Merge pull request #20 from united-manufacturing-hub/fix/1088/better_…

…nil_handling

Better nil handling

.github/workflows/main.yml

@@ -38,28 +38,16 @@ jobs:
           go_version: ${{ env.GO_VERSION }}
       - name: Startup simulator in background
         run: |
-          docker-compose up &
+          docker-compose up -d
         working-directory: tests
-      - name: Wait for port 46010 to be ready
+      - name: Wait for port 50000 to be ready
         run: |
-          while ! nc -z localhost 46010; do
-            echo "Waiting for port 46010 to be ready..."
+          while ! nc -z localhost 50000; do
+            echo "Waiting for port 50000 to be ready..."
             sleep 1
           done
       - name: Test
         run: make test
-  go-test-wago:
-    runs-on: hercules
-    timeout-minutes: 30
-    steps:
-      - name: Checkout
-        uses: actions/checkout@v3
-      - name: Setup Go
-        uses: ./.github/actions/setup-go
-        with:
-          go_version: ${{ env.GO_VERSION }}
-      - name: Test
-        run: TEST_WAGO_ENDPOINT_URI=${{ secrets.TEST_WAGO_ENDPOINT_URI }} TEST_WAGO_USERNAME=${{ secrets.TEST_WAGO_USERNAME }} TEST_WAGO_PASSWORD=${{ secrets.TEST_WAGO_PASSWORD }} make test
   go-build:
     runs-on:
       group: large-runners

.github/workflows/wago.yml

@@ -0,0 +1,43 @@
+# Copyright 2023 UMH Systems GmbH
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+---
+name: main
+
+on:
+  push:
+    branches:
+      - '**'
+env:
+  REGISTRY: ghcr.io
+  IMAGE_NAME: ${{ github.repository }}
+  GO_VERSION: '1.21.*'
+
+concurrency:
+  group: wago-test
+  cancel-in-progress: true
+
+jobs:
+  go-test-wago:
+    runs-on: hercules
+    timeout-minutes: 30
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v3
+      - name: Setup Go
+        uses: ./.github/actions/setup-go
+        with:
+          go_version: ${{ env.GO_VERSION }}
+      - name: Test
+        run: TEST_WAGO_ENDPOINT_URI=${{ secrets.TEST_WAGO_ENDPOINT_URI }} TEST_WAGO_USERNAME=${{ secrets.TEST_WAGO_USERNAME }} TEST_WAGO_PASSWORD=${{ secrets.TEST_WAGO_PASSWORD }} make test

Makefile

@@ -22,7 +22,7 @@ target:
 	@goreleaser build --single-target --snapshot --id benthos \
 		--output ./tmp/bin/benthos
 test:
-	@go test ./...
+	@go test -v ./...
 
