openssh bugs - Apr 2023 - [Bug 3564] New: When downloading sk keys from a fido token, applications with multiple keys overwrite each other

https://bugzilla.mindrot.org/show_bug.cgi?id=3564

            Bug ID: 3564
           Summary: When downloading sk keys from a fido token,
                    applications with multiple keys overwrite each other
           Product: Portable OpenSSH
           Version: 8.5p1
          Hardware: Other
                OS: Windows 10
            Status: NEW
          Severity: enhancement
          Priority: P5
         Component: ssh-keygen
          Assignee: unassigned-bugs at mindrot.org
          Reporter: m.schmidt at emtec.com

Static function do_download_sk(const char *skprovider, const char
*device) in ssh-keygen has a loop that goes over the returned keys for
the given sk-application.

However, if an application has more than one keys, the name of the
output file will be the same for all keys (e.g.
id_ecdsa_sk_rk_mydomain), prompting the user to overwrite the first key
with the 2nd, etc.

I believe it would be useful (or more correct) to give subsequent keys
a numbering scheme, e.g. id_ecdsa_sk_rk_mydomain,
id_ecdsa_sk_rk_mydomain2, id_ecdsa_sk_rk_mydomain3, etc.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.

https://bugzilla.mindrot.org/show_bug.cgi?id=3564

Damien Miller <djm at mindrot.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         Resolution|---                         |FIXED
             Status|NEW                         |RESOLVED
                 CC|                            |djm at mindrot.org

--- Comment #1 from Damien Miller <djm at mindrot.org> ---
Please check the current version before reporting bugs.

This was fixed in OpenSSH 8.9.

-- 
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.