Anyone got some ESP32 EAP ideas?
Xasin wrote 05/15/2019 at 12:03 • 0 pointsHi! I've recently been trying to improve my ESP32 wifi helper functions, and came across the possibility of making it use EAP authentication to log in to, for example, my University network. Doing this would be fantastic, since then I wouldn't need to carry around a Raspberry Pi Zero to translate the Eduroam network to a simple WPA2 one.
However, actually logging in to the network is a lot more tricky than I first thought. I am able to provide the certificates and embed them into my ESP firmware, and the ESP itself does seem to try and connect via the right methods, but I always end up with the following, awkward error:
```
I (12411) wpa: SSL: Need 316 bytes more input data
I (14278) wpa: EAP-TLV: TLV Result - Failure
I (15287) wpa: >>>>>wpa2 FAILED
```
This error happens regardless of whether or not I provide my Identity, Password or certificates, and I am at a bit of a loss. My best guess is that I just don't have a valid certificate, so even if I provide it the ESP discards it and fails to connect.
Soooo I'm just going to ask here if someone has a bit more knowledge regarding Eduroam, EAP networks or the necessary certificates, and could help me out.
Using Eduroam would be a huge benefit for me ^^
Discussions
Become a Hackaday.io Member
Create an account to leave a comment. Already have an account? Log In.
I think this of Concept Of ESP32 is new to me, please can you put me through...
Are you sure? yes | no
I think this is the wrong area to ask that question, but I'm happy to answer it anyways.
The ESP32 is Espressif's "Big Brother" to the ESP8266, with more power, memory, Bluetooth and, most importantly: A really, REALLY well documented C++ toochain that's a pleasure to work with :D
http://esp-idf.readthedocs.io/
This should get you started, and DevKits are cheap to get.
Are you sure? yes | no
Thanks Big Bro, for being humble.
Are you sure? yes | no
I can recommend this course https://techexplorations.com/guides/esp32/begin/module/ by Peter Dalmaris who also offers Arduino and Kicad courses.
Are you sure? yes | no
Hi @ajileyejosephkayode7
Where are you located in Nigeria?
Are you sure? yes | no
@Oyeka : Am in Lagos, to be precise Yaba.
Are you sure? yes | no
@ajileyejosephkayode7 That's grt, I stay in AKURE. ONDO State.
Are you sure? yes | no
I have the following link but I did not tried this code myself yet
https://gist.github.com/martinius96/8579d9a5e7f9ab367a6f6b88359520bd
Are you sure? yes | no
Thanks for the pointer!
This should normally work, but it might be that my University just uses an authentication that the ESP can't handle, i.e. something with 4096 or more bits of encryption.
Too bad - time to buy a bunch of Raspberries and build some relay stations!
Are you sure? yes | no
So you're saying that the Linux TLS library works but the ESP32 TLS library doesn't? Sounds like the ESP32 library is deficient.
Are you sure? yes | no
What do you mean by the Linux TLS library?
I never mentioned that.
I am using a linux laptop which can properly connect to the Eduroam network, so I suppose one can imply that Linux has a functioning TLS Library :P
But I also doubt that the ESP's Library is deficient. Someone would have noticed and fixed that by now, since it's a fairly important feature.
I guess I could have been a bit more precise in my question though:
I would like someone with a bit more experience in SSL or WiFi Networks like Eduroam to give a short explanation on which logins and certificates are necessary to connect to such a network, since my current assumption is that I just haven't generated or used the right certificates to allow the ESP to connect.
Are you sure? yes | no
Didn't you say you were currently using a RPi 0? That runs Linux.
The other thing to consider is that Eduroam is specified for use by computers that have a capable TLS stack, Windows, Macs, Linux, smartphones and so forth. Find out if the ESP32 TLS implementation is complete. It may only be sufficient for IoT apps at the moment. Or it needs other resources that are present on the other platforms. Root or intermediate certs perhaps?
Good luck. I used to have access to Eduroam as a user but that was some time ago.
Are you sure? yes | no
No, I don't have but, can help you out brother.
Are you sure? yes | no