Prosys OPC UA SDK for Java

Fixed: PrivKey.load(byte[], password) didn’t work for encrypted keys.

Fixed: JsonDecoder didn’t properly decode SByte (UnsignedByte) for single-digit values.

New: AddressSpace.browse overload that takes ResultMask as parameter.

Fixed: java.lang.Error: Maximum permit count exceeded due to multithreading race condition when the secure channel was closing.

Security: SessionSecurityDiagnosticsArray was visible to all Sessions.

Security: By default remove stacktraces/AdditionalInfo of returned Diagnostics and UA TCP ErrorMessage.

Fixed: OpenSecureChannelResponse could get wrong SequenceNumber in a rare multithreading race condition.

Fixed: "Structure synchronization system" (that passes parts of Structures up/down the node-hierarchy) didn’t validate sub-component names when writing null.

Fixed: Load ArrayDimension info for Structure FieldSpecifications and properly return them for the DataTypeDefinition OPC UA 1.04 Attribute.

Fixed: When MonitoringMode for a MonitoredItem was changed from Sampling to Reporting, if the QueueSize was 1 there was no notification.

Changed: By default allow 10% more connections than maximum number of configured Sessions.

Changed: When at connection limit, allow opc.tcp connections that have had previously an activated Session, but no longer have one to be removed.

Changed: Enforce 1 SecureChannel per opc.tcp connection and do not send CloseSecureChannelResponse for CloseSecureChannelRequest.

Changed: NodeManagerRoot is no longer final.

Changed: UaServer.NodeManagerUaServer is now static.

Changed: UaServer added protected createNodeManagerRoot and createNodeManagerUaServer for overridding purposes.

New: Support (and is the default) Subscription-based data sampling for UaClient- based PubSubSystem.

New: Support Event-DataSets for UaClient- based PubSubSystem.

New: Added Events PubSubSystemStartedEvent and PubSubSystemShutdownEvent.

Fixed: Generate ArrayDimension info for Structure FieldSpecification(s). Code must be re-generated using this version of Codegen.

No changes.

No changes.

No changes.

Plus a number of other small changes.

Fixed: JsonDecoder didn’t handle BaseDataType (mapped to Object.class) properly.

Fixed: NPE in MultiDimensionArrayUtils.getDimension(…​) when given null (now returns 0).

Fixed: NPE in Variant.getArrayDimensions(), returns 0 if the Variant has a null value.

Fixed: A race-condition in AddressSpace.getNode(…​) causing a deadlock, if multiple threads tried to get the same node concurrently.

Fixed: A race-condition causing NPE internally in re-create failed MonitoredItems feature that could happen if a Subscription is added after UaClient.connect().

Fixed: NAT connection issues where port-forwarding changed the port number.

Fixed: Cosmetic ERROR log when loading NodeSets containing <Extensions> tag(s) that contained <Value> tag(s).

No changes.

No changes, uses the same as in 4.10.0.

No changes.

No changes.

No changes.

Plus a number of other small changes.

No changes.

No changes.

Security/New: UaServer methods setMaxOpcHttpsConnections(Integer) and setMaxOpcTcpConnections(Integer) for limiting the number of connections. By default 'null', which means the max number of Sessions is used instead.

New: UaServer.setMaxOpcTcpSecureChannelsPerConnection(int) for limiting number of secure channels per opc.tcp connection (in opc.https this is always 1 as it technically doesn’t per se have a secure channel, but the TLS instead). Default value is 1 and it is not recommended to change this (change number of opc.tcp connections instead).

Security/Fixed: Prevent clients from sending too large chunks and infinitely many chunks.

Fixed: The Value Attribute of VariableTypes contained a Variant with a Variant when loaded from NodeSets.

Fixed: NPE when a client sent a non-null-certificate and null as the nonce when SecurityMode NONE was used.

No changes.

No changes, uses the same as in 4.10.0.

No changes.

No functional changes, but added commented-out examples of using the UaServer new methods.

No changes.

Plus a number of other small changes.

Fixed: Prevent rare ConcurrentModificationException while DEBUG log is enabled for UaApplication.

New: MonitoredItemErrorListener, can be set on MonitoredItem.

Fixed: Empty array in RolePermissions and UserRolePermissions Attribute caused problems.

Fixed: Notifications from received PublishResponses are now acknowledged once they have been processed. Previously they were once they had been received, but due to multithreading related issues this could cause problems.

Fixed: HistoryContinuationPoints leaked memory.

No changes.

No changes, uses the same as in 4.10.0.

No changes.

No changes.

No changes.

New: Added a link to these release notes to the download page.

Plus a number of other small changes.

New: UaNodeId static factory methods: guid(…​), numeric(…​), opaque(…​), string(…​).

New: UaNodeId.from(…​) overload taking UaNamespace instead of the namespace uri as String.

New: com.prosysopc.ua.stack.utils.Charsets for storing UTF_8 Charset (on Java 7+ just use java.nio.charset.StandardCharsets instead)

New: SecurityPolicy.getDisplayName().

New: More constants in UserTokenPolicies related to the newer security policies.

Changed: Using standard base information model version 1.04.11.

Fixed: XmlElement.equals did throw NPE if given null.

Fixed: DynamicStructure.set didn’t clear other fields if StructureType was StructureType.UNION_SUBTYPES.

Fixed: JsonEncoder, some error situations were not properly thrown.

Fixed: JsonEncoder, all Good StatusCodes were not put to the JSON (only the literal StatusCode.GOOD should be ignored).

Fixed: Additional fixes for host.docker.internal issue.

Security: UaClient.setEndpoint(EndpointDescription) didn’t use the security mode from the given description.

Changed: Constructors of FileTypeImpl, BaseVariableTypeImpl, BaseObjectTypeImpl are now protected (as they are only intended to be used by the SDK instantiation similar to other generated types).

Changed: UaClient.reconnect() will now throw IllegalStateException if called while UaClient.isAutoReconnect() is true (the default).

Fixed: During UaClient.connect Subscriptions are now added as the last step, and TypeDictionary is initialized first (long init could cause subscription timeouts).

Fixed: UaViewImpl protected writeAttributeValue didn’t handle Attributes.ContainsNoLoops.

Fixed: The opc.tcp socket is now read using BufferedInputStream (may increase performance).

Changed: The SDK logic that automatically creates sub-nodes below Structure VariableType instances now ignores optional Structure fields having Structure datatypes. Such fields could refer to the same type (or indirectly via a circular reference), which would cause an infinite loop of subnodes to be created. Also, fixed the ValueRanks of created nodes (they will now match the fields ValueRank).

Fixed: UaViewNode protected readAttributeValue didn’t handle Attributes.ContainsNoLoops.

Fixed: NodeManagerUaNode.createInstance, some situations where an overridden InstanceDeclaration had the wrong HasTypeDefinition reference.

New: Enable decoding of UADP messages without metadata in some cases.

New: PubSubSystem.addEventListener overload taking in Executor (on which the event is notified).

New: Common PubSubFailureEvent interface and PubSubEvents.PUB_SUB_ALL_ERRORS marker to be used with PubSubSystem.addEventListener.

New: PubSubEvents.PUB_SUB_ALL marker to be used with PubSubSystem.addEventListener. This will listen to all PubSubSystem internal events.

New: Created common interfaces for dataset events (PubSubEvents.PUB_SUB_DATASET_MESSAGE_RECEIVED), thus only one PubSubSystem.addEventListener is needed (to be notified of UADP/JSON messages).

New: PubSubVariableDataSetConfFactory.

New: Support JsonDataSetMessageContentMask.Status (though note that StatusCode is transferred only if it was different than StatusCode.GOOD).

New: Support message level "MessageType" field in JSON messages (via JsonDataSetMessageContentMask.MessageType).

New: PubSubSystem.commands(), allow forcing sending of a KeyFrame (or selected fields of the DataSet), even when it would not be needed (if the nodes in question didn’t have value changes). These only work in the Publisher side i.e. the "command" is SDK-specific functionality and will not be transferred from the Subscriber side.

Changed: Some WARN logs were moved to be PubSubFailureEvent implementations.

Changed: DataSetMetaData is no longer stored in the Reader configuration, but instead it can be specified in the PubSubSystemConf level (if needed).

Changed: Renamed PubSubDataSetMetaDataMessageReceivedEvent to PubSubUadpDataSetMetaDataMessageReceivedEvent and (re)created PubSubDataSetMetaDataMessageReceivedEvent as a common interface for metadata receiving event.

Improvement: JsonEncoder, encoding Enumeration(s) can now use "String-form" in non-reversible encoding, assuming the type is known via EncoderContext.

Improvement: Sampling of Variable DataSets is now done in bulk.

Improvement: Support SubstituteValue logic.

Fixed: Changing Enabled from true to false didn’t stop connections.

Fixed: DataSetWriterId in JSON messages is now a JSON-number (and not a String)

Fixed: DataSetMetaData calculation assumed Value Attribute always.

Security: Updated internal commons-text dependency (on the standalone version)to version 1.10.0 due to CVE-2022-42889. The internal logic only relies on allowing system properties (via StringSubstitutor.replaceSystemProperties(…​)) to be replaced (so that values such as "${app.home}/sampletypes/output_code" will work in the configuration). Thus the Code Generator should be unaffected by the CVE (but the update was done just in case). The Maven plugin uses Maven’s own property-replacing logic.

New: Tolerate ValueRank -3 (and -2 when not used with BaseDataType). These will be generated as Object (i.e. the same as -2 with BaseDataType) as they cannot be properly be represented in Java code. A WARN log is still logged in these cases.

