bss_dgram.c(1041):OpenSSL内部错误,断言失败:auth_data

时间:2015-06-06 07:38:21

标签: linux openssl sctp dtls

我正在尝试使用OpenSSL在Linux上使用c ++实现SCLS上的DTLS(Fedora21 x86_64)

有问题的代码:

BIO *sbio=BIO_new_dgram_sctp( m_sctp_socket,BIO_NOCLOSE)

您能否告诉我为什么OpenSSL会断言?

崩溃框架:

#0  0x00007f86fbed98d7 in __GI_raise (sig=sig@entry=6) at    ../sysdeps/unix/sysv/linux/raise.c:55
#1  0x00007f86fbedb53a in __GI_abort () at abort.c:89
#2  0x00007f86fcf7512f in OpenSSLDie () from /lib64/libcrypto.so.1.0.0
#3  0x00007f86fd028c3a in BIO_new_dgram_sctp () from /lib64/libcrypto.so.1.0.0

在BIO_new_dgram_sctp()获取以下断言消息运行时

bss_dgram.c(1041): OpenSSL internal error, assertion failed: auth_data

检查内核中的SCTP支持:

[blackmamba@fedora21]$ checksctp
SCTP supported

在sysctl

中启用了auth chunk
net.sctp.auth_enable = 1

OpenSSL版

OpenSSL 1.0.2a 19 Mar 2015

1 个答案:

答案 0 :(得分:0)

我遇到了这个问题,然后在接受新连接之前,我在侦听器套接字上调用API“BIO_new_dgram_sctp”后问题得到了解决。

    try
    {
        ivSocket->doListen();
    }
    catch(SocketException& anException)
    {
        //Destroy this thread
        _close();
    }


    /* If security is enabled */
    if ((ivSecurity == eTLS) && (ivTransport == eSCTP))
    {
      /* Create DTLS/SCTP BIO and connect */
      BIO *bio = BIO_new_dgram_sctp(ivSocket->getSocketId(), BIO_CLOSE);        
    }

    /* call select on read and write FD's */
    /* Accept new connection that returns new FD and then call SSL_Accept for new FD */