ARMmbed · 0xc0170 · May 21, 2019 · Feb 28, 2019 · May 17, 2019 · artokin
diff --git a/features/nanostack/mbed-mesh-api/mbed_lib.json b/features/nanostack/mbed-mesh-api/mbed_lib.json
@@ -153,6 +153,22 @@
         "wisun-uc-dwell-interval": {
             "help": "Unicast dwell interval. Range: 15-255 milliseconds",
             "value": 0
+        },
+        "certificate-header": {
+            "help": "File name of the certificate header file (used on include directive)",
+            "value": null
+        },
+        "root-certificate": {
+            "help": "Root certificate in PEM format (must be a null terminated c-string)",
+            "value": null
+        },
+        "own-certificate": {
+            "help": "Own certificate in PEM format (must be a null terminated c-string)",
+            "value": null
+        },
+        "own-certificate-key": {
+            "help": "Own certificate's key in PEM format (must be a null terminated c-string)",
+            "value": null
         }
     },
     "target_overrides": {

diff --git a/features/nanostack/mbed-mesh-api/source/wisun_tasklet.c b/features/nanostack/mbed-mesh-api/source/wisun_tasklet.c
@@ -28,6 +28,13 @@
 #include "mac_api.h"
 #include "sw_mac.h"
 #include "ws_management_api.h" //ws_management_node_init
+#ifdef MBED_CONF_MBED_MESH_API_CERTIFICATE_HEADER
+#if !defined(MBED_CONF_MBED_MESH_API_ROOT_CERTIFICATE) || !defined(MBED_CONF_MBED_MESH_API_OWN_CERTIFICATE) || \
+    !defined(MBED_CONF_MBED_MESH_API_OWN_CERTIFICATE_KEY)
+#error Invalid Wi-SUN certificate configuration
+#endif
+#include MBED_CONF_MBED_MESH_API_CERTIFICATE_HEADER
+#endif
 
 // For tracing we need to define flag, have include and define group
 //#define HAVE_DEBUG
@@ -210,6 +217,18 @@ static void wisun_tasklet_configure_and_connect_to_network(void)
                             network_name,
                             fhss_timer_ptr);
 
+#if defined(MBED_CONF_MBED_MESH_API_CERTIFICATE_HEADER)
+    arm_certificate_chain_entry_s chain_info;
+    memset(&chain_info, 0, sizeof(arm_certificate_chain_entry_s));
+    chain_info.cert_chain[0] = (const uint8_t *) MBED_CONF_MBED_MESH_API_ROOT_CERTIFICATE;
+    chain_info.cert_len[0] = strlen((const char *) MBED_CONF_MBED_MESH_API_ROOT_CERTIFICATE) + 1;
+    chain_info.cert_chain[1] = (const uint8_t *) MBED_CONF_MBED_MESH_API_OWN_CERTIFICATE;
+    chain_info.cert_len[1] = strlen((const char *) MBED_CONF_MBED_MESH_API_OWN_CERTIFICATE) + 1;
+    chain_info.key_chain[1] = (const uint8_t *) MBED_CONF_MBED_MESH_API_OWN_CERTIFICATE_KEY;
+    chain_info.chain_length = 2;
+    arm_network_certificate_chain_set((const arm_certificate_chain_entry_s *) &chain_info);
+#endif
+
     status = arm_nwk_interface_up(wisun_tasklet_data_ptr->network_interface_id);
     if (status >= 0) {
         wisun_tasklet_data_ptr->tasklet_state = TASKLET_STATE_BOOTSTRAP_STARTED;