pdnsutil: Request to create key object for unknown algorithm number 12 (OpenBSD / libressl)

[fobser]

Hi,
this is on OpenBSD with libressl (and without botan):

$ pdnsutil show-zone tlakh.xyz
This is a Native zone
Zone has following allowed TSIG key(s): pdns
Metadata items:
        SOA-EDIT        INCEPTION-INCREMENT
        TSIG-ALLOW-AXFR pdns
Zone has hashed NSEC3 semantics, configuration: 1 0 23 067556071550062541064164000012
keys:
ID = 6 (ZSK), flags = 256, tag = 65156, algo = 10, bits = 2048    Active ( RSASHA512 )
ID = 5 (KSK), flags = 257, tag = 15216, algo = 10, bits = 4096    Active ( RSASHA512 )
KSK DNSKEY = tlakh.xyz. IN DNSKEY 257 3 10 AwEAAeoCANNycAHU3FtrctGycQ1/I5pN8iWNSZVhruxJsyiD75H7Mzet/gWRLiNmJ6e/aFPYuvWtdOjFyfOec5gIlI9J9cxY4L3KRSkeB/wjPkxf9GXvqxcDLg3P1eaC63/rPdhjfgq3nE3Bw3NXlTuD6SWB6YdfioiyVo+eJThrYhaFqKzPqZbGn3fEGuOp39zJ+Qunq98Vg7oTh0ch3k2H9XhRP3W+zEPnvmPKLo9+k92xvfZasgCay8vjaNRQubn9nNtNwUPKJSCIXKvmrykBPLAXBcjHlFSc6D7g4jVwzWrYtEeAA+fxqA/UBXGFrJWC3ZdD/mtDkT+vJKAL4HqCojFrRKgWq//QenhjZeZ0Efq767ZvZvqoyNweTcwGdXYteRCBR0qV4TLjD8vMczMfFboZkEJo4Xj8xDDmoslErlMGsC8TJ0uQeKB6YqKIdRJqQwtrFHx+rxFvA3+SAcKlccjZo2024f2Rq0lUSb838j1z1xY9ACh/ht0ixk0bArQ/TdqNC6SwTniiQaJfmIik64gCZE7sxMJmryxkEjtHiLieCzls4RUMpuIc3F6d/3Gq75sgt129bYWWzNIsGaqZKL97Zl4qVpOsK3I7yX7gNR7ogp7d/bGj11BUOU3ZsmJ30tvcD8CdNhokXFTyx8Z4QvNuUJKtTalgU/yRpCwTclRB ; ( RSASHA512 )
DS = tlakh.xyz. IN DS 15216 10 1 52d2513524458981af2236344c62a3db5b0022a7 ; ( SHA1 digest )
DS = tlakh.xyz. IN DS 15216 10 2 38c610b933677fc6bb5e39e3649646691aabdd5100d0bf6362e5a0954477cc8a ; ( SHA256 digest )
terminate called after throwing an instance of 'std::runtime_error'
  what():  Request to create key object for unknown algorithm number 12
Abort trap (core dumped)

Core was generated by `pdnsutil'.
Program terminated with signal SIGABRT, Aborted.
#0  0x00001b86b2cc83fa in thrkill () at <stdin>:2
2       <stdin>: No such file or directory.
(gdb) bt
#0  0x00001b86b2cc83fa in thrkill () at <stdin>:2
#1  0x00001b86b2c87d09 in *_libc_abort ()
    at /usr/src/lib/libc/stdlib/abort.c:52
#2  0x00001b863fab349c in __gnu_cxx::__verbose_terminate_handler ()
    at /usr/src/gnu/lib/libstdc++-v3/../../gcc/libstdc++-v3/libsupc++/vterminate.cc:98
#3  0x00001b863fab4f57 in __cxxabiv1::__terminate (handler=0x0)
    at /usr/src/gnu/lib/libstdc++-v3/../../gcc/libstdc++-v3/libsupc++/eh_terminate.cc:43
#4  0x00001b863fab4f93 in std::terminate ()
    at /usr/src/gnu/lib/libstdc++-v3/../../gcc/libstdc++-v3/libsupc++/eh_terminate.cc:53
#5  0x00001b863fa8f83e in __cxxabiv1::__cxa_throw (obj=<optimized out>,
    tinfo=<optimized out>, dest=<optimized out>)
    at /usr/src/gnu/lib/libstdc++-v3/../../gcc/libstdc++-v3/libsupc++/eh_throw.cc:76
#6  0x00001b83e26850cd in DNSCryptoKeyEngine::make(unsigned int) ()
#7  0x00001b83e26856fa in makeDSFromDNSKey(DNSName const&, DNSKEYRecordContent const&, int) ()
#8  0x00001b83e26e6a6a in showZone(DNSSECKeeper&, DNSName const&) ()
#9  0x00001b83e26f8589 in main ()

Thanks

[Habbie]

We've seen this before, I could have sworn there was a ticket and/or we fixed it.

A note for whoever is going to fix this: the offending line is

pdns/pdns/dnssecinfra.cc

Line 396 in 7fbe416

shared_ptr<DNSCryptoKeyEngine> dpk(DNSCryptoKeyEngine::make(12)); // gives us GOST

[fobser]

forgot to mention, this is 4.0.1

[rgacogne]

Alright, it's very likely I'm missing something obvious, but I can't reproduce this and it looks to me like the exception should be correctly catched 1

[omoerbeek]

I cannot reproduce on OpnBSD 6.4. Actually, I see the exception thrown and caught in the lines mentioned above. I'm closing now, we can always re-open if spotted again.