fix(status-codes): correct BadDeviceFailure from 0x80550000 to 0x808B0000

Driver.Cli.Common-007 + Driver.Cli.Common-008 resolution. Driver.Cli.Common-007 (High, Correctness): 0x80550000 is the canonical OPC UA spec value for BadSecurityPolicyRejected, not BadDeviceFailure. The correct spec value for BadDeviceFailure is 0x808B0000 (verified against OPC Foundation Opc.Ua.StatusCodes; corroborated locally by Driver.Galaxy.Runtime.StatusCodeMap and both Wonderware historian quality mappers which all hand-pin the correct value). The bug was duplicated across six driver modules: - FocasStatusMapper.BadDeviceFailure - AbCipStatusMapper.BadDeviceFailure - AbLegacyStatusMapper.BadDeviceFailure - TwinCATStatusMapper.BadDeviceFailure - ModbusDriver.StatusBadDeviceFailure - S7Driver.StatusBadDeviceFailure Plus the SnapshotFormatter shortlist that named 0x80550000 as BadDeviceFailure, and three downstream Modbus tests that asserted against the wrong value (so CI was blind). This commit fixes all six native-mapper constants, the formatter shortlist, and the three Modbus tests in one pass. Added a regression guard to FormatStatus_does_not_apply_pre_fix_wrong_names that pins 0x80550000 never renders as BadDeviceFailure (mirroring the existing -001 wrong-name guards). Behavior change: OPC UA clients consuming the native drivers now see the canonical BadDeviceFailure (0x808B0000) on device-fault paths instead of the misnamed BadSecurityPolicyRejected (0x80550000). Wire- level status semantics now match operator-facing CLI labels. Driver.Cli.Common-008 (Low, Testing): Deleted the redundant FormatStatus_names_native_driver_emitted_codes Theory — its five InlineData rows were already covered by the well-known Theory in the same commit (5a9c459), and used a weaker ShouldContain vs the well-known Theory's ShouldBe (exact match). Verification: - Driver.Cli.Common.Tests: 43/43 pass (was 48 after the -008 deletion). - Driver.Modbus.Tests: 263/263 pass. - Driver.AbCip.Tests: 262/262. - Driver.AbLegacy.Tests: 157/157. - Driver.FOCAS.Tests: 178/178. - Driver.S7.Tests: 112/112. - Driver.TwinCAT.Tests: 131/131. Total: 1146 tests across the affected modules, all green. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-23 17:14:28 -04:00
parent 41e62b2663
commit a6ae4e22d1
12 changed files with 55 additions and 35 deletions
--- a/tests/Drivers/Cli/ZB.MOM.WW.OtOpcUa.Driver.Cli.Common.Tests/SnapshotFormatterTests.cs
+++ b/tests/Drivers/Cli/ZB.MOM.WW.OtOpcUa.Driver.Cli.Common.Tests/SnapshotFormatterTests.cs
@@ -39,7 +39,9 @@ public sealed class SnapshotFormatterTests
    [InlineData(0x803B0000u, "BadNotWritable")]
    [InlineData(0x803C0000u, "BadOutOfRange")]
    [InlineData(0x803D0000u, "BadNotSupported")]
-    [InlineData(0x80550000u, "BadDeviceFailure")]
+    // Driver.Cli.Common-007: corrected from 0x80550000 (which is actually
+    // BadSecurityPolicyRejected) to the canonical OPC UA spec value 0x808B0000.
+    [InlineData(0x808B0000u, "BadDeviceFailure")]
    [InlineData(0x80740000u, "BadTypeMismatch")]
    [InlineData(0x40000000u, "Uncertain")]
    public void FormatStatus_names_well_known_status_codes(uint status, string expectedName)
@@ -47,22 +49,6 @@ public sealed class SnapshotFormatterTests
        SnapshotFormatter.FormatStatus(status).ShouldBe($"0x{status:X8} ({expectedName})");
    }

