ua_server_binary.c 19 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446
  1. #include "ua_util.h"
  2. #include "ua_server_internal.h"
  3. #include "ua_types_encoding_binary.h"
  4. #include "ua_transport_generated.h"
  5. #include "ua_services.h"
  6. #include "ua_statuscodes.h"
  7. #include "ua_securechannel_manager.h"
  8. #include "ua_session_manager.h"
  9. #include "ua_nodeids.h"
  10. /** Max size of messages that are allocated on the stack */
  11. #define MAX_STACK_MESSAGE 65536
  12. static void processHEL(UA_Connection *connection, const UA_ByteString *msg, size_t *pos) {
  13. UA_TcpHelloMessage helloMessage;
  14. if(UA_TcpHelloMessage_decodeBinary(msg, pos, &helloMessage) != UA_STATUSCODE_GOOD) {
  15. connection->close(connection);
  16. return;
  17. }
  18. connection->remoteConf.maxChunkCount = helloMessage.maxChunkCount;
  19. connection->remoteConf.maxMessageSize = helloMessage.maxMessageSize;
  20. connection->remoteConf.protocolVersion = helloMessage.protocolVersion;
  21. connection->remoteConf.recvBufferSize = helloMessage.receiveBufferSize;
  22. if(connection->localConf.sendBufferSize > helloMessage.receiveBufferSize)
  23. connection->localConf.sendBufferSize = helloMessage.receiveBufferSize;
  24. if(connection->localConf.recvBufferSize > helloMessage.sendBufferSize)
  25. connection->localConf.recvBufferSize = helloMessage.sendBufferSize;
  26. connection->remoteConf.sendBufferSize = helloMessage.sendBufferSize;
  27. connection->state = UA_CONNECTION_ESTABLISHED;
  28. UA_TcpHelloMessage_deleteMembers(&helloMessage);
  29. // build acknowledge response
  30. UA_TcpAcknowledgeMessage ackMessage;
  31. ackMessage.protocolVersion = connection->localConf.protocolVersion;
  32. ackMessage.receiveBufferSize = connection->localConf.recvBufferSize;
  33. ackMessage.sendBufferSize = connection->localConf.sendBufferSize;
  34. ackMessage.maxMessageSize = connection->localConf.maxMessageSize;
  35. ackMessage.maxChunkCount = connection->localConf.maxChunkCount;
  36. UA_TcpMessageHeader ackHeader;
  37. ackHeader.messageTypeAndFinal = UA_MESSAGETYPEANDFINAL_ACKF;
  38. ackHeader.messageSize = UA_TcpMessageHeader_calcSizeBinary(&ackHeader)
  39. + UA_TcpAcknowledgeMessage_calcSizeBinary(&ackMessage);
  40. UA_ByteString ack_msg;
  41. if(connection->getBuffer(connection, &ack_msg, ackHeader.messageSize) != UA_STATUSCODE_GOOD)
  42. return;
  43. size_t tmpPos = 0;
  44. UA_TcpMessageHeader_encodeBinary(&ackHeader, &ack_msg, &tmpPos);
  45. UA_TcpAcknowledgeMessage_encodeBinary(&ackMessage, &ack_msg, &tmpPos);
  46. connection->write(connection, &ack_msg);
  47. connection->releaseBuffer(connection, &ack_msg);
  48. }
  49. static void processOPN(UA_Connection *connection, UA_Server *server, const UA_ByteString *msg,
  50. size_t *pos) {
  51. if(connection->state != UA_CONNECTION_ESTABLISHED) {
  52. connection->close(connection);
  53. return;
  54. }
  55. UA_UInt32 secureChannelId;
  56. UA_StatusCode retval = UA_UInt32_decodeBinary(msg, pos, &secureChannelId);
  57. UA_AsymmetricAlgorithmSecurityHeader asymHeader;
