feat(binding-opcua): fix connection mutualisation bug

erossignon · erossignon · commit 21ce56a3eef8 · 2025-10-27T08:54:18.000+01:00
- and refactor connection management
diff --git a/packages/binding-opcua/src/opcua-protocol-client.ts b/packages/binding-opcua/src/opcua-protocol-client.ts
@@ -95,12 +95,6 @@ interface OPCUAConnection {
     namespaceArray?: string[];
 }
 
-type Resolver = (...arg: [...unknown[]]) => void;
-
-interface OPCUAConnectionEx extends OPCUAConnection {
-    pending?: Resolver[];
-}
-
 function _variantToJSON(variant: Variant, contentType: string) {
     contentType = contentType.split(";")[0];
 
@@ -118,95 +112,130 @@ function _variantToJSON(variant: Variant, contentType: string) {
 }
 
 export class OPCUAProtocolClient implements ProtocolClient {
-    private _connections: Map<string, OPCUAConnectionEx> = new Map<string, OPCUAConnectionEx>();
+    private _connections = new Map<string, Promise<OPCUAConnection>>();
 
     private _securityMode: MessageSecurityMode = MessageSecurityMode.None;
     private _securityPolicy: SecurityPolicy = SecurityPolicy.None;
     private _useAutoChannel: boolean = false;
     private _userIdentity: UserIdentityInfo = <AnonymousIdentity>{ type: UserTokenType.Anonymous };
 
-    private async _withConnection<T>(form: OPCUAForm, next: (connection: OPCUAConnection) => Promise<T>): Promise<T> {
-        const endpoint = form.href;
-        const matchesScheme: boolean = endpoint?.match(/^opc.tcp:\/\//) != null;
-        if (!matchesScheme) {
-            debug(`invalid opcua:endpoint ${endpoint} specified`);
-            throw new Error("Invalid OPCUA endpoint " + endpoint);
-        }
-        let c: OPCUAConnectionEx | undefined = this._connections.get(endpoint);
-        if (!c) {
-            const clientCertificateManager = await CertificateManagerSingleton.getCertificateManager();
-
-            if (this._useAutoChannel) {
-                if (this._securityMode === MessageSecurityMode.Invalid) {
-                    const { messageSecurityMode, securityPolicy } = await findMostSecureChannel(endpoint);
-                    this._securityMode = messageSecurityMode;
-                    this._securityPolicy = securityPolicy;
-                }
+    /**
+     * return the number of active connections to an OPCUA Server
+     */
+    public get connectionCount() {
+        return this._connections.size;
+    }
+    private async _createConnection(endpoint: string): Promise<OPCUAConnection> {
+        debug(`_createConnection: creating new connection to ${endpoint}`);
+
+        const clientCertificateManager = await CertificateManagerSingleton.getCertificateManager();
+
+        let securityMode = this._securityMode;
+        let securityPolicy = this._securityPolicy;
+
+        if (this._useAutoChannel) {
+            if (securityMode === MessageSecurityMode.Invalid) {
+                const mostSecure = await findMostSecureChannel(endpoint);
+                securityMode = mostSecure.messageSecurityMode;
+                securityPolicy = mostSecure.securityPolicy;
+                debug(
+                    `_createConnection: auto-selected security mode ${MessageSecurityMode[securityMode]} with policy ${securityPolicy}`
+                );
             }
-            const client = OPCUAClient.create({
-                endpointMustExist: false,
-                connectionStrategy: {
-                    maxRetry: 1,
-                },
-                securityMode: this._securityMode,
-                securityPolicy: this._securityPolicy,
-                clientCertificateManager,
-            });
-            client.on("backoff", () => {
-                debug(`connection:backoff: cannot connection to  ${endpoint}`);
-            });
+        }
 
-            c = {
-                client,
-                pending: [] as Resolver[],
-            } as OPCUAConnectionEx; // but incomplete still
+        const client = OPCUAClient.create({
+            endpointMustExist: false,
+            connectionStrategy: {
+                maxRetry: 1,
+            },
+            securityMode,
+            securityPolicy,
+            clientCertificateManager,
+        });
 
