Commit 04a1b3fa7b for openssl.org

commit 04a1b3fa7b6090aaca88d2d884de847822e89bef
Author: Dr. David von Oheimb <David.von.Oheimb@siemens.com>
Date:   Wed Jan 6 12:16:44 2021 +0100

    apps/req.c: Make sure -verify option takes effect also with -x509

    Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
    (Merged from https://github.com/openssl/openssl/pull/13658)

diff --git a/apps/req.c b/apps/req.c
index 3aef8882a8..8c66f2a5fb 100644
--- a/apps/req.c
+++ b/apps/req.c
@@ -104,7 +104,7 @@ const OPTIONS req_options[] = {
 #endif
     {"in", OPT_IN, '<', "X.509 request input file"},
     {"inform", OPT_INFORM, 'F', "Input format - DER or PEM"},
-    {"verify", OPT_VERIFY, '-', "Verify signature on REQ"},
+    {"verify", OPT_VERIFY, '-', "Verify self-signature on the request"},

     OPT_SECTION("Certificate"),
     {"new", OPT_NEW, '-', "New request"},
@@ -932,7 +932,7 @@ int req_main(int argc, char **argv)
         }
     }

-    if (verify && !gen_x509) {
+    if (verify) {
         EVP_PKEY *tpubkey = pkey;

         if (tpubkey == NULL) {
diff --git a/doc/man1/openssl-req.pod.in b/doc/man1/openssl-req.pod.in
index ac83f35692..72f9997aea 100644
--- a/doc/man1/openssl-req.pod.in
+++ b/doc/man1/openssl-req.pod.in
@@ -142,7 +142,7 @@ Prints out the value of the modulus of the public key contained in the request.

 =item B<-verify>

-Verifies the signature on the request.
+Verifies the self-signature on the request.

 =item B<-new>