[Bug 3364] Using "ssh-keygen -D pkcs11" with HSM fails due to "xmalloc: zero size"

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Fri Nov 19 08:14:02 AEDT 2021


https://bugzilla.mindrot.org/show_bug.cgi?id=3364

Damien Miller <djm at mindrot.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |djm at mindrot.org
             Status|NEW                         |RESOLVED
             Blocks|                            |3339
         Resolution|---                         |FIXED

--- Comment #1 from Damien Miller <djm at mindrot.org> ---
This will be fixed in OpenSSH 8.9p1:

commit 97f9b6e61316c97a32dad94b7a37daa9b5f6b836 (HEAD -> master,
origin/master, origin/HEAD)
Author: djm at openbsd.org <djm at openbsd.org>
Date:   Thu Nov 18 21:11:01 2021 +0000

    upstream: avoid xmalloc(0) for PKCS#11 keyid for ECDSA keys (we

    already did this for RSA keys). Avoids fatal errors for PKCS#11
libraries
    that return empty keyid, e.g. Microchip ATECC608B "cryptoauthlib";
bz#3364

    OpenBSD-Commit-ID: 054d4dc1d6a99a2e6f8eebc48207b534057c154d


Referenced Bugs:

https://bugzilla.mindrot.org/show_bug.cgi?id=3339
[Bug 3339] Tracking bug for openssh-8.8
-- 
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list