Home Explore Help
Sign In
thomas
/
open62541
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 734782360d
Branches Tags
open62541
/
src
/
client
/
ua_client_connect.c

ua_client_connect.c 31 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765 
  1. /* This Source Code Form is subject to the terms of the Mozilla Public
    2. 

  2.  * License, v. 2.0. If a copy of the MPL was not distributed with this
    3. 

  3.  * file, You can obtain one at http://mozilla.org/MPL/2.0/.
    4. 

  4.  *
    5. 

  5.  *    Copyright 2017 (c) Mark Giraud, Fraunhofer IOSB
    6. 

  6.  *    Copyright 2017-2018 (c) Thomas Stalder, Blue Time Concept SA
    7. 

  7.  *    Copyright 2017 (c) Fraunhofer IOSB (Author: Julius Pfrommer)
    8. 

  8.  *    Copyright 2017 (c) Stefan Profanter, fortiss GmbH
    9. 

  9.  *    Copyright 2018 (c) Kalycito Infotech Private Limited
    10. 

  10.  */
    11. 

  11. 

  12. #include "ua_client_internal.h"
    13. 

  13. #include "ua_transport_generated.h"
    14. 

  14. #include "ua_transport_generated_handling.h"
    15. 

  15. #include "ua_transport_generated_encoding_binary.h"
    16. 

  16. #include "ua_types_encoding_binary.h"
    17. 

  17. #include "ua_types_generated_encoding_binary.h"
    18. 

  18. 

  19. /* Size are refered in bytes */
    20. 

  20. #define UA_MINMESSAGESIZE                8192
    21. 

  21. #define UA_SESSION_LOCALNONCELENGTH      32
    22. 

  22. #define MAX_DATA_SIZE                    4096
    23. 

  23. 

  24.  /********************/
    25. 

  25.  /* Set client state */
    26. 

  26.  /********************/
    27. 

  27. void
    28. 

  28. setClientState(UA_Client *client, UA_ClientState state) {
    29. 

  29.     if(client->state != state) {
    30. 

  30.         client->state = state;
    31. 

  31.         if(client->config.stateCallback)
    32. 

  32.             client->config.stateCallback(client, client->state);
    33. 

  33.     }
    34. 

  34. }
    35. 

  35. 

  36. /***********************/
    37. 

  37. /* Open the Connection */
    38. 

  38. /***********************/
    39. 

  39. 

  40. #define UA_BITMASK_MESSAGETYPE 0x00ffffff
    41. 

  41. #define UA_BITMASK_CHUNKTYPE 0xff000000
    42. 

  42. 

  43. static UA_StatusCode
    44. 

  44. processACKResponse(void *application, UA_Connection *connection, UA_ByteString *chunk) {
    45. 

  45.     UA_Client *client = (UA_Client*)application;
    46. 

  46. 

  47.     /* Decode the message */
    48. 

  48.     size_t offset = 0;
    49. 

  49.     UA_StatusCode retval;
    50. 

  50.     UA_TcpMessageHeader messageHeader;
    51. 

  51.     UA_TcpAcknowledgeMessage ackMessage;
    52. 

  52.     retval = UA_TcpMessageHeader_decodeBinary(chunk, &offset, &messageHeader);
    53. 

  53.     if(retval != UA_STATUSCODE_GOOD) {
    54. 

  54.         UA_LOG_INFO(&client->config.logger, UA_LOGCATEGORY_NETWORK,
    55. 

  55.                     "Decoding ACK message failed");
    56. 

  56.         return retval;
    57. 

  57.     }
    58. 

  58. 

  59.     // check if we got an error response from the server
    60. 

  60.     UA_MessageType messageType = (UA_MessageType)
    61. 

  61.         (messageHeader.messageTypeAndChunkType & UA_BITMASK_MESSAGETYPE);
    62. 

  62.     UA_ChunkType chunkType = (UA_ChunkType)
    63. 

  63.         (messageHeader.messageTypeAndChunkType & UA_BITMASK_CHUNKTYPE);
    64. 

  64.     if (messageType == UA_MESSAGETYPE_ERR) {
    65. 

  65.         // Header + ErrorMessage (error + reasonLength_field + length)
    66. 

  66.         UA_StatusCode error = *(UA_StatusCode*)(&chunk->data[offset]);
    67. 

  67.         UA_UInt32 len = *((UA_UInt32*)&chunk->data[offset + 4]);
    68. 

  68.         UA_Byte *data = (UA_Byte*)&chunk->data[offset + 4+4];
    69. 

  69.         UA_LOG_ERROR(&client->config.logger, UA_LOGCATEGORY_NETWORK,
    70. 

  70.                     "Received ERR response. %s - %.*s", UA_StatusCode_name(error), len, data);
    71. 

  71.         return error;
    72. 

  72.     }
    73. 

  73.     if (chunkType != UA_CHUNKTYPE_FINAL) {
    74. 

  74.         return UA_STATUSCODE_BADTCPMESSAGETYPEINVALID;
    75. 

  75.     }
    76. 

  76. 

  77.     /* Decode the ACK message */
    78. 

  78.     retval = UA_TcpAcknowledgeMessage_decodeBinary(chunk, &offset, &ackMessage);
    79. 

  79.     if(retval != UA_STATUSCODE_GOOD) {
    80. 

  80.         UA_LOG_INFO(&client->config.logger, UA_LOGCATEGORY_NETWORK,
    81. 

  81.                     "Decoding ACK message failed");
    82. 

  82.         return retval;
    83. 

  83.     }
    84. 

  84.     UA_LOG_DEBUG(&client->config.logger, UA_LOGCATEGORY_NETWORK, "Received ACK message");
    85. 

  85. 

  86.     /* Process the ACK message */
    87. 

  87.     return UA_Connection_processHELACK(connection, &client->config.localConnectionConfig,
    88. 

  88.                                        (const UA_ConnectionConfig*)&ackMessage);
    89. 

  89. }
    90. 

  90. 

  91. static UA_StatusCode
    92. 

  92. HelAckHandshake(UA_Client *client) {
    93. 

  93.     /* Get a buffer */
    94. 

