Description of problem:
The openssl req -x509 now implies -newreq and thus there is no way to convert from existing request to self signed X.509 via openssl req command.
This is regression from 1.0.1 in current 1.0.2 and 1.1.0 releases.
See also https://github.com/openssl/openssl/issues/3396
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory, and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.