Prosys OPC UA SDK for Java

Updated: Using Core OPC UA Information Model version 1.05.03.

Updated: Using GDS OPC UA Information Model version 1.05.02.

Updated: BouncyCastle dependency is updated to version 1.77.

Verified: This version of the SDK is tested to work with Java 21 (in classpath mode).

API CHANGE: com.prosysopc.ua.UaBrowsePath renamed to com.prosysopc.ua.UaBrowseNamePath

API CHANGE: com.prosysopc.ua.UaRelativePath renamed to com.prosysopc.ua.UaRelativeNamePath

API CHANGE: com.prosysopc.ua.server.BrowsePath renamed to com.prosysopc.ua.RelativeNamePath

API CHANGE: There are now new classes com.prosysopc.ua.UaBrowsePath and com.prosysopc.ua.UaRelativePath with additional semantic, they now are equivalent to com.prosysopc.ua.stack.core.BrowsePath and com.prosysopc.ua.stack.core.RelativePath

SECURITY IMPROVEMENT: CryptoUtil.getRandom() defaults to SecureRandom.getInstance("Windows-PRNG") on Windows and SecureRandom.getInstance("NativePRNGNonBlocking") in other operating systems. The previous default ("SHA1PRNG") is still used as the fallback. This is used as the internal random provider in the SDK and requires no change to your application.

New: UaNodeSet, an intermediate format that enables parsing a NodeSet2 XML file before loading it to the server with NodeManagerTable.loadModel, for example.

New: UaBinaryFile, can be used to read UABinaryFileDataType encoded in a file.

New: Attributes.getAttributeId(String)

New: UnsignedByte, UnsignedShort, UnsignedInteger and UnsignedLong: added methods incOrWrap, incOrWrapTo, decOrWrap and decOrWrapTo

New: UaNode.getAttributesMap()

New: UaNode.addOrganizes(UaNode)

New overload: UaNode.addReference(ExpandedNodeId nodeId, NodeId referenceTypeId)

New overload: UaNode.addReference(NodeId nodeId, NodeId referenceTypeId)

New overload: UaNode.addReference(UaNode targetNode, NodeId referenceTypeId)

New: QualifiedName, UaNodeId, UaExpandedNodeId, UaQualifiedName, UaNamespace and UaApplicationURI now implement Comparable.

New: UaNode.getBrowsePaths() and UaNode.getUaBrowsePaths()

New: UaArrayDimensions.parse(String)

Changed: UaArrayDimensions.toString() format changed to "[x, y, z]", respective to what parse expects.

Changed: JsonEncoder to use reversible decoding only when instructed (PubSub uses the JsonDataSetMessageContentMask.Options.ReversibleFieldEncoding flag that was added in 1.05).

Fixed: UaAddress.parse can now handle FQN addresses ending in a dot (the dot is removed).

Fixed: DataValue.clone() didn’t deep-clone the value.

Fixed: com.prosysopc.ua.stack.core.OptionSet.Fields now implements FieldSpecification directly, com.prosysopc.ua.stack.core.OptionSet.Fields.getSpecification() is now deprecated (and was changed to return 'this').

Fixed: XmlDecoder.getMatrix worked incorrectly in some cases.

Fixed: JsonDecoder, Variant decoding to treat the value as raw string if "Type" field is missing (in addition to previous functionality that checked whether "Body" exists).

Improvement: Refresh the NamespaceTable before re-creating failed MonitoredItems for Subscriptions.

Fixed: Possible NPE if the server didn’t send (although required) any Certificate, when UserName or Certificate based user authentication was defined.

Fixed: Client-side decoding failures of Server-sent messages caused a timeout (instead of failing with Bad_DecodingError).

SECURITY IMPROVEMENT: Add more randomness when decryption or signature verification fails to reduce the risk of timing-based attacks.

SECURITY IMPROVEMENT: Corrected maximum connection management.

