diff options
| author | djm@openbsd.org <djm@openbsd.org> | 2017-07-07 03:53:12 +0000 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2017-07-21 14:17:32 +1000 |
| commit | 853edbe057a84ebd0024c8003e4da21bf2b469f7 (patch) | |
| tree | 2f7010fb3e1a780ba438b06753c1be99fab3abe9 /ssh-keygen.1 | |
| parent | 43616876ba68a2ffaece6a6c792def4b039f2d6e (diff) | |
upstream commit
When generating all hostkeys (ssh-keygen -A), clobber
existing keys if they exist but are zero length. zero-length keys could
previously be made if ssh-keygen failed part way through generating them, so
avoid that case too. bz#2561 reported by Krzysztof Cieplucha; ok dtucker@
Upstream-ID: f662201c28ab8e1f086b5d43c59cddab5ade4044
Diffstat (limited to 'ssh-keygen.1')
| -rw-r--r-- | ssh-keygen.1 | 9 |
1 files changed, 7 insertions, 2 deletions
diff --git a/ssh-keygen.1 b/ssh-keygen.1 index 66f8321c5..2bc61639a 100644 --- a/ssh-keygen.1 +++ b/ssh-keygen.1 | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | .\" $OpenBSD: ssh-keygen.1,v 1.142 2017/06/28 01:09:22 djm Exp $ | 1 | .\" $OpenBSD: ssh-keygen.1,v 1.143 2017/07/07 03:53:12 djm Exp $ |
| 2 | .\" | 2 | .\" |
| 3 | .\" Author: Tatu Ylonen <ylo@cs.hut.fi> | 3 | .\" Author: Tatu Ylonen <ylo@cs.hut.fi> |
| 4 | .\" Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland | 4 | .\" Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland |
| @@ -35,7 +35,7 @@ | |||
| 35 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | 35 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
| 36 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | 36 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| 37 | .\" | 37 | .\" |
| 38 | .Dd $Mdocdate: June 28 2017 $ | 38 | .Dd $Mdocdate: July 7 2017 $ |
| 39 | .Dt SSH-KEYGEN 1 | 39 | .Dt SSH-KEYGEN 1 |
| 40 | .Os | 40 | .Os |
| 41 | .Sh NAME | 41 | .Sh NAME |
| @@ -126,6 +126,7 @@ | |||
| 126 | .Op Fl f Ar input_keyfile | 126 | .Op Fl f Ar input_keyfile |
| 127 | .Nm ssh-keygen | 127 | .Nm ssh-keygen |
| 128 | .Fl A | 128 | .Fl A |
| 129 | .Op Fl f Ar prefix_path | ||
| 129 | .Nm ssh-keygen | 130 | .Nm ssh-keygen |
| 130 | .Fl k | 131 | .Fl k |
| 131 | .Fl f Ar krl_file | 132 | .Fl f Ar krl_file |
| @@ -224,6 +225,10 @@ For each of the key types (rsa, dsa, ecdsa and ed25519) | |||
| 224 | for which host keys | 225 | for which host keys |
| 225 | do not exist, generate the host keys with the default key file path, | 226 | do not exist, generate the host keys with the default key file path, |
| 226 | an empty passphrase, default bits for the key type, and default comment. | 227 | an empty passphrase, default bits for the key type, and default comment. |
| 228 | If a | ||
| 229 | .Fl f | ||
| 230 | option has been specified, then its argument is used as a prefix to the | ||
| 231 | default path for the resulting host key files. | ||
| 227 | This is used by | 232 | This is used by |
| 228 | .Pa /etc/rc | 233 | .Pa /etc/rc |
| 229 | to generate new host keys. | 234 | to generate new host keys. |