  58. retval |= UA_AsymmetricAlgorithmSecurityHeader_decodeBinary(msg, pos, &asymHeader);
  59. UA_SequenceHeader seqHeader;
  60. retval |= UA_SequenceHeader_decodeBinary(msg, pos, &seqHeader);
  61. UA_NodeId requestType;
  62. retval |= UA_NodeId_decodeBinary(msg, pos, &requestType);
  63. UA_OpenSecureChannelRequest r;
  64. retval |= UA_OpenSecureChannelRequest_decodeBinary(msg, pos, &r);
  65. if(retval != UA_STATUSCODE_GOOD || requestType.identifier.numeric != 446) {
  66. UA_AsymmetricAlgorithmSecurityHeader_deleteMembers(&asymHeader);
  67. UA_SequenceHeader_deleteMembers(&seqHeader);
  68. UA_NodeId_deleteMembers(&requestType);
  69. UA_OpenSecureChannelRequest_deleteMembers(&r);
  70. connection->close(connection);
  71. return;
  72. }
  73. UA_OpenSecureChannelResponse p;
  74. UA_OpenSecureChannelResponse_init(&p);
  75. Service_OpenSecureChannel(server, connection, &r, &p);
  76. UA_OpenSecureChannelRequest_deleteMembers(&r);
  77. UA_SecureConversationMessageHeader respHeader;
  78. respHeader.messageHeader.messageTypeAndFinal = UA_MESSAGETYPEANDFINAL_OPNF;
  79. respHeader.messageHeader.messageSize = 0;
  80. respHeader.secureChannelId = p.securityToken.channelId;
  81. UA_NodeId responseType = UA_NODEID_NUMERIC(0, UA_NS0ID_OPENSECURECHANNELRESPONSE +
  82. UA_ENCODINGOFFSET_BINARY);
  83. respHeader.messageHeader.messageSize =
  84. UA_SecureConversationMessageHeader_calcSizeBinary(&respHeader)
  85. + UA_AsymmetricAlgorithmSecurityHeader_calcSizeBinary(&asymHeader)
  86. + UA_SequenceHeader_calcSizeBinary(&seqHeader)
  87. + UA_NodeId_calcSizeBinary(&responseType)
  88. + UA_OpenSecureChannelResponse_calcSizeBinary(&p);
  89. UA_ByteString resp_msg;
  90. retval = connection->getBuffer(connection, &resp_msg, respHeader.messageHeader.messageSize);
  91. if(retval != UA_STATUSCODE_GOOD) {
  92. UA_OpenSecureChannelResponse_deleteMembers(&p);
  93. UA_AsymmetricAlgorithmSecurityHeader_deleteMembers(&asymHeader);
  94. return;
  95. }
  96. size_t tmpPos = 0;
  97. UA_SecureConversationMessageHeader_encodeBinary(&respHeader, &resp_msg, &tmpPos);
  98. UA_AsymmetricAlgorithmSecurityHeader_encodeBinary(&asymHeader, &resp_msg, &tmpPos); // just mirror back
  99. UA_SequenceHeader_encodeBinary(&seqHeader, &resp_msg, &tmpPos); // just mirror back
  100. UA_NodeId_encodeBinary(&responseType, &resp_msg, &tmpPos);
  101. UA_OpenSecureChannelResponse_encodeBinary(&p, &resp_msg, &tmpPos);
  102. UA_OpenSecureChannelResponse_deleteMembers(&p);
  103. UA_AsymmetricAlgorithmSecurityHeader_deleteMembers(&asymHeader);
  104. connection->write(connection, &resp_msg);
  105. connection->releaseBuffer(connection, &resp_msg);
  106. }
  107. static void init_response_header(const UA_RequestHeader *p, UA_ResponseHeader *r) {
  108. r->requestHandle = p->requestHandle;
  109. r->stringTableSize = 0;
  110. r->timestamp = UA_DateTime_now();
  111. }
  112. /* The request/response are casted to the header (first element of their struct) */
  113. static void invoke_service(UA_Server *server, UA_SecureChannel *channel,
  114. UA_RequestHeader *request, UA_ResponseHeader *response,
  115. void (*service)(UA_Server*, UA_Session*, void*, void*)) {