No changes.

New: Added a folder with different ValueRank nodes.

Changed: Call loadInformationModels only after other namespaces have been loaded (so that adding new ones here wont change the namespaceindexes of the others).

Changed: Instances are now done more using NodeManagerUaNode.createInstance (which is the current recommended way).

Fixed: Set DataTypeId in ComplianceNodeManager.createMultiStateDiscreteItem.

Changed: The message listeners are now configured in SampleUtils.addPubSubSystemListeners(PubSubSystem).

Clarified SDK versioning logic (added at the start of this document).

Improved Starting Guide

Plus a number of other small changes.

New: OSUtil, provides OS-related ways to search hostnames.

New: ApplicationIdentity.getBannedHostnames(), controls a set of "incorrect" hostnames, IF a hostname is in the set, the new OSUtil is tried to resolve the hostname in an operating system dependent way. Currently the set contains "host.docker.internal".

New: Generalized DynamicStructure.clear() as Structure.clear(). This can also be used to reset an Union back to the 'no fields set' state.

New: AbstractUaNodeFactory, mostly to serve as an internal base for UaClientNodeFactory and UaServerNodeFactory. Impl note: holds currently the type-mappings for UA and Java types and injects them when UaDataType nodes are created.

Changed: UaType.getJavaClass() implementation now automatically search supertypes + cache results.

Changed: UaType.getJavaClass() for raw Structure i.e. i=22 type now returns ExtensionObject.class instead of Structure.class.

Changed: UaType.getJavaClass() now returns Enumeration classes (or DynamicEnumeration.class).

Changed: UaType.getJavaClass() for exactly BaseDataType returns Object.class.

Changed: Some previously protected abstract methods of ModelParserBase are now directly implemented by ModelParserBase.

Improvement: DataTypeConverter.convert(…​) no longer throws if given Integer values and Enumeration type. The given value is returned as-is, as Variant automatically converts Enumerations to Integers.

Improvement: DataTypeConverter.convert(…​) can now convert Structures to ExtensionObjects.

Improvement: JsonDecoder support RawData.

Fixed: The host.docker.internal problem as explained above.

Fixed: FieldSpecification.toBuilder didn’t copy AllowSubTypes to the Builder.

Deprecated: Client-side methods related to model loading are now deprecated (+ com.prosysopc.ua.client.ModelParser as well). The concept doesn’t work due to (not recent) a change in the specification that the server shall create full instances on AddNodes call (compared to models which define each node individually). There is no direct replacement, contact support if you depend on this.

Fixed: The new 1.04.10 StructureWithSubtypedValues+UnionWithSubtypedValues behaved incorrectly in TypeDictionary.

Fixed: SimpleTypes in Structure fields now work even if the model is not code generated before loading.

Fixed: BaseDataType in Structure fields now gets proper java class (Object.class).

New: PubSubUdpEvents.PUB_SUB_UDP_RAW_MESSAGE_RECEIVED.

Improvement: Some previously unparsed JSON messages are now parsed. In some cases the value is a String with the JSON representation of e.g. a custom Structure that could not be parsed.

Fixed: Possible deadlock when receiving metadata.

Fixed: NPE if PublisherId was missing in JSON messages.

Changed: Some situations are now logged on WARN instead of ERROR level.

New: Support InstanceDeclarations of ValueRank -2 'Any' if the DataType is exactly BaseDataType.

Fixed: The AllowSubTypes was not set for the generated FieldSpecifications for Structures.

No changes.

No changes.

New: SDK can internally share MQTT connections between multiple PubSub connections, assuming equal authentication etc. configuration.

Changed: SampleBroker, disabled advisory messages so subscribing to root-wildcard ('#') works.

Plus a number of other small changes.

Improvement: AggregateCalculator now supports processing interval of 0.

Fixed: JsonDecoder.setReadable, now uses UTF-8 instead of the platform default encoding.

Fixed: ExpandedNodeId.parseExpandedNodeId now properly parses if passed the output of ExpandedNodeId.toString.

Fixed: Handle situations where MonitoredItem targets namespace no longer exist in the server.

Fixed: Refresh NamespaceArray before recreating MonitoredItems after a reconnect.

Fixed: UaViewNode didn’t handle ContainsNoLoops Attribute via setAttribute.

Fixed: Prevent StackOverflowError related to incorrectly modeled Conditions.

Changed: The Value of nodes loaded from NodeSets have now timestamps from when the model was loaded (instead of null/min timestamp), fixes issues with the Compliance Test Tool.

Fixed: If using 'mqtts' (instead of 'ssl') in the connection address is now properly replaced internally to 'ssl'.

New: Added support for the SingleDataSetMessage bit in the NetworkMessageContentMask in JSON encoding.

New: PubSubJsonDataSetReaderConf.isIgnoreMissingMetaData, allows ignoring needing to know the DataSetMetaData when decoding PubSub MQTT-JSON messages, the fields from the message are used as-is.

New: PubSub(Mqtt)Events.PUB_SUB_MQTT_CONNECTION_STATE_CHANGED, fires PubSubMqttConnectionStateChangedEvent whenever the state of the MQTT connection changes.

New: PubSub(Mqtt)Events.PUB_SUB_MQTT_RAW_MESSAGE_RECEIVED, fires PubSubMqttRawMessageReceivedEvent whenever an MQTT message is received by the Subscriber in any of the configured topics/queues. Note that this can include non OPC UA messages.

Fixed: DataSets can now work properly when used by multiple Writers.

Fixed: JsonDataSetMessageContentMask DataSetWriterId field was being ignored.

Changed: The default publishing interval (if not set via PubSubXXXWriterGroupConf.Builder) is now 1 second (instead of 4).

No functional changes, but internals use now slf4j-simple when logging in the commandline mode.

New: Added example (menu-option) to calling AddNodes service call on the server. Note that the server needs to support NodeManagement in order to use this (in our SDK’s server side that is by default off, as NodeManagerListeners should be also made to only allow authorized users to do that).

Fixed: The new 1.04 attributes were not shown as an option in the menus.

New: Added example (menu-option) to toggle NodeManagement state (by default it is disabled).

Fixed: NPE when parsing some JSON messages.

Changed: Using 5 second publishing intervals in sample configurations.

Changed: SamplePubSubConfiguration, setting DataSetWriterId field in the JsonDataSetMessageContentMask.

Fixed: samples sh start-scripts couldn’t handle spaces in arguments.

Updated dependencies. It should be noted for the BouncyCastle dependency that is now a 3rd jar, bcutil-jdk15to18-1.71.jar, see https://www.bouncycastle.org/releasenotes.html (search 'bcutil').

Plus a number of other small changes.

New: EnumerationSpecification.getAllEnumValues(), EnumerationSpecification.getByName(…​), EnumerationSpecification.getByValue(…​)

Deprecated: EnumerationSpecification.createEnumerationFromInteger and EnumerationSpecification.createEnumerationFromString, use getByName or getByValue instead.

Fixed: Prevent NPE if JsonEncoder is given null ByteString.

Improvement: EnumerationSpecification now implements equals and hashCode.

Fixed: MonitoredItem.toString showed null for the NodeId if made with an ExpandedNodeId.

Changed: Subscription.isRecreateFailedItems() is now true by default.

Changed: UaClient, allow continuing of reading history even if Good_NoData is received (assuming data was received), allows interop with some incorrectly built servers.

Security fix: Avoid starvation of internal thread pools in some scenarios.

Fixed: Using BaseDataVariableType instead of BaseVariableType for Structure components in Variable nodes.

Fixed: HistoryRead with ReleaseContinuationPoints=True caused NPE in some cases.

Fixed: AddReferences and DeleteReferences service calls always sent diagnostics, even when not requested by the Client.

Fixed: The maximum supported message size in OPC UA TCP was not set (Acknowledge MaxMessageSize was was 0).

New: Added support for generic processing of PubSubXXXConf objects:

New: Added getters in PubSubXXXConf.Builder objects.

New: PubSubTransportProfile serves as a factory for PubSubXXXConf.Builder(s) of that profile. New methods:

New: PubSubMqttEvents.PUB_SUB_MQTT_UADP_NETWORK_MESSAGE_SENT, PubSubMqttEvents.PUB_SUB_MQTT_JSON_NETWORK_MESSAGE_SENT and PubSubUdpEvents.PUB_SUB_UADP_NETWORK_MESSAGE_SENT.

New: Added option to add extra (static) fields to JSON messages in PubSubMqttJsonWriterGroupConf and PubSubMqttJsonDataSetWriterConf.

New: PublisherId class, used instead of using Object for defining PublisherId value in PubSubXXXConf objects.

New/Fixed: More support for MQTT topic wildcards.

Fixed: PublisherId was not sent in DataSetMetaData UADP messages.

Fixed: Event DataSet only supported Properties and 1-level deep nodes.

Fixed: MQTT Publishers used wrong topic if more than one writer/topic was configured.

Fixed: MQTT Subscribers didn’t filter properly based on configured queuenames.

Changed: Moved classes from package com.prosysopc.ua.pubsub.events to com.prosysopc.ua.pubsub.

Changed: Renamed PubSubSystemConf.getAllConnections() to PubSubSystemConf.getConnections().

Improvement: Added topic information to MQTT PubSubEvents.

Removed: "Extension properties" maps, from PubSub configuration objects for connections, groups, readers and writers, as they didn’t do anything.

