Android10-11

[JeGoi]

• Add @RequiresApi for functions
• Remove extra exceptions
• Add debug view for certificate and ca for eap peap eap tls and android >= 10
• Remove javax.security lib

Will remove idea and just use Android Studio

[JeGoi]

PF Issue on radius.log

Apr 16 16:11:32 pf auth[3109]: (1800) eap_tls: ERROR: TLS Alert read:fatal:unknown CA
Apr 16 16:11:32 pf auth[3109]: (1800) eap_tls: ERROR: TLS_accept: Failed in error
Apr 16 16:11:32 pf auth[3109]: (1800) eap_tls: ERROR: Failed in __FUNCTION__ (SSL_read)
Apr 16 16:11:32 pf auth[3109]: [mac:11:22:33:44:55:66] Rejected user: test
Apr 16 16:11:32 pf auth[3109]: (1800) Login incorrect (eap_tls: TLS Alert read:fatal:unknown CA): [test] (from client 10.1.0.10/32 port 0 cli 11:22:33:44:55:66)

[JeGoi]

It looks that the issue may be related to lets encrypt and certificate with postal code.

[nqb]

It looks that the issue may be related to lets encrypt and certificate with postal code.

You can try with Venom code related to dot1x_eap_tls_pfpki: no more postal code or street address.

[JeGoi]

@nqb thanks. It looks hat it has been fixed in 10.3.0 and we need a public CA to test android PLI.
I am not sure that dot1x_eap_tls_pfpki is using a public CA. I will take a look.

[nqb]

I am not sure that dot1x_eap_tls_pfpki is using a public CA. I will take a look.

You're right, it's a private CA.

[JeGoi]

There is an issue with username that is not saved correctly