  116. init_response_header(request, response);
  117. /* try to get the session from the securechannel first */
  118. UA_Session *session = UA_SecureChannel_getSession(channel, &request->authenticationToken);
  119. if(!session)
  120. session = UA_SessionManager_getSession(&server->sessionManager, &request->authenticationToken);
  121. if(!session)
  122. response->serviceResult = UA_STATUSCODE_BADSESSIONIDINVALID;
  123. else if(session->activated == UA_FALSE) {
  124. response->serviceResult = UA_STATUSCODE_BADSESSIONNOTACTIVATED;
  125. /* the session is invalidated */
  126. UA_SessionManager_removeSession(&server->sessionManager, &request->authenticationToken);
  127. }
  128. else if(session->channel != channel)
  129. response->serviceResult = UA_STATUSCODE_BADSESSIONIDINVALID;
  130. else {
  131. UA_Session_updateLifetime(session);
  132. service(server, session, request, response);
  133. }
  134. }
  135. #define INVOKE_SERVICE(TYPE) do { \
  136. UA_##TYPE##Request p; \
  137. UA_##TYPE##Response r; \
  138. if(UA_##TYPE##Request_decodeBinary(msg, pos, &p)) \
  139. return; \
  140. UA_##TYPE##Response_init(&r); \
  141. invoke_service(server, clientChannel, &p.requestHeader, \
  142. &r.responseHeader, \
  143. (void (*)(UA_Server*, UA_Session*, void*,void*))Service_##TYPE); \
  144. UA_##TYPE##Request_deleteMembers(&p); \
  145. retval = connection->getBuffer(connection, &message, \
  146. headerSize + UA_##TYPE##Response_calcSizeBinary(&r)); \
  147. if(retval != UA_STATUSCODE_GOOD) { \
  148. UA_##TYPE##Response_deleteMembers(&r); \
  149. return; \
  150. } \
  151. UA_##TYPE##Response_encodeBinary(&r, &message, &messagePos); \
  152. UA_##TYPE##Response_deleteMembers(&r); \
  153. } while(0)
  154. static void processMSG(UA_Connection *connection, UA_Server *server, const UA_ByteString *msg, size_t *pos) {
  155. // 1) Read in the securechannel
  156. UA_UInt32 secureChannelId;
  157. UA_StatusCode retval = UA_UInt32_decodeBinary(msg, pos, &secureChannelId);
  158. if(retval != UA_STATUSCODE_GOOD)
  159. return;
  160. UA_SecureChannel *clientChannel = connection->channel;
  161. #ifdef EXTENSION_STATELESS
  162. UA_SecureChannel anonymousChannel;
  163. if(!clientChannel) {
  164. UA_SecureChannel_init(&anonymousChannel);
  165. anonymousChannel.session = &anonymousSession;
  166. clientChannel = &anonymousChannel;
  167. }
  168. #endif
  169. // 2) Read the security header
  170. UA_UInt32 tokenId;
  171. UA_SequenceHeader sequenceHeader;
  172. retval = UA_UInt32_decodeBinary(msg, pos, &tokenId);
  173. retval |= UA_SequenceHeader_decodeBinary(msg, pos, &sequenceHeader);
  174. if(retval != UA_STATUSCODE_GOOD)
  175. return;
  176. //UA_SecureChannel_checkSequenceNumber(channel,sequenceHeader.sequenceNumber);
  177. //UA_SecureChannel_checkRequestId(channel,sequenceHeader.requestId);
  178. clientChannel->sequenceNumber = sequenceHeader.sequenceNumber;
  179. clientChannel->requestId = sequenceHeader.requestId;
  180. // 3) Build the header and compute the header size
  181. UA_SecureConversationMessageHeader respHeader;
