/src/open62541/src/server/ua_services.c
Line | Count | Source (jump to first uncovered line) |
1 | | /* This Source Code Form is subject to the terms of the Mozilla Public |
2 | | * License, v. 2.0. If a copy of the MPL was not distributed with this |
3 | | * file, You can obtain one at http://mozilla.org/MPL/2.0/. |
4 | | * |
5 | | * Copyright 2014-2024 (c) Fraunhofer IOSB (Author: Julius Pfrommer) |
6 | | * Copyright 2014-2016 (c) Sten Grüner |
7 | | * Copyright 2014-2015, 2017 (c) Florian Palm |
8 | | * Copyright 2015-2016 (c) Chris Iatrou |
9 | | * Copyright 2015-2016 (c) Oleksiy Vasylyev |
10 | | * Copyright 2016 (c) Joakim L. Gilje |
11 | | * Copyright 2016-2017 (c) Stefan Profanter, fortiss GmbH |
12 | | * Copyright 2016 (c) TorbenD |
13 | | * Copyright 2017 (c) frax2222 |
14 | | * Copyright 2017 (c) Mark Giraud, Fraunhofer IOSB |
15 | | * Copyright 2019 (c) Kalycito Infotech Private Limited |
16 | | * Copyright 2023 (c) Hilscher Gesellschaft für Systemautomation mbH (Author: Phuong Nguyen) |
17 | | */ |
18 | | |
19 | | /* This file contains the service invocation logic that is called from all |
20 | | * communication backends */ |
21 | | |
22 | | #include "ua_server_internal.h" |
23 | | #include "ua_services.h" |
24 | | |
25 | | #ifdef FUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION |
26 | | /* store the authentication token and session ID so we can help fuzzing by |
27 | | * setting these values in the next request automatically */ |
28 | | UA_NodeId unsafe_fuzz_authenticationToken = {0, UA_NODEIDTYPE_NUMERIC, {0}}; |
29 | | #endif |
30 | | |
31 | | /* The counterOffset is the offset of the UA_ServiceCounterDataType for the |
32 | | * service in the UA_ SessionDiagnosticsDataType. */ |
33 | | #ifdef UA_ENABLE_DIAGNOSTICS |
34 | | # define UA_SERVICECOUNTER_OFFSET_NONE(requiresSession) 0, requiresSession |
35 | | # define UA_SERVICECOUNTER_OFFSET(X, requiresSession) \ |
36 | | offsetof(UA_SessionDiagnosticsDataType, X), requiresSession |
37 | | #else |
38 | | # define UA_SERVICECOUNTER_OFFSET_NONE(requiresSession) requiresSession |
39 | | # define UA_SERVICECOUNTER_OFFSET(X, requiresSession) requiresSession |
40 | | #endif |
41 | | |
42 | | static UA_ServiceDescription serviceDescriptions[] = { |
43 | | {UA_NS0ID_GETENDPOINTSREQUEST_ENCODING_DEFAULTBINARY, |
44 | | UA_SERVICECOUNTER_OFFSET_NONE(false), (UA_Service)Service_GetEndpoints, |
45 | | &UA_TYPES[UA_TYPES_GETENDPOINTSREQUEST], &UA_TYPES[UA_TYPES_GETENDPOINTSRESPONSE]}, |
46 | | {UA_NS0ID_FINDSERVERSREQUEST_ENCODING_DEFAULTBINARY, |
47 | | UA_SERVICECOUNTER_OFFSET_NONE(false), (UA_Service)Service_FindServers, |
48 | | &UA_TYPES[UA_TYPES_FINDSERVERSREQUEST], &UA_TYPES[UA_TYPES_FINDSERVERSRESPONSE]}, |
49 | | #ifdef UA_ENABLE_DISCOVERY |
50 | | {UA_NS0ID_REGISTERSERVERREQUEST_ENCODING_DEFAULTBINARY, |
51 | | UA_SERVICECOUNTER_OFFSET_NONE(false), (UA_Service)Service_RegisterServer, |
