Fix error message w/out nistp521. Correct error message when OpenSSL doesn't support certain ECDSA key lengths.

commit: 9b47b083ca9d866249ada9f02dbd57c87b13806e [log] [tgz]
author: Manoj Ampalam <manojamp@microsoft.com> Thu Nov 08 22:41:59 2018 -0800
committer: Darren Tucker <dtucker@dtucker.net> Sat Nov 10 19:17:55 2018 +1100
tree: 7349c6b37c539414d698f6f2cd488bac9c12641e
parent: 624d19ac2d56fa86a22417c35536caceb3be346f [diff] [blame]
diff --git a/ssh-keygen.c b/ssh-keygen.c
index e9f4058..416d25b 100644
--- a/ssh-keygen.c
+++ b/ssh-keygen.c

@@ -243,7 +243,11 @@
 	case KEY_ECDSA:
 		if (sshkey_ecdsa_bits_to_nid(*bitsp) == -1)
 			fatal("Invalid ECDSA key length: valid lengths are "
+#ifdef OPENSSL_HAS_NISTP521
 			    "256, 384 or 521 bits");
+#else
+			    "256 or 384 bits");
+#endif
 	}
 #endif
 }
commit	9b47b083ca9d866249ada9f02dbd57c87b13806e	[log] [tgz]
author	Manoj Ampalam <manojamp@microsoft.com>	Thu Nov 08 22:41:59 2018 -0800
committer	Darren Tucker <dtucker@dtucker.net>	Sat Nov 10 19:17:55 2018 +1100
tree	7349c6b37c539414d698f6f2cd488bac9c12641e
parent	624d19ac2d56fa86a22417c35536caceb3be346f [diff] [blame]