ホーム エクスプローラ ヘルプ
サインイン
HSD
/
putty
同期ミラー https://git.tartarus.org/simon/putty.git
Watch 1
Star 0
Fork 0
ファイル
ブランチ: main
ブランチ タグ
putty
/
doc
/
sshnames.but

sshnames.but 4.7 KB
パーマリンク 履歴 Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131 
  1. \A{sshnames} SSH-2 names specified for PuTTY
    2. 

  2. 

  3. There are various parts of the SSH-2 protocol where things are specified
    4. 

  4. using a textual name.  Names ending in \cw{@putty.projects.tartarus.org}
    5. 

  5. are reserved for allocation by the PuTTY team.  Allocated names are
    6. 

  6. documented here.
    7. 

  7. 

  8. \H{sshnames-channel} Connection protocol channel request names
    9. 

  9. 

  10. These names can be sent in a \cw{SSH_MSG_CHANNEL_REQUEST} message.
    11. 

  11. 

  12. \dt \cw{simple@putty.projects.tartarus.org}
    13. 

  13. 

  14. \dd This is sent by a client to announce that it will not have more than
    15. 

  15. one channel open at a time in the current connection (that one being
    16. 

  16. the one the request is sent on).  The intention is that the server,
    17. 

  17. knowing this, can set the window on that one channel to something very
    18. 

  18. large, and leave flow control to TCP.  There is no message-specific data.
    19. 

  19. 

  20. \dt \cw{winadj@putty.projects.tartarus.org}
    21. 

  21. 

  22. \dd PuTTY sends this request along with some
    23. 

  23. \cw{SSH_MSG_CHANNEL_WINDOW_ADJUST} messages as part of its window-size
    24. 

  24. tuning.  It can be sent on any type of channel.  There is no
    25. 

  25. message-specific data. Servers MUST treat it as an unrecognised request
    26. 

  26. and respond with \cw{SSH_MSG_CHANNEL_FAILURE}.
    27. 

  27. 

  28. \lcont{
    29. 

  29. (Some SSH servers get confused by this message, so there is a
    30. 

  30. bug-compatibility mode for disabling it. See \k{config-ssh-bug-winadj}.)
    31. 

  31. }
    32. 

  32. 

  33. \H{sshnames-kex} Key exchange method names
    34. 

  34. 

  35. \dt \cw{rsa-sha1-draft-00@putty.projects.tartarus.org}
    36. 

  36. 

  37. \dt \cw{rsa-sha256-draft-00@putty.projects.tartarus.org}
    38. 

  38. 

  39. \dt \cw{rsa1024-sha1-draft-01@putty.projects.tartarus.org}
    40. 

  40. 

  41. \dt \cw{rsa1024-sha256-draft-01@putty.projects.tartarus.org}
    42. 

  42. 

  43. \dt \cw{rsa2048-sha256-draft-01@putty.projects.tartarus.org}
    44. 

  44. 

  45. \dt \cw{rsa1024-sha1-draft-02@putty.projects.tartarus.org}
    46. 

  46. 

  47. \dt \cw{rsa2048-sha512-draft-02@putty.projects.tartarus.org}
    48. 

  48. 

  49. \dt \cw{rsa1024-sha1-draft-03@putty.projects.tartarus.org}
    50. 

  50. 

  51. \dt \cw{rsa2048-sha256-draft-03@putty.projects.tartarus.org}
    52. 

  52. 

  53. \dt \cw{rsa1024-sha1-draft-04@putty.projects.tartarus.org}
    54. 

  54. 

  55. \dt \cw{rsa2048-sha256-draft-04@putty.projects.tartarus.org}
    56. 

  56. 

  57. \dd These appeared in various drafts of what eventually became RFC\_4432.
    58. 

  58. They have been superseded by \cw{rsa1024-sha1} and \cw{rsa2048-sha256}.
    59. 

  59. 

  60. \H{sshnames-encrypt} Encryption algorithm names
    61. 

  61. 

  62. \dt \cw{arcfour128-draft-00@putty.projects.tartarus.org}
    63. 

  63. 