52 | | &UA_TYPES[UA_TYPES_REGISTERSERVERREQUEST], &UA_TYPES[UA_TYPES_REGISTERSERVERRESPONSE]}, |
53 | | {UA_NS0ID_REGISTERSERVER2REQUEST_ENCODING_DEFAULTBINARY, |
54 | | UA_SERVICECOUNTER_OFFSET_NONE(false), (UA_Service)Service_RegisterServer2, |
55 | | &UA_TYPES[UA_TYPES_REGISTERSERVER2REQUEST], &UA_TYPES[UA_TYPES_REGISTERSERVER2RESPONSE]}, |
56 | | # ifdef UA_ENABLE_DISCOVERY_MULTICAST |
57 | | {UA_NS0ID_FINDSERVERSONNETWORKREQUEST_ENCODING_DEFAULTBINARY, |
58 | | UA_SERVICECOUNTER_OFFSET_NONE(false), (UA_Service)Service_FindServersOnNetwork, |
59 | | &UA_TYPES[UA_TYPES_FINDSERVERSONNETWORKREQUEST], &UA_TYPES[UA_TYPES_FINDSERVERSONNETWORKRESPONSE]}, |
60 | | # endif |
61 | | #endif |
62 | | {UA_NS0ID_CREATESESSIONREQUEST_ENCODING_DEFAULTBINARY, |
63 | | UA_SERVICECOUNTER_OFFSET_NONE(false), (UA_Service)(uintptr_t)Service_CreateSession, |
64 | | &UA_TYPES[UA_TYPES_CREATESESSIONREQUEST], &UA_TYPES[UA_TYPES_CREATESESSIONRESPONSE]}, |
65 | | {UA_NS0ID_ACTIVATESESSIONREQUEST_ENCODING_DEFAULTBINARY, |
66 | | UA_SERVICECOUNTER_OFFSET_NONE(false), (UA_Service)(uintptr_t)Service_ActivateSession, |
67 | | &UA_TYPES[UA_TYPES_ACTIVATESESSIONREQUEST], &UA_TYPES[UA_TYPES_ACTIVATESESSIONRESPONSE]}, |
68 | | {UA_NS0ID_CLOSESESSIONREQUEST_ENCODING_DEFAULTBINARY, |
69 | | UA_SERVICECOUNTER_OFFSET_NONE(true), (UA_Service)(uintptr_t)Service_CloseSession, |
70 | | &UA_TYPES[UA_TYPES_CLOSESESSIONREQUEST], &UA_TYPES[UA_TYPES_CLOSESESSIONRESPONSE]}, |
71 | | {UA_NS0ID_CANCELREQUEST_ENCODING_DEFAULTBINARY, |
72 | | UA_SERVICECOUNTER_OFFSET_NONE(true), (UA_Service)Service_Cancel, |
73 | | &UA_TYPES[UA_TYPES_CANCELREQUEST], &UA_TYPES[UA_TYPES_CANCELRESPONSE]}, |
74 | | {UA_NS0ID_READREQUEST_ENCODING_DEFAULTBINARY, |
75 | | UA_SERVICECOUNTER_OFFSET(readCount, true), (UA_Service)Service_Read, |
76 | | &UA_TYPES[UA_TYPES_READREQUEST], &UA_TYPES[UA_TYPES_READRESPONSE]}, |
77 | | {UA_NS0ID_WRITEREQUEST_ENCODING_DEFAULTBINARY, |
78 | | UA_SERVICECOUNTER_OFFSET(writeCount, true), (UA_Service)Service_Write, |
79 | | &UA_TYPES[UA_TYPES_WRITEREQUEST], &UA_TYPES[UA_TYPES_WRITERESPONSE]}, |
80 | | {UA_NS0ID_BROWSEREQUEST_ENCODING_DEFAULTBINARY, |
81 | | UA_SERVICECOUNTER_OFFSET(browseCount, true), (UA_Service)Service_Browse, |
82 | | &UA_TYPES[UA_TYPES_BROWSEREQUEST], &UA_TYPES[UA_TYPES_BROWSERESPONSE]}, |
83 | | {UA_NS0ID_BROWSENEXTREQUEST_ENCODING_DEFAULTBINARY, |
84 | | UA_SERVICECOUNTER_OFFSET(browseNextCount, true), (UA_Service)Service_BrowseNext, |
85 | | &UA_TYPES[UA_TYPES_BROWSENEXTREQUEST], &UA_TYPES[UA_TYPES_BROWSENEXTRESPONSE]}, |
86 | | {UA_NS0ID_REGISTERNODESREQUEST_ENCODING_DEFAULTBINARY, |
87 | | UA_SERVICECOUNTER_OFFSET(registerNodesCount, true), (UA_Service)Service_RegisterNodes, |
88 | | &UA_TYPES[UA_TYPES_REGISTERNODESREQUEST], &UA_TYPES[UA_TYPES_REGISTERNODESRESPONSE]}, |
89 | | {UA_NS0ID_UNREGISTERNODESREQUEST_ENCODING_DEFAULTBINARY, |
90 | | UA_SERVICECOUNTER_OFFSET(unregisterNodesCount, true), (UA_Service)Service_UnregisterNodes, |