  94.     UA_ByteString message;
    95. 

  95.     UA_Connection *conn = &client->connection;
    96. 

  96.     UA_StatusCode retval = conn->getSendBuffer(conn, UA_MINMESSAGESIZE, &message);
    97. 

  97.     if(retval != UA_STATUSCODE_GOOD)
    98. 

  98.         return retval;
    99. 

  99. 

  100.     /* Prepare the HEL message and encode at offset 8 */
    101. 

  101.     UA_TcpHelloMessage hello;
    102. 

  102.     UA_String_copy(&client->endpointUrl, &hello.endpointUrl); /* must be less than 4096 bytes */
    103. 

  103.     memcpy(&hello, &client->config.localConnectionConfig, sizeof(UA_ConnectionConfig)); /* same struct layout */
    104. 

  104. 

  105.     UA_Byte *bufPos = &message.data[8]; /* skip the header */
    106. 

  106.     const UA_Byte *bufEnd = &message.data[message.length];
    107. 

  107.     retval = UA_TcpHelloMessage_encodeBinary(&hello, &bufPos, bufEnd);
    108. 

  108.     UA_TcpHelloMessage_deleteMembers(&hello);
    109. 

  109.     if(retval != UA_STATUSCODE_GOOD) {
    110. 

  110.         conn->releaseSendBuffer(conn, &message);
    111. 

  111.         return retval;
    112. 

  112.     }
    113. 

  113. 

  114. 

  115.     /* Encode the message header at offset 0 */
    116. 

  116.     UA_TcpMessageHeader messageHeader;
    117. 

  117.     messageHeader.messageTypeAndChunkType = UA_CHUNKTYPE_FINAL + UA_MESSAGETYPE_HEL;
    118. 

  118.     messageHeader.messageSize = (UA_UInt32)((uintptr_t)bufPos - (uintptr_t)message.data);
    119. 

  119.     bufPos = message.data;
    120. 

  120.     retval = UA_TcpMessageHeader_encodeBinary(&messageHeader, &bufPos, bufEnd);
    121. 

  121.     if(retval != UA_STATUSCODE_GOOD) {
    122. 

  122.         conn->releaseSendBuffer(conn, &message);
    123. 

  123.         return retval;
    124. 

  124.     }
    125. 

  125. 

  126.     /* Send the HEL message */
    127. 

  127.     message.length = messageHeader.messageSize;
    128. 

  128.     retval = conn->send(conn, &message);
    129. 

  129.     if(retval != UA_STATUSCODE_GOOD) {
    130. 

  130.         UA_LOG_INFO(&client->config.logger, UA_LOGCATEGORY_NETWORK,
    131. 

  131.                     "Sending HEL failed");
    132. 

  132.         return retval;
    133. 

  133.     }
    134. 

  134.     UA_LOG_DEBUG(&client->config.logger, UA_LOGCATEGORY_NETWORK,
    135. 

  135.                  "Sent HEL message");
    136. 

  136. 

  137.     /* Loop until we have a complete chunk */
    138. 

  138.     retval = UA_Connection_receiveChunksBlocking(conn, client, processACKResponse,
    139. 

  139.                                                  client->config.timeout);
    140. 

  140.     if(retval != UA_STATUSCODE_GOOD) {
    141. 

  141.         UA_LOG_INFO(&client->config.logger, UA_LOGCATEGORY_NETWORK,
    142. 

  142.                     "Receiving ACK message failed with %s", UA_StatusCode_name(retval));
    143. 

  143.         if(retval == UA_STATUSCODE_BADCONNECTIONCLOSED)
    144. 

  144.             client->state = UA_CLIENTSTATE_DISCONNECTED;
    145. 

  145.         UA_Client_disconnect(client);
    146. 

  146.     }
    147. 

  147.     return retval;
    148. 

  148. }
    149. 

  149. 

  150. static void
    151. 

  151. processDecodedOPNResponse(UA_Client *client, UA_OpenSecureChannelResponse *response, UA_Boolean renew) {
    152. 

  152.     /* Replace the token */
    153. 

  153.     if (renew)
    154. 

  154.         client->channel.nextSecurityToken = response->securityToken; // Set the next token
    155. 

  155.     else
    156. 

  156.         client->channel.securityToken = response->securityToken; // Set initial token
    157. 

  157. 

  158.     /* Replace the nonce */
    159. 

  159.     UA_ByteString_deleteMembers(&client->channel.remoteNonce);
    160. 

  160.     client->channel.remoteNonce = response->serverNonce;
    161. 

  161.     UA_ByteString_init(&response->serverNonce);
    162. 

  162. 

  163.     if(client->channel.state == UA_SECURECHANNELSTATE_OPEN)
    164. 

  164.         UA_LOG_DEBUG(&client->config.logger, UA_LOGCATEGORY_SECURECHANNEL,
    165. 

  165.                      "SecureChannel in the server renewed");
    166. 

  166.     else
    167. 

  167.         UA_LOG_DEBUG(&client->config.logger, UA_LOGCATEGORY_SECURECHANNEL,
    168. 

  168.                      "Opened SecureChannel acknowledged by the server");
    169. 

  169. 

  170.     /* Response.securityToken.revisedLifetime is UInt32 we need to cast it to
    171. 

  171.      * DateTime=Int64 we take 75% of lifetime to start renewing as described in
    172. 

  172.      * standard */
    173. 

  173.     client->channel.state = UA_SECURECHANNELSTATE_OPEN;
    174. 

  174.     client->nextChannelRenewal = UA_DateTime_nowMonotonic() + (UA_DateTime)
    175. 

  175.         (client->channel.securityToken.revisedLifetime * (UA_Double)UA_DATETIME_MSEC * 0.75);
    176. 

  176. }
    177. 

  177. 

  178. UA_StatusCode
    179. 

  179. openSecureChannel(UA_Client *client, UA_Boolean renew) {
    180. 

  180.     /* Check if sc is still valid */
    181. 

  181.     if(renew && client->nextChannelRenewal > UA_DateTime_nowMonotonic())
    182. 

  182.         return UA_STATUSCODE_GOOD;
    183. 

  183. 

  184.     UA_Connection *conn = &client->connection;
    185. 

  185.     if(conn->state != UA_CONNECTION_ESTABLISHED)
    186. 

  186.         return UA_STATUSCODE_BADSERVERNOTCONNECTED;
    187. 

