org.ar4k.agent.opcua.utils.OpcUaUtils Maven / Gradle / Ivy
package org.ar4k.agent.opcua.utils;
import static org.eclipse.milo.opcua.stack.core.types.builtin.unsigned.Unsigned.uint;
import static org.eclipse.milo.opcua.stack.core.util.ConversionUtil.toList;
import java.io.ByteArrayInputStream;
import java.io.File;
import java.io.FileInputStream;
import java.io.FileOutputStream;
import java.io.UnsupportedEncodingException;
import java.security.Key;
import java.security.KeyFactory;
import java.security.KeyPair;
import java.security.KeyStore;
import java.security.PrivateKey;
import java.security.PublicKey;
import java.security.cert.CertificateEncodingException;
import java.security.cert.CertificateFactory;
import java.security.cert.X509Certificate;
import java.security.spec.PKCS8EncodedKeySpec;
import java.util.Base64;
import java.util.HashMap;
import java.util.List;
import java.util.Map;
import java.util.UUID;
import java.util.concurrent.ExecutionException;
import java.util.regex.Pattern;
import org.ar4k.agent.keystore.SelfSignedCertificateBuilder;
import org.ar4k.agent.keystore.SelfSignedCertificateGenerator;
import org.ar4k.agent.logger.EdgeLogger;
import org.ar4k.agent.logger.EdgeStaticLoggerBinder;
import org.ar4k.agent.opcua.client.OpcUaClientService;
import org.eclipse.milo.opcua.sdk.client.OpcUaClient;
import org.eclipse.milo.opcua.sdk.client.nodes.UaNode;
import org.eclipse.milo.opcua.sdk.server.util.HostnameUtil;
import org.eclipse.milo.opcua.stack.core.Identifiers;
import org.eclipse.milo.opcua.stack.core.UaException;
import org.eclipse.milo.opcua.stack.core.types.builtin.DataValue;
import org.eclipse.milo.opcua.stack.core.types.builtin.NodeId;
import org.eclipse.milo.opcua.stack.core.types.builtin.Variant;
import org.eclipse.milo.opcua.stack.core.types.builtin.unsigned.UByte;
import org.eclipse.milo.opcua.stack.core.types.builtin.unsigned.UInteger;
import org.eclipse.milo.opcua.stack.core.types.builtin.unsigned.ULong;
import org.eclipse.milo.opcua.stack.core.types.builtin.unsigned.UShort;
import org.eclipse.milo.opcua.stack.core.types.enumerated.BrowseDirection;
import org.eclipse.milo.opcua.stack.core.types.enumerated.BrowseResultMask;
import org.eclipse.milo.opcua.stack.core.types.enumerated.NodeClass;
import org.eclipse.milo.opcua.stack.core.types.enumerated.TimestampsToReturn;
import org.eclipse.milo.opcua.stack.core.types.structured.BrowseDescription;
import org.eclipse.milo.opcua.stack.core.types.structured.BrowseResult;
import org.eclipse.milo.opcua.stack.core.types.structured.ReferenceDescription;
/**
*
* @author andrea ambrosini
*
*/
public class OpcUaUtils {
private static final EdgeLogger logger = EdgeStaticLoggerBinder.getClassLogger(OpcUaClientService.class);
private static final Pattern IP_ADDR_PATTERN = Pattern
.compile("^(([01]?\\d\\d?|2[0-4]\\d|25[0-5])\\.){3}([01]?\\d\\d?|2[0-4]\\d|25[0-5])$");
private static final String CLIENT_ALIAS = "Ar4kAgent-opc";
private static final String keyStorePassword = "password";
private static final char[] PASSWORD = keyStorePassword.toCharArray();
private X509Certificate clientCertificate = null;
private KeyPair clientKeyPair = null;
private PrivateKey privateKey = null;
public OpcUaUtils create() throws Exception {
return create("Rossonet scarl " + UUID.randomUUID().toString(), "Rossonet", "IoT_OT", "Imola", "BO", "IT",
"urn:rossonet:client:opc-ua:client", "localhost", "127.0.0.1");
}
public OpcUaUtils create(String commonName, String organization, String unit, String locality, String state,
String country, String uri, String dns, String ip) throws Exception {
try {
KeyStore keyStore = KeyStore.getInstance("PKCS12");
File serverKeyStore = new File("keystore.pfx");
if (!serverKeyStore.exists()) {
logger.info("CERTIFICATE GENERATION");
keyStore.load(null, PASSWORD);
