zara
/
zephyr
mirror of https://github.com/zephyrproject-rtos/zephyr
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Primary Git Repository for the Zephyr Project. Zephyr is a new generation, scalable, optimized, secure RTOS for multiple hardware architectures.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
118684 Commits
82 Branches
204 Tags
1.7 GiB
 
 
 
 
 
 
Branch: main
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'main'
${ noResults }
zephyr/doc/connectivity/networking/api/wifi_credentials.rst

101 lines
4.1 KiB
Raw Permalink Blame History

.. _lib_wifi_credentials:
Wi-Fi credentials Library
#########################
.. contents::
:local:
:depth: 2
The Wi-Fi credentials library provides means to load and store Wi-Fi® network credentials.
Overview
********
This library uses either Zephyr's settings subsystem or Platform Security Architecture (PSA) Internal Trusted Storage (ITS) to store credentials.
It also holds a list of SSIDs in RAM to provide dictionary-like access using SSIDs as keys.
Configuration
*************
To use the Wi-Fi credentials library, enable the :kconfig:option:`CONFIG_WIFI_CREDENTIALS` Kconfig option.
You can pick the backend using the following options:
* :kconfig:option:`CONFIG_WIFI_CREDENTIALS_BACKEND_PSA` - Default option for non-secure targets, which includes a TF-M partition (non-minimal TF-M profile type).
* :kconfig:option:`CONFIG_WIFI_CREDENTIALS_BACKEND_SETTINGS` - Default option for secure targets.
To configure the maximum number of networks, use the :kconfig:option:`CONFIG_WIFI_CREDENTIALS_MAX_ENTRIES` Kconfig option.
The IEEE 802.11 standard does not specify the maximum length of SAE passwords.
To change the default, use the :kconfig:option:`CONFIG_WIFI_CREDENTIALS_SAE_PASSWORD_LENGTH` Kconfig option.
Adding credentials
******************
You can add credentials using the :c:func:`wifi_credentials_set_personal` and :c:func:`wifi_credentials_set_personal_struct` functions.
The former will build the internally used struct from given fields, while the latter takes the struct directly.
If you add credentials with the same SSID twice, the older entry will be overwritten.
Querying credentials
********************
With an SSID, you can query credentials using the :c:func:`wifi_credentials_get_by_ssid_personal` and :c:func:`wifi_credentials_get_by_ssid_personal_struct` functions.
You can iterate over all stored credentials with the :c:func:`wifi_credentials_for_each_ssid` function.
Deleting or overwriting credentials while iterating is allowed, since these operations do not change internal indices.
Removing credentials
********************
You can remove credentials using the :c:func:`wifi_credentials_delete_by_ssid` function.
Shell commands
**************
``wifi cred`` is an extension to the Wi-Fi command line.
It adds the following subcommands to interact with the Wi-Fi credentials library:
.. list-table:: Wi-Fi credentials shell subcommands
:header-rows: 1
* - Subcommands
- Description
* - add
- | Add a network to the credentials storage with following parameters:
| <-s --ssid \"<SSID>\">: SSID.
| [-c --channel]: Channel that needs to be scanned for connection. 0:any channel
| [-b, --band] 0: any band (2:2.4GHz, 5:5GHz, 6:6GHz)
| [-p, --passphrase]: Passphrase (valid only for secure SSIDs)
| [-k, --key-mgmt]: Key management type.
| 0:None, 1:WPA2-PSK, 2:WPA2-PSK-256, 3:SAE-HNP, 4:SAE-H2E, 5:SAE-AUTO, 6:WAPI,"
| " 7:EAP-TLS, 8:WEP, 9: WPA-PSK, 10: WPA-Auto-Personal, 11: DPP
| [-w, --ieee-80211w]: MFP (optional: needs security type to be specified)
| : 0:Disable, 1:Optional, 2:Required.
| [-m, --bssid]: MAC address of the AP (BSSID).
| [-t, --timeout]: Duration after which connection attempt needs to fail.
| [-a, --identity]: Identity for enterprise mode.
| [-K, --key-passwd]: Private key passwd for enterprise mode.
| [-h, --help]: Print out the help for the connect command.
* - delete <SSID>
- Removes network from credentials storage.
* - list
- Lists networks in credential storage.
* - auto_connect
- Automatically connects to any stored network.
Limitations
***********
The library has the following limitations:
* Although permitted by the IEEE 802.11 standard, this library does not support zero-length SSIDs.
* Wi-Fi Protected Access (WPA) Enterprise credentials are only partially supported.
* The number of networks stored is fixed compile time.
API documentation
*****************
The following section provides an overview and reference for the Wi-Fi credentials API available in Zephyr:
.. doxygengroup:: wifi_credentials