91 | | &UA_TYPES[UA_TYPES_UNREGISTERNODESREQUEST], &UA_TYPES[UA_TYPES_UNREGISTERNODESRESPONSE]}, |
92 | | {UA_NS0ID_TRANSLATEBROWSEPATHSTONODEIDSREQUEST_ENCODING_DEFAULTBINARY, |
93 | | UA_SERVICECOUNTER_OFFSET(translateBrowsePathsToNodeIdsCount, true), (UA_Service)Service_TranslateBrowsePathsToNodeIds, |
94 | | &UA_TYPES[UA_TYPES_TRANSLATEBROWSEPATHSTONODEIDSREQUEST], &UA_TYPES[UA_TYPES_TRANSLATEBROWSEPATHSTONODEIDSRESPONSE]}, |
95 | | #ifdef UA_ENABLE_SUBSCRIPTIONS |
96 | | {UA_NS0ID_CREATESUBSCRIPTIONREQUEST_ENCODING_DEFAULTBINARY, |
97 | | UA_SERVICECOUNTER_OFFSET(createSubscriptionCount, true), (UA_Service)Service_CreateSubscription, |
98 | | &UA_TYPES[UA_TYPES_CREATESUBSCRIPTIONREQUEST], &UA_TYPES[UA_TYPES_CREATESUBSCRIPTIONRESPONSE]}, |
99 | | {UA_NS0ID_PUBLISHREQUEST_ENCODING_DEFAULTBINARY, |
100 | | UA_SERVICECOUNTER_OFFSET(publishCount, true), (UA_Service)Service_Publish, |
101 | | &UA_TYPES[UA_TYPES_PUBLISHREQUEST], &UA_TYPES[UA_TYPES_PUBLISHRESPONSE]}, |
102 | | {UA_NS0ID_REPUBLISHREQUEST_ENCODING_DEFAULTBINARY, |
103 | | UA_SERVICECOUNTER_OFFSET(republishCount, true), (UA_Service)Service_Republish, |
104 | | &UA_TYPES[UA_TYPES_REPUBLISHREQUEST], &UA_TYPES[UA_TYPES_REPUBLISHRESPONSE]}, |
105 | | {UA_NS0ID_MODIFYSUBSCRIPTIONREQUEST_ENCODING_DEFAULTBINARY, |
106 | | UA_SERVICECOUNTER_OFFSET(modifySubscriptionCount, true), (UA_Service)Service_ModifySubscription, |
107 | | &UA_TYPES[UA_TYPES_MODIFYSUBSCRIPTIONREQUEST], &UA_TYPES[UA_TYPES_MODIFYSUBSCRIPTIONRESPONSE]}, |
108 | | {UA_NS0ID_SETPUBLISHINGMODEREQUEST_ENCODING_DEFAULTBINARY, |
109 | | UA_SERVICECOUNTER_OFFSET(setPublishingModeCount, true), (UA_Service)Service_SetPublishingMode, |
110 | | &UA_TYPES[UA_TYPES_SETPUBLISHINGMODEREQUEST], &UA_TYPES[UA_TYPES_SETPUBLISHINGMODERESPONSE]}, |
111 | | {UA_NS0ID_DELETESUBSCRIPTIONSREQUEST_ENCODING_DEFAULTBINARY, |
112 | | UA_SERVICECOUNTER_OFFSET(deleteSubscriptionsCount, true), (UA_Service)Service_DeleteSubscriptions, |
113 | | &UA_TYPES[UA_TYPES_DELETESUBSCRIPTIONSREQUEST], &UA_TYPES[UA_TYPES_DELETESUBSCRIPTIONSRESPONSE]}, |
114 | | {UA_NS0ID_TRANSFERSUBSCRIPTIONSREQUEST_ENCODING_DEFAULTBINARY, |
115 | | UA_SERVICECOUNTER_OFFSET(transferSubscriptionsCount, true), (UA_Service)Service_TransferSubscriptions, |
116 | | &UA_TYPES[UA_TYPES_TRANSFERSUBSCRIPTIONSREQUEST], &UA_TYPES[UA_TYPES_TRANSFERSUBSCRIPTIONSRESPONSE]}, |
117 | | {UA_NS0ID_CREATEMONITOREDITEMSREQUEST_ENCODING_DEFAULTBINARY, |
118 | | UA_SERVICECOUNTER_OFFSET(createMonitoredItemsCount, true), (UA_Service)Service_CreateMonitoredItems, |
119 | | &UA_TYPES[UA_TYPES_CREATEMONITOREDITEMSREQUEST], &UA_TYPES[UA_TYPES_CREATEMONITOREDITEMSRESPONSE]}, |
120 | | {UA_NS0ID_DELETEMONITOREDITEMSREQUEST_ENCODING_DEFAULTBINARY, |
121 | | UA_SERVICECOUNTER_OFFSET(deleteMonitoredItemsCount, true), (UA_Service)Service_DeleteMonitoredItems, |
122 | | &UA_TYPES[UA_TYPES_DELETEMONITOREDITEMSREQUEST], &UA_TYPES[UA_TYPES_DELETEMONITOREDITEMSRESPONSE]}, |