Memory leak fix: Non-activated Sessions that were closed due to reaching MaxSessionCount were not cleaned up properly.

New: SessionManager.closeSession, can be used to close a Session from the server side. Useful, if you need to distrust an application and close the earlier connections immediately.

New: SubscriptionManager.getSubscriptions().

New: ServerCapabilities nodes (/Root/Objects/Server/ServerCapabilities/*): MinSupportedSampleRate, MaxSessions, MaxSubscriptionsPerSession, MaxMonitoredItemsPerSubscription, MaxSubscriptions and MaxMonitoredItems. The MaxSubscriptions/MaxMonitoredItems are calculated based on the SDK limits for Sessions and Subscriptions.

New: com.prosysopc.ua.server.Subscription.beginNotify(), can be used as a transaction for advanced use cases to prevent automatic notifications of data changes until endNotify() is called.

New: Support com.prosysopc.ua.stack.core.GenericAttributes for AddNodes service.

New: InstanceDeclarationHierarchy.findFirstMatch(RelativeNamePath, boolean, Predicate<UaNode>), for advanced use cases of searching UaNode that matches the given Predicate.

New: NodeManagerTable.loadModel(UaNodeSet…​)

New: UaServer.addReverseConnection(String)

New: UaServer.addReverseConnection(ReverseConnectionParameters)

Improvement: UaServer.addReverseConnection(String) and ReverseConnectionParameters.from(String) now accept "inv+opc.tcp" and "rcp+opc.tcp" URL prefixes, in addition to "opc.tcp", to be used for the Reverse Connection address.

Changed: SubscriptionIds for Subscription now start by default from a value based on the current time, to avoid reusing old SubscriptionIds at startup. This can be changed via SubscriptionManager.setNextSubscriptionId(UnsignedInteger).

Changed: Protected IoManager methods beginRead and endRead call sequence (same applies for beginWrite and endWrite). Previously they were called in pairs for each Namespace, now beginRead is called first for each Namespace before starting processing, thus enabling better handling in asynchronous implementations.

Changed: Use StatusCodes.Bad_SecurityPolicyRejected over Bad_SecurityModeRejected in CreateSession if the SecurityMode is not supported. Required by the CTT.

Fixed: SecureChannel Token lifetime was not revised. New defaults are: minimum 10 minutes, maximum 1 hour. These can be configured via StackUtils.setSecurityTokenLifetimeMin(UnsignedInteger) and StackUtils.setSecurityTokenLifetimeMax(UnsignedInteger).

Fixed: Added a (fixed) retry delay for Reverse Connections.

Fixed: Clear BrowseContinuationPoints and HistoryContinuationPoints immediately, when a Session is closed.

Fixed: Do not return InverseName Attribute for Symmetric ReferenceTypes. Required by the CTT.

Fixed: Do not fail loading NodeSets that contain 'RolePermission' and 'RolePermissions' XML elements (they are ignored, since Roles are not yet supported).

Fixed: Incorrect HasTypeDefinition References were created, if an UaNodeBuilderConfiguration instantiated something for PlaceHolder nodes whose TypeDefinition is the same as the one to be instantiated.

Fixed: Use StatusCodes.Bad_MethodInvalid (instead of Bad_NodeIdUnknown) when Calling a Method that doesn’t exist.

Fixed: SessionManager.getSessions() didn’t return Sessions that were not yet activated.

New: PubSubConnectionCommands.PUB_SUB_RESTART_CONNECTION, allows restarting an enabled connection (mainly useful for UDP-UADP).

Fixed: Do not send UADP Discovery requests, if receiving messages without a PublisherId.

New: Automatically exclude certain BrowseNames (such as "Description") that would cause generated code to conflict with the SDK core API.

New: Added an option to toggle ServerState between Running and Failed for testing purposes.

Changed: Don’t enable engineering units and other semantic properties to be written from client applications, as it is not recommended in general.