New: The Code Generator can now be run with Java 17.

Fixed/Changed: Field and parameter names now have a prefix to avoid conflicts with Java keywords.

Plus other internal changes.

No changes.

No changes.

New: Added s (--save) and l (--load) command line arguments to save and load the configuration from a file.

New: SamplePubSubConfiguration.save and `SamplePubSubConfiguration.load, experimental support for persisting and loading the configuration to/from a file.

Changed: The Event DataSet now uses the 'Server' node as the source of Events.

Changed: Rewrote the sample to use the new PubSubTransportProfile factory methods.

Plus a number of other small changes.

Fixed: The following classes now default to ByteOrder.LITTLE_ENDIAN (instead of ByteOrder.nativeOrder()): ByteQueue, InputStreamReadable and OutputStreamWriteable.

Deprecated: ByteBufferFactory.DEFAULT_ENDIAN_HEAP_BYTEBUFFER_FACTORY, as the order should always be defined.

Fixed: TypeDictionary didn’t handle Structure fields of BaseDataType DataType properly.

Fixed: TypeDictionary didn’t handle the new "1.04.10 Structure types" StructureWithSubtypedValues and UnionWithSubtypedValues.

Fixed: Properly return StatusCodes.Bad_NoContinuationPoints when at limit (instead of allowing one above limit).

Fixed: Sessions could not access their own SessionSecurityDiagnosticsType data.

No changes.

No changes, uses the same as in 4.7.0.

No changes.

Improvement: MyEnumObject sample node now has timestamps set for the value.

No changes.

Plus a number of other small changes.

New: ByteString.append(…​).

Changed: ModelParserBase skipValuesOnAndroid is now false by default, server side works in Android API level 22+.

Fixed: DynamicStructureSerializer.getNodeId(…​) didn’t work for JSON encodings.

Fixed: MethodCallStatusException, avoid ArrayIndexOutOfBoundsException if empty or too few inputArgumentDiagnosticInfos given.

Fixed: StructureUtils.fixEmptyStructureArrayType now also works if given BigDecimal[0].

Deprecated: DynamicStructure.getSpecification(), use DynamicStructure.specification() instead defined in Structure.specification().

Deprecated: DynamicStructureSerializer.calcEncodeable(…​) (IEncodeableSerializer.calcEncodeable was already deprecated previously).

New: Subscription.resendData().

Security fix: MonitoredItems with AggregateFilter didn’t check AccessLevel permissions.

Changed: Using the latest 1.04.10 NodeSet.

Changed: Using 1000 as the new default for MaxBrowseContinuationPoints, MaxQueryContinuationPoints and MaxHistoryContinuationPoints (instead of 65535).

Changed: Protected Session.activate() no longer throws StatusException.

Changed: The Session.isActive of ServiceContext.INTERNAL_OPERATION_CONTEXT now returns true.

Fixed: ActivateSession failures for existing Session do not deactivate the Session anymore.

Fixed: IndexRange processing didn’t work for AggregateFilter MonitoredItems.

Fixed: Some race-conditions in protected MonitoredDataItem.isAccessible().

Changed: PubSub internals no longer rely on java.util.ServiceLoader (caused issues in some environments).

Changed: PubSubSystemOverrides, combined JSON and UADP MqttProviderConfProvider methods.

Changed: Removed some internal interfaces (implementations were package-private) that were public.

Changed: UADP and JSON specific configuration objects for ReaderGroups, WriterGroups, DataSetWriters, DataSetReaders. They are now split on transport protocol. The old classes are now interfaces with the common encoding parameters. The XXXTransportSettings interfaces as they were are removed and the parameters moved to PubSubBrokerTransportSettingsConf interface, which the MQTT variants implement.

Changed: renamed XXXNetworkMessageReceivedEvent classes to have consistent names: PubSubUdpUadpConnectionNetworkMessageReceivedEvent, PubSubMqttUadpConnectionNetworkMessageReceivedEvent and PubSubMqttJsonConnectionNetworkMessageReceivedEvent

New: Added support for the "AllowSubtypes=true" new Structure types introduced in OPC UA base information model version 1.04.10.

Changed: Using the latest 1.04.10 NodeSet.

Changed: Samples now use logback instead of log4j1.

Changed: Samples now use logback instead of log4j1.

Changed: Using 1000 (the same as the new defaults) for MaxBrowseContinuationPoints, MaxQueryContinuationPoints and MaxHistoryContinuationPoints.

New: SampleBroker, added option for SSL (see PubSub Tutorial for certificate generation).

Changed: SamplePubSubConfiguration, reorganized different types of connection+encodings to nested classes.

Changed: Samples now use logback instead of log4j1.

Fixed: pom.xml of the samples used incorrect (older) names.

Removed tar.gz distribution flavor.

PubSub Tutorial updated to include certificate generation for Broker+SSL purposes.

Plus a number of other small changes.

New: TypeDictionary.getEnumerationSpecification(UaNodeId id), which EncoderContext.getEnumerationSpecification(UaNodeId id) will call on the client side automatically if UaClient.isInitTypeDictionaryAutoUsage() is true (the default).

Fixed: UserTokenPolicy having SecurityPolicy.AES256_SHA256_RSAPSS as their security policy failed due to SecurityAlgorithm.RsaOaep256 having incorrect URI.

Fixed: BinaryDecoder was incorrectly throwing DecodingException in Variant decoding if ArrayDimensions were defined, but the dimensions array had empty or null value when the Variant value part was empty or null.

Fixed: BinaryDecoder NPE if an ExtensionObject array had a null-form of ExtensionObject as first element after 0 or more non-Decimal-forms of ExtensionObject.

Fixed: ModelParserBase.parseFile was incorrectly using platform default encoding if the file didn’t contain a UTF-8 Byte Order Mark character.

Fixed: ModelParserBase.parseFile NPE if a non-generated-Structure type had an array field who’s DataType node exists in the address space, but for which UaDataType.getJavaClass() returned null.

Fixed: Ignoring RevisedQueueSize and RevisedSamplingInterval of CreateMonitoredItems (or ModifyMonitoredItems) if the result StatusCode is not Good.

Changed: If sending a non-Good StatusCode in CreateMonitoredItems or ModifyMonitoredItems, setting the revised QueueSize and SamplingInterval to the current values of the item (instead of 0).

New: Added experimental support for SSL based MQTT connections in the form of PubSubMqttProviderConf.Builder.setSocketFactory + PubSubMqttProviderConf.Builder.setSSLHostnameVerifier.

New: PubSubPublishedVariableConf.Builder.setName(), can be used to override the Name of the published variable (by default the BrowseName’s name part is used).

New: Made possible to set the Description in PubSubVariableDataSetConf and PubSubEventDataSetConf and PubSubPublishedVariableConf Builders.

Fixed: DataSetMeta request message was missing a byte in the encoded form.

Fixed: DataSetMeta request message was missing PublisherId.

Fixed: UDP-UADP connections ignored PublisherId part of the DataSetMetaData request.

Fixed: Some Builder methods incorrectly returned an internal BuilderBase implementation.

Fixed: MQTT Retain flag is set for DataSetMetaData messages.

Fixed: MQTT-UADP connection was not terminated properly in PubSubSystem.shutdown().

Fixed: MQTT connections were not re-subscribing to topics on reconnect.

Fixed: MQTT was re-subscribing to topics on every DataSetMetaData message.

No functional changes, but the bundled SampleTypes no longer uses the non-existing 'Date' type (that was for years in the base nodeset as a subtype of DateTime). It is removed in the 1.04.9 errata and thus generation of the SampleTypes model failed in 4.6.0.

Changed: Using ConditionType Identifiers.ConditionType instead of Identifiers.BaseEventType when selecting the so called ConditionId in the SampleConsoleClient.createEventFilter.

Changed: Using a RollingFileAppender in log4j.properties.

Changed: Using a RollingFileAppender in log4j.properties.

Fixed: The publisher-id CLI arg was not working.

Changed: The second field in the published variable set is now named "MySecondPublishedField" to show-case setting a custom name for the field.

Changed: Using a RollingFileAppender in log4j.properties.

Plus a number of other small changes.

Deprecated: CertificateUtils.getKeySize(), CertificateUtils.setKeySize(int) and methods in CertificateUtils and ApplicationIdentity that relied on those methods internally. New methods that take the key size as an input parameter have been added to replace the deprecated methods.

New: UaExpandedNodeId as an alternative to ExpandedNodeId. Instead of identifying a Server by its ServerIndex, a UaExpandedNodeId identifies the Server by its ServerUri. A UaExpandedNodeId also only identifies the Namespace only by its NamespaceUri.

New: JsonDecoder, used to enable Subscriber functionality with MQTT-JSON.

New: StructureSpecification.getJavaClass().

New: EnumerationSpecification.getJavaClass().

New: UaApplication.getServerTable() and UaApplication.getApplicationIdentity(), both of which were already implemented by UaClient and UaServer.

New: MultiDimensionArrayUtils.deepGet(…​) and MultiDimensionArrayUtils.deepSet(…​).

New: ByteString.fromHex(String) and ByteString.toHex().

New: Structure.set(String, Object), Structure.get(String), Structure.Builder.set(String, Object) and Structure.Builder.specification().

Improved: ApplicationIdentity.loadOrCreateHttpsCertificate(…​) will append the key size to the opc.https certificate file name.

Improved: Various improvements to UaNodeId and UaQualifiedName.