 lint:
 	@golangci-lint run

README.md

@@ -123,6 +123,52 @@ spec:
             name: benthos-1-config
 ```
 
+### Capabilities
+The plugin is designed to browse and subscribe to all child nodes within a folder for each configured NodeID, provided that the NodeID represents a folder. It features a recursion depth of up to 10 levels, enabling thorough exploration of nested folder structures. The browsing specifically targets nodes organized under the OPC UA 'Organizes' relationship type, intentionally excluding nodes under 'HasProperty' and 'HasComponent' relationships. Additionally, the plugin does not browse Objects represented by red, blue, or green cube icons in UAExpert.
+
+Subscriptions are selectively managed, with tags having a DataType of null being excluded from subscription. Also, by default, the plugin does not subscribe to the properties of a tag, such as minimum and maximum values.
+
+#### Datatypes
+The plugin has been rigorously tested with an array of datatypes, both as single values and as arrays. The following datatypes have been verified for compatibility:
+
+- `Boolean`
+- `Byte`
+- `DateTime`
+- `Double`
+- `Enumeration`
+- `ExpandedNodeId`
+- `Float`
+- `Guid`
+- `Int16`
+- `Int32`
+- `Int64`
+- `Integer`
+- `LocalizedText`
+- `NodeId`
+- `Number`
+- `QualifiedName`
+- `SByte`
+- `StatusCode`
+- `String`
+- `UInt16`
+- `UInt32`
+- `UInt64`
+- `UInteger`
+- `ByteArray`
+- `ByteString`
+- `Duration`
+- `LocaleId`
+- `UtcTime`
+- `Variant`
+- `XmlElement`
+
+There are specific datatypes which are currently not supported by the plugin and attempting to use them will result in errors. These include:
+
+- Two-dimensional arrays
+- UA Extension Objects
+- Variant arrays (Arrays with multiple different datatypes)
+
+
 ### Authentication and Security
 
 In benthos-umh, security and authentication are designed to be as robust as possible while maintaining flexibility. The software automates the process of selecting the highest level of security offered by an OPC-UA server for the selected Authentication Method, but the user can specify their own Security Policy / Security Mode if they want (see further below at Configuration options)

plugin/generate_cert.go

@@ -0,0 +1,109 @@
+// Copyright 2009 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// Generate a self-signed X.509 certificate for a TLS server. Outputs to
+// 'cert.pem' and 'key.pem' and will overwrite existing files.
+
+// Based on src/crypto/tls/generate_cert.go from the Go SDK
+// Modified by the Gopcua Authors for use in creating an OPC-UA compliant client certificate
+
+package plugin
+
+import (
+	"crypto/ecdsa"
+	"crypto/rand"
+	"crypto/rsa"
+	"crypto/x509"
+	"crypto/x509/pkix"
+	"encoding/pem"
+	"fmt"
+	"math/big"
+	"net"
+	"net/url"
+	"os"
+	"strings"
+	"time"
+)
+
+func GenerateCert(host string, rsaBits int, validFor time.Duration) (certPEM, keyPEM []byte, err error) {
+	if len(host) == 0 {
+		return nil, nil, fmt.Errorf("missing required host parameter")
+	}
+	if rsaBits == 0 {
+		rsaBits = 2048
+	}
+
+	priv, err := rsa.GenerateKey(rand.Reader, rsaBits)
+	if err != nil {
+		return nil, nil, fmt.Errorf("failed to generate private key: %s", err)
+	}
+
+	notBefore := time.Now()
+	notAfter := notBefore.Add(validFor)
+
+	serialNumberLimit := new(big.Int).Lsh(big.NewInt(1), 128)
+	serialNumber, err := rand.Int(rand.Reader, serialNumberLimit)
+	if err != nil {
+		return nil, nil, fmt.Errorf("failed to generate serial number: %s", err)
+	}
+
+	template := x509.Certificate{
+		SerialNumber: serialNumber,
+		Subject: pkix.Name{
+			Organization: []string{"Gopcua Test Client"},
+		},
+		NotBefore: notBefore,
+		NotAfter:  notAfter,
+
+		KeyUsage:              x509.KeyUsageContentCommitment | x509.KeyUsageKeyEncipherment | x509.KeyUsageDigitalSignature | x509.KeyUsageDataEncipherment | x509.KeyUsageCertSign,
+		ExtKeyUsage:           []x509.ExtKeyUsage{x509.ExtKeyUsageServerAuth, x509.ExtKeyUsageClientAuth},
+		BasicConstraintsValid: true,
+	}
+
+	hosts := strings.Split(host, ",")
+	for _, h := range hosts {
+		if ip := net.ParseIP(h); ip != nil {
+			template.IPAddresses = append(template.IPAddresses, ip)
+		} else {
+			template.DNSNames = append(template.DNSNames, h)
+		}
+		if uri, err := url.Parse(h); err == nil {
+			template.URIs = append(template.URIs, uri)
+		}
+	}
+
+	derBytes, err := x509.CreateCertificate(rand.Reader, &template, &template, publicKey(priv), priv)
+	if err != nil {
+		return nil, nil, fmt.Errorf("failed to create certificate: %s", err)
+	}
+
+	return pem.EncodeToMemory(&pem.Block{Type: "CERTIFICATE", Bytes: derBytes}), pem.EncodeToMemory(pemBlockForKey(priv)), nil
+}
+
+func publicKey(priv interface{}) interface{} {
+	switch k := priv.(type) {
+	case *rsa.PrivateKey:
+		return &k.PublicKey
+	case *ecdsa.PrivateKey:
+		return &k.PublicKey
+	default:
+		return nil
+	}
+}
+
+func pemBlockForKey(priv interface{}) *pem.Block {
+	switch k := priv.(type) {
+	case *rsa.PrivateKey:
+		return &pem.Block{Type: "RSA PRIVATE KEY", Bytes: x509.MarshalPKCS1PrivateKey(k)}
+	case *ecdsa.PrivateKey:
+		b, err := x509.MarshalECPrivateKey(k)
+		if err != nil {
+			fmt.Fprintf(os.Stderr, "Unable to marshal ECDSA private key: %v", err)
+			os.Exit(2)
+		}
+		return &pem.Block{Type: "EC PRIVATE KEY", Bytes: b}
+	default:
+		return nil
+	}
+}