  182. respHeader.messageHeader.messageTypeAndFinal = UA_MESSAGETYPEANDFINAL_MSGF;
  183. respHeader.messageHeader.messageSize = 0;
  184. respHeader.secureChannelId = clientChannel->securityToken.channelId;
  185. UA_SymmetricAlgorithmSecurityHeader symSecHeader;
  186. symSecHeader.tokenId = clientChannel->securityToken.tokenId;
  187. UA_SequenceHeader seqHeader;
  188. seqHeader.sequenceNumber = clientChannel->sequenceNumber;
  189. seqHeader.requestId = clientChannel->requestId;
  190. // 4) process the request
  191. UA_ByteString message;
  192. UA_NodeId requestType;
  193. if(UA_NodeId_decodeBinary(msg, pos, &requestType))
  194. return;
  195. if(requestType.identifierType != UA_NODEIDTYPE_NUMERIC) {
  196. UA_NodeId_deleteMembers(&requestType);
  197. return;
  198. }
  199. UA_NodeId response_nodeid = UA_NODEID_NUMERIC(0, requestType.identifier.numeric + 3);
  200. UA_UInt32 headerSize = UA_SecureConversationMessageHeader_calcSizeBinary(&respHeader)
  201. + UA_SymmetricAlgorithmSecurityHeader_calcSizeBinary(&symSecHeader)
  202. + UA_SequenceHeader_calcSizeBinary(&seqHeader)
  203. + UA_NodeId_calcSizeBinary(&response_nodeid);
  204. size_t messagePos = headerSize;
  205. //subtract UA_ENCODINGOFFSET_BINARY for binary encoding
  206. switch(requestType.identifier.numeric - UA_ENCODINGOFFSET_BINARY) {
  207. case UA_NS0ID_GETENDPOINTSREQUEST: {
  208. UA_GetEndpointsRequest p;
  209. UA_GetEndpointsResponse r;
  210. if(UA_GetEndpointsRequest_decodeBinary(msg, pos, &p))
  211. return;
  212. UA_GetEndpointsResponse_init(&r);
  213. init_response_header(&p.requestHeader, &r.responseHeader);
  214. Service_GetEndpoints(server, &p, &r);
  215. UA_GetEndpointsRequest_deleteMembers(&p);
  216. retval = connection->getBuffer(connection, &message, headerSize + UA_GetEndpointsResponse_calcSizeBinary(&r));
  217. if(retval != UA_STATUSCODE_GOOD) {
  218. UA_GetEndpointsResponse_deleteMembers(&r);
  219. return;
  220. }
  221. UA_GetEndpointsResponse_encodeBinary(&r, &message, &messagePos);
  222. UA_GetEndpointsResponse_deleteMembers(&r);
  223. break;
  224. }
  225. case UA_NS0ID_FINDSERVERSREQUEST: {
  226. UA_FindServersRequest p;
  227. UA_FindServersResponse r;
  228. if(UA_FindServersRequest_decodeBinary(msg, pos, &p))
  229. return;
  230. UA_FindServersResponse_init(&r);
  231. init_response_header(&p.requestHeader, &r.responseHeader);
  232. Service_FindServers(server, &p, &r);
  233. UA_FindServersRequest_deleteMembers(&p);
  234. retval = connection->getBuffer(connection, &message, headerSize + UA_FindServersResponse_calcSizeBinary(&r));
  235. if(retval != UA_STATUSCODE_GOOD) {
  236. UA_FindServersResponse_deleteMembers(&r);
  237. return;
  238. }
  239. UA_FindServersResponse_encodeBinary(&r, &message, &messagePos);
  240. UA_FindServersResponse_deleteMembers(&r);
  241. break;
  242. }
  243. case UA_NS0ID_CREATESESSIONREQUEST: {
  244. UA_CreateSessionRequest p;
  245. UA_CreateSessionResponse r;
  246. if(UA_CreateSessionRequest_decodeBinary(msg, pos, &p))
  247. return;
  248. UA_CreateSessionResponse_init(&r);
  249. init_response_header(&p.requestHeader, &r.responseHeader);