Improved: Instances of UaNamespace and subtypes of OptionSet DataType, e.g. AccessLevelType are now weak-interned and static factory methods are used to return cached instances.

Fixed: JsonEncoder.putDateTime(String, DateTime) now uses the UTC time zone instead of the local time zone.

Fixed: MultiDimensionArrayUtils.printArrayDeep(Object, PrintStream) now correctly uses the given PrintStream instead of System.out.

Fixed: Alias values are now correctly used for Reference target NodeIds when loading NodeSet2 XML models.

Fixed: ArrayIterator.getIndices() now returns a copy of the internal array.

Fixed: SecurityPolicy.getSecurityPolicy(String) now returns Security Policy None for an empty String.

New UaClient.getCommErrorCodes() returns a Set of StatusCodes that indicate communication errors when reading Server status or handling PublishResponses. This set of StatusCodes can be modified to add or remove StatusCodes.

Improved: Subscription.setRecreateFailedItems(boolean) can be called to enable a Subscription to automatically attempt to recreate MonitoredItems with error code Bad_NodeIdUnknown since this StatusCode can imply in some cases that the Server hasn’t added that Node to its AddressSpace yet.

Improved: Logging related to Subscriptions.

Changed: Undeprecated TypeDictionary.binaryEncode(DynamicStructure) and TypeDictionary.decode(ExtensionObject). They were deprecated in 4.5.8, but are needed if SDK is set to not automatically initialize or use TypeDictionary.

Changed: When reading Server status, all Bad and Uncertain StatusCodes received will be treated as indications of communication errors and thus triggering a reconnect. Use static UaClient.setUseCommErrorCodes(boolean) to enable filtering of StatusCodes such that only the StatusCodes that belong to the Set of StatusCodes returned by static UaClient.getCommErrorCodes() will indicate communication errors.

Fixed: UserIdentity with IssuedIdentityToken now has PolicyId correctly set.

New: Support for letting the Server have the operating system choose an available port for opc.tcp and opc.https Endpoints by setting the port to -1 with UaServer.setPort.

New: EndpointServiceRequest.sendServiceFaultsForBadServiceLevelOpcHttpsResponses flag that is same as EndpointServiceRequest.sendServiceFaultsForBadServiceLevelResponses but only affects opc.https connections. The default value of the flag is false.

Changed: Using the latest Base OPC UA Information Model NodeSet file version 1.04.9

Changed: The default maximum MonitoredItems per Subscription has been increased from 1000 to 10000. Another value can be set by calling SubscriptionManager.setMaxMonitoredItemsPerSubscription(…​).

Changed: The default value of UaServer.getBindAddresses() is now the IPv6 wildcard ([::]) when IPv6 is enabled and the IPv4 wildcard (0.0.0.0) otherwise.

Changed: send ServiceFault messages instead of normal ServiceResponse messages in case of errors. EndpointServiceRequest.sendServiceFaultsForBadServiceLevelResponses = false can be used to revert back to the old functionality. This only affects opc.tcp connections.

Fixed: Added missing values to the fields of Events of EventQueueOverflowEventType that are generated when the Event buffer of a MonitoredEventItem overflows. The Severity of these Events is set to 1.

Fixed: Server.getEndpointDescriptions(SocketAddress) will now return the correct EndpointDescriptions for a Server that has been bound to a wildcard address.

New: Added support for subscribing to JSON messages over MQTT.

New: Enable UaNode as an alternative to UaNodeId in all parameters of that type in PubSub configuration objects.

New: Added static builder interfaces to common configuration interfaces, e.g. PubSubConnectionConf.Builder and PubSubDataSetReaderConf.Builder.

New: PubSubTransportProfile Enumeration and PubSubUdpUadpConnectionConf.getTransportProfile(), PubSubMqttJsonConnectionConf.getTransportProfile() and PubSubMqttUadpConnectionConf.getTransportProfile() methods.

New: PubSubUdpUadpConnectionConf.Builder.setNetworkInterface(NetworkInterface) and PubSubUdpUadpConnectionConf.Builder.setNetworkInterface(String).

New: Sending meta data can be disabled by setting MetaDataQueueName to null or empty String for a PubSubBrokerDataSetWriterTransportSettingsConf.

New: PubSubSystemConf.Builder.addOrReplaceConnection(PubSubConnectionConf<?, ?>).

New: PubSubUdpUadpConnectionConf.getDiscoveryNetworkAddress() (moved from nested conf object).

Improved: Configuring a discovery network address is no longer mandatory. If discovery network address hasn’t been configured, the normal network address will be used.

Changed: Renamed PubSubSystem.getConfigurationSnapshot() to PubSubSystem.getConfiguration().

Changed: Some nested PubSub configuration interfaces are removed, e.g. PubSubConnectionTransportSettings, PubSubReaderGroupMessageSettings, PubSubReaderGroupTransportSettings, the configuration parameters are moved to the top level configuration object under which they were used.

Changed: The following PubSub configuration objects are now enabled by default: PubSubConnectionConf, PubSubDataSetReaderConf, PubSubDataSetWriterConf, PubSubGroupConf, PubSubJsonDataSetReaderConf and PubSubUadpDataSetReaderConf.

Changed: PubSubUadpWriterGroupConf.getPublishingOffset() now returns an instance of PubSubPublishingOffsets instead of List<Duration>.

Changed: PubSubSystem.createFor now takes UaApplication instead of just UaServer and works in the context of an UaClient. Publishing event datasets (or adding event dataset in the configuration) does not yet work and will be added in a future version.

Removed: PubSubBrokerUadpConnectionConf (it was a leftover from the early prototyping era).

Changed: Using the latest Base OPC UA Information Model NodeSet file version 1.04.9

Fixed: Characters that would be illegal in Javadoc are now replaced with escape characters correctly when they are used in descriptions in NodeSet2 XML models.

Improved: MyCertificateValidationListener will now check DNS Names and/or IP Addresses specified in the certificate and compare them to the hostname in the Endpoint URL. If they don’t match, the user will be warned.

Changed: Binds to the IPv6 wildcard ([::]) when IPv6 is enabled and the IPv4 wildcard (0.0.0.0) otherwise.

Changed: The name of the sample CA certificate now includes hostname, "https" and certificate size.

Changed: The filename of https cert now includes size of the certificate.

Fixed: Corrected ValueRanks of some nodes in Root/Objects/StaticData.

New: SamplePublisherClient and SampleSubscriberClient sample applications.

New: Command line argument -I/--publishing-interval for setting the PublishingInterval in Publisher samples.

New: Command line argument --no-metadata for disabling meta data sending to MQTT (sets metaDataQueueName=null)

New: Command line argument --publisher-id for defining the PublisherId.

New: SamplePubSubConfiguration and SampleUtils classes that contain common methods used to create the PubSub configurations and other utility functions used by all PubSub sample applications.

Changed: Renamed SamplePubSubPublisherServer → SamplePublisherServer, SamplePubSubSubscriberServer → SampleSubscriberServer and SamplePubSubBroker → SampleBroker .

Changed: The Server samples bind to the IPv6 wildcard ([::]) when IPv6 is enabled and the IPv4 wildcard (0.0.0.0) otherwise.

Changed: Command line argument n/non-reversible-json is now used for disabling including any headers in network messages and enabling using non-reversible JSON encoding.

Fixed: The PubSub Server samples now correctly use the command line argument -P/--port for setting the Server port number.

Plus a number of other small changes.

Deprecated: TypeDictionary.binaryEncode, use ExtensionObject.binaryEncode(Structure, EncoderContext) with UaClient.getEncoderContext() instead.

Deprecated: TypeDictionary.decode, use ExtensionObject.decode(EncoderContext) with UaClient.getEncoderContext() instead.

Fixed: TypeDictionary.binaryEncode didn’t work for custom Structures that had custom Structure fields.

Fixed: EncoderContext.shallowCopy didn’t copy EnumerationSpecifications.

No changes.

New: Added flag EndpointServiceRequest.sendServiceFaultsForBadServiceLevelResponses, if true ServiceFaults are returned instead of full responses if service level status is bad. Per UA Specification 1.04 part 4 section 7.30 ServiceFaults should be used in this case. By default the flag is false (keeps existing behaviour), but future SDK version will change it to be by default true (and some future version will remove the flag).

New: Added support for encoding array data.

New: Added support for RawData option in JSON encoding.

New: Added DataSetClassId parameter to PublishedVariableDataSetConf and PubSubEventDataSetConf.

Fixed: JSON Payload value is now a JSON object.

Fixed: DataSetClassId and PublisherId are now set correctly in JSON encoding.

Fixed: MQTT handles now reconnections to the broker

Fixed: MQTT closes connections gracefully

Fixed: JSON encoding of Network and DataSet Messages is now following the defined JsonNetworkMessageContentMask and DataSetFieldContentMask.

No changes, uses the same as in 4.4.2.

No changes.

No changes.

New: Added command line option to select network interface by name.

New: Added command line option to configure server’s port.

New: Added command line options for MQTT related settings.

Fixed: Samples .bat start script now support arbitrary number of command line parameters.

Improved: SamplePubSubPublisherServer and SamplePubSubSubscriberServer refactored to clarify the principles of PubSub configuration

Updated httpcore library to version 4.4.13

Updated httpclient library to version 4.5.13

Updated PubSub tutorial

Plus a number of other small changes.

New: Variant.asEnum(EnumerationSpecification).

Fixed: JsonEncoder output was wrong in certain conditions.

Fixed: UaClient will now read the MaxNodesPerRead OperationLimit first with a single-operation Read call when connecting.

