Currently the req command prints key size before generating the private
key. If the key size can't be determined from the specified parameters, it
prints the default value.

For some algorithms (e.g GOST ones) the key bits value is fixed and can't
be extracted from the parameters. In such situations we have either
hardcode number of bits for GOST algorithms or (and it seems better to me)
 print the information after the key generation when we have the EVP_PKEY
object and can print the exact value.

What do you think about it?

Thank you!

SY, Dmitry Belyavsky
openssl-dev mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

Reply via email to