  187. 

  188.     /* Prepare the OpenSecureChannelRequest */
    189. 

  189.     UA_OpenSecureChannelRequest opnSecRq;
    190. 

  190.     UA_OpenSecureChannelRequest_init(&opnSecRq);
    191. 

  191.     opnSecRq.requestHeader.timestamp = UA_DateTime_now();
    192. 

  192.     opnSecRq.requestHeader.authenticationToken = client->authenticationToken;
    193. 

  193.     if(renew) {
    194. 

  194.         opnSecRq.requestType = UA_SECURITYTOKENREQUESTTYPE_RENEW;
    195. 

  195.         UA_LOG_DEBUG(&client->config.logger, UA_LOGCATEGORY_SECURECHANNEL,
    196. 

  196.                      "Requesting to renew the SecureChannel");
    197. 

  197.     } else {
    198. 

  198.         opnSecRq.requestType = UA_SECURITYTOKENREQUESTTYPE_ISSUE;
    199. 

  199.         UA_LOG_DEBUG(&client->config.logger, UA_LOGCATEGORY_SECURECHANNEL,
    200. 

  200.                      "Requesting to open a SecureChannel");
    201. 

  201.     }
    202. 

  202. 

  203.     /* Set the securityMode to input securityMode from client data */
    204. 

  204.     opnSecRq.securityMode = client->channel.securityMode;
    205. 

  205. 

  206.     opnSecRq.clientNonce = client->channel.localNonce;
    207. 

  207.     opnSecRq.requestedLifetime = client->config.secureChannelLifeTime;
    208. 

  208. 

  209.     /* Send the OPN message */
    210. 

  210.     UA_UInt32 requestId = ++client->requestId;
    211. 

  211.     UA_StatusCode retval =
    212. 

  212.         UA_SecureChannel_sendAsymmetricOPNMessage(&client->channel, requestId, &opnSecRq,
    213. 

  213.                                                   &UA_TYPES[UA_TYPES_OPENSECURECHANNELREQUEST]);
    214. 

  214.     if(retval != UA_STATUSCODE_GOOD) {
    215. 

  215.         UA_LOG_ERROR(&client->config.logger, UA_LOGCATEGORY_SECURECHANNEL,
    216. 

  216.                      "Sending OPN message failed with error %s", UA_StatusCode_name(retval));
    217. 

  217.         UA_Client_disconnect(client);
    218. 

  218.         return retval;
    219. 

  219.     }
    220. 

  220. 

  221.     UA_LOG_DEBUG(&client->config.logger, UA_LOGCATEGORY_SECURECHANNEL, "OPN message sent");
    222. 

  222. 

  223.     /* Increase nextChannelRenewal to avoid that we re-start renewal when
    224. 

  224.      * publish responses are received before the OPN response arrives. */
    225. 

  225.     client->nextChannelRenewal = UA_DateTime_nowMonotonic() +
    226. 

  226.         (2 * ((UA_DateTime)client->config.timeout * UA_DATETIME_MSEC));
    227. 

  227. 

  228.     /* Receive / decrypt / decode the OPN response. Process async services in
    229. 

  229.      * the background until the OPN response arrives. */
    230. 

  230.     UA_OpenSecureChannelResponse response;
    231. 

  231.     retval = receiveServiceResponse(client, &response,
    232. 

  232.                                     &UA_TYPES[UA_TYPES_OPENSECURECHANNELRESPONSE],
    233. 

  233.                                     UA_DateTime_nowMonotonic() +
    234. 

  234.                                     ((UA_DateTime)client->config.timeout * UA_DATETIME_MSEC),
    235. 

  235.                                     &requestId);
    236. 

  236. 

  237.     if(retval != UA_STATUSCODE_GOOD) {
    238. 

  238.         UA_Client_disconnect(client);
    239. 

  239.         return retval;
    240. 

  240.     }
    241. 

  241. 

  242.     processDecodedOPNResponse(client, &response, renew);
    243. 

  243.     UA_OpenSecureChannelResponse_deleteMembers(&response);
    244. 

  244.     return retval;
    245. 

  245. }
    246. 

  246. 

  247. /* Function to verify the signature corresponds to ClientNonce
    248. 

  248.  * using the local certificate.
    249. 

  249.  *
    250. 

  250.  * @param  channel      current channel in which the client runs
    251. 

  251.  * @param  response     create session response from the server
    252. 

  252.  * @return Returns an error code or UA_STATUSCODE_GOOD. */
    253. 

  253. UA_StatusCode
    254. 

  254. checkClientSignature(const UA_SecureChannel *channel, const UA_CreateSessionResponse *response) {
    255. 

  255.     if(channel == NULL || response == NULL)
    256. 

  256.         return UA_STATUSCODE_BADINTERNALERROR;
    257. 

  257. 

  258.     if(channel->securityMode != UA_MESSAGESECURITYMODE_SIGN &&
    259. 

  259.        channel->securityMode != UA_MESSAGESECURITYMODE_SIGNANDENCRYPT)
    260. 

  260.         return UA_STATUSCODE_GOOD;
    261. 

  261. 

  262.     if(!channel->securityPolicy)
    263. 

  263.         return UA_STATUSCODE_BADINTERNALERROR;
    264. 

  264. 

  265.     const UA_SecurityPolicy* securityPolicy   = channel->securityPolicy;
    266. 

  266.     const UA_ByteString*     localCertificate = &securityPolicy->localCertificate;
    267. 

  267. 

  268.     size_t dataToVerifySize = localCertificate->length + channel->localNonce.length;
    269. 

  269.     UA_ByteString dataToVerify = UA_BYTESTRING_NULL;
    270. 

  270.     UA_StatusCode retval = UA_ByteString_allocBuffer(&dataToVerify, dataToVerifySize);
    271. 

  271.     if(retval != UA_STATUSCODE_GOOD)
    272. 

  272.         return retval;
    273. 

  273. 

  274.     memcpy(dataToVerify.data, localCertificate->data, localCertificate->length);
    275. 

  275.     memcpy(dataToVerify.data + localCertificate->length,
    276. 

  276.            channel->localNonce.data, channel->localNonce.length);
    277. 

  277. 

  278.     retval = securityPolicy->
    279. 