Fixed: UaClient Subscriptions having SubscriptionId of 0 are no longer put to TransferSubscriptions calls.

Security fix: Changed the defaults from 0 for Server/ServerCapabilities/MaxXXXContinuationPoint to UnsignedShort.MAX_VALUE (65535).

Fixed: TypeIoManagerListener no longer checks references if there are no UaTypeIoListener attached to it.

Fixed: IndexRange for Reads now work per the OPC UA Specification, returning partial data for out of bounds end index.

New: PubSubUadpDataSetMessageReceivedEvent.getPublisherId().

No changes, uses the same as in 4.4.2.

Changed: Using empty array QualifiedName[0] instead of null array for the SimpleAttributeOperand of the EventFilter for the "select the node itself" operation. Empty should be used instead of null and is more interoperable.

No changes.

New: SamplePubSubSubscriber also logs the PublisherId when a dataset message is received.

Plus a number of other small changes.

Deprecated: SpongyCastleUtils, the BouncyCastle equivalent BouncyCastleUtils class was already deprecated.

Deprecated: EventData constructors, call static factory methods instead.

New: EventData.raw, EventData.fromNodeHierarchy static factory methods.

New: ByteString.from(ByteArrayOutputStream stream) static factory method.

New: ByteString.copyTo(OutputStream) and a ByteArrayOutputStream overload of that without the need for exception handling.

Fixed: ApplicationIdentity in Android detection was incorrectly using 'java.runtime.name' system property when using 'java.vendor' was used in other places.

Fixed: Support IPv6 addresses that have a scope id that has the hyphen ('-') character.

Fixed: Support loading NodeSets that use the Category element (but the data is discarded, as it is modeling-only data).

Fixed: When loading a non-codegenerated model, Custom Structure inheriting custom Structure type of the same model missed parent fields sometimes.

Fixed: DataTypeConverter could not handle values larger than Long max value when converting String→UInt64 (i.e. to UnsignedLong).

Fixed: Privkey constructor that takes in the encoded form (via byte[]) depended on platform Security Provider ordering.

No changes specific to (only) Client side of the SDK.

Security fix: ModifyMonitoredItem didn’t validate that the Session did own that MonitoredItem, now does.

Memory Leak fix: SessionManagerListener.onCloseSession was not called for "new Sessions", for which ActivateSession was never called before timeout, could cause a memory leak if SDK users were relying on that call to clean up some session-specific resources.

New: Support sendInitialValues FALSE option in TransferSubscription service calls.

Fixed: A rare situation, where a earlier KeepAlive message for a Subscription could override a later received Notification.

Changed: For performance reasons, the EventData send in Events now by default only checks reference chains of Objects and Variables when determining which event fields are sent, all other NodeClasses are excluded. This can be configured currently via static BaseEventTypeNode.getExcludedsubnodeclasses() method and clearing the set returns previous behavior. In practice the only impact of this is that it is not possible to select Variables below a Method node of an event type, which in normal conditions is not needed. Method nodes are typically shared and thus processing their references can be time consuming.

Memory leak Fixed: UDP-UADP chunks were not cleared if message was never completed. Now they are once the last chunk is more than 10s old. This is currently hard-coded, future release may allow configuring this.

New: Allow configuring of socket options in PubSubUdpUadpConnectionConf.Builder.putSocketOptions and PubSubUdpUadpConnectionConf.Builder.putDiscoverySocketOptions.

Changed: The NetworkInterface parameter in PubSubUdpUadpConnectionConf is now configured instead with StandardSocketOptions.IP_MULTICAST_IF option. Also it must now always be set, if the NetworkAddress parameter is a multicast address.

Fixed: UDP-UADP message sending could fail if it consisted of multiple chunks.

Fixed: It was not possible to send/receive custom Structures.

Fixed: Larger than 1024 bytes UDP messages could fail in Subscriber part.

Fixed: Do not listen to discovery messages separately if discovery port equals normal port.

No changes, uses the same as in 4.4.2.

No changes.

No changes.

The NetworkInterface parameter was changed to use the StandardSocketOptions.IP_MULTICAST_IF option.

A workaround for selecting a "null" interface was added, though, for multicast addresses you should always select one real interface, otherwise it might not work.

Plus a number of other small changes.

New: StackUtils, added methods setNonBlockingWorkExecutorThreadPriority, setBlockingWorkExecutorThreadPriority, setAsyncSelectorThreadPriority. Allows changing Thread priorities of the stack layer common pools.

Fixed: Undefined Enumeration values in Structure decoding will now throw DecodingException.

Fixed: PkiDirectoryCertificateStore, Cert that were deleted directly via filesystem were not reflected in the returned Sets.

Fixed: EnumerationSpecification.Builder is now reusable.

New: Added support for SamplingInterval of 0 for MonitoredItems. Must be enabled by calling SubscriptionManager.setMinSamplingInterval(0) for UaServer.getSubscriptionManager().

Fixed: NPE fix, UaServer can no longer be started with an UserTokenPolicy that has a null UserTokenType (use UserTokenType.Anonymous instead). Preferably only constants from the class UserTokenPolicies should be used.

Fixed: ConditionRefresh Method Call related events, RefreshStartEventType and RefreshEndEventType, now contain values for all Mandatory Properties.

Fixed: Memory leak that happened each time ConditionRefresh related events were created.

Fixed: Memory leak that could have happened on EventQueueOverflowEvent of a MonitoredEventItem.

Fixed: Memory leak if a Session, for which no ActivateSession had been called, timed out while Diagnostics were enabled.

No changes.

No changes, uses the same as in 4.4.2.

Changed: .bat scripts for samples now use java+javac directly from PATH (vs. JAVA_HOME previously).

Changed: .bat scripts for samples now use java+javac directly from PATH (vs. JAVA_HOME previously).

Changed: .bat scripts for samples now use java+javac directly from PATH (vs. JAVA_HOME previously).

Plus a number of other small changes.

New: ApplicationIdentity.setActualHostName(String) static method, which enables some workarounds that can be used to override SDK’s internal hostname resolution. This should be the fully qualified hostname, if applicable.

New: TcpConnection.setExecutorProvider(…​) static method, which enables some workarounds.

Fixed: Changed some stderr outputs to be ERROR level logs instead.

Changed: The default StackUtils uncaughtExceptionHandler no longer outputs to stderr, now they are only logged on ERROR level.

Security fix: SignatureData was not verified, if incorrect algorithm was specified. Now incorrect algorithm will be logged as an ERROR, but the correct algorithm is tried, since this can be determined from the channel security policy.

New: UaClient.validateServiceRequest protected method, which enables some workarounds. It is called before sending any servicerequest related to a Session or done in a context of a Session.

Security fix: SignatureData was not created if using Sign mode for opc.https.

Fixed: Incorrect SignatureData algortihm is logged as an ERROR. Note that this is different compared to the client side, as on the server side the correct algorithm from the channel was always used.

New: Discovery messages can be sent to the separate Discovery Address in UDP-UADP.

New: Added an option to set maximum message sizes for UDP-UADP.

Fixed: Some classes were missing from javadocs entirely.

Fixed: UDP-UADP sockets were not properly closed during PubSubSystem shutdown.

No changes, uses the same as in 4.4.2.

Fixed: The helper .sh script uses now ":" instead of ";" for the classpath separator (affected 4.4.0+).

Changed: At least for now, accept CA Certificates that do not have a CRL.

Fixed: The helper .sh script uses now ":" instead of ";" for the classpath separator (affected 4.4.0+).

Changed: Using separate queue names for UADP/JSON data.

Fixed: The helper .sh scripts uses now ":" instead of ";" for the classpath separator (affected 4.4.0+).

Plus a number of other small changes.

New: DefaultCertificateValidator.IgnoredChecks and DefaultCertificateValidator.getIgnoredChecks(), a more robust system for ignoring certain checks.

New: DefaultCertificateValidator.IgnoredChecks.IGNORE_KEYUSAGE_CHECKS, option to disable checking X.509 keyUsage field.

New: DefaultCertificateValidator validation process checks more keyUsage fields.

Deprecated: DefaultCertificateValidator isRevocationListsRequired and setRevocationListsRequired are now deprecated and delegated to the new system as DefaultCertificateValidator.IgnoredChecks.IGNORE_CA_MISSING_CRL.

Fixed: Added a workaround to allow receiving (at least temporarily) both UInt16 and UInt32 values for AccessRestriction Attribute values. Will log on WARN if UInt32 received.

Fixed: Setting RequestHeader.Timestamps of GetEndpointRequest and FindServersOnNetworkRequest.

Changed: Using the latest NodeSet2 for the Base OPC UA Information Model 1.04.7.

Fixed: Usage of KeyFrameCount parameter, added default value of 10.

Fixed: Publisher ID type reading when decoding an UADP NetworkMessage.

Fixed: Indexing of data was incorrect in sent messages.

New: 1.04.7 standard model support.

New: Updated DI + GDS bundled models to latest versions.

No changes

New: MyNodeManager, added example of making a custom Structure type in code. Note! We do not (yet) generate a DataTypeDictionary for it, thus only OPC UA 1.04 clients that can handle the new DataTypeDefinition Attribute are able to process the data.

Added some additional logging.

New: Added support for BouncyCastle FIPS edition with some limitations, works by replacing the BC jars with BC fips jars (not bundled). See https://forum.prosysopc.com/forum/opc-ua-java-sdk/support-for-fips-compliant-bouncy-castle/#p4683 for more details.

