Add SSL enabled WiFiServer, Updater, WebServer

Adds SSL server mode for WiFiServerSecure, for plain SSL connections, ESP8266WebServerSecure, for HTTPS web serving, and SecureHTTPSUpdater for encrypted OTA updates. Example code is provided for all new options, as well as a BASH script for generating their own, self-signed certificates. Both ESP8266WebServerSecure and SecureHTTPSUpdater are important for secure password-based authentication. HTTP Basic Authentication, the only supported model presently, sends the username and password in *cleartext* and therefore should *never* be used in any un-SSL encrypted channel unless you don't mind sharing your login and password with anyone else on the internet. Even if the ESP8266 is not safety critical, this cleartext broadcast could expose you should you reuse this password elsewhere on your network or the internet.
2025-07-01 03:26:58 +03:00 · 2017-02-27 20:17:04 -08:00
parent 8765da258b
commit bd1c7ce1dc
17 changed files with 1049 additions and 29 deletions
--- a/libraries/ESP8266WebServer/src/ESP8266WebServer.cpp
+++ b/libraries/ESP8266WebServer/src/ESP8266WebServer.cpp
@ -282,7 +282,8 @@ void ESP8266WebServer::handleClient() {
  if (_currentClient.connected()) {
    switch (_currentStatus) {
    case HC_NONE:
-        break;
+      // No-op to avoid C++ compiler warning
+      break;
    case HC_WAIT_READ:
      // Wait for data from client to become available
      if (_currentClient.available()) {
@ -384,7 +385,7 @@ void ESP8266WebServer::send(int code, const char* content_type, const String& co
    //if(code == 200 && content.length() == 0 && _contentLength == CONTENT_LENGTH_NOT_SET)
    //  _contentLength = CONTENT_LENGTH_UNKNOWN;
    _prepareHeader(header, code, content_type, content.length());
-    _currentClient.write(header.c_str(), header.length());
+    _currentClientWrite(header.c_str(), header.length());
    if(content.length())
      sendContent(content);
 }
@ -400,7 +401,7 @@ void ESP8266WebServer::send_P(int code, PGM_P content_type, PGM_P content) {
    char type[64];
    memccpy_P((void*)type, (PGM_VOID_P)content_type, 0, sizeof(type));
    _prepareHeader(header, code, (const char* )type, contentLength);
-    _currentClient.write(header.c_str(), header.length());
+    _currentClientWrite(header.c_str(), header.length());
    sendContent_P(content);
 }

@ -428,11 +429,11 @@ void ESP8266WebServer::sendContent(const String& content) {
    char * chunkSize = (char *)malloc(11);
    if(chunkSize){
      sprintf(chunkSize, "%x%s", len, footer);
-      _currentClient.write(chunkSize, strlen(chunkSize));
+      _currentClientWrite(chunkSize, strlen(chunkSize));
      free(chunkSize);
    }
  }
-  _currentClient.write(content.c_str(), len);
+  _currentClientWrite(content.c_str(), len);
  if(_chunked){
    _currentClient.write(footer, 2);
    if (len == 0) {
@ -451,11 +452,11 @@ void ESP8266WebServer::sendContent_P(PGM_P content, size_t size) {
    char * chunkSize = (char *)malloc(11);
    if(chunkSize){
      sprintf(chunkSize, "%x%s", size, footer);
-      _currentClient.write(chunkSize, strlen(chunkSize));
+      _currentClientWrite(chunkSize, strlen(chunkSize));
      free(chunkSize);
    }
  }
-  _currentClient.write_P(content, size);
+  _currentClientWrite_P(content, size);
  if(_chunked){
    _currentClient.write(footer, 2);
    if (size == 0) {