  279.              certificateSigningAlgorithm.verify(securityPolicy,
    280. 

  280.                                                 channel->channelContext,
    281. 

  281.                                                 &dataToVerify,
    282. 

  282.                                                 &response->serverSignature.signature);
    283. 

  283.     UA_ByteString_deleteMembers(&dataToVerify);
    284. 

  284.     return retval;
    285. 

  285. }
    286. 

  286. 

  287. /* Function to create a signature using remote certificate and nonce
    288. 

  288.  *
    289. 

  289.  * @param  channel      current channel in which the client runs
    290. 

  290.  * @param  request      activate session request message to server
    291. 

  291.  * @return Returns an error or UA_STATUSCODE_GOOD */
    292. 

  292. UA_StatusCode
    293. 

  293. signActivateSessionRequest(UA_SecureChannel *channel,
    294. 

  294.                            UA_ActivateSessionRequest *request) {
    295. 

  295.     if(channel == NULL || request == NULL)
    296. 

  296.         return UA_STATUSCODE_BADINTERNALERROR;
    297. 

  297. 

  298.     if(channel->securityMode != UA_MESSAGESECURITYMODE_SIGN &&
    299. 

  299.        channel->securityMode != UA_MESSAGESECURITYMODE_SIGNANDENCRYPT)
    300. 

  300.         return UA_STATUSCODE_GOOD;
    301. 

  301. 

  302.     const UA_SecurityPolicy *const securityPolicy = channel->securityPolicy;
    303. 

  303.     UA_SignatureData *signatureData = &request->clientSignature;
    304. 

  304. 

  305.     /* Prepare the signature */
    306. 

  306.     size_t signatureSize = securityPolicy->certificateSigningAlgorithm.
    307. 

  307.                            getLocalSignatureSize(securityPolicy, channel->channelContext);
    308. 

  308.     UA_StatusCode retval = UA_String_copy(&securityPolicy->certificateSigningAlgorithm.uri,
    309. 

  309.                                           &signatureData->algorithm);
    310. 

  310.     if(retval != UA_STATUSCODE_GOOD)
    311. 

  311.         return retval;
    312. 

  312. 

  313.     retval = UA_ByteString_allocBuffer(&signatureData->signature, signatureSize);
    314. 

  314.     if(retval != UA_STATUSCODE_GOOD)
    315. 

  315.         return retval;
    316. 

  316. 

  317.     /* Allocate a temporary buffer */
    318. 

  318.     size_t dataToSignSize = channel->remoteCertificate.length + channel->remoteNonce.length;
    319. 

  319.     /* Prevent stack-smashing. TODO: Compute MaxSenderCertificateSize */
    320. 

  320.     if(dataToSignSize > MAX_DATA_SIZE)
    321. 

  321.         return UA_STATUSCODE_BADINTERNALERROR;
    322. 

  322. 

  323.     UA_ByteString dataToSign;
    324. 

  324.     retval = UA_ByteString_allocBuffer(&dataToSign, dataToSignSize);
    325. 

  325.     if(retval != UA_STATUSCODE_GOOD)
    326. 

  326.         return retval; /* signatureData->signature is cleaned up with the response */
    327. 

  327. 

  328.     /* Sign the signature */
    329. 

  329.     memcpy(dataToSign.data, channel->remoteCertificate.data, channel->remoteCertificate.length);
    330. 

  330.     memcpy(dataToSign.data + channel->remoteCertificate.length,
    331. 

  331.            channel->remoteNonce.data, channel->remoteNonce.length);
    332. 

  332.     retval = securityPolicy->certificateSigningAlgorithm.
    333. 

  333.              sign(securityPolicy, channel->channelContext, &dataToSign,
    334. 

  334.                   &signatureData->signature);
    335. 

  335. 

  336.     /* Clean up */
    337. 

  337.     UA_ByteString_deleteMembers(&dataToSign);
    338. 

  338.     return retval;
    339. 

  339. }
    340. 

  340. 

  341. static UA_StatusCode
    342. 

  342. activateSession(UA_Client *client) {
    343. 

  343.     UA_ActivateSessionRequest request;
    344. 

  344.     UA_ActivateSessionRequest_init(&request);
    345. 

  345.     request.requestHeader.requestHandle = ++client->requestHandle;
    346. 

  346.     request.requestHeader.timestamp = UA_DateTime_now();
    347. 

  347.     request.requestHeader.timeoutHint = 600000;
    348. 

  348. 

  349.     //manual ExtensionObject encoding of the identityToken
    350. 

  350.     if(client->authenticationMethod == UA_CLIENTAUTHENTICATION_NONE) {
    351. 

  351.         UA_AnonymousIdentityToken* identityToken = UA_AnonymousIdentityToken_new();
    352. 

  352.         UA_AnonymousIdentityToken_init(identityToken);
    353. 

  353.         UA_String_copy(&client->token.policyId, &identityToken->policyId);
    354. 

  354.         request.userIdentityToken.encoding = UA_EXTENSIONOBJECT_DECODED;
    355. 

  355.         request.userIdentityToken.content.decoded.type = &UA_TYPES[UA_TYPES_ANONYMOUSIDENTITYTOKEN];
    356. 

  356.         request.userIdentityToken.content.decoded.data = identityToken;
    357. 

  357.     } else {
    358. 

  358.         UA_UserNameIdentityToken* identityToken = UA_UserNameIdentityToken_new();
    359. 

  359.         UA_UserNameIdentityToken_init(identityToken);
    360. 

  360.         UA_String_copy(&client->token.policyId, &identityToken->policyId);
    361. 

  361.         UA_String_copy(&client->username, &identityToken->userName);
    362. 

  362.         UA_String_copy(&client->password, &identityToken->password);
    363. 

  363.         request.userIdentityToken.encoding = UA_EXTENSIONOBJECT_DECODED;
    364. 

  364.         request.userIdentityToken.content.decoded.type = &UA_TYPES[UA_TYPES_USERNAMEIDENTITYTOKEN];
    365. 

  365.         request.userIdentityToken.content.decoded.data = identityToken;
    366. 

  366.     }
    367. 

  367. 

  368.     /* This function call is to prepare a client signature */
    369. 

  369.     if(client->channel.securityMode == UA_MESSAGESECURITYMODE_SIGN ||
    370. 