-    [Theory]
-    // Driver.FOCAS.Cli-005 follow-up (Driver.Cli.Common): the FOCAS / AbCip / AbLegacy mappers
-    // emit these five codes — they previously rendered only as severity-class "Bad" because the
-    // shortlist did not name them, defeating the operator workflow that docs/Driver.*.Cli.md
-    // promise (read the BadDeviceFailure / BadNotWritable / ... name straight off probe/write
-    // output). Pin them named so the docs stay accurate.
-    [InlineData(0x80020000u, "BadInternalError")]
-    [InlineData(0x803B0000u, "BadNotWritable")]
-    [InlineData(0x803C0000u, "BadOutOfRange")]
-    [InlineData(0x803D0000u, "BadNotSupported")]
-    [InlineData(0x80550000u, "BadDeviceFailure")]
-    public void FormatStatus_names_native_driver_emitted_codes(uint status, string expectedName)
-    {
-        SnapshotFormatter.FormatStatus(status).ShouldContain($"({expectedName})");
-    }
-
    [Theory]
    // Regression for Driver.Cli.Common-001: these codes were previously mapped to the
    // wrong names. The hex values below are what the buggy shortlist used; they must
@@ -71,6 +57,10 @@ public sealed class SnapshotFormatterTests
    [InlineData(0x80070000u, "BadNoCommunication")]    // was mislabelled BadNoCommunication
    [InlineData(0x80080000u, "BadWaitingForInitialData")] // was mislabelled BadWaitingForInitialData
    [InlineData(0x80350000u, "BadNodeIdInvalid")]      // was mislabelled BadNodeIdInvalid
+    // Driver.Cli.Common-007: 0x80550000 is BadSecurityPolicyRejected per spec, not
+    // BadDeviceFailure (which is 0x808B0000). The buggy shortlist + the six native-
+    // protocol mappers all had it wrong; this row pins it as a regression guard.
+    [InlineData(0x80550000u, "BadDeviceFailure")]
    public void FormatStatus_does_not_apply_pre_fix_wrong_names(uint status, string wrongName)
    {
        SnapshotFormatter.FormatStatus(status).ShouldNotContain(wrongName);
--- a/tests/Drivers/ZB.MOM.WW.OtOpcUa.Driver.Modbus.IntegrationTests/ExceptionInjectionTests.cs
+++ b/tests/Drivers/ZB.MOM.WW.OtOpcUa.Driver.Modbus.IntegrationTests/ExceptionInjectionTests.cs
@@ -27,7 +27,7 @@ public sealed class ExceptionInjectionTests(ModbusSimulatorFixture sim)
    private const uint StatusGood = 0u;
    private const uint StatusBadOutOfRange = 0x803C0000u;
    private const uint StatusBadNotSupported = 0x803D0000u;
-    private const uint StatusBadDeviceFailure = 0x80550000u;
+    private const uint StatusBadDeviceFailure = 0x808B0000u;
    private const uint StatusBadCommunicationError = 0x80050000u;

    private void SkipUnlessInjectorLive()
--- a/tests/Drivers/ZB.MOM.WW.OtOpcUa.Driver.Modbus.Tests/ModbusExceptionMapperTests.cs
+++ b/tests/Drivers/ZB.MOM.WW.OtOpcUa.Driver.Modbus.Tests/ModbusExceptionMapperTests.cs
@@ -18,9 +18,9 @@ public sealed class ModbusExceptionMapperTests
    [InlineData((byte)0x01, 0x803D0000u)] // Illegal Function → BadNotSupported
    [InlineData((byte)0x02, 0x803C0000u)] // Illegal Data Address → BadOutOfRange
    [InlineData((byte)0x03, 0x803C0000u)] // Illegal Data Value → BadOutOfRange
-    [InlineData((byte)0x04, 0x80550000u)] // Server Failure → BadDeviceFailure
-    [InlineData((byte)0x05, 0x80550000u)] // Acknowledge (long op) → BadDeviceFailure
-    [InlineData((byte)0x06, 0x80550000u)] // Server Busy → BadDeviceFailure
+    [InlineData((byte)0x04, 0x808B0000u)] // Server Failure → BadDeviceFailure (Driver.Cli.Common-007)
+    [InlineData((byte)0x05, 0x808B0000u)] // Acknowledge (long op) → BadDeviceFailure
+    [InlineData((byte)0x06, 0x808B0000u)] // Server Busy → BadDeviceFailure
    [InlineData((byte)0x0A, 0x80050000u)] // Gateway path unavailable → BadCommunicationError
    [InlineData((byte)0x0B, 0x80050000u)] // Gateway target failed to respond → BadCommunicationError
    [InlineData((byte)0xFF, 0x80020000u)] // Unknown code → BadInternalError fallback
@@ -61,7 +61,7 @@ public sealed class ModbusExceptionMapperTests
            [new WriteRequest("T", (short)42)],
            TestContext.Current.CancellationToken);

-        writes[0].StatusCode.ShouldBe(0x80550000u, "FC06 returning exception 04 (CPU in PROGRAM mode) maps to BadDeviceFailure");
+        writes[0].StatusCode.ShouldBe(0x808B0000u, "FC06 returning exception 04 (CPU in PROGRAM mode) maps to BadDeviceFailure");
    }

    private sealed class NonModbusFailureTransport : IModbusTransport