Fixed: The "invalid_namepace_index/uri" syntax added in 4.3.0 now works also for UaQualifiedName. The syntax is used if there is no unique mapping for a namespace index to uri. Note that this is still an error by itself, this just mostly allows our client side to deal with servers that have such invalid mapping.

New: Subscription.conditionRefresh(), will call ConditionRefresh standard Method for the Subscription.

New: MonitoredEventItem.conditionRefresh(), will call ConditionRefresh2 standard Method for that monitored item.

New: Made possible to use custom Sockets (or anything that can be abstracted with InputStream + OutputStream) for opc.tcp via static TcpConnection.setSocketFactory(…​).

Changed: Calls to UaClient.connect() after obtaining the initial connection once will now log WARN logs. While the call does nothing if the client is connected, it will interfere with SDK’s automatic reconnecting if the client doesn’t have connection (and if AutoReconnect is false, UaClient.reconnect() should be used instead for manual reconnecting). Note that this only applies until calling UaClient.disconnect(), after which it is fine to call UaClient.connect() to obtain the initial connection again. Will try to fix this better in a future version.

Fixed: Client-side OperationLimits were not used if server-side limit reading failed (the OperationLimits.defaults() was used incorrectly).

Improvement: Server-side OperationLimits reading will fail now on individual limit level (previously any failures would ignore all server-side limits).

Improvement: Added the operation level StatusCode result in DEBUG logs when creating monitored items.

Fixed: Loading custom Structure values that contain custom Enumeration field from a NodeSet2 XML now works (custom Structure fields that are custom Structures still not yet).

Fixed: Loading NodeSet2 XML models that had custom Structures that had fields of type BaseDataType and did not specify it (schema default) can now be loaded.

Fixed: RejectedSessionCount and SecurityRejectedSessionCount in diagnostics are now incremented when Session is rejected (i.e. when CreateSession or ActivateSession returns a bad StatusCode).

Fixed: Generating DataChangeNotifications if a value changed from NaN → NaN (per CTT that is a value change).

Fixed: Writes to multidimensional arrays with IndexRange works properly.

Fixed: Fixed scenarios where setting an AggregateFilter for monitored items would not work.

Fixed: Some standard namespace nodes did missed SourceTimestamp and caused CTT errors.

Fixed: FileTypeNode size is now only updated when the WriteHandle to it is closed.

Fixed: FileTypeNode handles that are not closed by Session are now closed automatically when the Session is removed.

Changed: Made a modification to the 4.3.0 change of not allowing instantiation of MandatoryPlaceholder/OptionalPlaceholder, now they can be instantiated by custom InstantiationStrategies or configuration, but not by default.

Changed: Per CTT, returning now Bad_IdentityTokenInvalid instead of Bad_IdentityTokenRejected if a valid and trusted certificate is used together with an empty UserIdentitySignature.

prosys-opc-ua-sdk-for-java-VERSION-evaluation

prosys-opc-ua-sdk-for-java-VERSION-client-server-pubsub-binary

prosys-opc-ua-sdk-for-java-VERSION-client-server-pubsub-source

No changes (i.e. bundling same version as 4.3.0 did).

No changes.

New: ValueHistory now supports reverse (end-to-start) history reading.

Changed: CTT related changes and additions to the StaticData nodes.

The maven-integration maven-install-helper converts the javadoc zip to jar (no longer bundled twice) thus the distribution zips are now smaller.

The 'lib' folder of the distribution zips now has a folder structure that shows where the dependencies are needed and used.

The SDK download page no longer displays dependencies that are only needed by samples.

Security fix: validate CreateSession and ActivateSession Nonces (CVE-2019-19153)

Security fix: verify ActivateSession signatures

Performance improvements related to the connection speed on the client-side

Support to the 'Issuers' certificate store

New: UnsignedByte, UnsignedShort, UnsignedInteger and UnsignedLong now have arrayOf static factory methods.

New: DefaultCertificateValidator now supports a secondary "issuers" CertificateStore.

Changed: NamespaceTable conversion from indexes, that are not in the table, now results in a special "invalid uri" syntax, which will be converted back to the original index when needed. Thus conversion from NodeId to ExpandedNodeId will no longer break if the index is not known. This change also applies to UaNodeId.

Changed: DefaultCertificateValidator no longer moves certificates placed in the folder for trusted certificates ('CA/certs') to the folder for rejected certificates ('CA/rejected') when one or more certificate validation tests fail. This type of certificate handling is necessary for passing the compliance tests. Note, that this change has no effect on the error code returned to the client when certificate validation fails.

Fixed: A previously missing StructureSpecification Union.SPECIFICATION has been added to EncoderContext set of known StructureSpecifications.

Fixed: UaAddress.formatUri now does guard IPv6 addresses with [ ].

New: UaClient.setInitTypeDictionaryAutoUsage(boolean initTypeDictionaryAutoUsage), defaults to false.

New: AddressSpace.setRead104Attributes(boolean read104Attributes), defaults to true. This change will be a temporary flag for use-cases where a server fails due to reading new OPC UA 1.04 defined Attributes. It will be deprecated and removed later.

Changed: Some PublishRequest sending logic is now logged on TRACE level instead of DEBUG level.

Changed: NamespaceTable is refreshed on every UaClient connect and reconnect.

Fixed: UaDataTypeImpl no longer throws Bad_AttributeIdInvalid on DataTypeDefinition. Previously, the data was still set, but it did also throw the exception afterwards.

Fixed: AddressSpace.getNodes returns timestamps for Value Attributes.

Fixed: The "Warning: More than one GeneratedDataTypeDictionary contains the same dictionary" no longer happens on every subsequent UaClient.connect.

Improvement: TypeDictionary initializes now with fewer service calls.

Improvement: WARN log if UaClient.reconnect is called manually while UaClient.isAutoReconnect is true, as this should not be done and will cause problems.

Improvement: Initialization of OperationLimits is now internally done via Read. This initialization was previously done using UaNodes, which also required fetching types for them.

Improvement: UaNodeImpl.getComponents now uses less Read and Browse calls.

Fixed: InstanceDeclaration nodes with ModellingRule OptionalPlaceholder and MandatoryPlaceholder are no longer instantiated.

Fixed: NPE for 1-namespace nodes that do not have a HasComponent parent node.

Fixed: SubscriptionManagerListener.onAfterDeleteMonitoredItem is now properly called when the items were deleted as a part of a Session closing with DeleteSubscriptions set to True.

Fixed: Structure values loaded from NodeSet2 models that have a String field with empty value now work.

Fixed: Starting a UaServer without a hostname where Java would give localhost as IPv6 address no longer gives "invalid uri" error.

Fixed: Server Diagnostics cumulative session counting no longer increases when the diagnostics are toggled off and on.

Fixed: Server now checks signatures properly in SessionManager. The lack of proper signature checking affected opc.https using Sign mode for application authentication and both opc.tcp and opc.https using certificate-based user authentication.

Improvement: TypeDefinitionBasedNodeBuilderConfiguration.Builder methods now return the builder.

New: Added an option timestampOutputs to the generate configuration XML element, defaults to true. On false disables, the timestamp generation for output files to make better reproducible builds.

New: Multidimensional arrays are now supported for Method arguments, as long as they have a fixed ValueRank.

Fixed: The names of nodes are now Capitalized for the set/get generation. This fix only affects the models with nodes that do not start with a capital letter, which is the de-facto standard.

Fixed: Fallback SymbolicName generation now logs errors if the resulted name is an empty string.

Fixed: Incorrect convenience methods for 1-dim array nodes of type UInteger are no longer generated.

Fixed: Generated method call logic was incorrect for OptionSetValues UIntegers 1-dim Arguments.

Changed: MyUaClientListener no longer checks nonces, since the connection is already prevented internally earlier.

New: Added a separate 'issuers' certificate store "PKI/CA/issuers" for application certificates and trusted 'users' certificate store "USERS_PKI/CA" and its 'issuers' certificate store "USERS_PKI/CA/issuers".

Fixed: UserAccessLevel, UserExcutable and UserWriteMask Attribute values for some ComplianceNodeManager nodes.

Changed: MyUserValidator now does proper user certificate validation with a separate trusted 'users' certificate store and its 'issuers' certificate store.

The SimpleServer example now uses all non-deprecated security modes as well.

There are now some classes that begin with Internal, e.g. InternalBrowseResults that are designed only for the SDK internal usage. Most of them are not public, but some had to be due to them being needed in cross package calls. The equivalent APIs will eventually be added to the SDK once we know the best way to do so, but for the time being, the APIs of those InternalXXX classes can change at will.

Plus many other small changes.

Security Fix: SecureIdentity.decrypt, added sanity checks for secret length to avoid potential DOS attacks.

New: AttributesUtil.getSupportedAttributes(NodeClass).

Fixed: AttributesUtil.isValid now works for 1.04 Attributes, additionally fixed some incorrect results.

Fixed: The toString of Unions now look similar to other Structures.

Changed: Using the latest NodeSet2 for the Base OPC UA Information Model.

Changed: Identifiers (and more specific variants e.g. DataTypeIdentifiers) now only contain constants that are part of the current version of the Base OPC UA Information Model (or are needed for the service calls).

Removed: ModellingRule.MandatoryShared per Errata 1.04.3 as it didn’t exist.

New: AddressSpace.getNode(…​) also fetches new Attributes that were defined in OPC UA version 1.04. They are currently accessible via UaNode.readAttribute method.

