RANDFILE not correct on ubuntu 12.04.04

[mpucholblasco]

RANDFILE has an incorrect value ($ENV::HOME) on ubuntu 12.04.04.

Steps to reproduce the bug:

• Using current RANDFILE value ($ENV::HOME) on Ubuntu 12.04.04, openssl version 1.0.1-4ubuntu3
• Apply the following manifest:

  openssl::certificate::x509 { 'test.example.com':
    ensure       => present,
    country      => 'ES',
    organization => 'example.com',
    commonname   => $fqdn,
    base_dir     => '/tmp',
    owner        => 'root',
    password     => 'fake',
  }

Current behaviour:

• The following error is shown:

Error: Execution of '/usr/bin/openssl req -new -key /tmp/test.example.com -config /tmp/mail.awsdev.netquestapps.com.cnf -out /tmp/test.example.com.csr -passin pass:fake' returned 1: error on line 6 of /tmp/test.example.com.cnf
139940285789856:error:0E065068:configuration file routines:STR_COPY:variable has no value:conf_def.c:618:line 6

Expected behaviour:

• Certificates should be generated.

Way to fix the bug:

• Use absolute path (using /root/.rnd fixes the bug)

[cjeanneret]

Hello,

Thank you for the bug report. It would be better to set HOME in the config file, and let the user set it through some variable.

Also, reading this note seems to show your openssl version is maybe a bit old?
https://www.openssl.org/docs/apps/config.html#NOTES

We will look to that as soon as possible.

Cheers,

C.

[mpucholblasco]

Hello,
first all, thanks for your reply.

My apologies. I was using an old openssl version. It currently works with version 1.0.1-4ubuntu5.12. I have updated it due to openssl heartbleed bug.

Thank you very much for your comment.

Cheers,
M.

[lathiat]

This still happens to me on Ubuntu 14.04

I suspect the issue is more that $HOME just isn't set within my puppet environment.