123 | | {UA_NS0ID_MODIFYMONITOREDITEMSREQUEST_ENCODING_DEFAULTBINARY, |
124 | | UA_SERVICECOUNTER_OFFSET(modifyMonitoredItemsCount, true), (UA_Service)Service_ModifyMonitoredItems, |
125 | | &UA_TYPES[UA_TYPES_MODIFYMONITOREDITEMSREQUEST], &UA_TYPES[UA_TYPES_MODIFYMONITOREDITEMSRESPONSE]}, |
126 | | {UA_NS0ID_SETMONITORINGMODEREQUEST_ENCODING_DEFAULTBINARY, |
127 | | UA_SERVICECOUNTER_OFFSET(setMonitoringModeCount, true), (UA_Service)Service_SetMonitoringMode, |
128 | | &UA_TYPES[UA_TYPES_SETMONITORINGMODEREQUEST], &UA_TYPES[UA_TYPES_SETMONITORINGMODERESPONSE]}, |
129 | | {UA_NS0ID_SETTRIGGERINGREQUEST_ENCODING_DEFAULTBINARY, |
130 | | UA_SERVICECOUNTER_OFFSET(setTriggeringCount, true), (UA_Service)Service_SetTriggering, |
131 | | &UA_TYPES[UA_TYPES_SETTRIGGERINGREQUEST], &UA_TYPES[UA_TYPES_SETTRIGGERINGRESPONSE]}, |
132 | | #endif |
133 | | #ifdef UA_ENABLE_HISTORIZING |
134 | | {UA_NS0ID_HISTORYREADREQUEST_ENCODING_DEFAULTBINARY, |
135 | | UA_SERVICECOUNTER_OFFSET(historyReadCount, true), (UA_Service)Service_HistoryRead, |
136 | | &UA_TYPES[UA_TYPES_HISTORYREADREQUEST], &UA_TYPES[UA_TYPES_HISTORYREADRESPONSE]}, |
137 | | {UA_NS0ID_HISTORYUPDATEREQUEST_ENCODING_DEFAULTBINARY, |
138 | | UA_SERVICECOUNTER_OFFSET(historyUpdateCount, true), (UA_Service)Service_HistoryUpdate, |
139 | | &UA_TYPES[UA_TYPES_HISTORYUPDATEREQUEST], &UA_TYPES[UA_TYPES_HISTORYUPDATERESPONSE]}, |
140 | | #endif |
141 | | #ifdef UA_ENABLE_METHODCALLS |
142 | | {UA_NS0ID_CALLREQUEST_ENCODING_DEFAULTBINARY, |
143 | | UA_SERVICECOUNTER_OFFSET(callCount, true), (UA_Service)Service_Call, |
144 | | &UA_TYPES[UA_TYPES_CALLREQUEST], &UA_TYPES[UA_TYPES_CALLRESPONSE]}, |
145 | | #endif |
146 | | #ifdef UA_ENABLE_NODEMANAGEMENT |
147 | | {UA_NS0ID_ADDNODESREQUEST_ENCODING_DEFAULTBINARY, |
148 | | UA_SERVICECOUNTER_OFFSET(addNodesCount, true), (UA_Service)Service_AddNodes, |
149 | | &UA_TYPES[UA_TYPES_ADDNODESREQUEST], &UA_TYPES[UA_TYPES_ADDNODESRESPONSE]}, |
150 | | {UA_NS0ID_ADDREFERENCESREQUEST_ENCODING_DEFAULTBINARY, |
151 | | UA_SERVICECOUNTER_OFFSET(addReferencesCount, true), (UA_Service)Service_AddReferences, |
152 | | &UA_TYPES[UA_TYPES_ADDREFERENCESREQUEST], &UA_TYPES[UA_TYPES_ADDREFERENCESRESPONSE]}, |
153 | | {UA_NS0ID_DELETENODESREQUEST_ENCODING_DEFAULTBINARY, |
154 | | UA_SERVICECOUNTER_OFFSET(deleteNodesCount, true), (UA_Service)Service_DeleteNodes, |
155 | | &UA_TYPES[UA_TYPES_DELETENODESREQUEST], &UA_TYPES[UA_TYPES_DELETENODESRESPONSE]}, |
156 | | {UA_NS0ID_DELETEREFERENCESREQUEST_ENCODING_DEFAULTBINARY, |
157 | | UA_SERVICECOUNTER_OFFSET(deleteReferencesCount, true), (UA_Service)Service_DeleteReferences, |
158 | | &UA_TYPES[UA_TYPES_DELETEREFERENCESREQUEST], &UA_TYPES[UA_TYPES_DELETEREFERENCESRESPONSE]}, |
159 | | #endif |
160 | | {0, UA_SERVICECOUNTER_OFFSET_NONE(false), NULL, NULL, NULL} |
161 | | }; |
162 | | |
163 | | UA_ServiceDescription * |
164 | 0 | getServiceDescription(UA_UInt32 requestTypeId) { |