-            this._connections.set(endpoint, c);
-            try {
-                await client.connect(endpoint);
-            } catch (err) {
-                const errMessage = "Cannot connected to endpoint " + endpoint + "\nmsg = " + (<Error>err).message;
-                debug(errMessage);
-                throw new Error(errMessage);
+        client.on("backoff", () => {
+            debug(`connection:backoff: cannot connect to ${endpoint}`);
+        });
+
+        try {
+            await client.connect(endpoint);
+            debug(`_createConnection: client connected to ${endpoint}`);
+
+            // adjust with private key
+            if (this._userIdentity.type === UserTokenType.Certificate && !this._userIdentity.privateKey) {
+                const internalKey = readPrivateKey(client.clientCertificateManager.privateKey);
+                const privateKeyPem = coercePrivateKeyPem(internalKey);
+                this._userIdentity.privateKey = privateKeyPem;
             }
-            try {
-                // adjust with private key
-                if (this._userIdentity.type === UserTokenType.Certificate && !this._userIdentity.privateKey) {
-                    const internalKey = readPrivateKey(client.clientCertificateManager.privateKey);
-                    const privateKeyPem = coercePrivateKeyPem(internalKey);
-                    this._userIdentity.privateKey = privateKeyPem;
-                }
-                const session = await client.createSession(this._userIdentity);
-                c.session = session;
-
-                const subscription = await session.createSubscription2({
-                    maxNotificationsPerPublish: 100,
-                    publishingEnabled: true,
-                    requestedLifetimeCount: 100,
-                    requestedPublishingInterval: 250,
-                    requestedMaxKeepAliveCount: 10,
-                    priority: 1,
-                });
-                c.subscription = subscription;
+            const session = await client.createSession(this._userIdentity);
+            debug(`_createConnection: session created for ${endpoint}`);
+
+            const subscription = await session.createSubscription2({
+                maxNotificationsPerPublish: 100,
+                publishingEnabled: true,
+                requestedLifetimeCount: 100,
+                requestedPublishingInterval: 250,
+                requestedMaxKeepAliveCount: 10,
+                priority: 1,
+            });
+            debug(`_createConnection: subscription created for ${endpoint}`);
+
+            return { client, session, subscription };
+        } catch (err) {
+            // Make sure to disconnect if any post-connection step fails
+            await client.disconnect();
+            const errMessage = `Failed to establish a full connection to ${endpoint}: ${(err as Error).message}`;
+            debug(errMessage);
+            throw new Error(errMessage);
+        }
+    }
 
-                const p = c.pending;
-                c.pending = undefined;
-                p && p.forEach((t) => t());
+    private async _withConnection<T>(form: OPCUAForm, next: (connection: OPCUAConnection) => Promise<T>): Promise<T> {
+        const href = form.href;
+        if (!href) {
+            const err = new Error("Invalid OPCUA endpoint: href is missing in form");
+            debug(err.message);
+            throw err;
+        }
 
-                this._connections.set(endpoint, c);
-            } catch (err) {
-                await client.disconnect();
-                const errMessage = "Cannot handle session on " + endpoint + "\nmsg = " + (<Error>err).message;
-                debug(errMessage);
-                throw new Error(errMessage);
+        // Use modern URL API and ensure path is included for endpoint uniqueness
+        let endpoint: string;
+        try {
+            const parsedUrl = new URL(href);
+            if (parsedUrl.protocol !== "opc.tcp:") {
+                throw new Error(`Unsupported protocol: ${parsedUrl.protocol}`);
             }
+            // We use the full href as the canonical endpoint identifier, without the query and fragment
+            parsedUrl.hash = "";
+            parsedUrl.search = "";
+            endpoint = parsedUrl.href;
+        } catch (err) {
+            debug(`Invalid OPCUA endpoint href: ${href}. Error: ${(err as Error).message}`);
+            throw new Error(`Invalid OPCUA endpoint: ${href}`);
         }
-        if (c.pending) {
-            await new Promise((resolve) => {
-                c?.pending?.push(resolve);
+
+        let connectionPromise = this._connections.get(endpoint);
+
+        if (!connectionPromise) {
+            debug(`_withConnection: no cached connection for ${endpoint}. Creating a new one.`);
+            connectionPromise = this._createConnection(endpoint);
+            this._connections.set(endpoint, connectionPromise);
+
+            // If the connection fails, remove the rejected promise from the cache
+            // to allow future retries.
+            connectionPromise.catch((err) => {
+                debug(`_withConnection: connection to ${endpoint} failed. Evicting from cache. Error: ${err.message}`);
+                if (this._connections.get(endpoint) === connectionPromise) {
+                    this._connections.delete(endpoint);
+                }
             });
+        } else {
+            debug(`_withConnection: using cached connection promise for ${endpoint}`);
         }
-        return next(c);
+
+        const connection = await connectionPromise;
+        return next(connection);
     }
 
