From: Daiki Ueno <ueno@gnu.org>
Date: Fri, 4 Jul 2025 05:52:08 +0000 (+0900)
Subject: certtool: don't print bits when inspecting ML-DSA private keys
X-Git-Tag: 3.8.10~7^2~2
X-Git-Url: http://git.ipfire.org/gitweb/index.cgi?a=commitdiff_plain;h=d4f32ce5293df07fc2e4bb33cb24390d43bc7fa9;p=thirdparty%2Fgnutls.git

certtool: don't print bits when inspecting ML-DSA private keys

Signed-off-by: Daiki Ueno <ueno@gnu.org>
---

diff --git a/src/certtool.c b/src/certtool.c
index 479f02bce0..a8e0d0173d 100644
--- a/src/certtool.c
+++ b/src/certtool.c
@@ -208,6 +208,11 @@ static gnutls_x509_privkey_t generate_private_key_int(common_info_st *cinfo)
 		if (ecc_bits < 256)
 			fprintf(stderr,
 				"Note that ECDSA keys with size less than 256 are not widely supported.\n\n");
+	} else if (key_type == GNUTLS_PK_MLDSA44 ||
+		   key_type == GNUTLS_PK_MLDSA65 ||
+		   key_type == GNUTLS_PK_MLDSA87) {
+		fprintf(stdlog, "Generating an %s private key...\n",
+			gnutls_pk_algorithm_get_name(key_type));
 	} else {
 		fprintf(stdlog, "Generating a %d bit %s private key...\n", bits,
 			gnutls_pk_algorithm_get_name(key_type));