Closed ekohl closed 3 months ago
So generate_key
is too new. I'll need to rethink this a bit for older OpenSSL versions.
New attempt in https://github.com/voxpupuli/puppet-openssl/pull/223. That now passes on Fedora 40.
Replaced by https://github.com/voxpupuli/puppet-openssl/pull/167.
This came up in https://github.com/voxpupuli/puppet-openssl/pull/187#discussion_r1609710197 but it's probably also needed for https://github.com/voxpupuli/puppet-openssl/pull/167.
One thing to note is that we may have more problems in the future. For example, on my Fedora I don't appear to be allowed to generate any DSA key in the default SSL policy. I imagine future enterprise distros will follow this exampe.