.            !(current.data[0] == 'O' && current.data[1] == 'P' && current.data[2] == 'N') &&
    42. 

  42.            !(current.data[0] == 'H' && current.data[1] == 'E' && current.data[2] == 'L') &&
    43. 

  43.            !(current.data[0] == 'A' && current.data[1] == 'C' && current.data[2] == 'K') &&
    44. 

  44.            !(current.data[0] == 'C' && current.data[1] == 'L' && current.data[2] == 'O')) {
    45. 

  45.             current.length = end_pos; // throw the remaining bytestring away
    46. 

  46.             break;
    47. 

  47.         }
    48. 

  48.         UA_Int32 length = 0;
    49. 

  49.         size_t pos = end_pos + 4;
    50. 

  50.         UA_StatusCode retval = UA_Int32_decodeBinary(&current, &pos, &length);
    51. 

  51.         if(retval != UA_STATUSCODE_GOOD || length < 32 ||
    52. 

  52.            length > (UA_Int32)connection->localConf.maxMessageSize) {
    53. 

  53.             current.length = end_pos; // throw the remaining bytestring away
    54. 

  54.             break;
    55. 

  55.         }
    56. 

  56.         if(length + (UA_Int32)end_pos > current.length)
    57. 

  57.             break; // the message is incomplete
    58. 

  58.         end_pos += length;
    59. 

  59.     }
    60. 

  60. 

  61.     if(current.length == 0) {
    62. 

  62.         /* throw everything away */
    63. 

  63.         UA_ByteString_deleteMembers(&current);
    64. 

  64.         current.length = -1;
    65. 

  65.         return current;
    66. 

  66.     }
    67. 

  67. 

  68.     if(end_pos == 0) {
    69. 

  69.         /* no complete message in current */
    70. 

  70.         connection->incompleteMessage = current;
    71. 

  71.         UA_ByteString_init(&current);
    72. 

  72.     } else if(current.length != (UA_Int32)end_pos) {
    73. 

  73.         /* there is an incomplete message at the end of current */
    74. 

  74.         connection->incompleteMessage.data = UA_malloc(current.length - end_pos);
    75. 

  75.         if(connection->incompleteMessage.data) {
    76. 

  76.             UA_memcpy(connection->incompleteMessage.data, &current.data[end_pos], current.length - end_pos);
    77. 

  77.             connection->incompleteMessage.length = current.length - end_pos;
    78. 

  78.         }
    79. 

  79.         current.length = end_pos;
    80. 

  80.     }
    81. 

  81.     return current;
    82. 

  82. }
    83. 

  83. 

  84. void UA_SecureChannel_init(UA_SecureChannel *channel) {
    85. 

  85.     UA_MessageSecurityMode_init(&channel->securityMode);
    86. 

  86.     UA_ChannelSecurityToken_init(&channel->securityToken);
    87. 

  87.     UA_AsymmetricAlgorithmSecurityHeader_init(&channel->clientAsymAlgSettings);
    88. 

  88.     UA_AsymmetricAlgorithmSecurityHeader_init(&channel->serverAsymAlgSettings);
    89. 

  89.     UA_ByteString_init(&channel->clientNonce);
    90. 

  90.     UA_ByteString_init(&channel->serverNonce);
    91. 

  91.     channel->requestId = 0;
    92. 

  92.     channel->sequenceNumber = 0;
    93. 

  93.     channel->connection = UA_NULL;
    94. 

  94.     channel->session    = UA_NULL;
    95. 

  95. }
    96. 

  96. 

  97. void UA_SecureChannel_deleteMembers(UA_SecureChannel *channel) {
    98. 

  98.     UA_AsymmetricAlgorithmSecurityHeader_deleteMembers(&channel->serverAsymAlgSettings);
    99. 

  99.     UA_ByteString_deleteMembers(&channel->serverNonce);
    100. 

  100.     UA_AsymmetricAlgorithmSecurityHeader_deleteMembers(&channel->clientAsymAlgSettings);
    101. 

  101.     UA_ByteString_deleteMembers(&channel->clientNonce);
    102. 

  102.     UA_ChannelSecurityToken_deleteMembers(&channel->securityToken);
    103. 

  103. }
    104. 

  104. 

  105. void UA_SecureChannel_delete(UA_SecureChannel *channel) {
    106. 

  106.     UA_SecureChannel_deleteMembers(channel);
    107. 

  107.     UA_free(channel);
    108. 

  108. }
    109. 

  109. 

  110. UA_Boolean UA_SecureChannel_compare(UA_SecureChannel *sc1, UA_SecureChannel *sc2) {
    111. 

  111.     return (sc1->securityToken.channelId == sc2->securityToken.channelId);
    112. 

  112. }
    113. 

  113. 

  114. //TODO implement real nonce generator - DUMMY function
    115. 

  115. UA_StatusCode UA_SecureChannel_generateNonce(UA_ByteString *nonce) {
    116. 

  116.     if(!(nonce->data = UA_malloc(1)))
    117. 

  117.         return UA_STATUSCODE_BADOUTOFMEMORY;
    118. 

  118.     nonce->length  = 1;
    119. 

  119.     nonce->data[0] = 'a';
    120. 

  120.     return UA_STATUSCODE_GOOD;
    121. 

  121. }
    122. 

  122. 

  123. UA_StatusCode UA_SecureChannel_updateRequestId(UA_SecureChannel *channel, UA_UInt32 requestId) {
    124. 

  124.     //TODO review checking of request id
    125. 

  125.     if(channel->requestId+1 != requestId)
    126. 

  126.         return UA_STATUSCODE_BADINTERNALERROR;
    127. 

  127.     channel->requestId++;
    128. 

  128.     return UA_STATUSCODE_GOOD;
    129. 

  129. }
    130. 

  130. 

  131. UA_StatusCode UA_SecureChannel_updateSequenceNumber(UA_SecureChannel *channel, UA_UInt32 sequenceNumber) {
    132. 

  132.     //TODO review checking of sequence
    133. 

  133.     if(channel->sequenceNumber+1  != sequenceNumber)
    134. 

  134.         return UA_STATUSCODE_BADINTERNALERROR;
    135. 

  135.     channel->sequenceNumber++;
    136. 

  136.     return UA_STATUSCODE_GOOD;
    137. 

  137. }
    138. 

  138. 

  139. void UA_Connection_detachSecureChannel(UA_Connection *connection) {
    140. 

  140. #ifdef UA_MULTITHREADING
    141. 

  141.     UA_SecureChannel *channel = connection->channel;
    142. 

  142.     if(channel)
    143. 

  143.         uatomic_cmpxchg(&channel->connection, connection, UA_NULL);
    144. 

  144.     uatomic_set(&connection->channel, UA_NULL);
    145. 

  145. #else
    146. 

  146.     if(connection->channel)
    147. 

  147.         connection->channel->connection = UA_NULL;
    148. 

  148.     connection->channel = UA_NULL;
    149. 

  149. #endif
    150. 

  150. }
    151. 

  151. 

  152. void UA_Connection_attachSecureChannel(UA_Connection *connection, UA_SecureChannel *channel) {
    153. 

  153. #ifdef UA_MULTITHREADING
    154. 

  154.     if(uatomic_cmpxchg(&channel->connection, UA_NULL, connection) == UA_NULL)
    155. 

  155.         uatomic_set(&connection->channel, channel);
    156. 

  156. #else
    157. 

  157.     if(channel->connection != UA_NULL)
    158. 

  158.         return;
    159. 

  159.     channel->connection = connection;
    160. 

  160.     connection->channel = channel;
    161. 

  161. #endif
    162. 

  162. }
    163. 

  163.