ESPHome: esphome/components/wireguard/wireguard.h Source File

#pragma once

#include "esphome/core/defines.h"

#ifdef USE_WIREGUARD

#include <ctime>

#include <initializer_list>


#include "esphome/core/component.h"

#include "esphome/core/helpers.h"

#include "esphome/components/time/real_time_clock.h"


#ifdef USE_BINARY_SENSOR

#include "esphome/components/binary_sensor/binary_sensor.h"

#endif


#ifdef USE_SENSOR

#include "esphome/components/sensor/sensor.h"

#endif


#ifdef USE_TEXT_SENSOR

#include "esphome/components/text_sensor/text_sensor.h"

#endif


#include <esp_wireguard.h>


namespace esphome::wireguard {


struct AllowedIP {

  const char *ip;

  const char *netmask;

};


class Wireguard : public PollingComponent {

 public:

  void setup() override;

  void loop() override;

  void update() override;

  void dump_config() override;

  void on_shutdown() override;

  bool can_proceed() override;


  float get_setup_priority() const override { return esphome::setup_priority::BEFORE_CONNECTION; }


  void set_address(const char *address) { this->address_ = address; }

  void set_netmask(const char *netmask) { this->netmask_ = netmask; }

  void set_private_key(const char *key) { this->private_key_ = key; }

  void set_peer_endpoint(const char *endpoint) { this->peer_endpoint_ = endpoint; }

  void set_peer_public_key(const char *key) { this->peer_public_key_ = key; }

  void set_peer_port(uint16_t port) { this->peer_port_ = port; }

  void set_preshared_key(const char *key) { this->preshared_key_ = key; }


  void set_address(const std::string &address) = delete;

  void set_netmask(const std::string &netmask) = delete;

  void set_private_key(const std::string &key) = delete;

  void set_peer_endpoint(const std::string &endpoint) = delete;

  void set_peer_public_key(const std::string &key) = delete;

  void set_preshared_key(const std::string &key) = delete;


  void set_allowed_ips(std::initializer_list<AllowedIP> ips) { this->allowed_ips_ = ips; }

  void set_allowed_ips(std::initializer_list<std::tuple<std::string, std::string>> ips) = delete;


  void set_keepalive(uint16_t seconds);

  void set_reboot_timeout(uint32_t seconds);

  void set_srctime(time::RealTimeClock *srctime);


#ifdef USE_BINARY_SENSOR

  void set_status_sensor(binary_sensor::BinarySensor *sensor);

  void set_enabled_sensor(binary_sensor::BinarySensor *sensor);

#endif


#ifdef USE_SENSOR

  void set_handshake_sensor(sensor::Sensor *sensor);

#endif


#ifdef USE_TEXT_SENSOR

  void set_address_sensor(text_sensor::TextSensor *sensor);

#endif


  void disable_auto_proceed();


  void enable();


  void disable();


  void publish_enabled_state();


  bool is_enabled();


  bool is_peer_up() const;

  time_t get_latest_handshake() const;


 protected:

  const char *address_{nullptr};

  const char *netmask_{nullptr};

  const char *private_key_{nullptr};

  const char *peer_endpoint_{nullptr};

  const char *peer_public_key_{nullptr};

  const char *preshared_key_{nullptr};


  FixedVector<AllowedIP> allowed_ips_;


  uint16_t peer_port_;

  uint16_t keepalive_;

  uint32_t reboot_timeout_;


  time::RealTimeClock *srctime_;


#ifdef USE_BINARY_SENSOR

  binary_sensor::BinarySensor *status_sensor_ = nullptr;

  binary_sensor::BinarySensor *enabled_sensor_ = nullptr;

#endif


#ifdef USE_SENSOR

  sensor::Sensor *handshake_sensor_ = nullptr;

#endif


#ifdef USE_TEXT_SENSOR

  text_sensor::TextSensor *address_sensor_ = nullptr;

