无法使用 d2i_SSL_SESSION 反序列化 SSL_SESSION

发布于 2024-10-04 07:21:34 字数 719 浏览 2 评论 0原文

我想重用 SSL_SESSION，因此我使用 i2d_SSL_SESSION() 对其进行序列化，并使用 d2i_SSL_SESSION 进行反序列化。但是d2i_SSL_SESSION失败了，测试代码很简单：

ssl握手完成后

    SSL_SESSION *session = SSL_get1_session(ssl);

    int len = i2d_SSL_SESSION(session, NULL);
    unsigned char *pp = new unsigned char[len];
    len = i2d_SSL_SESSION(session, &pp);

    SSL_SESSION *s_new = d2i_SSL_SESSION(NULL, (const unsigned char **)&pp, len);
    ERR_print_errors_fp(stderr);
    cout << "s_new = " << s_new << endl;

i2d_SSL_SESSION没问题，len = 2205

但是d2i_SSL_SESSION失败了，s_new为NULL，错误信息为： 3078067960：错误：0D06703D：asn1编码例程：a2i_ASN1_STRING：期望asn1序列：ssl_asn1.c：370：地址= 3219682277偏移= 0

我错过了什么吗？

原文

I want to reuse SSL_SESSION, so I use i2d_SSL_SESSION() to serialise it, and d2i_SSL_SESSION to unserialise. But the d2i_SSL_SESSION failed, the test code is very simple:

after the ssl handshake finished

    SSL_SESSION *session = SSL_get1_session(ssl);

    int len = i2d_SSL_SESSION(session, NULL);
    unsigned char *pp = new unsigned char[len];
    len = i2d_SSL_SESSION(session, &pp);

    SSL_SESSION *s_new = d2i_SSL_SESSION(NULL, (const unsigned char **)&pp, len);
    ERR_print_errors_fp(stderr);
    cout << "s_new = " << s_new << endl;

the i2d_SSL_SESSION is ok, and the len = 2205

but d2i_SSL_SESSION failed, the s_new is NULL, the error message is:
3078067960:error:0D06703D:asn1 encoding routines:a2i_ASN1_STRING:expecting an asn1 sequence:ssl_asn1.c:370:address=3219682277 offset=0

Do I miss something?

分享到QQ

分享到微博

如果你对这篇内容有疑问，欢迎到本站社区发帖提问参与讨论，获取更多帮助，或者扫码二维码加入 Web 技术交流群。

发布评论

需要登录才能够评论，你可以免费注册一个本站的账号。

别低头，皇冠会掉 2024-10-11 07:21:34

i2d_SSL_SESSION 增加 pp 指向的指针，使其指向保存的数据后的一个字节（不幸的是，手册页在这一点上不是很清楚）。

请尝试改为：

int len = i2d_SSL_SESSION(session, NULL);
unsigned char *buffer = new unsigned char[len];
unsigned char *p = buffer;
const unsigned char *cp = buffer;
len = i2d_SSL_SESSION(session, &p);

SSL_SESSION *s_new = d2i_SSL_SESSION(NULL, &cp, len);

请注意，d2i_SSL_SESSION() 以相同的方式递增传递的指针。 d2i_X509() 手册页是有关 OpenSSL 中所有 d2i_*() 和 i2d_*() 函数一般行为的最佳文档。

i2d_SSL_SESSION increments the pointer pointed to by pp to point one byte after the saved data (unfortunately, the man page isn't very clear on this point).

Try instead:

int len = i2d_SSL_SESSION(session, NULL);
unsigned char *buffer = new unsigned char[len];
unsigned char *p = buffer;
const unsigned char *cp = buffer;
len = i2d_SSL_SESSION(session, &p);

SSL_SESSION *s_new = d2i_SSL_SESSION(NULL, &cp, len);

Note that d2i_SSL_SESSION() increments the passed pointer in the same way. The d2i_X509() man page is the best documentation on the general behaviour of all the d2i_*() and i2d_*() functions in OpenSSL.

回复收藏 0 原文

~没有更多了~