From b556cc3cbf0c43f073bb41bba4e92ca709a1ec13 Mon Sep 17 00:00:00 2001
From: "markus@openbsd.org" <markus@openbsd.org>
Date: Tue, 12 Nov 2019 19:34:40 +0000
Subject: upstream: remove extra layer for ed25519 signature; ok djm@

OpenBSD-Commit-ID: 7672d9d0278b4bf656a12d3aab0c0bfe92a8ae47
---
 PROTOCOL.u2f | 8 ++++++++
 1 file changed, 8 insertions(+)

(limited to 'PROTOCOL.u2f')

diff --git a/PROTOCOL.u2f b/PROTOCOL.u2f
index bd60f9fac..ca55c4297 100644
--- a/PROTOCOL.u2f
+++ b/PROTOCOL.u2f
@@ -148,6 +148,14 @@ be reformatted slightly and the ecdsa_signature_blob value has the encoding:
 Where 'r' and 's' are extracted by the client or token middleware from the
 ecdsa_signature field returned from the hardware.
 
+For Ed25519 keys the signature is encoded as:
+
+	string		"sk-ssh-ed25519@openssh.com"
+	string		signature
+	byte		flags
+	uint32		counter
+
+
 ssh-agent protocol extensions
 -----------------------------
 
-- 
cgit v1.2.3