#endif


  bool proceed_allowed_ = true;


  bool enabled_ = true;


  wireguard_config_t wg_config_ = ESP_WIREGUARD_CONFIG_DEFAULT();

  wireguard_ctx_t wg_ctx_ = ESP_WIREGUARD_CONTEXT_DEFAULT();


  esp_err_t wg_initialized_ = ESP_FAIL;

  esp_err_t wg_connected_ = ESP_FAIL;


  uint32_t wg_peer_offline_time_ = 0;


  time_t latest_saved_handshake_ = 0;


  void start_connection_();

  void stop_connection_();

};


// These are used for possibly long DNS resolution to temporarily suspend the watchdog

void suspend_wdt();

void resume_wdt();


static constexpr size_t MASK_KEY_BUFFER_SIZE = 12;


void mask_key_to(char *buffer, size_t len, const char *key);


template<typename... Ts> class WireguardPeerOnlineCondition : public Condition<Ts...>, public Parented<Wireguard> {

 public:

  bool check(const Ts &...x) override { return this->parent_->is_peer_up(); }

};


template<typename... Ts> class WireguardEnabledCondition : public Condition<Ts...>, public Parented<Wireguard> {

 public:

  bool check(const Ts &...x) override { return this->parent_->is_enabled(); }

};


template<typename... Ts> class WireguardEnableAction : public Action<Ts...>, public Parented<Wireguard> {

 public:

  void play(const Ts &...x) override { this->parent_->enable(); }

};


template<typename... Ts> class WireguardDisableAction : public Action<Ts...>, public Parented<Wireguard> {

 public:

  void play(const Ts &...x) override { this->parent_->disable(); }

};


}  // namespace esphome::wireguard

#endif

binary_sensor.h

address
uint8_t address
Definition bl0906.h:4

esphome::Action
Definition automation.h:305

esphome::Condition
Base class for all automation conditions.
Definition automation.h:258

esphome::FixedVector
Fixed-capacity vector - allocates once at runtime, never reallocates This avoids std::vector template...
Definition helpers.h:227

esphome::Parented
Helper class to easily give an object a parent of type T.
Definition helpers.h:1471

esphome::Parented< Wireguard >::parent_
Wireguard * parent_
Definition helpers.h:1482

esphome::PollingComponent
This class simplifies creating components that periodically check a state.
Definition component.h:512

esphome::binary_sensor::BinarySensor
Base class for all binary_sensor-type classes.
Definition binary_sensor.h:31

esphome::sensor::Sensor
Base-class for all sensors.
Definition sensor.h:43

esphome::text_sensor::TextSensor
Definition text_sensor.h:25

esphome::time::RealTimeClock
The RealTimeClock class exposes common timekeeping functions via the device's local real-time clock.
Definition real_time_clock.h:18

esphome::wireguard::WireguardDisableAction
Action to disable Wireguard component.
Definition wireguard.h:185

esphome::wireguard::WireguardDisableAction::play
void play(const Ts &...x) override
Definition wireguard.h:187

esphome::wireguard::WireguardEnableAction
Action to enable Wireguard component.
Definition wireguard.h:179

esphome::wireguard::WireguardEnableAction::play
void play(const Ts &...x) override
Definition wireguard.h:181

esphome::wireguard::WireguardEnabledCondition
Condition to check if Wireguard component is enabled.
Definition wireguard.h:173

esphome::wireguard::WireguardEnabledCondition::check
bool check(const Ts &...x) override
Definition wireguard.h:175

esphome::wireguard::Wireguard
Main Wireguard component class.
Definition wireguard.h:34

esphome::wireguard::Wireguard::enabled_sensor_
binary_sensor::BinarySensor * enabled_sensor_
Definition wireguard.h:118

esphome::wireguard::Wireguard::set_netmask
void set_netmask(const char *netmask)
Definition wireguard.h:46

esphome::wireguard::Wireguard::allowed_ips_
FixedVector< AllowedIP > allowed_ips_
Definition wireguard.h:108

esphome::wireguard::Wireguard::update
void update() override
Definition wireguard.cpp:76

esphome::wireguard::Wireguard::set_keepalive
void set_keepalive(uint16_t seconds)
Definition wireguard.cpp:182

esphome::wireguard::Wireguard::enabled_
bool enabled_
When false the wireguard link will not be established.
Definition wireguard.h:133

esphome::wireguard::Wireguard::set_allowed_ips
void set_allowed_ips(std::initializer_list< AllowedIP > ips)
Definition wireguard.h:61