  250. Service_CreateSession(server, clientChannel, &p, &r);
  251. UA_CreateSessionRequest_deleteMembers(&p);
  252. retval = connection->getBuffer(connection, &message, headerSize + UA_CreateSessionResponse_calcSizeBinary(&r));
  253. if(retval != UA_STATUSCODE_GOOD) {
  254. UA_CreateSessionResponse_deleteMembers(&r);
  255. return;
  256. }
  257. UA_CreateSessionResponse_encodeBinary(&r, &message, &messagePos);
  258. UA_CreateSessionResponse_deleteMembers(&r);
  259. break;
  260. }
  261. case UA_NS0ID_ACTIVATESESSIONREQUEST: {
  262. UA_ActivateSessionRequest p;
  263. UA_ActivateSessionResponse r;
  264. if(UA_ActivateSessionRequest_decodeBinary(msg, pos, &p))
  265. return;
  266. UA_ActivateSessionResponse_init(&r);
  267. init_response_header(&p.requestHeader, &r.responseHeader);
  268. Service_ActivateSession(server, clientChannel, &p, &r);
  269. UA_ActivateSessionRequest_deleteMembers(&p);
  270. retval = connection->getBuffer(connection, &message, headerSize + UA_ActivateSessionResponse_calcSizeBinary(&r));
  271. if(retval != UA_STATUSCODE_GOOD) {
  272. UA_ActivateSessionResponse_deleteMembers(&r);
  273. return;
  274. }
  275. UA_ActivateSessionResponse_encodeBinary(&r, &message, &messagePos);
  276. UA_ActivateSessionResponse_deleteMembers(&r);
  277. break;
  278. }
  279. case UA_NS0ID_CLOSESESSIONREQUEST:
  280. INVOKE_SERVICE(CloseSession);
  281. break;
  282. case UA_NS0ID_READREQUEST:
  283. INVOKE_SERVICE(Read);
  284. break;
  285. case UA_NS0ID_WRITEREQUEST:
  286. INVOKE_SERVICE(Write);
  287. break;
  288. case UA_NS0ID_BROWSEREQUEST:
  289. INVOKE_SERVICE(Browse);
  290. break;
  291. case UA_NS0ID_BROWSENEXTREQUEST:
  292. INVOKE_SERVICE(BrowseNext);
  293. break;
  294. case UA_NS0ID_ADDREFERENCESREQUEST:
  295. INVOKE_SERVICE(AddReferences);
  296. break;
  297. case UA_NS0ID_REGISTERNODESREQUEST:
  298. INVOKE_SERVICE(RegisterNodes);
  299. break;
  300. case UA_NS0ID_UNREGISTERNODESREQUEST:
  301. INVOKE_SERVICE(UnregisterNodes);
  302. break;
  303. case UA_NS0ID_TRANSLATEBROWSEPATHSTONODEIDSREQUEST:
  304. INVOKE_SERVICE(TranslateBrowsePathsToNodeIds);
  305. break;
  306. default: {
  307. if(requestType.namespaceIndex == 0 && requestType.identifier.numeric==787){
  308. UA_LOG_INFO(server->logger, UA_LOGCATEGORY_COMMUNICATION,
  309. "Client requested a subscription that are not supported, the message will be skipped");
  310. }else{
  311. UA_LOG_INFO(server->logger, UA_LOGCATEGORY_COMMUNICATION, "Unknown request: NodeId(ns=%d, i=%d)",
  312. requestType.namespaceIndex, requestType.identifier.numeric);
  313. }
  314. UA_RequestHeader p;
  315. UA_ResponseHeader r;
  316. if(UA_RequestHeader_decodeBinary(msg, pos, &p) != UA_STATUSCODE_GOOD)
  317. return;
  318. UA_ResponseHeader_init(&r);
  319. init_response_header(&p, &r);
  320. r.serviceResult = UA_STATUSCODE_BADSERVICEUNSUPPORTED;
  321. #ifdef EXTENSION_STATELESS
  322. if(retval != UA_STATUSCODE_GOOD)
  323. r.serviceResult = retval;
  324. #endif
  325. UA_RequestHeader_deleteMembers(&p);
  326. retval = connection->getBuffer(connection, &message, headerSize + UA_ResponseHeader_calcSizeBinary(&r));
