openssl 1.1.1t: problems with CA.pl and $HOME/.rnd
Matthias Apitz
guru at unixarea.de
Fri May 26 07:20:53 UTC 2023
UPDATE for the part with the RAND file:
El día Thursday, May 25, 2023 a las 01:56:38PM +0200, Matthias Apitz escribió:
> Next try without OPENSSL_CONFIG:
>
> unset OPENSSL_CONFIG
> ./CA.pl -newca
> CA certificate filename (or enter to create)
>
> Making CA certificate ...
> ====
> /usr/local/sisis-pap/bin/openssl req -new -keyout ./demoCA/private/cakey.pem -out ./demoCA/careq.pem
> Can't load /home/sisis/.rnd into RNG
> 140713478350656:error:2406F079:random number generator:RAND_load_file:Cannot open file:crypto/rand/randfile.c:98:Filename=/home/sisis/.rnd
> Generating a RSA private key
>
> Why it wants to load %HOME/.rnd?
This was caused by an old file /usr/local/sisis-pap/openssl.cnf
because the 'make install' delivers the file
/usr/local/sisis-pap/openssl.cnf.dist but does not overwrite an
existing old file /usr/local/sisis-pap/openssl.cnf.
Thanks
matthias
--
Matthias Apitz, ✉ guru at unixarea.de, http://www.unixarea.de/ +49-176-38902045
Public GnuPG key: http://www.unixarea.de/key.pub
More information about the openssl-users
mailing list