esphome::wireguard::Wireguard::status_sensor_
binary_sensor::BinarySensor * status_sensor_
Definition wireguard.h:117

esphome::wireguard::Wireguard::get_setup_priority
float get_setup_priority() const override
Definition wireguard.h:43

esphome::wireguard::Wireguard::set_status_sensor
void set_status_sensor(binary_sensor::BinarySensor *sensor)
Definition wireguard.cpp:187

esphome::wireguard::Wireguard::set_srctime
void set_srctime(time::RealTimeClock *srctime)
Definition wireguard.cpp:184

esphome::wireguard::Wireguard::publish_enabled_state
void publish_enabled_state()
Publish the enabled state if the enabled binary sensor is configured.
Definition wireguard.cpp:214

esphome::wireguard::Wireguard::get_latest_handshake
time_t get_latest_handshake() const
Definition wireguard.cpp:174

esphome::wireguard::Wireguard::on_shutdown
void on_shutdown() override
Definition wireguard.cpp:165

esphome::wireguard::Wireguard::wg_ctx_
wireguard_ctx_t wg_ctx_
Definition wireguard.h:136

esphome::wireguard::Wireguard::handshake_sensor_
sensor::Sensor * handshake_sensor_
Definition wireguard.h:122

esphome::wireguard::Wireguard::srctime_
time::RealTimeClock * srctime_
Definition wireguard.h:114

esphome::wireguard::Wireguard::set_preshared_key
void set_preshared_key(const char *key)
Definition wireguard.h:51

esphome::wireguard::Wireguard::proceed_allowed_
bool proceed_allowed_
Set to false to block the setup step until peer is connected.
Definition wireguard.h:130

esphome::wireguard::Wireguard::set_peer_endpoint
void set_peer_endpoint(const std::string &endpoint)=delete

esphome::wireguard::Wireguard::dump_config
void dump_config() override
Definition wireguard.cpp:132

esphome::wireguard::Wireguard::set_allowed_ips
void set_allowed_ips(std::initializer_list< std::tuple< std::string, std::string > > ips)=delete
Prevent accidental use of std::string which would dangle.

esphome::wireguard::Wireguard::set_peer_public_key
void set_peer_public_key(const std::string &key)=delete

esphome::wireguard::Wireguard::private_key_
const char * private_key_
Definition wireguard.h:103

esphome::wireguard::Wireguard::set_reboot_timeout
void set_reboot_timeout(uint32_t seconds)
Definition wireguard.cpp:183

esphome::wireguard::Wireguard::disable_auto_proceed
void disable_auto_proceed()
Block the setup step until peer is connected.
Definition wireguard.cpp:199

esphome::wireguard::Wireguard::loop
void loop() override
Definition wireguard.cpp:65

esphome::wireguard::Wireguard::can_proceed
bool can_proceed() override
Definition wireguard.cpp:167

esphome::wireguard::Wireguard::set_private_key
void set_private_key(const char *key)
Definition wireguard.h:47

esphome::wireguard::Wireguard::set_address_sensor
void set_address_sensor(text_sensor::TextSensor *sensor)
Definition wireguard.cpp:196

esphome::wireguard::Wireguard::address_sensor_
text_sensor::TextSensor * address_sensor_
Definition wireguard.h:126

esphome::wireguard::Wireguard::wg_peer_offline_time_
uint32_t wg_peer_offline_time_
The last time the remote peer become offline.
Definition wireguard.h:142

esphome::wireguard::Wireguard::set_address
void set_address(const char *address)
Definition wireguard.h:45

esphome::wireguard::Wireguard::wg_connected_
esp_err_t wg_connected_
Definition wireguard.h:139

esphome::wireguard::Wireguard::is_peer_up
bool is_peer_up() const
Definition wireguard.cpp:169

esphome::wireguard::Wireguard::disable
void disable()
Stop any running connection and disable the WireGuard component.
Definition wireguard.cpp:207

esphome::wireguard::Wireguard::peer_port_
uint16_t peer_port_
Definition wireguard.h:110

esphome::wireguard::Wireguard::set_enabled_sensor
void set_enabled_sensor(binary_sensor::BinarySensor *sensor)
Definition wireguard.cpp:188

esphome::wireguard::Wireguard::set_address
void set_address(const std::string &address)=delete
Prevent accidental use of std::string which would dangle.

