Skip to content

OPC UA 1.05 Maintenance Update

Pre-release
Pre-release
Compare
Choose a tag to compare
@opcfoundation-org opcfoundation-org released this 31 Jan 10:53
1.5.375.443
2655c6c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

1.05.375 January Release

This release is based on the 1.05.03 Nodeset with generated files from the ModelCompiler.
The focus in this release was to add the support for Elliptic Curve Cryptography (ECC) and keep backward compatibility with existing configurations.

Improvements and bug fixes

  • Various smaller bug fixes.
  • Set corresponding security signature hash and validate ECDSA security signature hash algorithm length for ECC certificates
  • Fix: Return full CertificateChain after Certificate Update
  • Add ECDSA support for importing private key from PEM
  • Allow Subject Name Change of Application Certificate in GDS Push scenario
  • Extend ServerConfiguration & GDS Server for ECC
  • Simplify SetECDsaPublicKey and padd with leading zeros.

ECC support

  • Changes to applications configuration
  • Configuration permits specifying multiple application certificate types details
  • Backward compatibility with existing configurations - meaning no ECC just RSA encryption support
  • Further details can be found here

Known Limitations

Not all curves are supported by all OS platforms and not all .NET implementations offer cryptographic API support for all curve types.
Due to these limitations, the support for ECC profiles is available starting with the following target platforms: .NET 4.8, .NET standard 2.1 and .NET 5 and above.
The supported ECC curve types are the following:

  • NistP256 for ECC certificates with NIST P256 curve
  • NistP384 for ECC certificates with NIST P384 curve
  • BrainpoolP256r1 for ECC certificates with Brainpool P256r1 curve
  • BrainpoolP384r1 for ECC certificates with Brainpool P384r1 curve

Released packages

OPCFoundation.NetStandard.Opc.Ua
OPCFoundation.NetStandard.Opc.Ua.Core
OPCFoundation.NetStandard.Opc.Ua.Security.Certificates
OPCFoundation.NetStandard.Opc.Ua.Configuration
OPCFoundation.NetStandard.Opc.Ua.Server
OPCFoundation.NetStandard.Opc.Ua.Client
OPCFoundation.NetStandard.Opc.Ua.Client.ComplexTypes
OPCFoundation.NetStandard.Opc.Ua.Bindings.Https
OPCFoundation.NetStandard.Opc.Ua.PubSub

What's Changed

  • Set initial value of LastActiveTickCount by @mrsuciu in #2953
  • Bump Microsoft.Extensions.Configuration from 9.0.0 to 9.0.1 by @dependabot in #2956
  • Revert "merge main374 into current branch by @mrsuciu in #2958
  • Merge develop/main347 to master by @mrsuciu in #2959
  • Update version.json to 1.5.375 by @mrsuciu in #2960
  • Simplify SetECDsaPublicKey and padd with leading zeros by @mrsuciu in #2963
  • CustomNodeManager2 initialize predefined nodes in constructor by @romanett in #2966
  • Cherry-pick initialize predefined nodes in constructor from master by @mrsuciu in #2968
  • Set default value for NonceLength to 32 by @mrsuciu in #2971
  • Update version.json by @mrsuciu in #2972
  • Correct identity token encryption by setting the correct security policy for the user token by @mrsuciu in #2976
  • Update version.json by @mrsuciu in #2977

Full Changelog: 1.5.374.168...1.5.375.443

Contributors

romanett, dependabot, and mrsuciu
Assets 2
Loading