  370.        client->channel.securityMode == UA_MESSAGESECURITYMODE_SIGNANDENCRYPT) {
    371. 

  371.         signActivateSessionRequest(&client->channel, &request);
    372. 

  372.     }
    373. 

  373. 

  374.     UA_ActivateSessionResponse response;
    375. 

  375.     __UA_Client_Service(client, &request, &UA_TYPES[UA_TYPES_ACTIVATESESSIONREQUEST],
    376. 

  376.                         &response, &UA_TYPES[UA_TYPES_ACTIVATESESSIONRESPONSE]);
    377. 

  377. 

  378.     if(response.responseHeader.serviceResult != UA_STATUSCODE_GOOD) {
    379. 

  379.         UA_LOG_ERROR(&client->config.logger, UA_LOGCATEGORY_CLIENT,
    380. 

  380.                      "ActivateSession failed with error code %s",
    381. 

  381.                      UA_StatusCode_name(response.responseHeader.serviceResult));
    382. 

  382.     }
    383. 

  383. 

  384.     UA_StatusCode retval = response.responseHeader.serviceResult;
    385. 

  385.     UA_ActivateSessionRequest_deleteMembers(&request);
    386. 

  386.     UA_ActivateSessionResponse_deleteMembers(&response);
    387. 

  387.     return retval;
    388. 

  388. }
    389. 

  389. 

  390. /* Gets a list of endpoints. Memory is allocated for endpointDescription array */
    391. 

  391. UA_StatusCode
    392. 

  392. UA_Client_getEndpointsInternal(UA_Client *client, size_t* endpointDescriptionsSize,
    393. 

  393.                                UA_EndpointDescription** endpointDescriptions) {
    394. 

  394.     UA_GetEndpointsRequest request;
    395. 

  395.     UA_GetEndpointsRequest_init(&request);
    396. 

  396.     request.requestHeader.timestamp = UA_DateTime_now();
    397. 

  397.     request.requestHeader.timeoutHint = 10000;
    398. 

  398.     // assume the endpointurl outlives the service call
    399. 

  399.     request.endpointUrl = client->endpointUrl;
    400. 

  400. 

  401.     UA_GetEndpointsResponse response;
    402. 

  402.     __UA_Client_Service(client, &request, &UA_TYPES[UA_TYPES_GETENDPOINTSREQUEST],
    403. 

  403.                         &response, &UA_TYPES[UA_TYPES_GETENDPOINTSRESPONSE]);
    404. 

  404. 

  405.     if(response.responseHeader.serviceResult != UA_STATUSCODE_GOOD) {
    406. 

  406.         UA_StatusCode retval = response.responseHeader.serviceResult;
    407. 

  407.         UA_LOG_ERROR(&client->config.logger, UA_LOGCATEGORY_CLIENT,
    408. 

  408.                      "GetEndpointRequest failed with error code %s",
    409. 

  409.                      UA_StatusCode_name(retval));
    410. 

  410.         UA_GetEndpointsResponse_deleteMembers(&response);
    411. 

  411.         return retval;
    412. 

  412.     }
    413. 

  413.     *endpointDescriptions = response.endpoints;
    414. 

  414.     *endpointDescriptionsSize = response.endpointsSize;
    415. 

  415.     response.endpoints = NULL;
    416. 

  416.     response.endpointsSize = 0;
    417. 

  417.     UA_GetEndpointsResponse_deleteMembers(&response);
    418. 

  418.     return UA_STATUSCODE_GOOD;
    419. 

  419. }
    420. 

  420. 

  421. static UA_StatusCode
    422. 

  422. getEndpoints(UA_Client *client) {
    423. 

  423.     UA_EndpointDescription* endpointArray = NULL;
    424. 

  424.     size_t endpointArraySize = 0;
    425. 

  425.     UA_StatusCode retval =
    426. 

  426.         UA_Client_getEndpointsInternal(client, &endpointArraySize, &endpointArray);
    427. 

  427.     if(retval != UA_STATUSCODE_GOOD)
    428. 

  428.         return retval;
    429. 

  429. 

  430.     UA_Boolean endpointFound = false;
    431. 

  431.     UA_Boolean tokenFound = false;
    432. 

  432.     UA_String securityNone = UA_STRING("http://opcfoundation.org/UA/SecurityPolicy#None");
    433. 

  433.     UA_String binaryTransport = UA_STRING("http://opcfoundation.org/UA-Profile/"
    434. 

  434.                                           "Transport/uatcp-uasc-uabinary");
    435. 

  435. 

  436.     // TODO: compare endpoint information with client->endpointUri
    437. 

  437.     for(size_t i = 0; i < endpointArraySize; ++i) {
    438. 

  438.         UA_EndpointDescription* endpoint = &endpointArray[i];
    439. 

  439.         /* look out for binary transport endpoints */
    440. 

  440.         /* Note: Siemens returns empty ProfileUrl, we will accept it as binary */
    441. 

  441.         if(endpoint->transportProfileUri.length != 0 &&
    442. 

  442.            !UA_String_equal(&endpoint->transportProfileUri, &binaryTransport))
    443. 

  443.             continue;
    444. 

  444. 

  445.         /* look for an endpoint corresponding to the client security policy */
    446. 

  446.         if(!UA_String_equal(&endpoint->securityPolicyUri, &client->securityPolicy.policyUri))
    447. 

  447.             continue;
    448. 

  448. 

  449.         endpointFound = true;
    450. 

  450. 

  451.         /* look for a user token policy with an anonymous token */
    452. 

  452.         for(size_t j = 0; j < endpoint->userIdentityTokensSize; ++j) {
    453. 

  453.             UA_UserTokenPolicy* userToken = &endpoint->userIdentityTokens[j];
    454. 

  454. 

  455.             /* Usertokens also have a security policy... */
    456. 

  456.             if(userToken->securityPolicyUri.length > 0 &&
    457. 

  457.                !UA_String_equal(&userToken->securityPolicyUri, &securityNone))
    458. 

  458.                 continue;
    459. 

  459. 

  460.             /* UA_CLIENTAUTHENTICATION_NONE == UA_USERTOKENTYPE_ANONYMOUS
    461. 

