RE: Problems importing keys and certs in Android.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Thank you for your answer, I am now able to install my p12 file.

The next problem is now using it.

I still use the same command lines as in the Makefile to make my cert and keys (pkcs12 command are now prefixed with “-legacy” option).

When I want to use my p12 client file on an Android file I get an error in adb logcat :

 

wpa_supplicant: TLS - SSL error: error:0900006e:PEM routines:OPENSSL_internal:NO_START_LINE

 

I have found some forums that talks about the format of the keys or certs, the fact is I am using the same Makefile as everyone does for freeradius’ certs.

Is there a workaround for this error in openssl ?

 

Thanks in advance for your help !

 

 

De : Erwann Abalea <erwann.abalea@xxxxxxxxxxxx>
Envoyé : vendredi 10 mars 2023 11:15
À : Le Goffic Clement <clement.legoffic@xxxxxxxxx>
Cc : openssl-users@xxxxxxxxxxx
Objet : Re: Problems importing keys and certs in Android.

Maybe these versions of Android can only handle the "legacy" algorithms?

Try adding the "-legacy" option when creating the PKCS#12 files.

 

On Fri, Mar 10, 2023 at 11:11 AM clement.legoffic@xxxxxxxxx <clement.legoffic@xxxxxxxxx> wrote:

Hello

I am using openssl to create my certificates for a 802.1X environnment with a freeradius server.

I use the freeradius Makefile to generate my keys and certs :

https://github.com/FreeRADIUS/freeradius-server/blob/v3.2.x/raddb/certs/Makefile

The Makefile works well and certificates too, I am able to authenticate to my Freeradius server with a embedded Linux device that has the ca cert and client cert installed.

I need to make my solution working with Android device.

So I use the p12 file generated by the Makefile on my Android phone (it contains the same priv key and certificates used by the embedded linux device)

The fact is that I cannot import my p12 file in either an Android 10 neither on an Android 13.

After asking the freeradius mailing list that told me the p12 file is working well, I was wondering if the error has already been encounter by openssl users

So, do you ever had problems importing p12 or cert/key file on android ?

Thanks,

--

Cordialement,

Erwann Abalea.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux