aws-sdk-ec2 1.254.0 → 1.255.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 1560c88510cdb1cab7130df124057846807b396777ba08786154cc473b7b596a
-  data.tar.gz: 52f4518c8760a1549d00676f3218bccf88e62f5244a8515a09d5815ce5cff3e3
+  metadata.gz: 5b992423b0b82c86a55e765379f5d255170b0e1416d3dc99e7139ab038f921d4
+  data.tar.gz: ce8cbedbe5d4bfe3786f09eea60b8f84e624d7ac26ff2f1f006c36b55f57521b
 SHA512:
-  metadata.gz: 8f722501a74676c570c6b0b7f2abde41e0d66ff1b073880863529cb1eeb519c5f3f68a2f856c344771f5ad0337638dc20cc519c01d2b6f414072889da1890df4
-  data.tar.gz: 0c920ecdac4a3d0a675561ad4967ec5a736799f6ca9dffd18f764df4d90118a4a8a957f953b1a0eb02c4b7592d5069dbcad9a348e65d75dc7e591467494af6de
+  metadata.gz: 894abc7e045b4b6915e7dce3c0d7f1794e0e7ca8ef4918d8386bd92274155b323fb51bc746481e9385a652bebf1991abe438db381f0c2be480b1cbd03ccfc372
+  data.tar.gz: 7da76aab16b5b4846ec6b43da30cc0ab82d761417e2f26f826b23cb620f0d31f01971e6f4e584b148503219f02db8751c194368f04974d716d5ef6fddc9a0d60

data/CHANGELOG.md

@@ -1,6 +1,11 @@
 Unreleased Changes
 ------------------
 
+1.255.0 (2021-08-17)
+------------------
+
+* Feature - This release adds support for EC2 ED25519 key pairs for authentication
+
 1.254.0 (2021-07-30)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.254.0
+1.255.0

data/lib/aws-sdk-ec2.rb

@@ -72,6 +72,6 @@ require_relative 'aws-sdk-ec2/customizations'
 # @!group service
 module Aws::EC2
 
-  GEM_VERSION = '1.254.0'
+  GEM_VERSION = '1.255.0'
 
 end

data/lib/aws-sdk-ec2/client.rb

@@ -6021,20 +6021,21 @@ module Aws::EC2
       req.send_request(options)
     end
 