KeyPair keyPair = SelfSignedCertificateGenerator.generateRsaKeyPair(2048);
SelfSignedCertificateBuilder builder = new SelfSignedCertificateBuilder(keyPair)
.setCommonName(commonName).setOrganization(organization).setOrganizationalUnit(unit)
.setLocalityName(locality).setStateName(state).setCountryCode(country).setApplicationUri(uri)
.addDnsName(dns).addIpAddress(ip);
for (String hostname : HostnameUtil.getHostnames("0.0.0.0")) {
if (IP_ADDR_PATTERN.matcher(hostname).matches()) {
builder.addIpAddress(hostname);
} else {
builder.addDnsName(hostname);
}
}
X509Certificate certificate = builder.build();
keyStore.setKeyEntry(CLIENT_ALIAS, keyPair.getPrivate(), PASSWORD,
new X509Certificate[] { certificate });
keyStore.store(new FileOutputStream(serverKeyStore), PASSWORD);
} else {
keyStore.load(new FileInputStream(serverKeyStore), PASSWORD);
}
Key serverPrivateKey = keyStore.getKey(CLIENT_ALIAS, PASSWORD);
if (serverPrivateKey instanceof PrivateKey) {
clientCertificate = (X509Certificate) keyStore.getCertificate(CLIENT_ALIAS);
PublicKey serverPublicKey = clientCertificate.getPublicKey();
logger.debug("\n\n-----BEGIN CERTIFICATE-----\n"
+ Base64.getEncoder().encodeToString(clientCertificate.getEncoded())
+ "\n-----END CERTIFICATE-----\n\n");
logger.debug("\n\n-----BEGIN RSA PRIVATE KEY-----\n"
+ Base64.getEncoder().encodeToString(serverPrivateKey.getEncoded())
+ "\n-----END RSA PRIVATE KEY-----\n\n");
clientKeyPair = new KeyPair(serverPublicKey, (PrivateKey) serverPrivateKey);
privateKey = (PrivateKey) serverPrivateKey;
}
} catch (Exception e) {
throw new Exception(e);
}
return this;
}
public KeyPair getClientKeyPair() {
return clientKeyPair;
}
public PrivateKey getPrivateKey() {
return privateKey;
}
public X509Certificate getClientCertificate() {
return clientCertificate;
}
public String getPrivateKeyBase64() throws Exception {
return Base64.getEncoder().encodeToString(privateKey.getEncoded());
}
public String getClientCertificateBase64() throws Exception, CertificateEncodingException {
return Base64.getEncoder().encodeToString(clientCertificate.getEncoded());
}
public boolean setClientKeyPair(String key, String crt) throws Exception {
logger.info("checking cert/key\nkey:" + key + "\ncrt:" + crt);
boolean result = false;
try {
KeyStore keyStore = KeyStore.getInstance("PKCS12");
File serverKeyStore = new File("keystore.pfx");
serverKeyStore.deleteOnExit();
keyStore.load(null, PASSWORD);
String privateKeyContent = key;
String crtContent = crt;
KeyFactory kf = KeyFactory.getInstance("RSA");
byte[] decodedCrt = Base64.getDecoder().decode(crtContent);
clientCertificate = (X509Certificate) CertificateFactory.getInstance("X.509")
.generateCertificate(new ByteArrayInputStream(decodedCrt));
PublicKey pubKey = clientCertificate.getPublicKey();
byte[] decodedKey = Base64.getDecoder().decode(privateKeyContent);
PKCS8EncodedKeySpec keySpec = new PKCS8EncodedKeySpec(decodedKey);
PrivateKey privKey = kf.generatePrivate(keySpec);
clientKeyPair = new KeyPair(pubKey, privKey);
privateKey = privKey;
keyStore.setKeyEntry(CLIENT_ALIAS, clientKeyPair.getPrivate(), PASSWORD,
new X509Certificate[] { clientCertificate });
keyStore.store(new FileOutputStream(serverKeyStore), PASSWORD);
result = true;
} catch (Exception e) {
logger.logException(e);
throw new Exception(e);
}
return result;
}
public static void writeValueToOpc(String nodeIdentifier, String value, Map resultMap,
OpcUaClient client)
throws UaException, InterruptedException, ExecutionException, UnsupportedEncodingException {
UaNode node = client.getAddressSpace().getNode(NodeId.parse(nodeIdentifier));
if (resultMap != null) {
resultMap.put("nodeId", node.getNodeId());
resultMap.put("node browse name", node.getBrowseName());
resultMap.put("node description", node.getDescription());
resultMap.put("node display name", node.getDisplayName());
