Hi, I have some cases where a binary (DER) private key is more useful than PEM when created along with a certificate request. In the req app, new keys are hard-coded to be written as PEM files. The attached patch uses the value from -keyform to determine the output format which removes the need for manual conversion afterwards. (This is against 1.0.0d, but should be trivial to port to other versions.)
To have consistent names, a new option "-keyoutform" should probably be added for this. I didn't want to change the user interface, so I reused -keyform. I can resubmit with the new option if that is preferred. Comments? Thanks
openssl-req-keyoutform.patch
Description: Binary data