Javadocs are back in Java 8 format due to issues with some Integrated Development Environments (IDEs).

New: LocalizedText.asSingleLocale, supports "best match" search (mostly used internally in the server side).

Fixed: JsonEncoder now escapes control characters for Strings.

Fixed: XmlElement.hashCode no longer throws NPE.

Changed: XmlElement now stores data internally always as a String.

Changed: XmlElement now allows invalid XML. Calling XmlElement.getNode for invalid XML throws.

New: Added NodeId[] overloads of multiple UaClient.historyReadXXX methods.

Fixed: UaClient.connect process hang if connecting to a server that had a custom SimpleType whose supertype was a custom SimpleType.

Fixed: Calling UaClient.connect directly after a UaClient.disconnect caused a race condition, which could result in multiple errors.

Fixed: Reverse Connections didn’t work in 5.0.0.

Fixed: Having sampling interval larger than publish interval for a MonitoredItem caused an NPE if DataValue timestamp was before Java Epoch.

Fixed: Removed UaNode is no longer cached in the "last operation UaNode" cache.

Changed: Allow Session.INTERNAL_SESSION to read /Root/Objects/Server/ServerDiagnostics/SessionsDiagnosticsSummary/SessionSecurityDiagnosticsArray node.

Fixed: Having an UInteger-OptionSet Method argument from a different namespace than the one being generated caused an NPE.

New: com.prosysopc.ua.UaIds that holds the same constants as com.prosysopc.ua.types.opcua.Ids, but as UaNodeId (vs. ExpandedNodeId).

New: UaDataTypeSpecification, super-interface for all XXXSpecification interfaces.

New: SimpleTypeSpecification, models types that are either built-in or subtypes of those and not Enumerations, OptionSets or Structures.

New: In general propely support OptionSets, including custom ones.

New: OptionSetSpecification, OptionSpecification and UaOptionSet, offer generic handling of OptionSets similar to StructureSpecification+Structure

New: OptionSetStructureSpecification, generic description of OptionSet-structure subtypes.

New: Structure.toFieldsMap and toFieldNamesMap.

New: Ids (and UaIds) now contains additional identifiers from Identifiers that were not directly related to Types, e.g. the Server node constant now exist as UaIds.Server and Ids.Server.

New: ByteString.toBitSet returning java.util.BitSet and fromBitSet static factory method.

New: UaAddressSpace.getObjectsFolder() and getRoot helpers.

New: StatusCode now implements com.prosysopc.ua.BitField.

New: UaNodeId.parse(String).

New: UaQualifiedName.parse(String).

Changed: ExpandedNodeId.toString format now only escapes % and ; characters for the namespace uri component

Changed: LocalizedText now handles all localizations of the same value within the same LocalizedText instance. LocalizedTextMap is removed and majority of it’s API is now found directly from LocalizedText.

Changed: LocalizedText no longer has separate null vs. empty handling (as the binary encoding form for both should be the same "not present"). Null locales and values are instead now interpreted as empty strings.

Changed: StructureSpecification is now an interface instead of a class. Allows OptionSetStructureSpecification multiple inherit it and OptionSetSpecification.

Changed: UaType.getJavaClass() moved to UaDataType.getJavaClass(). Setter is removed. Getter returns based on EncoderContext.

Changed: Undo deprecation of UaAddressSpace.findNode.

Changed: IEncoder and IDecoder are now UaNodeId based, methods taking Class are removed.

Changed: AbstractOptionSetDataType.toSet() (the base for Codegen numeric OptionSet types) now returns a Set with deterministic iteration order. The order is order in which the Options are defined in OptionSetSpecification.getOptions().

Changed: UaNodeId.toString now uses the same format as ExpandedNodeId.toString.

Changed: UaQualifiedName.toString() now uses a format "nsu=NAMESPACE_URI;name=NAME_PART".

Deprecated: All constructors of DateTime. Use static factory methods instead.