resultMap.put("node class", node.getNodeClass());
resultMap.put("node user write mask", node.getUserWriteMask());
resultMap.put("node write mask", node.getWriteMask());
resultMap.put("node childs", browseNode(1, client, node.getNodeId()));
}
final DataValue originalRead = client.readValue(0, TimestampsToReturn.Both, node.getNodeId()).get();
if (resultMap != null) {
resultMap.put("node value before", originalRead);
}
Object originalValue = originalRead.getValue().getValue();
Object convertedValue = null;
if (originalValue instanceof String) {
convertedValue = value;
} else if (originalValue instanceof Integer) {
convertedValue = Integer.parseInt(value);
} else if (originalValue instanceof Boolean) {
convertedValue = Boolean.parseBoolean(value);
} else if (originalValue instanceof Double) {
convertedValue = Double.parseDouble(value);
} else if (originalValue instanceof Boolean) {
convertedValue = Boolean.parseBoolean(value);
} else if (originalValue instanceof Float) {
convertedValue = Float.parseFloat(value);
} else if (originalValue instanceof java.util.UUID) {
convertedValue = value;
} else if (originalValue instanceof Short) {
convertedValue = Short.parseShort(value);
} else if (originalValue instanceof Long) {
convertedValue = Long.parseLong(value);
} else if (originalValue instanceof Byte) {
convertedValue = Byte.parseByte(value);
} else if (originalValue instanceof org.eclipse.milo.opcua.stack.core.types.builtin.unsigned.UByte) {
convertedValue = UByte.valueOf(Byte.parseByte(value));
} else if (originalValue instanceof org.eclipse.milo.opcua.stack.core.types.builtin.ByteString) {
convertedValue = new org.eclipse.milo.opcua.stack.core.types.builtin.ByteString(value.getBytes("UTF8"));
} else if (originalValue instanceof org.eclipse.milo.opcua.stack.core.types.builtin.DateTime) {
convertedValue = new org.eclipse.milo.opcua.stack.core.types.builtin.DateTime(Long.parseLong(value));
} else if (originalValue instanceof org.eclipse.milo.opcua.stack.core.types.builtin.unsigned.UShort) {
convertedValue = UShort.valueOf(Short.parseShort(value));
} else if (originalValue instanceof org.eclipse.milo.opcua.stack.core.types.builtin.unsigned.UInteger) {
convertedValue = UInteger.valueOf(Integer.parseInt(value));
} else if (originalValue instanceof org.eclipse.milo.opcua.stack.core.types.builtin.unsigned.ULong) {
convertedValue = ULong.valueOf(Long.parseLong(value));
} else if (originalValue instanceof org.eclipse.milo.opcua.stack.core.types.builtin.XmlElement) {
convertedValue = new org.eclipse.milo.opcua.stack.core.types.builtin.XmlElement(value);
} else {
convertedValue = value;
}
if (resultMap != null) {
resultMap.put("write status",
client.writeValue(node.getNodeId(), new DataValue(new Variant(convertedValue))).get());
}
}
public static Map browseNode(int maxDeep, OpcUaClient client, NodeId browseRoot) {
BrowseDescription browse = new BrowseDescription(browseRoot, BrowseDirection.Forward, Identifiers.References,
true, uint(NodeClass.Object.getValue() | NodeClass.Variable.getValue()),
uint(BrowseResultMask.All.getValue()));
Map resultMap = new HashMap<>();
try {
BrowseResult browseResult = client.browse(browse).get();
List references = toList(browseResult.getReferences());
for (ReferenceDescription rd : references) {
logger.debug("found -> " + rd.getNodeId().toParseableString());
resultMap.put(rd.getNodeId().toParseableString(), rd.getBrowseName().getName());
if (maxDeep > 0 && rd.getNodeId().toNodeId(client.getNamespaceTable()).isPresent()) {
resultMap.put(rd.getNodeId().toParseableString(),
browseNode(maxDeep - 1, client, rd.getNodeId().toNodeId(client.getNamespaceTable()).get()));
}
}
} catch (Exception e) {
logger.error("Browsing nodeId={} failed: {}", browseRoot, e.getMessage(), e);
}
return resultMap;
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy