Add WPA2 Enterprise API support

facchinm · facchinm · commit 610fb1dd93cc · 2019-08-08T17:54:22.000+02:00
diff --git a/src/WiFi.cpp b/src/WiFi.cpp
@@ -156,6 +156,27 @@ uint8_t WiFiClass::beginAP(const char *ssid, const char* passphrase, uint8_t cha
     return status;
 }
 
+void WiFiClass::config(WPA2Enterprise& data)
+{
+	WiFiDrv::wpa2EntSetIdentity(data.identity.c_str());
+	WiFiDrv::wpa2EntSetUsername(data.username.c_str());
+	WiFiDrv::wpa2EntSetPassword(data.password.c_str());
+
+	if (data.ca_pem) {
+		WiFiStorage.remove("/fs/ca.pem");
+		WiFiStorage.write("/fs/ca.pem", 0, (uint8_t*)data.ca_pem, strlen(data.ca_pem));
+	}
+	if (data.client_crt) {
+		WiFiStorage.remove("/fs/client.crt");
+		WiFiStorage.write("/fs/client.crt", 0, (uint8_t*)data.client_crt, strlen(data.client_crt));
+	}
+	if (data.client_key) {
+		WiFiStorage.remove("/fs/client.key");
+		WiFiStorage.write("/fs/client.key", 0, (uint8_t*)data.client_key, strlen(data.client_key));
+	}
+	WiFiDrv::wpa2EntEnable();
+}
+
 void WiFiClass::config(IPAddress local_ip)
 {
 	WiFiDrv::config(1, (uint32_t)local_ip, 0, 0);
diff --git a/src/WiFi.h b/src/WiFi.h
@@ -35,6 +35,39 @@ extern "C" {
 #include "WiFiSSLClient.h"
 #include "WiFiServer.h"
 
+typedef enum _eap_methods {
+ EAP_TLS  = 0,
+ EAP_PEAP = 1,
+ EAP_TTLS = 2,
+} eap_method;
+
+class WPA2Enterprise
+{
+public:
+    WPA2Enterprise(eap_method method, String identity, String username = "", String password = "",
+                    const char* ca_pem = NULL, const char* client_crt = NULL, const char* client_key = NULL) :
+                    method(method), identity(identity), username(username), password(password),
+                    ca_pem(ca_pem), client_crt(client_crt), client_key(client_key)
+    {}
+    WPA2Enterprise(String identity, String username = "", String password = "",
+                    const char* ca_pem = NULL, const char* client_crt = NULL, const char* client_key = NULL) :
+                    method(EAP_TLS), identity(identity), username(username), password(password),
+                    ca_pem(ca_pem), client_crt(client_crt), client_key(client_key)
+    {}
+    WPA2Enterprise(String identity, const char* ca_pem = NULL, const char* client_crt = NULL, const char* client_key = NULL) :
+                    method(EAP_TLS), identity(identity), username(""), password(""),
+                    ca_pem(ca_pem), client_crt(client_crt), client_key(client_key)
+    {}
+
+    eap_method method; // TLS: 0, PEAP: 1, TTLS: 2 // looks like it's handled internally
+    String identity;
+    String username;
+    String password;
+    const char* ca_pem;
+    const char* client_crt;
+    const char* client_key;
+};
+
 class WiFiClass
 {
 private:
@@ -80,6 +113,12 @@ class WiFiClass
     uint8_t beginAP(const char *ssid, const char* passphrase);
     uint8_t beginAP(const char *ssid, const char* passphrase, uint8_t channel);
 
+    /* Add WPA2 Enterprise information for next connection
+        *
+        * param data:   Static ip configuration
+        */
+    void config(WPA2Enterprise& data);
+
     /* Change Ip configuration settings disabling the dhcp client
         *
         * param local_ip: 	Static ip configuration
diff --git a/src/utility/wifi_drv.cpp b/src/utility/wifi_drv.cpp
@@ -1078,4 +1078,114 @@ void WiFiDrv::analogWrite(uint8_t pin, uint8_t value)
     SpiDrv::spiSlaveDeselect();
 }
 