  461.              * UA_CLIENTAUTHENTICATION_USERNAME == UA_USERTOKENTYPE_USERNAME
    462. 

  462.              * TODO: Check equivalence for other types when adding the support */
    463. 

  463.             if((int)client->authenticationMethod != (int)userToken->tokenType)
    464. 

  464.                 continue;
    465. 

  465. 

  466.             /* Endpoint with matching usertokenpolicy found */
    467. 

  467.             tokenFound = true;
    468. 

  468.             UA_UserTokenPolicy_deleteMembers(&client->token);
    469. 

  469.             UA_UserTokenPolicy_copy(userToken, &client->token);
    470. 

  470.             break;
    471. 

  471.         }
    472. 

  472.     }
    473. 

  473. 

  474.     UA_Array_delete(endpointArray, endpointArraySize,
    475. 

  475.                     &UA_TYPES[UA_TYPES_ENDPOINTDESCRIPTION]);
    476. 

  476. 

  477.     if(!endpointFound) {
    478. 

  478.         UA_LOG_ERROR(&client->config.logger, UA_LOGCATEGORY_CLIENT,
    479. 

  479.                      "No suitable endpoint found");
    480. 

  480.         retval = UA_STATUSCODE_BADINTERNALERROR;
    481. 

  481.     } else if(!tokenFound) {
    482. 

  482.         UA_LOG_ERROR(&client->config.logger, UA_LOGCATEGORY_CLIENT,
    483. 

  483.                      "No suitable UserTokenPolicy found for the possible endpoints");
    484. 

  484.         retval = UA_STATUSCODE_BADINTERNALERROR;
    485. 

  485.     }
    486. 

  486.     return retval;
    487. 

  487. }
    488. 

  488. 

  489. static UA_StatusCode
    490. 

  490. createSession(UA_Client *client) {
    491. 

  491.     UA_CreateSessionRequest request;
    492. 

  492.     UA_CreateSessionRequest_init(&request);
    493. 

  493.     UA_StatusCode retval = UA_STATUSCODE_GOOD;
    494. 

  494. 

  495.     if(client->channel.securityMode == UA_MESSAGESECURITYMODE_SIGN ||
    496. 

  496.        client->channel.securityMode == UA_MESSAGESECURITYMODE_SIGNANDENCRYPT) {
    497. 

  497.         if(client->channel.localNonce.length != UA_SESSION_LOCALNONCELENGTH) {
    498. 

  498.            UA_ByteString_deleteMembers(&client->channel.localNonce);
    499. 

  499.             retval = UA_ByteString_allocBuffer(&client->channel.localNonce,
    500. 

  500.                                                UA_SESSION_LOCALNONCELENGTH);
    501. 

  501.             if(retval != UA_STATUSCODE_GOOD)
    502. 

  502.                return retval;
    503. 

  503.         }
    504. 

  504. 

  505.         retval = client->channel.securityPolicy->symmetricModule.
    506. 

  506.                  generateNonce(client->channel.securityPolicy, &client->channel.localNonce);
    507. 

  507.         if(retval != UA_STATUSCODE_GOOD)
    508. 

  508.             return retval;
    509. 

  509.     }
    510. 

  510. 

  511.     request.requestHeader.timestamp = UA_DateTime_now();
    512. 

  512.     request.requestHeader.timeoutHint = 10000;
    513. 

  513.     UA_ByteString_copy(&client->channel.localNonce, &request.clientNonce);
    514. 

  514.     request.requestedSessionTimeout = client->config.requestedSessionTimeout;
    515. 

  515.     request.maxResponseMessageSize = UA_INT32_MAX;
    516. 

  516.     UA_String_copy(&client->endpointUrl, &request.endpointUrl);
    517. 

  517. 

  518.     if(client->channel.securityMode == UA_MESSAGESECURITYMODE_SIGN ||
    519. 

  519.        client->channel.securityMode == UA_MESSAGESECURITYMODE_SIGNANDENCRYPT) {
    520. 

  520.         UA_ByteString_copy(&client->channel.securityPolicy->localCertificate,
    521. 

  521.                            &request.clientCertificate);
    522. 

  522.     }
    523. 

  523. 

  524.     UA_CreateSessionResponse response;
    525. 

  525.     __UA_Client_Service(client, &request, &UA_TYPES[UA_TYPES_CREATESESSIONREQUEST],
    526. 

  526.                         &response, &UA_TYPES[UA_TYPES_CREATESESSIONRESPONSE]);
    527. 

  527. 

  528.     if(response.responseHeader.serviceResult == UA_STATUSCODE_GOOD &&
    529. 

  529.         (client->channel.securityMode == UA_MESSAGESECURITYMODE_SIGN ||
    530. 

  530.          client->channel.securityMode == UA_MESSAGESECURITYMODE_SIGNANDENCRYPT)) {
    531. 

  531.         UA_ByteString_deleteMembers(&client->channel.remoteNonce);
    532. 

  532.         UA_ByteString_copy(&response.serverNonce, &client->channel.remoteNonce);
    533. 

  533. 

  534.         if(!UA_ByteString_equal(&response.serverCertificate,
    535. 

  535.                                 &client->channel.remoteCertificate)) {
    536. 

  536.             return UA_STATUSCODE_BADCERTIFICATEINVALID;
    537. 

  537.         }
    538. 

  538. 

  539.         /* Verify the client signature */
    540. 

  540.         retval = checkClientSignature(&client->channel, &response);
    541. 

  541.         if(retval != UA_STATUSCODE_GOOD)
    542. 

  542.             return retval;
    543. 

  543.     }
    544. 

  544. 

  545.     UA_NodeId_copy(&response.authenticationToken, &client->authenticationToken);
    546. 

  546. 

  547.     retval = response.responseHeader.serviceResult;
    548. 

  548.     UA_CreateSessionRequest_deleteMembers(&request);
    549. 

  549.     UA_CreateSessionResponse_deleteMembers(&response);
    550. 

  550.     return retval;
    551. 

  551. }
    552. 

  552. 

  553. UA_StatusCode
    554. 

  554. UA_Client_connectInternal(UA_Client *client, const char *endpointUrl,
    555. 

  555.                           UA_Boolean endpointsHandshake, UA_Boolean createNewSession) {
    556. 

  556.     if(client->state >= UA_CLIENTSTATE_CONNECTED)
    557. 

