upstream: add a note about the 'extensions' field in the signed

object OpenBSD-Commit-ID: 67c01e0565b258e0818c1ccfe1f1aeaf9a0d4c7b
author: djm@openbsd.org <djm@openbsd.org> 2019-12-11 22:19:47 +0000
committer: Damien Miller <djm@mindrot.org> 2019-12-14 07:09:23 +1100
commit: c33d46868c3d88e04a92610cdb429094aeeb5847 (patch)
tree: 9901cc8f4a414da79a8c2d17ee6fbe59ac6374ff /PROTOCOL.u2f
parent: a62f4e1960691f3aeb1f972e009788b29e2ae464 (diff)
download: openssh-git-c33d46868c3d88e04a92610cdb429094aeeb5847.tar.gz
1 files changed, 4 insertions, 0 deletions
diff --git a/PROTOCOL.u2f b/PROTOCOL.u2f
index 32bfa20f..066d0995 100644
--- a/PROTOCOL.u2f
+++ b/PROTOCOL.u2f
@@ -170,6 +170,10 @@ is signed over a blob that consists of:
 	byte[]		extensions
 	byte[32]	SHA256(message)
 
+No extensons are yet defined for SSH use. If any are defined in the future,
+it will be possible to infer their presence from the contents of the "flags"
+value.
+
 The signature returned from U2F hardware takes the following format:
 
 	byte		flags (including "user present")
author	djm@openbsd.org <djm@openbsd.org>	2019-12-11 22:19:47 +0000
committer	Damien Miller <djm@mindrot.org>	2019-12-14 07:09:23 +1100
commit	c33d46868c3d88e04a92610cdb429094aeeb5847 (patch)
tree	9901cc8f4a414da79a8c2d17ee6fbe59ac6374ff /PROTOCOL.u2f
parent	a62f4e1960691f3aeb1f972e009788b29e2ae464 (diff)
download	openssh-git-c33d46868c3d88e04a92610cdb429094aeeb5847.tar.gz