Topic: Android AOSP Build with WolfSSL does not work for wifi EAP-TLS Auth

Hi WolfSSL Forums,

We are running into one weird issue where our android AOSP build with WolfSSL FIPS .

Now when we use the custom Android 8.1 OS with WolfSSL FIPS build. Wifi connection with EAP-TLS failed with 802.1X Authentication Failures.

Now if we don't have WolfSSl FIPS in Android 8.1 OS then WIFI connection with EAP-TLS does working fine.

Do we require a special OpenSSL client certificate, We are using openssl to generate android client certificate and we are using FreeRadius server for the WIFI authentication.

Thanks,
Himanshu

Share

Re: Android AOSP Build with WolfSSL does not work for wifi EAP-TLS Auth

Hi Himanshu,

Are you using the latest wolfSSL release, 5.5.3?  If not, please retry with 5.5.3.
If so, are you building wolfSSL with --enable-wpas?  Please attach your build config.
One special note with FIPS is it requires a minimum password size of 14 bytes (ie. 14 characters) due to the FIPS standard, shorter passwords will not work.

Thanks,
Kareem

Share

3 (edited by himanshueinfo 2022-11-29 06:54:14)

Re: Android AOSP Build with WolfSSL does not work for wifi EAP-TLS Auth

Hi Kareem,

Thanks for the response.

we are using WolfSSL Version 5.1.1

Please see our android configuration file. i am not sure where i can find that  --enable-wpas is there or not.

Since we are not using 5.5.3, Do we first need to update to V5.5.3 in our current android source tree?

Thanks
Himanshu

Post's attachments

Android.bp 5.26 kb, 3 downloads since 2022-11-29 

You don't have the permssions to download the attachments of this post.

Share

Re: Android AOSP Build with WolfSSL does not work for wifi EAP-TLS Auth

Yes, please try updating to 5.5.3.
wpa_supplicant requires multiple build flags which you can find in configure.ac: https://github.com/wolfSSL/wolfssl/blob … e.ac#L1669
You will need to define all of them.  The main flag is WOLFSSL_WPAS.

Share