-    # Creates a 2048-bit RSA key pair with the specified name. Amazon EC2
-    # stores the public key and displays the private key for you to save to
-    # a file. The private key is returned as an unencrypted PEM encoded
-    # PKCS#1 private key. If a key with the specified name already exists,
-    # Amazon EC2 returns an error.
+    # Creates an ED25519 or 2048-bit RSA key pair with the specified name.
+    # Amazon EC2 stores the public key and displays the private key for you
+    # to save to a file. The private key is returned as an unencrypted PEM
+    # encoded PKCS#1 private key. If a key with the specified name already
+    # exists, Amazon EC2 returns an error.
     #
-    # You can have up to five thousand key pairs per Region.
+    # The key pair returned to you is available only in the Amazon Web
+    # Services Region in which you create it. If you prefer, you can create
+    # your own key pair using a third-party tool and upload it to any Region
+    # using ImportKeyPair.
     #
-    # The key pair returned to you is available only in the Region in which
-    # you create it. If you prefer, you can create your own key pair using a
-    # third-party tool and upload it to any Region using ImportKeyPair.
+    # You can have up to 5,000 key pairs per Amazon Web Services Region.
     #
-    # For more information, see [Key Pairs][1] in the *Amazon Elastic
-    # Compute Cloud User Guide*.
+    # For more information, see [Amazon EC2 key pairs][1] in the *Amazon
+    # Elastic Compute Cloud User Guide*.
     #
     #
     #
@@ -6051,6 +6052,12 @@ module Aws::EC2
     #   If you have the required permissions, the error response is
     #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
     #
+    # @option params [String] :key_type
+    #   The type of key pair. Note that ED25519 keys are not supported for
+    #   Windows instances, EC2 Instance Connect, and EC2 Serial Console.
+    #
+    #   Default: `rsa`
+    #
     # @option params [Array<Types::TagSpecification>] :tag_specifications
     #   The tags to apply to the new key pair.
     #
@@ -6076,6 +6083,7 @@ module Aws::EC2
     #   resp = client.create_key_pair({
     #     key_name: "String", # required
     #     dry_run: false,
+    #     key_type: "rsa", # accepts rsa, ed25519
     #     tag_specifications: [
     #       {
     #         resource_type: "client-vpn-endpoint", # accepts client-vpn-endpoint, customer-gateway, dedicated-host, dhcp-options, egress-only-internet-gateway, elastic-ip, elastic-gpu, export-image-task, export-instance-task, fleet, fpga-image, host-reservation, image, import-image-task, import-snapshot-task, instance, instance-event-window, internet-gateway, key-pair, launch-template, local-gateway-route-table-vpc-association, natgateway, network-acl, network-interface, network-insights-analysis, network-insights-path, placement-group, reserved-instances, route-table, security-group, security-group-rule, snapshot, spot-fleet-request, spot-instances-request, subnet, traffic-mirror-filter, traffic-mirror-session, traffic-mirror-target, transit-gateway, transit-gateway-attachment, transit-gateway-connect-peer, transit-gateway-multicast-domain, transit-gateway-route-table, volume, vpc, vpc-peering-connection, vpn-connection, vpn-gateway, vpc-flow-log
@@ -8434,8 +8442,8 @@ module Aws::EC2
     #
     # A security group acts as a virtual firewall for your instance to
     # control inbound and outbound traffic. For more information, see
-    # [Amazon EC2 Security Groups][1] in the *Amazon Elastic Compute Cloud
-    # User Guide* and [Security Groups for Your VPC][2] in the *Amazon
+    # [Amazon EC2 security groups][1] in the *Amazon Elastic Compute Cloud
+    # User Guide* and [Security groups for your VPC][2] in the *Amazon
     # Virtual Private Cloud User Guide*.
     #
     # When you create a security group, you specify a friendly name of your
@@ -20178,8 +20186,8 @@ module Aws::EC2
 
     # Describes the specified key pairs or all of your key pairs.
     #
-    # For more information about key pairs, see [Key Pairs][1] in the
-    # *Amazon Elastic Compute Cloud User Guide*.
+    # For more information about key pairs, see [Amazon EC2 key pairs][1] in
+    # the *Amazon Elastic Compute Cloud User Guide*.
     #
     #
     #
@@ -20263,6 +20271,7 @@ module Aws::EC2
     #   resp.key_pairs[0].key_pair_id #=> String
     #   resp.key_pairs[0].key_fingerprint #=> String
     #   resp.key_pairs[0].key_name #=> String
+    #   resp.key_pairs[0].key_type #=> String, one of "rsa", "ed25519"
     #   resp.key_pairs[0].tags #=> Array
     #   resp.key_pairs[0].tags[0].key #=> String
     #   resp.key_pairs[0].tags[0].value #=> String
@@ -24254,8 +24263,8 @@ module Aws::EC2
     #
     # A security group is for use with instances either in the EC2-Classic
     # platform or in a specific VPC. For more information, see [Amazon EC2
-    # Security Groups][1] in the *Amazon Elastic Compute Cloud User Guide*
-    # and [Security Groups for Your VPC][2] in the *Amazon Virtual Private
+    # security groups][1] in the *Amazon Elastic Compute Cloud User Guide*
+    # and [Security groups for your VPC][2] in the *Amazon Virtual Private
     # Cloud User Guide*.
     #
     #
@@ -33241,16 +33250,16 @@ module Aws::EC2
       req.send_request(options)
     end
 