Fixed: A potential deadlock if an unknown custom Structure is encountered while decoding ReadResponses.

Changed: TypeDictionary now prefers 1.04 DataTypeDefinition Attribute over DataTypeDictionaries where available.

Changed: AddressSpace methods getNode and getNodes are no longer synchronized on class level, but instead will lock per node when needed.

Fixed: Bad_TypeMismatch scenario when an empty Structure or Decimal array was written to the server.

Deprecated: PredefinedIdPair and ModelParserForUaDefinedTypes. All usages of them were already deprecated (they were used to load the pre-NodeSet era models).

Changed: Updated bundled models to their latest versions.

No changes.

No changes.

Plus a number of other small changes.

New: ExtensionObject.decode(EncoderContext ctx, Class<T> expectedClass, UnsignedInteger statusCodeOnFailure) throws StatusException overload.

Fixed: NodeId.parseNodeId now works for Numeric ids over Integer.MAX_VALUE.

Changed: Updated SLF4J dependency to version 1.7.28

Changed: Updated BouncyCastle dependency to version 1.64. NOTE! artifactId changed to bcpkix-jdk15to18, please read https://www.prosysopc.com/blog/mangers-attack/.

Changed: Updated Apache HttpComponents and related dependencies versions (httpclient → 4.5.10, httpcore-nio → 4.4.12, httpcore → 4.4.12, commons-codec → 1.11)

Deprecated: public static NodeId ID field in the following classes: DataValue, DateTime, DiagnosticsInfo, ExpandedNodeId, LocalizedText, NodeId, QualifiedName, StatusCode, UnsignedByte, UnsignedShort, UnsignedLong, XmlElement. The equivalent constant (noted in the javadocs of the field) in Identifiers (or DataTypeIdentifiers) should be used instead.

Deprecated: Static constant NodeId.ZERO, NodeId.NULL should be used instead.

Deprecated: Static method NodeId.equals(NodeId, NodeId). ObjectUtils.equals(Object, Object) should be used instead (or on Java 7+ the java.util.Objects.equals can be used). Additionally fixed NPE if the first argument was null.

Fixed: The fallback logic for reading ServerStatus via each individual nodes (Server/ServerStatus/*) now also works if Read returns Bad StatusCode for the Server/ServerStatus node.

Few internal changes, which allows us to do PubSub support in the future.

New: JSON encodings are set for the static field SPECIFICATION (of type StructureSpecification) of each generated Structure (assuming it has JSON encodings defined in the model).

Fixed: Possible NPE if a model didn’t contain XML Encodings for Structures.

Changed: Updated slf4j-log4j12 dependency to version 1.7.28

Changed: Updated slf4j-log4j12 dependency to version 1.7.28

Added new sample: SimpleServer, a counterpart for SimpleClient.

New: UaNodeId.fromStandard(NodeId nodeId) static factory method, allows easier conversion from 0-NamespaceIndexed NodeIds.

Fixed: LocalizedText.toString() returns now empty String instead of null if both Locale and Text parts are null.

Fixed: UaClient connections on SecurityMode.NONE works again without a certificate.

No changes.

No changes.

No changes.

No changes.

New: TypeDictionary.refresh(), easier refreshing DataTypeDictionaries from the server.

New: More helpers for EnumerationSpecification and StructureSpecification generic handling:

Improvement: Implemented UaBrowsePath.toString() and UaRelativePath.toString().

Improvement: AbstractStructure now contains a generic toString implementation.

Fixed: StatusCodes descriptions were cut when ',' was part of the description.

Fixed: DataTypeConverter NPEs and erroneous null returns in some cases.

Fixed: DataTypeConverter now throws on value overflows and underflows when converting to Int64.

Fixed: AccessLevelType.contains(Iterable<AccessLevelType.Fields>) was always returning false. Affected all other option-set types e.g. EventNotifierType and AttributeWriteMask as well.

Fixed: PkiDirectoryCertificateStore wont anymore create secondary thumbprint-named file for certs already in the folders.

Fixed: PkiDirectoryCertificateStore didn’t initialize revocation lists correctly.

Fixed: Saving Cert and PrivKey in PEM format resulted files with incorrect line lengths in some cases.

Fixed: IdentifiersDescriptions now works again.

Fixed: TypeDictionary initializing now ignores null and empty DataTypeDictionary nodes.

Fixed: XmlDecoder.getEnumerationArray now works.

Fixed: DynamicStructure encoding problems when it contained DynamicEnumeration arrays.

Improved: UaClient.getEncoderContext() can now be called before UaClient.connect() is called.

Fixed: AddressSpace.getNodes(…​) didn’t read 1.04 new Attributes.

Interface Change: Added EventManagerListener.onConditionRefresh2, used to notify calls for the standard method ConditionRefresh2.

New: EventManagerRoot, used in NodeManagerRoot. Moved protected refreshXXX methods other than refreshItem and refreshItems to EventManagerRoot.

New: EventManagerAdapter, adapter for EventManagerListener.

Improved: IoManagerListener.onGetUserExecutable is now checked also before user can execute the Method instead of just providing Attribute value.

Fixed: NodeSet2s having larger AccessLevels used for AccessLevelEx now load (but the extra information is discarded).

Fixed: Server/ServerStatus/BuildInfo incorrectly had StatusCode 0x00004000 instead of raw Good `StatusCode.

Fixed: EventManagerListener onConditionRefresh methods are now called for every EventManager.

Deprecated: StructureInfo and StructureInfoCache. StructureSpecification and generic get/set methods of Structure should be used instead.

New: Commandline version outputs the app.home System Property at the start.

New: Commandline version, added option to pass and override System Properties via -Dproperty=value flags.

New: Generating contains helper methods for "OptionSetValues"-types, e.g. AccessLevelType.contains(AccessLevelType value) and AccessLevelType.contains(AccessLevelType…​ values)

Improved: Codegen now works with Java 11+ in addition of Java 8.

Changed: Generated toString for Structures uses the implementation via AbstractStructure.

No changes.

Fixed: Objects/StaticData/StaticArrayVariables nodes had incorrect TypeDefinition references.

New: NodeClass-based Identifiers and Ids-interfaces (e.g. DataTypeIdentifiers, DataTypeIds).

New: UaRelativePath.from(NamespaceTable namespaceTable, QualifiedName…​ elements) static factory method.

New: UaRelativePath.from(UaNamespace namespace, String…​ elementNames) static factory method.

New: UaRelativePath.standard(String…​ elementNames) static factory method.

New: UaRelativePath.getElements(), can be used to obtain elements of the path.

New: UaQualifiedName.from(UaNamespace namespace, String name) static factory method.

New: UaQualifiedName.getNamespace(), which will return the namespace as UaNamespace

Fixed: Encoding order of DiagnosticInfo fields fixed, order of Locale and LocalizedText fields are swapped. Both are Int32 fields in this case, so binary format itself is unaffected.

Fixed: Renamed UnsignedLong.valueof(BigInteger) to valueOf.

Fixed: Bad_EncodingError when encoding a DynamicStructure that was inside a Variant.

Fixed: Connections to servers, that do not use an Application Instance Certificate and support only a combination of SecurityMode NONE, UserTokenPolicy Anonymous should now work again.

New: Creating StructureSpecification and EnumerationSpecification dynamically when loading NodeSets.

New: Loading custom Structure Values as DynamicStructures where possible when loading NodeSets (if the model is not code-generated).

Improvement: Avoiding extra encode&decode step when loading the model.

Fixed: MonitoredDataItems whose MonitoringMode is changed from Sampling to Reporting should not try to fetch the initial value again.

Changed: Loading NodeSets that incorrectly define HasTypeDefinition Reference for VariableType and ObjectType logs a warning instead of failing the loading completely.

Changed: Values that cannot be decoded during the NodeSet loading are kept as encoded ExtensionObjects instead of causing the loading to fail completely.

New: Generating NodeClass-based Ids-interfaces, e.g. DataTypeIds.

Changed: Generated Ids is now an interface instead of a class and extends all NodeClass-based Ids-interfaces.

New: -w Command line switch to wait at start until enter is pressed.

Improved: Avoiding calling deprecated API.

New: -w Command line switch to wait at start until enter is pressed, same as with SampleConsoleClient.

Improved: Avoiding calling deprecated API.

Improved: Logging of the simulated alarms.

Maven integration project maven-install-helper will also install javadocs in addition of the SDK jar to your local .m2 Maven cache.

The official name of the product was changed to "Prosys OPC UA SDK for Java" and the names of the SDK jars have changed slightly as well.

OPC Foundation Java Stack is integrated as part of the SDK. It includes the OPC Foundation updates to 1.04 plus additional updates to improve the integration.

Support for OPC UA 1.04 Information Models.

Support for the new 1.04 Attributes in the client side.

Support for the new 1.04 DataTypeDefinition Attribute in the server side (support for other new 1.04 Attributes will be added later).

Support for the new 1.04 Security Policies: Aes128-Sha256-RsaOaep, Aes256-Sha256-RsaPss.

Support for Reverse Connections (using the new 'ReverseHello' message defined in OPC UA 1.04.).

Improved support for handling Structure data types in a generic way.

Support for Automatic-Module-Name for Java 9+.

Support Maven for installation of SDK and samples.

Fixed detection of Spongy Castle on Android.

Fixed HTTPS communications.

New: Support for (most) new types defined in OPC UA 1.04.

New: Support for the new ReverseHello message defined in OPC UA 1.04.