  557.         return UA_STATUSCODE_GOOD;
    558. 

  558.     UA_ChannelSecurityToken_init(&client->channel.securityToken);
    559. 

  559.     client->channel.state = UA_SECURECHANNELSTATE_FRESH;
    560. 

  560.     client->channel.sendSequenceNumber = 0;
    561. 

  561.     client->requestId = 0;
    562. 

  562. 

  563.     UA_StatusCode retval = UA_STATUSCODE_GOOD;
    564. 

  564.     client->connection =
    565. 

  565.         client->config.connectionFunc(client->config.localConnectionConfig,
    566. 

  566.                                       UA_STRING((char*)(uintptr_t)endpointUrl),
    567. 

  567.                                       client->config.timeout, &client->config.logger);
    568. 

  568.     if(client->connection.state != UA_CONNECTION_OPENING) {
    569. 

  569.         retval = UA_STATUSCODE_BADCONNECTIONCLOSED;
    570. 

  570.         goto cleanup;
    571. 

  571.     }
    572. 

  572. 

  573.     UA_String_deleteMembers(&client->endpointUrl);
    574. 

  574.     client->endpointUrl = UA_STRING_ALLOC(endpointUrl);
    575. 

  575.     if(!client->endpointUrl.data) {
    576. 

  576.         retval = UA_STATUSCODE_BADOUTOFMEMORY;
    577. 

  577.         goto cleanup;
    578. 

  578.     }
    579. 

  579. 

  580.     /* Set the channel SecurityMode if not done so far */
    581. 

  581.     if(client->channel.securityMode == UA_MESSAGESECURITYMODE_INVALID)
    582. 

  582.         client->channel.securityMode = UA_MESSAGESECURITYMODE_NONE;
    583. 

  583. 

  584.     /* Set the channel SecurityPolicy if not done so far */
    585. 

  585.     if(!client->channel.securityPolicy) {
    586. 

  586.         UA_ByteString remoteCertificate = UA_BYTESTRING_NULL;
    587. 

  587.         retval = UA_SecureChannel_setSecurityPolicy(&client->channel,
    588. 

  588.                                                     &client->securityPolicy,
    589. 

  589.                                                     &remoteCertificate);
    590. 

  590.         if(retval != UA_STATUSCODE_GOOD)
    591. 

  591.             return retval;
    592. 

  592.     }
    593. 

  593. 

  594.     /* Local nonce set and generate sym keys */
    595. 

  595.     retval = UA_SecureChannel_generateLocalNonce(&client->channel);
    596. 

  596.     if(retval != UA_STATUSCODE_GOOD)
    597. 

  597.         return retval;
    598. 

  598. 

  599.     /* Open a TCP connection */
    600. 

  600.     client->connection.config = client->config.localConnectionConfig;
    601. 

  601.     retval = HelAckHandshake(client);
    602. 

  602.     if(retval != UA_STATUSCODE_GOOD)
    603. 

  603.         goto cleanup;
    604. 

  604.     setClientState(client, UA_CLIENTSTATE_CONNECTED);
    605. 

  605. 

  606.     /* Open a SecureChannel. TODO: Select with endpoint  */
    607. 

  607.     client->channel.connection = &client->connection;
    608. 

  608.     retval = openSecureChannel(client, false);
    609. 

  609.     if(retval != UA_STATUSCODE_GOOD)
    610. 

  610.         goto cleanup;
    611. 

  611.     setClientState(client, UA_CLIENTSTATE_SECURECHANNEL);
    612. 

  612. 

  613.     /* Delete async service. TODO: Move this from connect to the disconnect/cleanup phase */
    614. 

  614.     UA_Client_AsyncService_removeAll(client, UA_STATUSCODE_BADSHUTDOWN);
    615. 

  615. 

  616. #ifdef UA_ENABLE_SUBSCRIPTIONS
    617. 

  617.     client->currentlyOutStandingPublishRequests = 0;
    618. 

  618. #endif
    619. 

  619. 

  620. // TODO: actually, reactivate an existing session is working, but currently republish is not implemented
    621. 

  621. // This option is disabled until we have a good implementation of the subscription recovery.
    622. 

  622. 

  623. #ifdef UA_SESSION_RECOVERY
    624. 

  624.     /* Try to activate an existing Session for this SecureChannel */
    625. 

  625.     if((!UA_NodeId_equal(&client->authenticationToken, &UA_NODEID_NULL)) && (createNewSession)) {
    626. 

  626.         retval = activateSession(client);
    627. 

  627.         if(retval == UA_STATUSCODE_BADSESSIONIDINVALID) {
    628. 

  628.             /* Could not recover an old session. Remove authenticationToken */
    629. 

  629.             UA_NodeId_deleteMembers(&client->authenticationToken);
    630. 

  630.         } else {
    631. 

  631.             if(retval != UA_STATUSCODE_GOOD)
    632. 

  632.                 goto cleanup;
    633. 

  633.             setClientState(client, UA_CLIENTSTATE_SESSION_RENEWED);
    634. 

  634.             return retval;
    635. 

  635.         }
    636. 

  636.     } else {
    637. 

  637.         UA_NodeId_deleteMembers(&client->authenticationToken);
    638. 

  638.     }
    639. 

  639. #else
    640. 

  640.     UA_NodeId_deleteMembers(&client->authenticationToken);
    641. 

  641. #endif /* UA_SESSION_RECOVERY */
    642. 

  642. 

  643.     /* Generate new local and remote key */
    644. 

  644.     retval = UA_SecureChannel_generateNewKeys(&client->channel);
    645. 

  645.     if(retval != UA_STATUSCODE_GOOD)
    646. 

  646.         return retval;
    647. 

  647. 

  648.     /* Get Endpoints */
    649. 

  649.     if(endpointsHandshake) {
    650. 

  650.         retval = getEndpoints(client);
    651. 

  651.         if(retval != UA_STATUSCODE_GOOD)
    652. 

  652.             goto cleanup;
    653. 

  653.     }
    654. 

  654. 

  655.     /* Create the Session for this SecureChannel */
    656. 

  656.     if(createNewSession) {
    657. 

  657.         retval = createSession(client);
    658. 

