Re: ssh man pages: PKCS#11 no longer limited to RSA
On Tue, Mar 05, 2019 at 04:27:22PM +0100, Christian Weisgerber wrote: > Minor man page tweaks to reflect the fact that PKCS#11 support is > no longer limited to RSA. OK, I've been using ECDSA on a PIV smartcard just fine.
Re: ssh man pages: PKCS#11 no longer limited to RSA
ok! Christian Weisgerber(na...@mips.inka.de) on 2019.03.05 16:27:22 +0100: > Minor man page tweaks to reflect the fact that PKCS#11 support is > no longer limited to RSA. > > Index: ssh-keygen.1 > === > RCS file: /cvs/src/usr.bin/ssh/ssh-keygen.1,v > retrieving revision 1.156 > diff -u -p -r1.156 ssh-keygen.1 > --- ssh-keygen.1 23 Jan 2019 04:51:02 - 1.156 > +++ ssh-keygen.1 5 Mar 2019 15:20:15 - > @@ -279,7 +279,7 @@ Requests changing the comment in the pri > The program will prompt for the file containing the private keys, for > the passphrase if the key has one, and for the new comment. > .It Fl D Ar pkcs11 > -Download the RSA public keys provided by the PKCS#11 shared library > +Download the public keys provided by the PKCS#11 shared library > .Ar pkcs11 . > When used in combination with > .Fl s , > Index: ssh.1 > === > RCS file: /cvs/src/usr.bin/ssh/ssh.1,v > retrieving revision 1.400 > diff -u -p -r1.400 ssh.1 > --- ssh.1 22 Jan 2019 11:51:25 - 1.400 > +++ ssh.1 5 Mar 2019 15:18:05 - > @@ -270,8 +270,8 @@ on the master process. > .It Fl I Ar pkcs11 > Specify the PKCS#11 shared library > .Nm > -should use to communicate with a PKCS#11 token providing the user's > -private RSA key. > +should use to communicate with a PKCS#11 token providing keys for user > +authentication. > .Pp > .It Fl i Ar identity_file > Selects a file from which the identity (private key) for > -- > Christian "naddy" Weisgerber na...@mips.inka.de >
ssh man pages: PKCS#11 no longer limited to RSA
Minor man page tweaks to reflect the fact that PKCS#11 support is no longer limited to RSA. Index: ssh-keygen.1 === RCS file: /cvs/src/usr.bin/ssh/ssh-keygen.1,v retrieving revision 1.156 diff -u -p -r1.156 ssh-keygen.1 --- ssh-keygen.123 Jan 2019 04:51:02 - 1.156 +++ ssh-keygen.15 Mar 2019 15:20:15 - @@ -279,7 +279,7 @@ Requests changing the comment in the pri The program will prompt for the file containing the private keys, for the passphrase if the key has one, and for the new comment. .It Fl D Ar pkcs11 -Download the RSA public keys provided by the PKCS#11 shared library +Download the public keys provided by the PKCS#11 shared library .Ar pkcs11 . When used in combination with .Fl s , Index: ssh.1 === RCS file: /cvs/src/usr.bin/ssh/ssh.1,v retrieving revision 1.400 diff -u -p -r1.400 ssh.1 --- ssh.1 22 Jan 2019 11:51:25 - 1.400 +++ ssh.1 5 Mar 2019 15:18:05 - @@ -270,8 +270,8 @@ on the master process. .It Fl I Ar pkcs11 Specify the PKCS#11 shared library .Nm -should use to communicate with a PKCS#11 token providing the user's -private RSA key. +should use to communicate with a PKCS#11 token providing keys for user +authentication. .Pp .It Fl i Ar identity_file Selects a file from which the identity (private key) for -- Christian "naddy" Weisgerber na...@mips.inka.de