-    # Imports the public key from an RSA key pair that you created with a
-    # third-party tool. Compare this with CreateKeyPair, in which Amazon Web
-    # Services creates the key pair and gives the keys to you (Amazon Web
-    # Services keeps a copy of the public key). With ImportKeyPair, you
-    # create the key pair and give Amazon Web Services just the public key.
-    # The private key is never transferred between you and Amazon Web
-    # Services.
+    # Imports the public key from an RSA or ED25519 key pair that you
+    # created with a third-party tool. Compare this with CreateKeyPair, in
+    # which Amazon Web Services creates the key pair and gives the keys to
+    # you (Amazon Web Services keeps a copy of the public key). With
+    # ImportKeyPair, you create the key pair and give Amazon Web Services
+    # just the public key. The private key is never transferred between you
+    # and Amazon Web Services.
     #
-    # For more information about key pairs, see [Key Pairs][1] in the
-    # *Amazon Elastic Compute Cloud User Guide*.
+    # For more information about key pairs, see [Amazon EC2 key pairs][1] in
+    # the *Amazon Elastic Compute Cloud User Guide*.
     #
     #
     #
@@ -43553,7 +43562,7 @@ module Aws::EC2
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-ec2'
-      context[:gem_version] = '1.254.0'
+      context[:gem_version] = '1.255.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-ec2/client_api.rb

@@ -1380,6 +1380,7 @@ module Aws::EC2
     KeyPairInfo = Shapes::StructureShape.new(name: 'KeyPairInfo')
     KeyPairList = Shapes::ListShape.new(name: 'KeyPairList')
     KeyPairName = Shapes::StringShape.new(name: 'KeyPairName')
+    KeyType = Shapes::StringShape.new(name: 'KeyType')
     KmsKeyId = Shapes::StringShape.new(name: 'KmsKeyId')
     LastError = Shapes::StructureShape.new(name: 'LastError')
     LaunchPermission = Shapes::StructureShape.new(name: 'LaunchPermission')
@@ -3545,6 +3546,7 @@ module Aws::EC2
 
     CreateKeyPairRequest.add_member(:key_name, Shapes::ShapeRef.new(shape: String, required: true, location_name: "KeyName"))
     CreateKeyPairRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "dryRun"))
+    CreateKeyPairRequest.add_member(:key_type, Shapes::ShapeRef.new(shape: KeyType, location_name: "KeyType"))
     CreateKeyPairRequest.add_member(:tag_specifications, Shapes::ShapeRef.new(shape: TagSpecificationList, location_name: "TagSpecification"))
     CreateKeyPairRequest.struct_class = Types::CreateKeyPairRequest
 
@@ -7803,6 +7805,7 @@ module Aws::EC2
     KeyPairInfo.add_member(:key_pair_id, Shapes::ShapeRef.new(shape: String, location_name: "keyPairId"))
     KeyPairInfo.add_member(:key_fingerprint, Shapes::ShapeRef.new(shape: String, location_name: "keyFingerprint"))
     KeyPairInfo.add_member(:key_name, Shapes::ShapeRef.new(shape: String, location_name: "keyName"))
+    KeyPairInfo.add_member(:key_type, Shapes::ShapeRef.new(shape: KeyType, location_name: "keyType"))
     KeyPairInfo.add_member(:tags, Shapes::ShapeRef.new(shape: TagList, location_name: "tagSet"))
     KeyPairInfo.struct_class = Types::KeyPairInfo
 

data/lib/aws-sdk-ec2/key_pair.rb

@@ -41,7 +41,7 @@ module Aws::EC2
       data[:key_fingerprint]
     end
 
-    # An unencrypted PEM encoded RSA private key.
+    # An unencrypted PEM encoded RSA or ED25519 private key.
     # @return [String]
     def key_material
       data[:key_material]