  658.         if(retval != UA_STATUSCODE_GOOD)
    659. 

  659.             goto cleanup;
    660. 

  660. #ifdef UA_ENABLE_SUBSCRIPTIONS
    661. 

  661.         /* A new session has been created. We need to clean up the subscriptions */
    662. 

  662.         UA_Client_Subscriptions_clean(client);
    663. 

  663. #endif
    664. 

  664.         retval = activateSession(client);
    665. 

  665.         if(retval != UA_STATUSCODE_GOOD)
    666. 

  666.             goto cleanup;
    667. 

  667.         setClientState(client, UA_CLIENTSTATE_SESSION);
    668. 

  668.     }
    669. 

  669. 

  670.     return retval;
    671. 

  671. 

  672. cleanup:
    673. 

  673.     UA_Client_disconnect(client);
    674. 

  674.     return retval;
    675. 

  675. }
    676. 

  676. 

  677. UA_StatusCode
    678. 

  678. UA_Client_connect(UA_Client *client, const char *endpointUrl) {
    679. 

  679.     return UA_Client_connectInternal(client, endpointUrl, true, true);
    680. 

  680. }
    681. 

  681. 

  682. UA_StatusCode
    683. 

  683. UA_Client_connect_noSession(UA_Client *client, const char *endpointUrl) {
    684. 

  684.     return UA_Client_connectInternal(client, endpointUrl, true, false);
    685. 

  685. }
    686. 

  686. 

  687. UA_StatusCode
    688. 

  688. UA_Client_connect_username(UA_Client *client, const char *endpointUrl,
    689. 

  689.                            const char *username, const char *password) {
    690. 

  690.     client->authenticationMethod = UA_CLIENTAUTHENTICATION_USERNAME;
    691. 

  691.     client->username = UA_STRING_ALLOC(username);
    692. 

  692.     client->password = UA_STRING_ALLOC(password);
    693. 

  693.     return UA_Client_connect(client, endpointUrl);
    694. 

  694. }
    695. 

  695. 

  696. /************************/
    697. 

  697. /* Close the Connection */
    698. 

  698. /************************/
    699. 

  699. 

  700. static void
    701. 

  701. sendCloseSession(UA_Client *client) {
    702. 

  702.     UA_CloseSessionRequest request;
    703. 

  703.     UA_CloseSessionRequest_init(&request);
    704. 

  704. 

  705.     request.requestHeader.timestamp = UA_DateTime_now();
    706. 

  706.     request.requestHeader.timeoutHint = 10000;
    707. 

  707.     request.deleteSubscriptions = true;
    708. 

  708.     UA_CloseSessionResponse response;
    709. 

  709.     __UA_Client_Service(client, &request, &UA_TYPES[UA_TYPES_CLOSESESSIONREQUEST],
    710. 

  710.                         &response, &UA_TYPES[UA_TYPES_CLOSESESSIONRESPONSE]);
    711. 

  711.     UA_CloseSessionRequest_deleteMembers(&request);
    712. 

  712.     UA_CloseSessionResponse_deleteMembers(&response);
    713. 

  713. }
    714. 

  714. 

  715. static void
    716. 

  716. sendCloseSecureChannel(UA_Client *client) {
    717. 

  717.     UA_SecureChannel *channel = &client->channel;
    718. 

  718.     UA_CloseSecureChannelRequest request;
    719. 

  719.     UA_CloseSecureChannelRequest_init(&request);
    720. 

  720.     request.requestHeader.requestHandle = ++client->requestHandle;
    721. 

  721.     request.requestHeader.timestamp = UA_DateTime_now();
    722. 

  722.     request.requestHeader.timeoutHint = 10000;
    723. 

  723.     request.requestHeader.authenticationToken = client->authenticationToken;
    724. 

  724.     UA_SecureChannel_sendSymmetricMessage(channel, ++client->requestId,
    725. 

  725.                                           UA_MESSAGETYPE_CLO, &request,
    726. 

  726.                                           &UA_TYPES[UA_TYPES_CLOSESECURECHANNELREQUEST]);
    727. 

  727.     UA_CloseSecureChannelRequest_deleteMembers(&request);
    728. 

  728.     UA_SecureChannel_close(&client->channel);
    729. 

  729.     UA_SecureChannel_deleteMembers(&client->channel);
    730. 

  730. }
    731. 

  731. 

  732. UA_StatusCode
    733. 

  733. UA_Client_disconnect(UA_Client *client) {
    734. 

  734.     /* Is a session established? */
    735. 

  735.     if(client->state >= UA_CLIENTSTATE_SESSION) {
    736. 

  736.         client->state = UA_CLIENTSTATE_SECURECHANNEL;
    737. 

  737.         sendCloseSession(client);
    738. 

  738.     }
    739. 

  739.     UA_NodeId_deleteMembers(&client->authenticationToken);
    740. 

  740.     client->requestHandle = 0;
    741. 

  741. 

  742.     /* Is a secure channel established? */
    743. 

  743.     if(client->state >= UA_CLIENTSTATE_SECURECHANNEL) {
    744. 

  744.         client->state = UA_CLIENTSTATE_CONNECTED;
    745. 

  745.         sendCloseSecureChannel(client);
    746. 

  746.     }
    747. 

  747. 

  748.     /* Close the TCP connection */
    749. 

  749.     if(client->connection.state != UA_CONNECTION_CLOSED
    750. 

  750.             && client->connection.state != UA_CONNECTION_OPENING)
    751. 

  751.         /*UA_ClientConnectionTCP_init sets initial state to opening */
    752. 

  752.         if(client->connection.close != NULL)
    753. 

  753.             client->connection.close(&client->connection);
    754. 

  754. 

  755. 

  756. #ifdef UA_ENABLE_SUBSCRIPTIONS
    757. 

  757. // TODO REMOVE WHEN UA_SESSION_RECOVERY IS READY
    758. 

  758.     /* We need to clean up the subscriptions */
    759. 

  759.     UA_Client_Subscriptions_clean(client);
    760. 

  760. #endif
    761. 

  761. 

  762.     setClientState(client, UA_CLIENTSTATE_DISCONNECTED);
    763. 

  763.     return UA_STATUSCODE_GOOD;
    764. 

  764. }
    765. 

  765.