165 | 0 | for(size_t i = 0; serviceDescriptions[i].requestTypeId > 0; i++) { |
166 | 0 | if(serviceDescriptions[i].requestTypeId == requestTypeId) |
167 | 0 | return &serviceDescriptions[i]; |
168 | 0 | } |
169 | 0 | return NULL; |
170 | 0 | } |
171 | | |
172 | | /* Allocates the results array and iterates over it to execute the operations |
173 | | * within a request */ |
174 | | UA_StatusCode |
175 | | allocProcessServiceOperations(UA_Server *server, UA_Session *session, |
176 | | UA_ServiceOperation operationCallback, |
177 | | const void *context, const size_t *requestOperations, |
178 | | const UA_DataType *requestOperationsType, |
179 | | size_t *responseOperations, |
180 | 0 | const UA_DataType *responseOperationsType) { |
181 | 0 | size_t ops = *requestOperations; |
182 | 0 | if(ops == 0) |
183 | 0 | return UA_STATUSCODE_BADNOTHINGTODO; |
184 | | |
185 | | /* No padding after size_t */ |
186 | 0 | void **respPos = (void**)((uintptr_t)responseOperations + sizeof(size_t)); |
187 | 0 | *respPos = UA_Array_new(ops, responseOperationsType); |
188 | 0 | if(!(*respPos)) |
189 | 0 | return UA_STATUSCODE_BADOUTOFMEMORY; |
190 | | |
191 | 0 | *responseOperations = ops; |
192 | 0 | uintptr_t respOp = (uintptr_t)*respPos; |
193 | | /* No padding after size_t */ |
194 | 0 | uintptr_t reqOp = *(uintptr_t*)((uintptr_t)requestOperations + sizeof(size_t)); |
195 | 0 | for(size_t i = 0; i < ops; i++) { |
196 | 0 | operationCallback(server, session, context, (void*)reqOp, (void*)respOp); |
197 | 0 | reqOp += requestOperationsType->memSize; |
198 | 0 | respOp += responseOperationsType->memSize; |
199 | 0 | } |
200 | 0 | return UA_STATUSCODE_GOOD; |
201 | 0 | } |
202 | | |
203 | | static const UA_String securityPolicyNone = |
204 | | UA_STRING_STATIC("http://opcfoundation.org/UA/SecurityPolicy#None"); |
205 | | |
206 | | static UA_Boolean |
207 | | processServiceInternal(UA_Server *server, UA_SecureChannel *channel, UA_Session *session, |
208 | | UA_UInt32 requestId, UA_ServiceDescription *sd, |
209 | 0 | const UA_Request *request, UA_Response *response) { |
210 | 0 | UA_ResponseHeader *rh = &response->responseHeader; |
211 | | |
212 | | /* Check timestamp in the request header */ |
213 | 0 | if(request->requestHeader.timestamp == 0 && |
214 | 0 | server->config.verifyRequestTimestamp <= UA_RULEHANDLING_WARN) { |
215 | 0 | UA_LOG_WARNING_CHANNEL(server->config.logging, channel, |
216 | 0 | "The server sends no timestamp in the request header. " |
217 | 0 | "See the 'verifyRequestTimestamp' setting."); |
218 | 0 | if(server->config.verifyRequestTimestamp <= UA_RULEHANDLING_ABORT) { |
219 | 0 | rh->serviceResult = UA_STATUSCODE_BADINVALIDTIMESTAMP; |
220 | 0 | return true; |
221 | 0 | } |
222 | 0 | } |
223 | | |
224 | | /* If it is an unencrypted (#None) channel, only allow the discovery services */ |
225 | 0 | if(server->config.securityPolicyNoneDiscoveryOnly && |
