On 29/08/16 17:08, Julien Vermillard wrote:
> I have a DTLS 1.2 server based on last master (commit
> d196305aa0de1fc38837c27cb1ea6e60af9dd98d)
> I try to add ocsp stapling support (based on code in s_server.c).
>
> Basicaly in my callback I set the OCSP response by:
>
>
> if (SSL_set_tlsext_status_ocsp_resp(s,dataPtr,respLen) == 0) {
> return SSL_TLSEXT_ERR_NOACK;
> } else {
> return SSL_TLSEXT_ERR_OK;
> }
>
> but if my server manage to get an OCSP response it crash with this message:
>
> ssl/statem/statem_dtls.c:127: OpenSSL internal error: assertion failed:
> s->init_num == (int)s->d1->w_msg_hdr.msg_len + DTLS1_HM_HEADER_LENGTH
>
> Any clue?
Do you have some minimal reproducer?
Matt
