apps x509: passing PKCS#11 URL as -signkey

OpenSSL 1.1.0 has extended option checking, and rejects passing a PKCS#11 engine URL to "-signkey" option. The actual code is ready to take it. Change the option parsing to allow an engine URL to be passed and modify the manpage accordingly. CLA: trivial (cherry picked from commit 16d560439d8b1be5082228a87576a8f79b3525ac) Reviewed-by: Shane Lontis <shane.lontis@oracle.com> Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> (Merged from https://github.com/openssl/openssl/pull/11173)
author: Bastian Germann <bage@linutronix.de> 2020-02-13 11:58:27 +0100
committer: Richard Levitte <levitte@openssl.org> 2020-03-08 16:49:48 +0100
commit: 9aba5c5ff2ccfe59e1c7d77918804919d549ebbc (patch)
tree: ba50d47181614788164101ded95cc5a680a463e9 /apps
parent: 4eca3ec728f328a1b05553814e58ca9aa1cb4e78 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/apps/x509.c b/apps/x509.c
index 79518a4e62..49117151e2 100644
--- a/apps/x509.c
+++ b/apps/x509.c
@@ -107,7 +107,7 @@ const OPTIONS x509_options[] = {
     {"checkend", OPT_CHECKEND, 'M',
      "Check whether the cert expires in the next arg seconds"},
     {OPT_MORE_STR, 1, 1, "Exit 1 if so, 0 if not"},
-    {"signkey", OPT_SIGNKEY, '<', "Self sign cert with arg"},
+    {"signkey", OPT_SIGNKEY, 's', "Self sign cert with arg"},
     {"x509toreq", OPT_X509TOREQ, '-',
      "Output a certification request object"},
     {"req", OPT_REQ, '-', "Input is a certificate request, sign and output"},
author	Bastian Germann <bage@linutronix.de>	2020-02-13 11:58:27 +0100
committer	Richard Levitte <levitte@openssl.org>	2020-03-08 16:49:48 +0100
commit	9aba5c5ff2ccfe59e1c7d77918804919d549ebbc (patch)
tree	ba50d47181614788164101ded95cc5a680a463e9 /apps
parent	4eca3ec728f328a1b05553814e58ca9aa1cb4e78 (diff)