![[BACK]](/icons/back.gif){kind=icon}
Up to [local] / src / usr.bin / ssh
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.23 / (download) - annotate - [select for diffs], Tue Apr 30 05:45:56 2024 UTC (2 weeks, 2 days ago) by djm
Branch: MAIN
CVS Tags: HEAD
Changes since 1.22: +4 -1 lines
Diff to previous 1.22 (colored)
add missing reserved fields to key constraint protocol documentation. from Wiktor Kwapisiewicz via GHPR487
Revision 1.22 / (download) - annotate - [select for diffs], Wed Dec 20 00:06:25 2023 UTC (4 months, 3 weeks ago) by jsg
Branch: MAIN
CVS Tags: OPENBSD_7_5_BASE,
OPENBSD_7_5
Changes since 1.21: +2 -2 lines
Diff to previous 1.21 (colored)
spelling; ok markus@
Revision 1.21 / (download) - annotate - [select for diffs], Mon Dec 18 14:46:56 2023 UTC (4 months, 4 weeks ago) by djm
Branch: MAIN
Changes since 1.20: +32 -1 lines
Diff to previous 1.20 (colored)
Make it possible to load certs from PKCS#11 tokens Adds a protocol extension to allow grafting certificates supplied by ssh-add to keys loaded from PKCS#11 tokens in the agent. feedback/ok markus@
Revision 1.20 / (download) - annotate - [select for diffs], Tue Oct 3 23:56:10 2023 UTC (7 months, 1 week ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_7_4_BASE,
OPENBSD_7_4
Changes since 1.19: +2 -2 lines
Diff to previous 1.19 (colored)
fix link to agent draft; spotted by Jann Horn
Revision 1.19 / (download) - annotate - [select for diffs], Wed Apr 12 08:53:54 2023 UTC (13 months ago) by jsg
Branch: MAIN
Changes since 1.18: +2 -2 lines
Diff to previous 1.18 (colored)
fix double words ok dtucker@
Revision 1.18 / (download) - annotate - [select for diffs], Wed Sep 21 22:26:50 2022 UTC (19 months, 3 weeks ago) by dtucker
Branch: MAIN
CVS Tags: OPENBSD_7_3_BASE,
OPENBSD_7_3,
OPENBSD_7_2_BASE,
OPENBSD_7_2
Changes since 1.17: +2 -2 lines
Diff to previous 1.17 (colored)
Fix typo. From AlexanderStohr via github PR#343.
Revision 1.17 / (download) - annotate - [select for diffs], Mon May 9 08:25:27 2022 UTC (2 years ago) by dtucker
Branch: MAIN
Changes since 1.16: +2 -2 lines
Diff to previous 1.16 (colored)
Remove errant apostrophe. From haruyama at queen-ml org.
Revision 1.16 / (download) - annotate - [select for diffs], Sat Jan 1 01:55:30 2022 UTC (2 years, 4 months ago) by jsg
Branch: MAIN
CVS Tags: OPENBSD_7_1_BASE,
OPENBSD_7_1
Changes since 1.15: +4 -4 lines
Diff to previous 1.15 (colored)
spelling ok dtucker@
Revision 1.15 / (download) - annotate - [select for diffs], Sun Dec 19 22:15:21 2021 UTC (2 years, 4 months ago) by djm
Branch: MAIN
Changes since 1.14: +82 -3 lines
Diff to previous 1.14 (colored)
document agent protocol extensions
Revision 1.14 / (download) - annotate - [select for diffs], Tue Oct 6 07:12:04 2020 UTC (3 years, 7 months ago) by dtucker
Branch: MAIN
CVS Tags: OPENBSD_7_0_BASE,
OPENBSD_7_0,
OPENBSD_6_9_BASE,
OPENBSD_6_9
Changes since 1.13: +2 -2 lines
Diff to previous 1.13 (colored)
Agent protocol draft is now at rev 4. ok djm@
Revision 1.13 / (download) - annotate - [select for diffs], Mon Aug 31 00:17:41 2020 UTC (3 years, 8 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_8_BASE,
OPENBSD_6_8
Changes since 1.12: +2 -0 lines
Diff to previous 1.12 (colored)
Add RCS IDs to the few files that are missing them; from Pedro Martelletto
Revision 1.12 / (download) - annotate - [select for diffs], Fri May 19 21:07:17 2017 UTC (6 years, 11 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_7_BASE,
OPENBSD_6_7,
OPENBSD_6_6_BASE,
OPENBSD_6_6,
OPENBSD_6_5_BASE,
OPENBSD_6_5,
OPENBSD_6_4_BASE,
OPENBSD_6_4,
OPENBSD_6_3_BASE,
OPENBSD_6_3,
OPENBSD_6_2_BASE,
OPENBSD_6_2
Changes since 1.11: +3 -582 lines
Diff to previous 1.11 (colored)
Now that we no longer support SSHv1, replace the contents of this file with a pointer to https://tools.ietf.org/html/draft-miller-ssh-agent-00 It's better edited, doesn't need to document stuff we no longer implement and does document stuff that we do implement (RSA SHA256/512 signature flags)
Revision 1.11 / (download) - annotate - [select for diffs], Thu May 19 07:45:32 2016 UTC (7 years, 11 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_1_BASE,
OPENBSD_6_1,
OPENBSD_6_0_BASE,
OPENBSD_6_0
Changes since 1.10: +8 -5 lines
Diff to previous 1.10 (colored)
fix type of ed25519 values
Revision 1.10 / (download) - annotate - [select for diffs], Wed May 4 12:16:39 2016 UTC (8 years ago) by djm
