From 20ccd854245c598e2b47cc9f8d4955d645195055 Mon Sep 17 00:00:00 2001 From: "jmc@openbsd.org" Date: Fri, 27 Dec 2019 08:28:44 +0000 Subject: [PATCH] upstream: sort -Y internally in the options list, as is already done in synopsis; OpenBSD-Commit-ID: 86d033c5764404057616690d7be992e445b42274 --- ssh-keygen.1 | 34 +++++++++++++++++----------------- 1 file changed, 17 insertions(+), 17 deletions(-) diff --git a/ssh-keygen.1 b/ssh-keygen.1 index 8d62bc72e..038e2c578 100644 --- a/ssh-keygen.1 +++ b/ssh-keygen.1 @@ -1,4 +1,4 @@ -.\" $OpenBSD: ssh-keygen.1,v 1.181 2019/12/27 08:25:07 jmc Exp $ +.\" $OpenBSD: ssh-keygen.1,v 1.182 2019/12/27 08:28:44 jmc Exp $ .\" .\" Author: Tatu Ylonen .\" Copyright (c) 1995 Tatu Ylonen , Espoo, Finland @@ -688,6 +688,22 @@ Note that .Xr sshd 8 will refuse such signatures by default, unless overridden via an authorized_keys option. +.It Fl Y Cm check-novalidate +Checks that a signature generated using +.Nm +.Fl Y Cm sign +has a valid structure. +This does not validate if a signature comes from an authorized signer. +When testing a signature, +.Nm +accepts a message on standard input and a signature namespace using +.Fl n . +A file containing the corresponding signature must also be supplied using the +.Fl s +flag. +Successful testing of the signature is signalled by +.Nm +returning a zero exit status. .It Fl Y Cm sign Cryptographically sign a file or some data using a SSH key. When signing, @@ -744,22 +760,6 @@ The revocation file may be a KRL or a one-per-line list of public keys. Successful verification by an authorized signer is signalled by .Nm returning a zero exit status. -.It Fl Y Cm check-novalidate -Checks that a signature generated using -.Nm -.Fl Y Cm sign -has a valid structure. -This does not validate if a signature comes from an authorized signer. -When testing a signature, -.Nm -accepts a message on standard input and a signature namespace using -.Fl n . -A file containing the corresponding signature must also be supplied using the -.Fl s -flag. -Successful testing of the signature is signalled by -.Nm -returning a zero exit status. .It Fl y This option will read a private OpenSSH format file and print an OpenSSH public key to stdout.