New: Support for new security policies defined in 1.04

New: ReverseConnectionListener.

New: SecurityPolicy enum. Includes the new security policies defined in OPC UA 1.04. NOTE that Basic128Rsa15 and Basic256 are now deprecated and they are no longer recommended, except for backwards compatibility.

New: SecurityMode.combinations()

Removed: SecurityMode constants. Use the new constants in SecurityPolicy instead. ALL is no longer available: use the version specific constants instead.

Removed: SunJceCryptoProvider and SunJceCertificateProvider. They were not Java 9+ ready and also not 100% compatible. As a result BouncyCastle (or SpongyCastle in Android) is a mandatory dependency.

New: Support multidimensional arrays in Structure types

Removed: EncoderCalc.

New: LimitedByteArrayOutputStream and SizeCalculationOutputStream. Can be used with BinaryEncoder in situations where EncoderCalc was previously used.

New: Added static valueOf(String) method to the unsigned types to match jdk ones.

New: Support new 1.04 type Decimal by enable usage of Java BigDecimal in Variant and fields of Structure, for example.

New: A Builder class for each Structure.

New: EncoderContext.addEnumerationSpecification() and addStructureSpecification()

New: Static methods Variant.asObjectArray(Variant…​ variants) and Variant.asVariantArray(Object…​ objects).

Fixed: Use NamespaceIndex=0 instead of the UA Standard NamespaceUri for ExpandedNodeIds.

Fixed: Names of threads are more descriptive, and they can be configured. See StackUtils class.

Fixed: Handling of unknown built-in type IDs.

Fixed: Always use SpongyCastle in Android automatically.

Fixed: No more warnings from usage of reflection in Java 9+

Fixed: Possible memory leak after calling StackUtils.shutdown() and "restarting" the stack.

Removed ThreadGroups.

Changed: ExtensionObject now uses ByteString instead of byte[].

Changed: MultidimensionArrayUtils.toString() does not decode `ExtensionObjects by default.

Removed: XXXServiceSetHandler helper interfaces.

Deprecated: Constructors of UnsignedXXX types. Use static factory methods (valueOf) instead.

Deprecated: Constructor of StatusCode. Use static factory method StatusCode.valueOf instead.

Deprecated: Structure.getBinaryEncodeId, getJsonEncodeId, getTypeId & getXmlEncodeId. Use values available from the new Structure.specification() instead.

New: Support for OPC UA 1.04 types.

Removed: Generated code and models for companion specifications (DI, ADI, PLCOpen).

Removed: PkiFileBasedCertificateValidator, PkiFileBasedCertificateListener, CertificateValidationListener, DefaultUaCertificateValidator, UaCertificateValidator. These were deprecated in version 3.x.

New: AccessLevelType replaces EnumSet<AccessLevel> in UaVariable.getAccessLevel(), etc.

New: EventNotifierType replaces EnumSet<EventNotifiedClass> in UaObject.getEventNotifier(), etc.

New: AttributeWriteMask replaces EnumSet<WriteAccess> in UaNode.getWriteMask(), etc.

Deprecated: Constructors of the UaAddress. Use static factory methods instead.

Deprecated: DataTypeConverter.getDataTypeForJavaClass(Class<?> clazz). Use getDataTypesForJavaClass() instead.

Deprecated: UaAddressSpace.findNode(). Use getNode() instead.

Changed: Append the certificate size to the file name of application instance certificates.

Changed: DataTypeConverter throws DataTypeConversionException instead of ServiceResultException.

Changed: UaValueNode.getDataType() returns UaDataType instead of UaType

Changed: StructureSpecification, FieldSpecification and EnumerationSpecification are now constructed via builders instead of constructors.

Fixed: Event types which had Object InstanceDeclarations with Properties now work properly.

New: UaNamespace. Used to model an OPC UA Namespace(URI).

New overload: UaNodeId.fromLocal(ExpandedNodeId expandedNodeId, NamespaceTable namespaceTable).

New: UaNodeId.getValueAsParseForm() and UaNodeId.parse(String namespaceUri, String valueAsParseForm). Can be used to store UaNodeId in files.

New: Automatically call registerModel() for generated information models by default.

New interface: BitField. All UnsignedXXX types implement this.

New: UaDataType.getDataTypeDefinition().

Fixed: Forward references of the Enumeration type.

Fixed: BrowseName of Guid type (was GUID)

Removed: Methods addChangeListener(), getDataChangeListeners(), hasChangeListener() and removeChangeListener() from MonitoredDataItem. These have been deprecated from 2.x.

Removed: UaFolder class. This was already deprecated in version 2.x. FolderType should be used instead.

Deprecated: UaClient methods: getHost(), getPort(), getProtocol(), getServerName() and getUri(). Use the respective methods of UaAddress instead.

Deprecated: UaClient.setUri(). Use UaClient.setAddress() instead.

Deprecated: AddressSpace.findNode(). Use getNode() instead.

Changed: Added missing Subscription parameter to SubscriptionNotificationListener.onMissingData

Changed: Added errorCode parameter to ServerStatusListener.onStatusChange(). Used, when status is null.

Changed: Async methods in AddressSpace and UaClient return the AsyncResult with a generics parameter matching the response type.

Changed: TypeDictionary now reads by default the dictionaries when connecting to the server. This can be toggled via Uaclient.setInitTypeDictionaryOnConnect(boolean).

New: TypeDictionary.getStructureSpecification(UaNodeId id), which can be used to obtain the StructureSpecification of the given id (type or encoding id).

New: TypeDictionary reads the new 1.04 DataTypeDefinition Attributes, if the server provides them.

New: UaClient.getAddress().

New: UaClient.setConnectTimeout(), can be used to set how long the initial connection (normal or reverse) is waited.

New: UaServer.addReverseConnection(String clientServerEndpointUrl, String endpointUrlForClientConnection). Enables support for Reverse Connections as mentioned in Feature Highlights.

New: NodeManagerUaNode.getDataType(NodeId dataTypeId).

New: Added support for SecurityMode for HTTPS connections. Note that only MessageSecurityModes None or Sign can be used.

New: SubscriptionManager.setMaxMonitoredItemsPerSubscription(int). Default is 1000.

Deprecated: UaServer.setSecurityModes(). Use UaServer.getSecurityModes().add() or UaServer.getSecurityModes().addAll() instead.

Deprecated: NodeManagerTable.findNode(), use getNode() instead.

Deprecated: NodeManager.findNode, use getNode() instead.

Changed: UaServer.getSecurityModes() returns a Set instead of an array of SecurityMode.

Changed: UaServer.getSecurityModes() is empty by default (used to initialize to `SecurityModes.ALL, which does not exist any more).

Changed: Added Boolean useSimpleBounds parameter to HistoryManagerListener.onReadAtTimes call.

Changed: InstanceDeclaration interface, methods returning Set<InstanceDeclaration> now return Set<? extends InstanceDeclaration>

Removed: InstanceDeclaration.getExternalReferences() and getInstanceReferences()

Changed: NodeManagerTable.addNode() now throws IllegalStateException if the the add operation fails.

Changed: Using 32 byte authentication tokens for Sessions.

Fixed: Symmetric ReferenceTypes now work properly.

Fixed: Possible multithreading issue in protected method SubscriptionManager.nextSubscriptionId()

Fixed: An issue where Diagnostics didn’t work if they were enabled before UaServer.start was called.

Changed: Configuration file format. Please see the Codegen Manual and Migration Guide for details.

Changed: Namespace prefix is now applied also to the names of the generated DataTypeDictionaryHelper and Serializer output classes.

New: Support OPC UA 1.04 information models.

New: A static SPECIFICATION field is generated for each Structure. It contains the respective StructureSpecification.

New: A static SPECIFICATION field is generated for each Enumeration. It contains the respective EnumerationSpecification.

New: Generate code for subtypes of unsigned integer types that have OptionSetValues Property.

New: Support for multidimensional array fields for Structures (added in 1.04).

New: Support abstract Enumeration in InstanceDeclaration DataTypes (will return Enumeration in generated code).

New Generation Targets: client_model_provider and server_model_provider. UaClient and UaServer will be able to call registerModel automatically for these models (assuming the generated files are accessible via the classpath).

New: Detecting if an information model is used improperly as configuration file and reporting better error message.

New: Command line switch '-r' to open a port for reverse connection.

New: Added pom.xml for Maven integration.

Changed: Project layout to Maven Standard Directory Layout.

Changed: Removed generation of HTTPS certificate (not required).

New: Support new security policies defined in 1.04.

New: Support reverse connection.

New: Added pom.xml for Maven integration.

Changed: Project layout to Maven Standard Directory Layout.

Removed MyEnumType enum, converted the functionality to use EnumerationSpecification.

Fixed: Avoids NPE for the first read of NonUaNodeComplianceNodeManager.

For Maven users, A pom.xml for maven integration is now provided for the SDK jar. Addtionally the samples have their own pom.xml which should allow easier importing to IDEs. Note that you must first install the SDK pom file (with the jar) to your local .m2 repo, otherwise the pom.xml of the samples do not work.

For Java 9+ support, the SDK jar now includes Automatic-Module-Name in the MANIFEST.MF with value 'com.prosysopc.ua'

Fixed DataTypeDictionary related Description node names for the SampleTypes model, which is bundled with the SDK Codegen.

Android detection should work better, for the purpose of automatically detecting if SpongyCastle based Crypto/Certificate providers should be used.

HTML manuals included in the distribution in addition to PDFs.