data/lib/aws-sdk-ec2/key_pair_info.rb

@@ -41,15 +41,39 @@ module Aws::EC2
       data[:key_pair_id]
     end
 
-    # If you used CreateKeyPair to create the key pair, this is the SHA-1
-    # digest of the DER encoded private key. If you used ImportKeyPair to
-    # provide Amazon Web Services the public key, this is the MD5 public key
-    # fingerprint as specified in section 4 of RFC4716.
+    # If you used CreateKeyPair to create the key pair:
+    #
+    # * For RSA key pairs, the key fingerprint is the SHA-1 digest of the
+    #   DER encoded private key.
+    #
+    # * For ED25519 key pairs, the key fingerprint is the base64-encoded
+    #   SHA-256 digest, which is the default for OpenSSH, starting with
+    #   [OpenSSH 6.8][1].
+    #
+    # If you used ImportKeyPair to provide Amazon Web Services the public
+    # key:
+    #
+    # * For RSA key pairs, the key fingerprint is the MD5 public key
+    #   fingerprint as specified in section 4 of RFC4716.
+    #
+    # * For ED25519 key pairs, the key fingerprint is the base64-encoded
+    #   SHA-256 digest, which is the default for OpenSSH, starting with
+    #   [OpenSSH 6.8][1].
+    #
+    #
+    #
+    # [1]: http://www.openssh.com/txt/release-6.8
     # @return [String]
     def key_fingerprint
       data[:key_fingerprint]
     end
 
+    # The type of key pair.
+    # @return [String]
+    def key_type
+      data[:key_type]
+    end
+
     # Any tags applied to the key pair.
     # @return [Array<Types::Tag>]
     def tags

data/lib/aws-sdk-ec2/resource.rb

@@ -597,6 +597,7 @@ module Aws::EC2
     #   keypair = ec2.create_key_pair({
     #     key_name: "String", # required
     #     dry_run: false,
+    #     key_type: "rsa", # accepts rsa, ed25519
     #     tag_specifications: [
     #       {
     #         resource_type: "client-vpn-endpoint", # accepts client-vpn-endpoint, customer-gateway, dedicated-host, dhcp-options, egress-only-internet-gateway, elastic-ip, elastic-gpu, export-image-task, export-instance-task, fleet, fpga-image, host-reservation, image, import-image-task, import-snapshot-task, instance, instance-event-window, internet-gateway, key-pair, launch-template, local-gateway-route-table-vpc-association, natgateway, network-acl, network-interface, network-insights-analysis, network-insights-path, placement-group, reserved-instances, route-table, security-group, security-group-rule, snapshot, spot-fleet-request, spot-instances-request, subnet, traffic-mirror-filter, traffic-mirror-session, traffic-mirror-target, transit-gateway, transit-gateway-attachment, transit-gateway-connect-peer, transit-gateway-multicast-domain, transit-gateway-route-table, volume, vpc, vpc-peering-connection, vpn-connection, vpn-gateway, vpc-flow-log
@@ -619,6 +620,11 @@ module Aws::EC2
     #   without actually making the request, and provides an error response.
     #   If you have the required permissions, the error response is
     #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
+    # @option options [String] :key_type
+    #   The type of key pair. Note that ED25519 keys are not supported for
+    #   Windows instances, EC2 Instance Connect, and EC2 Serial Console.
+    #
+    #   Default: `rsa`
     # @option options [Array<Types::TagSpecification>] :tag_specifications
     #   The tags to apply to the new key pair.
     # @return [KeyPair]