     private async _withSession<T>(form: OPCUAForm, next: (session: ClientSession) => Promise<T>): Promise<T> {
@@ -475,11 +504,18 @@ export class OPCUAProtocolClient implements ProtocolClient {
 
     async stop(): Promise<void> {
         debug("stop");
-        for (const connection of this._connections.values()) {
-            await connection.subscription.terminate();
-            await connection.session.close();
-            await connection.client.disconnect();
+        // Wait for all connection promises to resolve before trying to close them.
+        const connections = await Promise.all(this._connections.values());
+        for (const connection of connections) {
+            try {
+                await connection.subscription.terminate();
+                await connection.session.close();
+                await connection.client.disconnect();
+            } catch (err) {
+                debug(`Error while stopping a connection: ${(err as Error).message}`);
+            }
         }
+        this._connections.clear();
         await CertificateManagerSingleton.releaseCertificateManager();
     }
 
diff --git a/packages/binding-opcua/test/opcua-protocol-client-test.ts b/packages/binding-opcua/test/opcua-protocol-client-test.ts
@@ -0,0 +1,67 @@
+/********************************************************************************
+ * Copyright (c) 2025 Contributors to the Eclipse Foundation
+ *
+ * See the NOTICE file(s) distributed with this work for additional
+ * information regarding copyright ownership.
+ *
+ * This program and the accompanying materials are made available under the
+ * terms of the Eclipse Public License v. 2.0 which is available at
+ * http://www.eclipse.org/legal/epl-2.0, or the W3C Software Notice and
+ * Document License (2015-05-13) which is available at
+ * https://www.w3.org/Consortium/Legal/2015/copyright-software-and-document.
+ *
+ * SPDX-License-Identifier: EPL-2.0 OR W3C-20150513
+ ********************************************************************************/
+
+import debugFactory from "debug";
+import { expect } from "chai";
+import { OPCUAServer } from "node-opcua-server";
+
+import { startServer } from "./fixture/basic-opcua-server";
+import { OPCUAForm, OPCUAProtocolClient } from "../src/opcua-protocol-client";
+
+const debug = debugFactory("binding-opcua:test");
+
+describe("OPCUA Protocol Client", function () {
+    this.timeout(20000);
+
+    let opcuaServer: OPCUAServer;
+    let endpoint: string;
+    before(async () => {
+        opcuaServer = await startServer();
+        endpoint = opcuaServer.getEndpointUrl();
+        debug(`endpoint =  ${endpoint}`);
+    });
+    after(async () => {
+        await opcuaServer.shutdown();
+    });
+
+    it("should read temperature and pressure property without recreating a connection", async () => {
+        const client = new OPCUAProtocolClient();
+
+        try {
+            const form1: OPCUAForm = {
+                href: `${endpoint}?id=ns=1;s=Temperature`,
+                contentType: "application/json",
+            };
+
+            await client.readResource(form1);
+            expect(client.connectionCount).equals(1);
+
+            await client.readResource(form1);
+            expect(client.connectionCount).equals(1);
+
+            const form2: OPCUAForm = {
+                href: `${endpoint}?id=ns=1;s=Pressure`,
+                contentType: "application/json",
+            };
+
+            await client.readResource(form2);
+
+            // connection should be reused, eventhough hrefs differ
+            expect(client.connectionCount).equals(1);
+        } finally {
+            await client.stop();
+        }
+    });
+});
