Bug 2022336

Summary: ssh-keygen -Y find-principals -f /dev/null -s /dev/null crashes
Product: [Fedora] Fedora Reporter: Horst H. von Brand <vonbrand>
Component: opensshAssignee: Dmitry Belyavskiy <dbelyavs>
Status: CLOSED ERRATA QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: high Docs Contact:
Priority: unspecified    
Version: 35CC: crypto-team, dbelyavs, dwalsh, francois.rigault, jjelen, lkundrak, mattias.ellert, tm
Target Milestone: ---Keywords: Triaged
Target Release: ---Flags: fedora-admin-xmlrpc: mirror+
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: openssh-8.7p1-3.fc35 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
: 2024902 (view as bug list) Environment:
Last Closed: 2021-12-01 01:20:46 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 2024902    

Description Horst H. von Brand 2021-11-11 11:30:26 UTC 
Description of problem:
`ssh-keygen -Y find-principals -f /dev/null -s /dev/null`
segfaults.

Version-Release number of selected component (if applicable):
openssh-8.7p1-2.fc35.x86_64

How reproducible:
Always

Steps to Reproduce:
1. ssh-keygen -Y find-principals -f /dev/null -s /dev/null

Actual results:
Segmentation fault

Expected results:
Should not crash, at the very least.

Additional info:
From a testcase for a Debian failure in git v2.34.0-rc2-9-g4d53e91c6b
Comment 1 François Rigault 2021-11-23 18:18:51 UTC 
fixed upstream I guess https://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/ssh-keygen.c.diff?r1=1.435&r2=1.436
Comment 2 Fedora Update System 2021-11-29 15:00:58 UTC 
FEDORA-2021-226a27161e has been submitted as an update to Fedora 35. https://bodhi.fedoraproject.org/updates/FEDORA-2021-226a27161e
Comment 3 Dmitry Belyavskiy 2021-11-29 15:05:40 UTC 
Pushed to Fedora 35, waiting for testing. OpenSSH 8.8 pushed today to rawhide already contains this fix. Thanks for reporting!
Comment 4 Fedora Update System 2021-11-30 02:18:59 UTC 
FEDORA-2021-226a27161e has been pushed to the Fedora 35 testing repository.
Soon you'll be able to install the update with the following command:
`sudo dnf upgrade --enablerepo=updates-testing --advisory=FEDORA-2021-226a27161e`
You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2021-226a27161e

See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates.
Comment 5 Fedora Update System 2021-12-01 01:20:46 UTC 
FEDORA-2021-226a27161e has been pushed to the Fedora 35 stable repository.
If problem still persists, please make note of it in this bug report.