From 9039971887cccd95b209c479296f772a3a93e8e7 Mon Sep 17 00:00:00 2001 From: "djm@openbsd.org" Date: Thu, 2 Jan 2020 22:40:09 +0000 Subject: upstream: ability to download FIDO2 resident keys from a token via "ssh-keygen -K". This will save public/private keys into the current directory. This is handy if you move a token between hosts. feedback & ok markus@ OpenBSD-Commit-ID: d57c1f9802f7850f00a117a1d36682a6c6d10da6 --- ssh-keygen.1 | 11 +++++++++-- 1 file changed, 9 insertions(+), 2 deletions(-) (limited to 'ssh-keygen.1') diff --git a/ssh-keygen.1 b/ssh-keygen.1 index f0d70ade..569a46b1 100644 --- a/ssh-keygen.1 +++ b/ssh-keygen.1 @@ -1,4 +1,4 @@ -.\" $OpenBSD: ssh-keygen.1,v 1.186 2019/12/30 16:10:00 jmc Exp $ +.\" $OpenBSD: ssh-keygen.1,v 1.187 2020/01/02 22:40:09 djm Exp $ .\" .\" Author: Tatu Ylonen .\" Copyright (c) 1995 Tatu Ylonen , Espoo, Finland @@ -35,7 +35,7 @@ .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. .\" -.Dd $Mdocdate: December 30 2019 $ +.Dd $Mdocdate: January 2 2020 $ .Dt SSH-KEYGEN 1 .Os .Sh NAME @@ -92,6 +92,9 @@ .Fl H .Op Fl f Ar known_hosts_file .Nm ssh-keygen +.Fl K +.Op Fl w Ar provider +.Nm ssh-keygen .Fl R Ar hostname .Op Fl f Ar known_hosts_file .Nm ssh-keygen @@ -363,6 +366,10 @@ commercial SSH implementations. The default import format is .Dq RFC4716 . .It Fl k +Download resident keys from a FIDO authenticator. +Public and private key files will be written to the current directory for +each downloaded key. +.It Fl k Generate a KRL file. In this mode, .Nm -- cgit v1.2.1