226 | 0 | UA_String_equal(&channel->securityPolicy->policyUri, &securityPolicyNone ) && |
227 | 0 | sd->requestType != &UA_TYPES[UA_TYPES_GETENDPOINTSREQUEST] && |
228 | 0 | sd->requestType != &UA_TYPES[UA_TYPES_FINDSERVERSREQUEST] |
229 | 0 | #if defined(UA_ENABLE_DISCOVERY) && defined(UA_ENABLE_DISCOVERY_MULTICAST) |
230 | 0 | && sd->requestType != &UA_TYPES[UA_TYPES_FINDSERVERSONNETWORKREQUEST] |
231 | 0 | #endif |
232 | 0 | ) { |
233 | 0 | rh->serviceResult = UA_STATUSCODE_BADSECURITYPOLICYREJECTED; |
234 | 0 | return true; |
235 | 0 | } |
236 | | |
237 | | /* Session lifecycle services */ |
238 | 0 | if(sd->requestType == &UA_TYPES[UA_TYPES_CREATESESSIONREQUEST] || |
239 | 0 | sd->requestType == &UA_TYPES[UA_TYPES_ACTIVATESESSIONREQUEST] || |
240 | 0 | sd->requestType == &UA_TYPES[UA_TYPES_CLOSESESSIONREQUEST]) { |
241 | 0 | UA_ChannelService cs = (UA_ChannelService)(uintptr_t)sd->serviceCallback; |
242 | 0 | cs(server, channel, request, response); |
243 | | /* Store the authentication token created during CreateSession to help |
244 | | * fuzzing cover more lines */ |
245 | 0 | #ifdef FUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION |
246 | 0 | if(sd->requestType == &UA_TYPES[UA_TYPES_CREATESESSIONREQUEST]) { |
247 | 0 | UA_CreateSessionResponse *res = &response->createSessionResponse; |
248 | 0 | UA_NodeId_clear(&unsafe_fuzz_authenticationToken); |
249 | 0 | UA_NodeId_copy(&res->authenticationToken, &unsafe_fuzz_authenticationToken); |
250 | 0 | } |
251 | 0 | #endif |
252 | 0 | return true; |
253 | 0 | } |
254 | | |
255 | | /* Set an anonymous, inactive session for services that need no session */ |
256 | 0 | UA_Session anonymousSession; |
257 | 0 | if(!session) { |
258 | 0 | UA_assert(!sd->sessionRequired); |
259 | 0 | UA_Session_init(&anonymousSession); |
260 | 0 | anonymousSession.sessionId = UA_NODEID_GUID(0, UA_GUID_NULL); |
261 | 0 | anonymousSession.channel = channel; |
262 | 0 | session = &anonymousSession; |
263 | 0 | } |
264 | | |
265 | | /* Trying to use a non-activated session? */ |
266 | 0 | if(sd->sessionRequired && !session->activated) { |
267 | 0 | UA_assert(session != &anonymousSession); /* because sd->sessionRequired */ |
268 | 0 | #ifdef UA_ENABLE_TYPEDESCRIPTION |
269 | 0 | UA_LOG_WARNING_SESSION(server->config.logging, session, |
270 | 0 | "%s refused on a non-activated session", |
271 | 0 | sd->requestType->typeName); |
272 | | #else |
273 | | UA_LOG_WARNING_SESSION(server->config.logging, session, |
274 | | "Service %" PRIu32 " refused on a non-activated session", |
275 | | sd->requestType->binaryEncodingId.identifier.numeric); |
276 | | #endif |
277 | 0 | UA_Server_removeSessionByToken(server, &session->authenticationToken, |
278 | 0 | UA_SHUTDOWNREASON_ABORT); |
279 | 0 | rh->serviceResult = UA_STATUSCODE_BADSESSIONNOTACTIVATED; |
280 | 0 | return true; |
281 | 0 | } |
282 | | |
283 | | /* Update the session lifetime */ |
284 | 0 | UA_EventLoop *el = server->config.eventLoop; |
