ekohl
commented
5 months ago So generate_key is too new. I'll need to rethink this a bit for older OpenSSL versions.
Closed ekohl closed 3 months ago
ekohl
commented
5 months ago So generate_key is too new. I'll need to rethink this a bit for older OpenSSL versions.
ekohl
commented
3 months ago New attempt in https://github.com/voxpupuli/puppet-openssl/pull/223. That now passes on Fedora 40.
ekohl
commented
3 months ago Replaced by https://github.com/voxpupuli/puppet-openssl/pull/167.
This came up in https://github.com/voxpupuli/puppet-openssl/pull/187#discussion_r1609710197 but it's probably also needed for https://github.com/voxpupuli/puppet-openssl/pull/167.
One thing to note is that we may have more problems in the future. For example, on my Fedora I don't appear to be allowed to generate any DSA key in the default SSL policy. I imagine future enterprise distros will follow this exampe.