useful-esp8266-lib
diff --git a/‎GUI/Broker.py
Lines changed: 35 additions & 2 deletions b/‎GUI/Broker.py
Lines changed: 35 additions & 2 deletions
diff --git a/‎Util/mqtt.py
Lines changed: 26 additions & 0 deletions
< D7AE div data-testid="addition diffstat" class="DiffSquares-module__diffSquare--h5kjy DiffSquares-module__addition--jeNtt"> b/‎Util/mqtt.py
Lines changed: 26 additions & 0 deletions
< D7AE div data-testid="addition diffstat" class="DiffSquares-module__diffSquare--h5kjy DiffSquares-module__addition--jeNtt">
diff --git a/‎tdmgr.py
Lines changed: 10 additions & 11 deletions b/‎tdmgr.py
Lines changed: 10 additions & 11 deletions
@@ -1,8 +1,9 @@
 import random
+import ssl
 import string
 
 from PyQt5.QtCore import QSettings
-from PyQt5.QtWidgets import QCheckBox, QDialog, QFormLayout, QGroupBox, QLineEdit, QPushButton
+from PyQt5.QtWidgets import QCheckBox, QComboBox, QDialog, QFormLayout, QGroupBox, QLineEdit, QPushButton
 
 from GUI import HLayout, SpinBox, VLayout
 
@@ -15,6 +16,27 @@ def __init__(self, *args, **kwargs):
 
         self.settings = QSettings(QSettings.IniFormat, QSettings.UserScope, 'tdm', 'tdm')
 
+        gbtls = QGroupBox(" TLS [optional]")
+        tlsLayout = QFormLayout()
+        self.use_tls = QCheckBox("tls")
+        self.use_tls.setChecked(self.settings.value("tls", False, bool))
+
+        self.tls_file = QLineEdit()
+        self.tls_file.setText(self.settings.value("tlsfile", "/etc/opentls/certs/ca.crt"))
+        self.tls_insecure = QCheckBox("TLS insecure")
+        self.tls_insecure.setChecked(self.settings.value("tls_insecure", False, bool))
+
+        self.tls_version = QComboBox(self)
+        self.tls_version.addItem("TLSv1.2", ssl.PROTOCOL_TLSv1_2)
+        self.tls_version.addItem("TLSv1.1", ssl.PROTOCOL_TLSv1_1)
+        self.tls_version.addItem("TLSv1", ssl.PROTOCOL_TLSv1)
+
+        tlsLayout.addRow("Use tls", self.use_tls)
+        tlsLayout.addRow("Cert file", self.tls_file)
+        tlsLayout.addRow("TLS insecure", self.tls_insecure)
+        tlsLayout.addRow("TLS Version", self.tls_version)
+        gbtls.setLayout(tlsLayout)
+
         gbHost = QGroupBox("Hostname and port")
         hfl = QFormLayout()
         self.hostname = QLineEdit()
@@ -52,7 +74,7 @@ def __init__(self, *args, **kwargs):
         hlBtn.addWidgets([btnSave, btnCancel])
 
         vl = VLayout()
-        vl.addWidgets([gbHost, gbLogin, gbClientId, self.cbConnectStartup])
+        vl.addWidgets([gbHost, gbtls, gbLogin, gbClientId, self.cbConnectStartup])
         vl.addLayout(hlBtn)
 
         self.setLayout(vl)
@@ -67,6 +89,17 @@ def accept(self):
         self.settings.setValue("password", self.password.text())
         self.settings.setValue("connect_on_startup", self.cbConnectStartup.isChecked())
         self.settings.setValue("client_id", self.clientId.text())
+        self.settings.setValue("tls", self.use_tls.isChecked())
+        self.settings.setValue("tls_file", self.tls_file.text())
+        self.settings.setValue("tls_insecure", self.tls_insecure.isChecked())
+        if self.tls_version.currentText() == "TLSv1.2":
+            self.settings.setValue("tls_version", ssl.PROTOCOL_TLSv1_2)
+        elif self.tls_version.currentText() == "TLSv1.1  ":
+            self.settings.setValue("tls_version", ssl.PROTOCOL_TLSv1_1)
+        elif self.tls_version.currentText() == "TLSv1":
+            self.settings.setValue("tls_version", ssl.PROTOCOL_TLSv1)
+
+        # self.settings.setValue("client_id", self.clientId.text())
         self.settings.sync()
         self.done(QDialog.Accepted)
 
