Your message dated Wed, 30 Aug 2023 20:58:50 +0700
with message-id <[email protected]>
and subject line easy-rsa: Can't load pki/.rnd into RNG when building CA
has caused the Debian Bug report #960070,
regarding easy-rsa: Can't load pki/.rnd into RNG when building CA
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
960070: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=960070
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: easy-rsa
Version: 3.0.6-1
Severity: normal
Dear Maintainer,
* What led up to the situation?
I installed easy-rsa package to build ssl certs for a openvpn instance
on a debian 10 host.
* What was the outcome of this action?
When issued command: './easyrsa build-ca nopass' i got a notification of
an error:
Can't load /etc/openvpn/easy-rsa/pki/.rnd into RNG
140449484268672:error:2406F079:random number generator:RAND_load_file:Cannot
open file:../crypto/rand/randfile.c:98:Filename=/etc/openvpn/easy-rsa/pki/.rnd
* What outcome did you expect instead?
Not to have any errors as it was in the past versions of easy-rsa
package.
Not sure if this error a sign of a significant issue, potentially compromising
security.
-- System Information:
Debian Release: 10.3
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 4.19.0-8-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8),
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages easy-rsa depends on:
ii openssl 1.1.1d-0+deb10u3
Versions of packages easy-rsa recommends:
ii opensc 0.19.0-1
easy-rsa suggests no packages.
-- no debconf information
--- End Message ---
--- Begin Message ---
Reported fixed for upstream version 3.0.7 and Debian version 3.0.8-1.
Lance Lin
GPG Fingerprint: 4A31 DB5A 1EE4 096C 8739 9880 9036 4929 4C33 F9B7
OpenPGP_0x903649294C33F9B7.asc
Description: OpenPGP public key
OpenPGP_signature
Description: OpenPGP digital signature
--- End Message ---
