From: Richard Levitte <levitte@openssl.org>
Date: Mon, 3 Sep 2018 11:17:03 +0000 (+0200)
Subject: openssl req: don't try to report bits
X-Git-Tag: OpenSSL_1_1_1~49
X-Git-Url: https://git.librecmc.org/?a=commitdiff_plain;h=17147181bd3f97c53592e2a5c9319b854b954039;p=oweals%2Fopenssl.git

openssl req: don't try to report bits

With the introduction of -pkeyopt, the number of bits may change
without |newkey| being updated.  Unfortunately, there is no API to
retrieve the information from a EVP_PKEY_CTX either, so chances are
that we report incorrect information.  For the moment, it's better not
to try to report the number of bits at all.

Fixes #7086

Reviewed-by: Paul Yang <yang.yang@baishancloud.com>
Reviewed-by: Paul Dale <paul.dale@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/7096)
---

diff --git a/apps/req.c b/apps/req.c
index 08a1468ef4..6fd28a2aba 100644
--- a/apps/req.c
+++ b/apps/req.c
@@ -622,8 +622,7 @@ int req_main(int argc, char **argv)
         if (pkey_type == EVP_PKEY_EC) {
             BIO_printf(bio_err, "Generating an EC private key\n");
         } else {
-            BIO_printf(bio_err, "Generating a %ld bit %s private key\n",
-                       newkey, keyalgstr);
+            BIO_printf(bio_err, "Generating a %s private key\n", keyalgstr);
         }
 
         EVP_PKEY_CTX_set_cb(genctx, genpkey_cb);