Bug #18248
closed
[deployment][provision][tests] ubuntu 18.04 fails to generate openssl certificates
Description
Openssl fails to generate certificates throwing an error opening .RND
test-provision-ubuntu1804: #91 /console
Updated by Javier Bértoli over 2 years ago
- % Done changed from 0 to 100
The issue is caused by a deprecated parameter (RANDFILE) in the /etc/ssl/openssl.cnf
I could fix it using the solution provided here (7363a1019).
After fixing this, arvados-controller failed to run, due to an issue caused by the postgresql installation.
The formula, by default, installs the PostgresQL repo, which causes issues in this distro, so I additionally made sure the non-RedHat distros use the package they provide (f032efc84)
As Peter Amstutz suggested, I also enabled the debugging level in the tests (8c82ddb22)
Tests now pass again
Updated by Ward Vandewege over 2 years ago
Reviewing f032efc849b51697c0cc75825f071802452c02ce on 18248-fix-ubuntu-18.04-testing:
+# Edit the openssl.conf file to fix the RND error +# 20:03:39 Can't load /home/jenkins/.rnd into RNG +# as seen +# test-provision-ubuntu1804: #91/console +# using the solution provided here +# https://github.com/openssl/openssl/issues/7754#issuecomment-541310006
The changes look good but I think the comment above could be better. Rather than referring to a CI log (which will get deleted at some point) and a github link, could you just explain the problem and the solution? I.e. something more like
# In openssl.cnf, remove a reference to a file (~/.rnd) that is not guaranteed to exist, cf. # https://github.com/openssl/openssl/issues/7754
There was also a trailing space in the comment, could you make sure you check for that (updating your git config) to avoid this in the future?
Otherwise LGTM.
Updated by Javier Bértoli over 2 years ago
- Status changed from In Progress to Resolved
Applied in changeset arvados|617de4f0fe0601522521bfa6e89de095f7459ca7.
Updated by