From: djm@openbsd.org <djm@openbsd.org>
Date: Tue, 10 Dec 2019 23:21:56 +0000 (+0000)
Subject: upstream: loading security keys into ssh-agent used the extension
X-Git-Tag: V_8_2_P1~208
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=22d4beb79622fc82d7111ac941269861fc7aef8d;p=thirdparty%2Fopenssh-portable.git

upstream: loading security keys into ssh-agent used the extension

constraint "sk-provider@openssh.com", not "sk@openssh.com"; spotted by Ron
Frederick

OpenBSD-Commit-ID: dbfba09edbe023abadd5f59c1492df9073b0e51d
---

diff --git a/PROTOCOL.u2f b/PROTOCOL.u2f
index 375d73bbc..823f53634 100644
--- a/PROTOCOL.u2f
+++ b/PROTOCOL.u2f
@@ -205,7 +205,7 @@ with a new key constraint extension to encode a path to the middleware
 library for the key. The format of this constraint extension would be:
 
 	byte		SSH_AGENT_CONSTRAIN_EXTENSION
-	string		sk@openssh.com
+	string		sk-provider@openssh.com
 	string		middleware path
 
 This constraint-based approach does not present any compatibility