data/lib/aws-sdk-ec2/types.rb

@@ -7471,6 +7471,7 @@ module Aws::EC2
     #       {
     #         key_name: "String", # required
     #         dry_run: false,
+    #         key_type: "rsa", # accepts rsa, ed25519
     #         tag_specifications: [
     #           {
     #             resource_type: "client-vpn-endpoint", # accepts client-vpn-endpoint, customer-gateway, dedicated-host, dhcp-options, egress-only-internet-gateway, elastic-ip, elastic-gpu, export-image-task, export-instance-task, fleet, fpga-image, host-reservation, image, import-image-task, import-snapshot-task, instance, instance-event-window, internet-gateway, key-pair, launch-template, local-gateway-route-table-vpc-association, natgateway, network-acl, network-interface, network-insights-analysis, network-insights-path, placement-group, reserved-instances, route-table, security-group, security-group-rule, snapshot, spot-fleet-request, spot-instances-request, subnet, traffic-mirror-filter, traffic-mirror-session, traffic-mirror-target, transit-gateway, transit-gateway-attachment, transit-gateway-connect-peer, transit-gateway-multicast-domain, transit-gateway-route-table, volume, vpc, vpc-peering-connection, vpn-connection, vpn-gateway, vpc-flow-log
@@ -7497,6 +7498,13 @@ module Aws::EC2
     #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
     #   @return [Boolean]
     #
+    # @!attribute [rw] key_type
+    #   The type of key pair. Note that ED25519 keys are not supported for
+    #   Windows instances, EC2 Instance Connect, and EC2 Serial Console.
+    #
+    #   Default: `rsa`
+    #   @return [String]
+    #
     # @!attribute [rw] tag_specifications
     #   The tags to apply to the new key pair.
     #   @return [Array<Types::TagSpecification>]
@@ -7506,6 +7514,7 @@ module Aws::EC2
     class CreateKeyPairRequest < Struct.new(
       :key_name,
       :dry_run,
+      :key_type,
       :tag_specifications)
       SENSITIVE = []
       include Aws::Structure
@@ -36796,7 +36805,7 @@ module Aws::EC2
     #   @return [String]
     #
     # @!attribute [rw] key_material
-    #   An unencrypted PEM encoded RSA private key.
+    #   An unencrypted PEM encoded RSA or ED25519 private key.
     #   @return [String]
     #
     # @!attribute [rw] key_name
@@ -36830,16 +36839,38 @@ module Aws::EC2
     #   @return [String]
     #
     # @!attribute [rw] key_fingerprint
-    #   If you used CreateKeyPair to create the key pair, this is the SHA-1
-    #   digest of the DER encoded private key. If you used ImportKeyPair to
-    #   provide Amazon Web Services the public key, this is the MD5 public
-    #   key fingerprint as specified in section 4 of RFC4716.
+    #   If you used CreateKeyPair to create the key pair:
+    #
+    #   * For RSA key pairs, the key fingerprint is the SHA-1 digest of the
+    #     DER encoded private key.
+    #
+    #   * For ED25519 key pairs, the key fingerprint is the base64-encoded
+    #     SHA-256 digest, which is the default for OpenSSH, starting with
+    #     [OpenSSH 6.8][1].
+    #
+    #   If you used ImportKeyPair to provide Amazon Web Services the public
+    #   key:
+    #
+    #   * For RSA key pairs, the key fingerprint is the MD5 public key
+    #     fingerprint as specified in section 4 of RFC4716.
+    #
+    #   * For ED25519 key pairs, the key fingerprint is the base64-encoded
+    #     SHA-256 digest, which is the default for OpenSSH, starting with
+    #     [OpenSSH 6.8][1].
+    #
+    #
+    #
+    #   [1]: http://www.openssh.com/txt/release-6.8
     #   @return [String]
     #
     # @!attribute [rw] key_name
     #   The name of the key pair.
     #   @return [String]
     #
+    # @!attribute [rw] key_type
+    #   The type of key pair.
+    #   @return [String]
+    #
     # @!attribute [rw] tags
     #   Any tags applied to the key pair.
     #   @return [Array<Types::Tag>]
@@ -36850,6 +36881,7 @@ module Aws::EC2
       :key_pair_id,
       :key_fingerprint,
       :key_name,
+      :key_type,
       :tags)
       SENSITIVE = []
       include Aws::Structure

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-ec2
 version: !ruby/object:Gem::Version
-  version: 1.254.0
+  version: 1.255.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2021-07-30 00:00:00.000000000 Z
+date: 2021-08-17 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sigv4