Dear all, I’m a newbie to OpenVPN/OpenSSL and this is the first time I send a question.
My EasyRSA 3.0 run on an embeded system, the OpenSSL version is: OpenSSL 1.0.2a 19 Mar 2015 openssl print `unable to write 'random state'` when call ./easyrsa gen-dh but actually the command succeed because `Failed to build DH params` is not printed. I googled, the reason is openssl has no rights to write to .rnd file. but the path of .rnd file defined by RANDFILE in openssl-1.0.cnf is writable. the default HOME directory is /root, this dir is read only. if I change HOME to /data/, everything will be ok, /data/.rnd is generated after command done. It seems that RANDFILE defined by openssl-1.0.cnf does not take affect. then I do the similar work on my Ubuntu desktop system and use `strace` to find the details, I found openssl-1.0.cnf is opened, and random file is written to HOME/.rnd. no the one defined in openssl-1.0.cnf. Is anyone similar to this problem? -- With Best Regards YUAN Jianpeng ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, SlashDot.org! http://sdm.link/slashdot _______________________________________________ Openvpn-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openvpn-users