+void WiFiDrv::wpa2EntSetIdentity(const char* identity)
+{
+    WAIT_FOR_SLAVE_SELECT();
+    // Send Command
+    SpiDrv::sendCmd(WPA2_ENTERPRISE_SET_IDENTITY, PARAM_NUMS_1);
+    SpiDrv::sendParam((uint8_t*)identity, strlen(identity), LAST_PARAM);
+
+    // pad to multiple of 4
+    int commandSize = 5 + strlen(identity);
+    while (commandSize % 4) {
+        SpiDrv::readChar();
+        commandSize++;
+    }
+
+    SpiDrv::spiSlaveDeselect();
+    //Wait the reply elaboration
+    SpiDrv::waitForSlaveReady();
+    SpiDrv::spiSlaveSelect();
+
+    // Wait for reply
+    uint8_t _data = 0;
+    uint8_t _dataLen = 0;
+    if (!SpiDrv::waitResponseCmd(WPA2_ENTERPRISE_SET_IDENTITY, PARAM_NUMS_1, &_data, &_dataLen))
+    {
+        WARN("error waitResponse");
+        _data = WL_FAILURE;
+    }
+    SpiDrv::spiSlaveDeselect();
+}
+
+void WiFiDrv::wpa2EntSetPassword(const char* password)
+{
+    WAIT_FOR_SLAVE_SELECT();
+    // Send Command
+    SpiDrv::sendCmd(WPA2_ENTERPRISE_SET_PASSWORD, PARAM_NUMS_1);
+    SpiDrv::sendParam((uint8_t*)password, strlen(password), LAST_PARAM);
+
+    // pad to multiple of 4
+    int commandSize = 5 + strlen(password);
+    while (commandSize % 4) {
+        SpiDrv::readChar();
+        commandSize++;
+    }
+
+    SpiDrv::spiSlaveDeselect();
+    //Wait the reply elaboration
+    SpiDrv::waitForSlaveReady();
+    SpiDrv::spiSlaveSelect();
+
+    // Wait for reply
+    uint8_t _data = 0;
+    uint8_t _dataLen = 0;
+    if (!SpiDrv::waitResponseCmd(WPA2_ENTERPRISE_SET_PASSWORD, PARAM_NUMS_1, &_data, &_dataLen))
+    {
+        WARN("error waitResponse");
+        _data = WL_FAILURE;
+    }
+    SpiDrv::spiSlaveDeselect();
+}
+
+void WiFiDrv::wpa2EntSetUsername(const char* username)
+{
+    WAIT_FOR_SLAVE_SELECT();
+    // Send Command
+    SpiDrv::sendCmd(WPA2_ENTERPRISE_SET_USERNAME, PARAM_NUMS_1);
+    SpiDrv::sendParam((uint8_t*)username, strlen(username), LAST_PARAM);
+
+    // pad to multiple of 4
+    int commandSize = 5 + strlen(username);
+    while (commandSize % 4) {
+        SpiDrv::readChar();
+        commandSize++;
+    }
+
+    SpiDrv::spiSlaveDeselect();
+    //Wait the reply elaboration
+    SpiDrv::waitForSlaveReady();
+    SpiDrv::spiSlaveSelect();
+
+    // Wait for reply
+    uint8_t _data = 0;
+    uint8_t _dataLen = 0;
+    if (!SpiDrv::waitResponseCmd(WPA2_ENTERPRISE_SET_USERNAME, PARAM_NUMS_1, &_data, &_dataLen))
+    {
+        WARN("error waitResponse");
+        _data = WL_FAILURE;
+    }
+    SpiDrv::spiSlaveDeselect();
+}
+
+void WiFiDrv::wpa2EntEnable()
+{
+    WAIT_FOR_SLAVE_SELECT();
+
+    // Send Command
+    SpiDrv::sendCmd(WPA2_ENTERPRISE_ENABLE, PARAM_NUMS_0);
+
+    SpiDrv::spiSlaveDeselect();
+    //Wait the reply elaboration
+    SpiDrv::waitForSlaveReady();
+    SpiDrv::spiSlaveSelect();
+
+    // Wait for reply
+    uint8_t _data = 1;
+    uint8_t _dataLen = 0;
+    SpiDrv::waitResponseCmd(WPA2_ENTERPRISE_ENABLE, PARAM_NUMS_1, &_data, &_dataLen);
+
+    SpiDrv::spiSlaveDeselect();
+}
+
 WiFiDrv wiFiDrv;
diff --git a/src/utility/wifi_drv.h b/src/utility/wifi_drv.h
@@ -286,6 +286,11 @@ class WiFiDrv
     static void digitalWrite(uint8_t pin, uint8_t value);
     static void analogWrite(uint8_t pin, uint8_t value);
 
+    static void wpa2EntSetIdentity(const char* identity);
+    static void wpa2EntSetUsername(const char* username);
+    static void wpa2EntSetPassword(const char* password);
+    static void wpa2EntEnable();
+
     friend class WiFiUDP;
     friend class WiFiClient;
 };
diff --git a/src/utility/wifi_spi.h b/src/utility/wifi_spi.h
@@ -97,6 +97,14 @@ enum {
     GET_DATABUF_TCP_CMD		= 0x45,
     INSERT_DATABUF_CMD		= 0x46,
 
+    // wpa2 enterprise commands
+    WPA2_ENTERPRISE_SET_IDENTITY	= 0x4A,
+    WPA2_ENTERPRISE_SET_USERNAME	= 0x4B,
+    WPA2_ENTERPRISE_SET_PASSWORD	= 0x4C,
+    WPA2_ENTERPRISE_SET_CA_CERT		= 0x4D,
+    WPA2_ENTERPRISE_SET_CERT_KEY	= 0x4E,
+    WPA2_ENTERPRISE_ENABLE			= 0x4F,
+
     // regular format commands
     SET_PIN_MODE		= 0x50,
     SET_DIGITAL_WRITE	= 0x51,