  327. if(retval != UA_STATUSCODE_GOOD) {
  328. UA_ResponseHeader_deleteMembers(&r);
  329. return;
  330. }
  331. UA_ResponseHeader_encodeBinary(&r, &message, &messagePos);
  332. UA_ResponseHeader_deleteMembers(&r);
  333. response_nodeid = UA_NODEID_NUMERIC(0, UA_NS0ID_RESPONSEHEADER + UA_ENCODINGOFFSET_BINARY);
  334. break;
  335. }
  336. }
  337. messagePos = 0;
  338. respHeader.messageHeader.messageSize = message.length;
  339. UA_SecureConversationMessageHeader_encodeBinary(&respHeader, &message, &messagePos);
  340. UA_SymmetricAlgorithmSecurityHeader_encodeBinary(&symSecHeader, &message, &messagePos);
  341. UA_SequenceHeader_encodeBinary(&seqHeader, &message, &messagePos);
  342. UA_NodeId_encodeBinary(&response_nodeid, &message, &messagePos);
  343. // todo: sign & encrypt
  344. // 5) Send it over the wire.
  345. connection->write(connection, &message);
  346. connection->releaseBuffer(connection, &message);
  347. }
  348. static void processCLO(UA_Connection *connection, UA_Server *server, const UA_ByteString *msg, size_t *pos) {
  349. UA_UInt32 secureChannelId;
  350. UA_StatusCode retval = UA_UInt32_decodeBinary(msg, pos, &secureChannelId);
  351. if(retval != UA_STATUSCODE_GOOD || !connection->channel ||
  352. connection->channel->securityToken.channelId != secureChannelId)
  353. return;
  354. Service_CloseSecureChannel(server, secureChannelId);
  355. }
  356. void UA_Server_processBinaryMessage(UA_Server *server, UA_Connection *connection, UA_ByteString *msg) {
  357. if(msg->length <= 0)
  358. return;
  359. size_t pos = 0;
  360. UA_TcpMessageHeader tcpMessageHeader;
  361. do {
  362. if(UA_TcpMessageHeader_decodeBinary(msg, &pos, &tcpMessageHeader) != UA_STATUSCODE_GOOD) {
  363. UA_LOG_INFO(server->logger, UA_LOGCATEGORY_COMMUNICATION, "Decoding of message header failed");
  364. connection->close(connection);
  365. break;
  366. }
  367. size_t targetpos = pos - 8 + tcpMessageHeader.messageSize;
  368. switch(tcpMessageHeader.messageTypeAndFinal & 0xffffff) {
  369. case UA_MESSAGETYPEANDFINAL_HELF & 0xffffff:
  370. processHEL(connection, msg, &pos);
  371. break;
  372. case UA_MESSAGETYPEANDFINAL_OPNF & 0xffffff:
  373. processOPN(connection, server, msg, &pos);
  374. break;
  375. case UA_MESSAGETYPEANDFINAL_MSGF & 0xffffff:
  376. #ifdef EXTENSION_STATELESS
  377. processMSG(connection, server, msg, &pos);
  378. break;
  379. #endif
  380. if(connection->state != UA_CONNECTION_ESTABLISHED) {
  381. connection->close(connection);
  382. break;
  383. }
  384. processMSG(connection, server, msg, &pos);
  385. break;
  386. case UA_MESSAGETYPEANDFINAL_CLOF & 0xffffff:
  387. processCLO(connection, server, msg, &pos);
  388. connection->close(connection);
  389. return;
  390. }
  391. UA_TcpMessageHeader_deleteMembers(&tcpMessageHeader);
  392. if(pos != targetpos) {
  393. UA_LOG_INFO(server->logger, UA_LOGCATEGORY_COMMUNICATION,
  394. "The message was not entirely processed, skipping to the end");
  395. pos = targetpos;
  396. }
  397. } while(msg->length > (UA_Int32)pos);
  398. }