Branch: MAIN
Changes since 1.9: +3 -3 lines
Diff to previous 1.9 (colored)
fix junk characters after quotes
Revision 1.9 / (download) - annotate - [select for diffs], Tue May 3 10:24:27 2016 UTC (8 years ago) by djm
Branch: MAIN
Changes since 1.8: +20 -1 lines
Diff to previous 1.8 (colored)
add ed25519 keys that are supported but missing from this documents; from Peter Moody
Revision 1.8 / (download) - annotate - [select for diffs], Fri May 8 03:56:51 2015 UTC (9 years ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_9_BASE,
OPENBSD_5_9,
OPENBSD_5_8_BASE,
OPENBSD_5_8
Changes since 1.7: +2 -2 lines
Diff to previous 1.7 (colored)
whitespace at EOL
Revision 1.7 / (download) - annotate - [select for diffs], Wed Jan 2 00:33:49 2013 UTC (11 years, 4 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_7_BASE,
OPENBSD_5_7,
OPENBSD_5_6_BASE,
OPENBSD_5_6,
OPENBSD_5_5_BASE,
OPENBSD_5_5,
OPENBSD_5_4_BASE,
OPENBSD_5_4,
OPENBSD_5_3_BASE,
OPENBSD_5_3
Changes since 1.6: +2 -2 lines
Diff to previous 1.6 (colored)
correct format description for SSH_AGENTC_ADD_RSA_ID_CONSTRAINED bz#2051 from david AT lechnology.com
Revision 1.6 / (download) - annotate - [select for diffs], Tue Aug 31 11:54:45 2010 UTC (13 years, 8 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_2_BASE,
OPENBSD_5_2,
OPENBSD_5_1_BASE,
OPENBSD_5_1,
OPENBSD_5_0_BASE,
OPENBSD_5_0,
OPENBSD_4_9_BASE,
OPENBSD_4_9
Changes since 1.5: +33 -11 lines
Diff to previous 1.5 (colored)
Implement Elliptic Curve Cryptography modes for key exchange (ECDH) and host/user keys (ECDSA) as specified by RFC5656. ECDH and ECDSA offer better performance than plain DH and DSA at the same equivalent symmetric key length, as well as much shorter keys. Only the mandatory sections of RFC5656 are implemented, specifically the three REQUIRED curves nistp256, nistp384 and nistp521 and only ECDH and ECDSA. Point compression (optional in RFC5656 is NOT implemented). Certificate host and user keys using the new ECDSA key types are supported. Note that this code has not been tested for interoperability and may be subject to change. feedback and ok markus@
Revision 1.5 / (download) - annotate - [select for diffs], Fri Feb 26 20:29:54 2010 UTC (14 years, 2 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_4_8_BASE,
OPENBSD_4_8,
OPENBSD_4_7_BASE,
OPENBSD_4_7
Changes since 1.4: +23 -1 lines
Diff to previous 1.4 (colored)
Add support for certificate key types for users and hosts. OpenSSH certificate key types are not X.509 certificates, but a much simpler format that encodes a public key, identity information and some validity constraints and signs it with a CA key. CA keys are regular SSH keys. This certificate style avoids the attack surface of X.509 certificates and is very easy to deploy. Certified host keys allow automatic acceptance of new host keys when a CA certificate is marked as trusted in ~/.ssh/known_hosts. see VERIFYING HOST KEYS in ssh(1) for details. Certified user keys allow authentication of users when the signing CA key is marked as trusted in authorized_keys. See "AUTHORIZED_KEYS FILE FORMAT" in sshd(8) for details. Certificates are minted using ssh-keygen(1), documentation is in the "CERTIFICATES" section of that manpage. Documentation on the format of certificates is in the file PROTOCOL.certkeys feedback and ok markus@
Revision 1.4 / (download) - annotate - [select for diffs], Tue Jul 1 23:12:47 2008 UTC (15 years, 10 months ago) by stevesk
Branch: MAIN
CVS Tags: OPENBSD_4_6_BASE,
OPENBSD_4_6,
OPENBSD_4_5_BASE,
OPENBSD_4_5,
OPENBSD_4_4_BASE,
OPENBSD_4_4
Changes since 1.3: +17 -17 lines
Diff to previous 1.3 (colored)
fix some typos; ok djm@
Revision 1.3 / (download) - annotate - [select for diffs], Mon Jun 30 08:05:59 2008 UTC (15 years, 10 months ago) by djm
Branch: MAIN
Changes since 1.2: +4 -4 lines
Diff to previous 1.2 (colored)
typo: s/constraint_date/constraint_data/
Revision 1.2 / (download) - annotate - [select for diffs], Sun Jun 29 08:30:29 2008 UTC (15 years, 10 months ago) by djm
Branch: MAIN
Changes since 1.1: +3 -3 lines
Diff to previous 1.1 (colored)
protocol 2 key blobs are strings, not byte arrays
Revision 1.1 / (download) - annotate - [select for diffs], Sat Jun 28 14:08:30 2008 UTC (15 years, 10 months ago) by djm
Branch: MAIN
document the protocol used by ssh-agent; "looks ok" markus@