- djm@cvs.openbsd.org 2010/08/31 11:54:45

[PROTOCOL PROTOCOL.agent PROTOCOL.certkeys auth2-jpake.c authfd.c] [authfile.c buffer.h dns.c kex.c kex.h key.c key.h monitor.c] [monitor_wrap.c myproposal.h packet.c packet.h pathnames.h readconf.c] [ssh-add.1 ssh-add.c ssh-agent.1 ssh-agent.c ssh-keygen.1 ssh-keygen.c] [ssh-keyscan.1 ssh-keyscan.c ssh-keysign.8 ssh.1 ssh.c ssh2.h] [ssh_config.5 sshconnect.c sshconnect2.c sshd.8 sshd.c sshd_config.5] [uuencode.c uuencode.h bufec.c kexecdh.c kexecdhc.c kexecdhs.c ssh-ecdsa.c] Implement Elliptic Curve Cryptography modes for key exchange (ECDH) and host/user keys (ECDSA) as specified by RFC5656. ECDH and ECDSA offer better performance than plain DH and DSA at the same equivalent symmetric key length, as well as much shorter keys. Only the mandatory sections of RFC5656 are implemented, specifically the three REQUIRED curves nistp256, nistp384 and nistp521 and only ECDH and ECDSA. Point compression (optional in RFC5656 is NOT implemented). Certificate host and user keys using the new ECDSA key types are supported. Note that this code has not been tested for interoperability and may be subject to change. feedback and ok markus@
author: Damien Miller <djm@mindrot.org> 2010-08-31 22:41:14 +1000
committer: Damien Miller <djm@mindrot.org> 2010-08-31 22:41:14 +1000
commit: eb8b60e320cdade9f4c07e2abacfb92c52e01348 (patch)
tree: 4e5bc25790566402e5b7ae00cefd2c57e867ef09 /ssh-add.1
parent: da108ece6843f1268aa36d7c8ed0030dc53acd15 (diff)
1 files changed, 8 insertions, 5 deletions
diff --git a/ssh-add.1 b/ssh-add.1
index d7cc53101..3699db5eb 100644
--- a/ssh-add.1
+++ b/ssh-add.1
@@ -1,4 +1,4 @@
-.\"     $OpenBSD: ssh-add.1,v 1.52 2010/03/05 10:28:21 djm Exp $
+.\"     $OpenBSD: ssh-add.1,v 1.53 2010/08/31 11:54:45 djm Exp $
 .\"
 .\"  -*- nroff -*-
 .\"
@@ -37,12 +37,12 @@
 .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
 .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.Dd $Mdocdate: March 5 2010 $
+.Dd $Mdocdate: August 31 2010 $
 .Dt SSH-ADD 1
 .Os
 .Sh NAME
 .Nm ssh-add
-.Nd adds RSA or DSA identities to the authentication agent
+.Nd adds private key identities to the authentication agent
 .Sh SYNOPSIS
 .Nm ssh-add
 .Op Fl cDdLlXx
@@ -54,11 +54,12 @@
 .Fl e Ar pkcs11
 .Sh DESCRIPTION
 .Nm
-adds RSA or DSA identities to the authentication agent,
+adds private key identities to the authentication agent,
 .Xr ssh-agent 1 .
 When run without arguments, it adds the files
 .Pa ~/.ssh/id_rsa ,
-.Pa ~/.ssh/id_dsa
+.Pa ~/.ssh/id_dsa ,
+.Pa ~/.ssh/id_ecdsa
 and
 .Pa ~/.ssh/identity .
 After loading a private key,
@@ -165,6 +166,8 @@ socket used to communicate with the agent.
 Contains the protocol version 1 RSA authentication identity of the user.
 .It Pa ~/.ssh/id_dsa
 Contains the protocol version 2 DSA authentication identity of the user.
+.It Pa ~/.ssh/id_ecdsa
+Contains the protocol version 2 ECDSA authentication identity of the user.
 .It Pa ~/.ssh/id_rsa
 Contains the protocol version 2 RSA authentication identity of the user.
 .El
author	Damien Miller <djm@mindrot.org>	2010-08-31 22:41:14 +1000
committer	Damien Miller <djm@mindrot.org>	2010-08-31 22:41:14 +1000
commit	eb8b60e320cdade9f4c07e2abacfb92c52e01348 (patch)
tree	4e5bc25790566402e5b7ae00cefd2c57e867ef09 /ssh-add.1
parent	da108ece6843f1268aa36d7c8ed0030dc53acd15 (diff)

diff --git a/ssh-add.1 b/ssh-add.1 index d7cc53101..3699db5eb 100644 --- a/ssh-add.1 +++ b/ssh-add.1
@@ -1,4 +1,4 @@
1	.\" $OpenBSD: ssh-add.1,v 1.52 2010/03/05 10:28:21 djm Exp $	1	.\" $OpenBSD: ssh-add.1,v 1.53 2010/08/31 11:54:45 djm Exp $
2	.\"	2	.\"
3	.\" -- nroff --	3	.\" -- nroff --
4	.\"	4	.\"
@@ -37,12 +37,12 @@
37	.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF	37	.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
38	.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.	38	.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
39	.\"	39	.\"
40	.Dd $Mdocdate: March 5 2010 $	40	.Dd $Mdocdate: August 31 2010 $
41	.Dt SSH-ADD 1	41	.Dt SSH-ADD 1
42	.Os	42	.Os
43	.Sh NAME	43	.Sh NAME
44	.Nm ssh-add	44	.Nm ssh-add
45	.Nd adds RSA or DSA identities to the authentication agent	45	.Nd adds private key identities to the authentication agent
46	.Sh SYNOPSIS	46	.Sh SYNOPSIS
47	.Nm ssh-add	47	.Nm ssh-add
48	.Op Fl cDdLlXx	48	.Op Fl cDdLlXx
@@ -54,11 +54,12 @@
54	.Fl e Ar pkcs11	54	.Fl e Ar pkcs11
55	.Sh DESCRIPTION	55	.Sh DESCRIPTION
56	.Nm	56	.Nm
57	adds RSA or DSA identities to the authentication agent,	57	adds private key identities to the authentication agent,
58	.Xr ssh-agent 1 .	58	.Xr ssh-agent 1 .
59	When run without arguments, it adds the files	59	When run without arguments, it adds the files
60	.Pa ~/.ssh/id_rsa ,	60	.Pa ~/.ssh/id_rsa ,
61	.Pa ~/.ssh/id_dsa	61	.Pa ~/.ssh/id_dsa ,
		62	.Pa ~/.ssh/id_ecdsa
62	and	63	and
63	.Pa ~/.ssh/identity .	64	.Pa ~/.ssh/identity .
64	After loading a private key,	65	After loading a private key,
@@ -165,6 +166,8 @@ socket used to communicate with the agent.
165	Contains the protocol version 1 RSA authentication identity of the user.	166	Contains the protocol version 1 RSA authentication identity of the user.
166	.It Pa ~/.ssh/id_dsa	167	.It Pa ~/.ssh/id_dsa
167	Contains the protocol version 2 DSA authentication identity of the user.	168	Contains the protocol version 2 DSA authentication identity of the user.
		169	.It Pa ~/.ssh/id_ecdsa
		170	Contains the protocol version 2 ECDSA authentication identity of the user.
168	.It Pa ~/.ssh/id_rsa	171	.It Pa ~/.ssh/id_rsa
169	Contains the protocol version 2 RSA authentication identity of the user.	172	Contains the protocol version 2 RSA authentication identity of the user.
170	.El	173	.El