esphome::wireguard::Wireguard::keepalive_
uint16_t keepalive_
Definition wireguard.h:111

esphome::wireguard::Wireguard::set_handshake_sensor
void set_handshake_sensor(sensor::Sensor *sensor)
Definition wireguard.cpp:192

esphome::wireguard::Wireguard::wg_initialized_
esp_err_t wg_initialized_
Definition wireguard.h:138

esphome::wireguard::Wireguard::set_preshared_key
void set_preshared_key(const std::string &key)=delete

esphome::wireguard::Wireguard::is_enabled
bool is_enabled()
Return if the WireGuard component is or is not enabled.
Definition wireguard.cpp:222

esphome::wireguard::Wireguard::peer_public_key_
const char * peer_public_key_
Definition wireguard.h:105

esphome::wireguard::Wireguard::reboot_timeout_
uint32_t reboot_timeout_
Definition wireguard.h:112

esphome::wireguard::Wireguard::netmask_
const char * netmask_
Definition wireguard.h:102

esphome::wireguard::Wireguard::enable
void enable()
Enable the WireGuard component.
Definition wireguard.cpp:201

esphome::wireguard::Wireguard::set_peer_port
void set_peer_port(uint16_t port)
Definition wireguard.h:50

esphome::wireguard::Wireguard::set_peer_endpoint
void set_peer_endpoint(const char *endpoint)
Definition wireguard.h:48

esphome::wireguard::Wireguard::start_connection_
void start_connection_()
Definition wireguard.cpp:224

esphome::wireguard::Wireguard::set_netmask
void set_netmask(const std::string &netmask)=delete

esphome::wireguard::Wireguard::preshared_key_
const char * preshared_key_
Definition wireguard.h:106

esphome::wireguard::Wireguard::set_private_key
void set_private_key(const std::string &key)=delete

esphome::wireguard::Wireguard::address_
const char * address_
Definition wireguard.h:101

esphome::wireguard::Wireguard::set_peer_public_key
void set_peer_public_key(const char *key)
Definition wireguard.h:49

esphome::wireguard::Wireguard::peer_endpoint_
const char * peer_endpoint_
Definition wireguard.h:104

esphome::wireguard::Wireguard::setup
void setup() override
Definition wireguard.cpp:29

esphome::wireguard::Wireguard::latest_saved_handshake_
time_t latest_saved_handshake_
The latest saved handshake.
Definition wireguard.h:150

esphome::wireguard::Wireguard::stop_connection_
void stop_connection_()
Definition wireguard.cpp:281

esphome::wireguard::Wireguard::wg_config_
wireguard_config_t wg_config_
Definition wireguard.h:135

esphome::wireguard::WireguardPeerOnlineCondition
Condition to check if remote peer is online.
Definition wireguard.h:167

esphome::wireguard::WireguardPeerOnlineCondition::check
bool check(const Ts &...x) override
Definition wireguard.h:169

component.h

defines.h

helpers.h

esphome::setup_priority::BEFORE_CONNECTION
const float BEFORE_CONNECTION
For components that should be initialized after WiFi and before API is connected.
Definition component.cpp:90

esphome::wireguard
Definition wireguard.cpp:16

esphome::wireguard::mask_key_to
void mask_key_to(char *buffer, size_t len, const char *key)
Strip most part of the key only for secure printing.
Definition wireguard.cpp:292

esphome::wireguard::resume_wdt
void resume_wdt()

esphome::wireguard::suspend_wdt
void suspend_wdt()

esphome::len
std::string size_t len
Definition helpers.h:692

real_time_clock.h

sensor.h

esphome::wireguard::AllowedIP
Allowed IP entry for WireGuard peer configuration.
Definition wireguard.h:28

esphome::wireguard::AllowedIP::ip
const char * ip
Definition wireguard.h:29

esphome::wireguard::AllowedIP::netmask
const char * netmask
Definition wireguard.h:30

text_sensor.h

x
uint16_t x
Definition tt21100.cpp:5