OpenBSD/src 0r0rUhhusr.bin/ssh ssh-keygen.1 sshkey.c

   When signing certificates with an RSA key, default to using the
   rsa-sha2-512 signature algorithm. Certificates signed by RSA keys
   will therefore be incompatible with OpenSSH < 7.2 unless the default
   is overridden.

   Document the ability of the ssh-keygen -t flag to override the
   signature algorithm when signing certificates, and the new default.

   ok deraadt@
VersionDeltaFile
1.159+11-2usr.bin/ssh/ssh-keygen.1
1.75+8-1usr.bin/ssh/sshkey.c
+19-32 files

UnifiedSplitRaw