 
@@ -1,5 +1,6 @@
 import logging
 import socket
+import ssl
 
 import paho.mqtt.client as mqtt
 from PyQt5 import QtCore
@@ -33,7 +34,11 @@ def __init__(self, parent=None):
 
         self.m_hostname = ""
         self.m_port = 1883
+        self.m_tls_is_set = False
         self.ssl = False
+        self.m_tls_insecure = True
+        self.m_tls_version = ssl.PROTOCOL_TLSv1_2
+        self.m_cert_file = "/cert/cert/ca.crt"
         self.m_keepAlive = 60
         self.m_cleanSession = True
         self.m_protocolVersion = MqttClient.MQTT_3_1
@@ -124,13 +129,34 @@ def connectToHost(self):
         if self.m_hostname:
             self.connecting.emit()
             try:
+                # TLS setup
+                if self.ssl and not self.m_tls_is_set:
+                    if self.m_tls_insecure:
+                        self.m_client.tls_set(tls_version=self.m_tls_version)
+                    else:
+                        self.m_client.tls_set(self.m_cert_file, tls_version=self.m_tls_version)
+
+                    self.m_client.tls_insecure_set(self.m_tls_insecure)
+                    self.m_tls_is_set = True
+
                 self.m_client.connect(self.m_hostname, port=self.port, keepalive=self.keepAlive)
 
                 self.state = MqttClient.Connecting
                 self.m_client.loop_start()
             except socket.timeout:
                 self.connectError.emit(3)
 
+    @QtCore.pyqtSlot()
+    def setSSL(self, broker_tls_file, broker_tls_insecure, broker_tls_version):
+        self.ssl = True
+        self.m_tls_insecure = broker_tls_insecure
+        self.m_tls_version = broker_tls_version
+        self.m_cert_file = broker_tls_file
+
+    @QtCore.pyqtSlot()
+    def unsetSSL(self):
+        self.ssl = False
+
     @QtCore.pyqtSlot()
     def disconnectFromHost(self):
         self.m_client.loop_stop()
 
@@ -231,17 +231,7 @@ def toggle_autoupdate(self, state):
 
     def toggle_connect(self, state):
         if state and self.mqtt.state == self.mqtt.Disconnected:
-            self.broker_hostname = self.settings.value('hostname', 'localhost')
-            self.broker_port = self.settings.value('port', 1883, int)
-            self.broker_username = self.settings.value('username')
-            self.broker_password = self.settings.value('password')
-
-            self.mqtt.hostname = self.broker_hostname
-            self.mqtt.port = self.broker_port
-
-            if self.broker_username:
-                self.mqtt.setAuth(self.broker_username, self.broker_password)
-            self.mqtt.connectToHost()
+            self.mqtt_connect()
         elif not state and self.mqtt.state == self.mqtt.Connected:
             self.mqtt_disconnect()
 
@@ -251,11 +241,20 @@ def auto_telemetry(self):
                 self.mqtt.publish(d.cmnd_topic('STATUS'), payload=8)
 
     def mqtt_connect(self):
+        self.broker_tls = self.settings.value("tls")
+        self.broker_tls_file = self.settings.value("tls_file")
+        self.broker_tls_insecure = self.settings.value("tls_insecure")
+        self.broker_tls_version = self.settings.value("tls_version")
         self.broker_hostname = self.settings.value('hostname', 'localhost')
         self.broker_port = self.settings.value('port', 1883, int)
         self.broker_username = self.settings.value('username')
         self.broker_password = self.settings.value('password')
 
+        if self.broker_tls:
+            self.mqtt.setSSL(self.broker_tls_file, self.broker_tls_insecure, self.broker_tls_version)
+        else:
+            self.mqtt.unsetSSL()
+
         self.mqtt.hostname = self.broker_hostname
         self.mqtt.port = self.broker_port