  64. \dt \cw{arcfour256-draft-00@putty.projects.tartarus.org}
    65. 

  65. 

  66. \dd These were used in drafts of what eventually became RFC\_4345.
    67. 

  67. They have been superseded by \cw{arcfour128} and \cw{arcfour256}.
    68. 

  68. 

  69. \H{sshnames-agent} Agent extension request names
    70. 

  70. 

  71. The SSH agent protocol, which is only specified in an Internet-Draft
    72. 

  72. at the time of writing
    73. 

  73. (\W{https://datatracker.ietf.org/doc/html/draft-miller-ssh-agent}\cw{draft-miller-ssh-agent}),
    74. 

  74. defines an extension mechanism. These names can be sent in an
    75. 

  75. \cw{SSH_AGENTC_EXTENSION} message.
    76. 

  76. 

  77. \dt \cw{add-ppk@putty.projects.tartarus.org}
    78. 

  78. 

  79. \dd The payload is a single SSH-2 \cw{string} containing a keypair in
    80. 

  80. the PPK format defined in \k{ppk}. Compared to the standard
    81. 

  81. \cw{SSH_AGENTC_ADD_IDENTITY}, this extension allows adding keys in
    82. 

  82. encrypted form, with the agent requesting a decryption passphrase from
    83. 

  83. the user on demand, and able to revert the key to encrypted form.
    84. 

  84. 

  85. \dt \cw{reencrypt@putty.projects.tartarus.org}
    86. 

  86. 

  87. \dd The payload is a single SSH-2 \cw{string} specifying a public key
    88. 

  88. blob, as in \cw{SSH_AGENTC_REMOVE_IDENTITY}. Requests that the agent
    89. 

  89. forget any cleartext form of a specific key. 
    90. 

  90. 

  91. \lcont{
    92. 

  92. Returns \cw{SSH_AGENT_SUCCESS} if the agent ended up holding the key
    93. 

  93. only in encrypted form (even if it was already encrypted); returns
    94. 

  94. \cw{SSH_AGENT_EXTENSION_FAILURE} if not (if it wasn't held by the
    95. 

  95. agent at all, or only in cleartext form).
    96. 

  96. }
    97. 

  97. 

  98. \dt \cw{reencrypt-all@putty.projects.tartarus.org}
    99. 

  99. 

  100. \dd No payload. Requests that the agent forget the cleartext form of
    101. 

  101. any keys for which it holds an encrypted form.
    102. 

  102. 

  103. \lcont{
    104. 

  104. If the agent holds any keys with an encrypted form (or no keys at all),
    105. 

  105. returns \cw{SSH_AGENT_SUCCESS} to indicate that no such keys are now
    106. 

  106. held in cleartext form, followed by a \cw{uint32} specifying how many keys
    107. 

  107. remain in cleartext form (because the agent didn't hold an encrypted
    108. 

  108. form for them). If the agent holds nothing but keys in cleartext form,
    109. 

  109. returns \cw{SSH_AGENT_EXTENSION_FAILURE}.
    110. 

  110. }
    111. 

  111. 

  112. \dt \cw{list-extended@putty.projects.tartarus.org}
    113. 

  113. 

  114. \dd No payload. Returns \cw{SSH_AGENT_SUCCESS} followed by a list of
    115. 

  115. identities similar to \cw{SSH_AGENT_IDENTITIES_ANSWER}, except that
    116. 

  116. each key has an extra SSH-2 \cw{string} at the end. Currently that
    117. 

  117. \cw{string} contains a single \cw{uint32} flags word, with the
    118. 

  118. following bits defined:
    119. 

  119. 

  120. \lcont{
    121. 

  121. \dt Bit 0
    122. 

  122. 

  123. \dd If set, key is held with an encrypted form (so that the
    124. 

  124. \c{reencrypt} extension can do something useful with it).
    125. 

  125. 

  126. \dt Bit 1
    127. 

  127. 

  128. \dd If set, key's cleartext form is not currently held (so the
    129. 

  129. user will have to supply a passphrase before the key can be used).
    130. 

  130. }
    131. 

  131.