285 | 0 | UA_DateTime nowMonotonic = el->dateTime_nowMonotonic(el); |
286 | 0 | UA_DateTime now = el->dateTime_now(el); |
287 | 0 | UA_Session_updateLifetime(session, now, nowMonotonic); |
288 | | |
289 | | /* Store the request id -- will be used to create async responses */ |
290 | 0 | server->asyncManager.currentRequestId = requestId; |
291 | 0 | server->asyncManager.currentRequestHandle = request->requestHeader.requestHandle; |
292 | | |
293 | | /* Execute the service */ |
294 | 0 | return sd->serviceCallback(server, session, request, response); |
295 | 0 | } |
296 | | |
297 | | UA_Boolean |
298 | | processRequest(UA_Server *server, UA_SecureChannel *channel, |
299 | | UA_UInt32 requestId, UA_ServiceDescription *sd, |
300 | 0 | const UA_Request *request, UA_Response *response) { |
301 | 0 | UA_LOCK_ASSERT(&server->serviceMutex); |
302 | | |
303 | | /* Set the authenticationToken from the create session request to help |
304 | | * fuzzing cover more lines */ |
305 | 0 | #ifdef FUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION |
306 | 0 | UA_NodeId *authenticationToken = (UA_NodeId *)(uintptr_t) |
307 | 0 | &request->requestHeader.authenticationToken; |
308 | 0 | if(!UA_NodeId_isNull(authenticationToken) && |
309 | 0 | !UA_NodeId_isNull(&unsafe_fuzz_authenticationToken)) { |
310 | 0 | UA_NodeId_clear(authenticationToken); |
311 | 0 | UA_NodeId_copy(&unsafe_fuzz_authenticationToken, authenticationToken); |
312 | 0 | } |
313 | 0 | #endif |
314 | | |
315 | | /* Get the session bound to the SecureChannel (not necessarily activated) */ |
316 | 0 | UA_Session *session = NULL; |
317 | 0 | response->responseHeader.serviceResult = |
318 | 0 | getBoundSession(server, channel, &request->requestHeader.authenticationToken, &session); |
319 | 0 | if(!session && sd->sessionRequired) |
320 | 0 | return true; |
321 | | |
322 | | /* The session can be NULL if not required */ |
323 | 0 | response->responseHeader.serviceResult = UA_STATUSCODE_GOOD; |
324 | | |
325 | | /* Process the service */ |
326 | 0 | UA_Boolean done = processServiceInternal(server, channel, session, |
327 | 0 | requestId, sd, request, response); |
328 | | |
329 | | /* Update the service statistics */ |
330 | 0 | #ifdef UA_ENABLE_DIAGNOSTICS |
331 | 0 | if(session) { |
332 | 0 | session->diagnostics.totalRequestCount.totalCount++; |
333 | 0 | if(response->responseHeader.serviceResult != UA_STATUSCODE_GOOD) |
334 | 0 | session->diagnostics.totalRequestCount.errorCount++; |
335 | 0 | if(sd->counterOffset != 0) { |
336 | 0 | UA_ServiceCounterDataType *serviceCounter = (UA_ServiceCounterDataType*) |
337 | 0 | (((uintptr_t)&session->diagnostics) + sd->counterOffset); |
338 | 0 | serviceCounter->totalCount++; |
339 | 0 | if(response->responseHeader.serviceResult != UA_STATUSCODE_GOOD) |
340 | 0 | serviceCounter->errorCount++; |
341 | 0 | } |
342 | 0 | } |
343 | 0 | #endif |
344 | |
|
345 | 0 | return done; |
346 | 0 | } |