Bug#898470: openssl says "Can't load /root/.rnd into RNG"
On Mon, May 14, 2018 at 11:45 PM, Sebastian Andrzej Siewior < sebast...@breakpoint.cc> wrote: > > It does say error, but everything completes as expected, correct? > Yes, correct: the cert file is created, despite the error message. FWIW: with the older openssl 1.1.0 "libssl1.1:amd64 (1.1.0h-2)", there is no error message with the cert-gen command; the file /root/.rnd is there after the first openssl key-gen command root@0e7025a0d9cc:/# openssl version OpenSSL 1.1.0h 27 Mar 2018 root@0e7025a0d9cc:/# ls -al /root/.rnd ls: cannot access '/root/.rnd': No such file or directory root@0e7025a0d9cc:/# openssl genrsa -out example.com.key 2048 Generating RSA private key, 2048 bit long modulus ...+++ .+++ e is 65537 (0x010001) root@0e7025a0d9cc:/# ls -al /root/.rnd -rw--- 1 root root 1024 May 15 05:47 /root/.rnd root@0e7025a0d9cc:/# openssl req -new -x509 -key example.com.key -out example.com.cert -days 3650 -subj /CN=example.com root@0e7025a0d9cc:/#
Bug#898470: openssl says "Can't load /root/.rnd into RNG"
On 2018-05-12 05:38:05 [+], Sander Jonkers wrote: > Second command (goed wrong): > # openssl req -new -x509 -key example.com.key -out example.com.cert -days > 3650 -subj /CN=example.com > Can't load /root/.rnd into RNG > 140283178746304:error:2406F079:random number generator:RAND_load_file:Cannot > open file:../crypto/rand/randfile.c:88:Filename=/root/.rnd > > I would have expected no error. It does say error, but everything completes as expected, correct? Sebastian
Bug#898470: openssl says "Can't load /root/.rnd into RNG"
Package: openssl Version: 1.1.1~~pre6-2 Severity: important Dear Maintainer, Situation: debian experimental, clean install (docker container), openssl (version 1.1.1, via "install -t experimental) First command (goes well): # openssl genrsa -out example.com.key 2048 Second command (goed wrong): # openssl req -new -x509 -key example.com.key -out example.com.cert -days 3650 -subj /CN=example.com Can't load /root/.rnd into RNG 140283178746304:error:2406F079:random number generator:RAND_load_file:Cannot open file:../crypto/rand/randfile.c:88:Filename=/root/.rnd I would have expected no error. A "touch /root/.rnd" makes the error go away, but I guess that is not the correct solution? -- System Information: Debian Release: buster/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 4.13.0-041300-generic (SMP w/2 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968), LANGUAGE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /usr/bin/dash Init: unable to detect Versions of packages openssl depends on: ii libc6 2.27-3 ii libssl1.1 1.1.1~~pre6-2 openssl recommends no packages. Versions of packages openssl suggests: ii ca-certificates 20180409 -- no debconf information