我正在尝试使用OpenSSL在Linux上使用c ++实现SCLS上的DTLS(Fedora21 x86_64)
有问题的代码:
BIO *sbio=BIO_new_dgram_sctp( m_sctp_socket,BIO_NOCLOSE)
您能否告诉我为什么OpenSSL会断言?
崩溃框架:
#0 0x00007f86fbed98d7 in __GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:55
#1 0x00007f86fbedb53a in __GI_abort () at abort.c:89
#2 0x00007f86fcf7512f in OpenSSLDie () from /lib64/libcrypto.so.1.0.0
#3 0x00007f86fd028c3a in BIO_new_dgram_sctp () from /lib64/libcrypto.so.1.0.0
在BIO_new_dgram_sctp()获取以下断言消息运行时
bss_dgram.c(1041): OpenSSL internal error, assertion failed: auth_data
检查内核中的SCTP支持:
[blackmamba@fedora21]$ checksctp
SCTP supported
在sysctl
中启用了auth chunknet.sctp.auth_enable = 1
OpenSSL版
OpenSSL 1.0.2a 19 Mar 2015
答案 0 :(得分:0)
我遇到了这个问题,然后在接受新连接之前,我在侦听器套接字上调用API“BIO_new_dgram_sctp”后问题得到了解决。
try
{
ivSocket->doListen();
}
catch(SocketException& anException)
{
//Destroy this thread
_close();
}
/* If security is enabled */
if ((ivSecurity == eTLS) && (ivTransport == eSCTP))
{
/* Create DTLS/SCTP BIO and connect */
BIO *bio = BIO_new_dgram_sctp(ivSocket->getSocketId(), BIO_CLOSE);
}
/* call select on read and write FD's */
/* Accept new connection that returns new FD and then call SSL_Accept for new FD */