Deprecated: StructureSpecification.toStructureBuilder, use toInstanceBuilder instead (this change allows it to be overridden in OptionSetStructureSpecification).

Deprecated: ObjectUtils, use methods from java.util.Objects instead.

Removed: UnsignedByte.assertValueInRange (is internal functionality).

Removed: Variant.compareTo. Variant was not Comparable and the implementation did throw for non numeric data.

Removed: KeyPairsKeyManager, not used internally and all methods just returned null.

Removed: SnapshotArray (use java.util.concurrent.CopyOnWriteArrayList instead)

Removed: Old Structure "Serializer system" and related classes that were used in 4.x and older major versions.

Removed: com.prosysopc.ua.stack.builtintypes.DataTypes (previously deprecated)

Removed: com.prosysopc.ua.stack.builtintypes.NodeReference, not used and com.prosysopc.ua.UaExpandedNodeId gives equivalent functionality, if needed.

Fixed: Connections failed to servers that missed the MaxNodesPerRead OperationLimit node.

Changed: Removed throws StatusException from UaClient.writeValues(NodeId[] nodeIds, Object[] value) and writeValues(NodeId[] nodeIds, Object[] values, NumericRange[] indexRanges) signatures as the exception is not thrown by the code.

Changed: AddressSpace.findNode is no longer deprecated, functionality was changed to call getNode instead of it’s NodeCache.findNode. Returns null if any exception thrown.

Deprecated MonitoredEventItem constructors that do not take an EventFilter (use the ones that do).

New: Support larger SamplingInterval(s) than PublishInterval for data-MonitoredItems.

Fixed: Nested custom structures in custom structure fields <Value> are now supported when loading NodeSets.

Fixed: Protected beginXXX and endXXX for IoManager and HistoryManager contained the whole request data, now it is properly split per namespace and only the relevant operations are given as parameter.

Changed: Use fully qualified version of the hostname when making the certificate (other samples already did this).

Changed: Using core OPC UA NodeSet version 1.05.02.

Removed: Previously deprecated StructureInfo+StructureInfoCache. Use StructureSpecification(s) from EncoderContext instead.

Removed: Internal BrowseContinuationPoint.getData and setData.

Changed: PubSubEvents is now PubSubSystemEvents.

Fixed: PUB_SUB_JSON_DATASET_MESSAGE_RECEIVED and PUB_SUB_UADP_DATASET_MESSAGE_RECEIVED are now Reader-level events and contain Reader configuration.

Fixed: In some cases PubSubSystemEvents were sent more than once.

New: Added option to split output packages per NodeClass. This is by default enabled, but not used for the core namespace that SDK embeds. Avoids rare conflicts where the same name exist within the same namespace for different NodeClass.

New: Generates a CommonInformationModel, which holds the generated UaDataTypeSpecifications.

Removed: internal defaults for the DI, ADI + PLCOpen models. Now the namespace package mappings must always be specified. See the sample di_adi_plcopen.xml configuration in the SDK distribution zip.

Changed: Generated private keys no longer use passwords. Loading of existing private keys made with older version (having a password) will fail.

Changed: Generated private keys no longer use passwords. Loading of existing private keys made with older version (having a password) will fail.

Changed: The opc.https endpoint is no longer by default enabled.

Changed: Generated private keys no longer use passwords. Loading of existing private keys made with older version (having a password) will fail.

The distribution now contains Migration Guides from all earlier major versions i.e. 1→2, 2→3, 3→4 in addition to the new 4→5 guide.

Evaluation edition start-up text now only appears in logger, similar to start-up text of other editions. This is part of our internal quality improvement effort, which one part is to ensure via forbidden-apis that e.g. system out/err is not used by the SDK code (outside of samples).

Also as a result for quality improvements, we internally run forbidden-apis default checks for "unsafe API". In addition, Some reflection-related code no longer calls setAccessible(true), this has the potential to impact old code regarding reflection. If you encounter an issue, let us know.