diff --git a/apps/genrsa.c b/apps/genrsa.c index 6477bcd6f75a9..ebf9c55329346 100644 --- a/apps/genrsa.c +++ b/apps/genrsa.c @@ -30,12 +30,14 @@ NON_EMPTY_TRANSLATION_UNIT # define DEFBITS 2048 # define DEFPRIMES 2 +static int verbose = 0; + static int genrsa_cb(int p, int n, BN_GENCB *cb); typedef enum OPTION_choice { OPT_ERR = -1, OPT_EOF = 0, OPT_HELP, OPT_3, OPT_F4, OPT_ENGINE, - OPT_OUT, OPT_PASSOUT, OPT_CIPHER, OPT_PRIMES, + OPT_OUT, OPT_PASSOUT, OPT_CIPHER, OPT_PRIMES, OPT_VERBOSE, OPT_R_ENUM } OPTION_CHOICE; @@ -52,6 +54,7 @@ const OPTIONS genrsa_options[] = { {"engine", OPT_ENGINE, 's', "Use engine, possibly a hardware device"}, # endif {"primes", OPT_PRIMES, 'p', "Specify number of primes"}, + {"verbose", OPT_VERBOSE, '-', "Verbose output"}, {NULL} }; @@ -115,6 +118,9 @@ int genrsa_main(int argc, char **argv) if (!opt_int(opt_arg(), &primes)) goto end; break; + case OPT_VERBOSE: + verbose = 1; + break; } } argc = opt_num_rest(); @@ -143,8 +149,9 @@ int genrsa_main(int argc, char **argv) if (out == NULL) goto end; - BIO_printf(bio_err, "Generating RSA private key, %d bit long modulus (%d primes)\n", - num, primes); + if (verbose) + BIO_printf(bio_err, "Generating RSA private key, %d bit long modulus (%d primes)\n", + num, primes); rsa = eng ? RSA_new_method(eng) : RSA_new(); if (rsa == NULL) goto end; @@ -156,7 +163,7 @@ int genrsa_main(int argc, char **argv) RSA_get0_key(rsa, NULL, &e, NULL); hexe = BN_bn2hex(e); dece = BN_bn2dec(e); - if (hexe && dece) { + if (hexe && dece && verbose) { BIO_printf(bio_err, "e is %s (0x%s)\n", dece, hexe); } OPENSSL_free(hexe); @@ -186,6 +193,9 @@ static int genrsa_cb(int p, int n, BN_GENCB *cb) { char c = '*'; + if (!verbose) + return 1; + if (p == 0) c = '.'; if (p == 1) diff --git a/doc/man1/genrsa.pod b/doc/man1/genrsa.pod index 36cc7d8174eb1..f8cbb17e8c0ac 100644 --- a/doc/man1/genrsa.pod +++ b/doc/man1/genrsa.pod @@ -29,6 +29,7 @@ B B [B<-writerand file>] [B<-engine id>] [B<-primes num>] +[B<-verbose>] [B] =head1 DESCRIPTION @@ -91,6 +92,10 @@ parameter must be a positive integer that is greater than 1 and less than 16. If B is greater than 2, then the generated key is called a 'multi-prime' RSA key, which is defined in RFC 8017. +=item B<-verbose> + +Print extra details about the operations being performed. + =item B The size of the private key to generate in bits. This must be the last option