I2CP, i2ptunnel: Check for expired offline signature client-side

Better error message on the router side
2020-06-06 18:44:49 +00:00
parent ac76d544b9
commit f1a277c4d7
3 changed files with 19 additions and 4 deletions
--- a/router/java/src/net/i2p/router/client/ClientMessageEventListener.java
+++ b/router/java/src/net/i2p/router/client/ClientMessageEventListener.java
@@ -250,8 +250,12 @@ class ClientMessageEventListener implements I2CPMessageReader.I2CPMessageEventLi
                    msg += DataHelper.formatDuration(0 - skew) + " in the future";
                _log.error(msg);
                _runner.disconnectClient(msg);
+            } else if (in.getOfflineSignature() != null && in.getOfflineExpiration() < _context.clock().now()) {
+                String msg = "Offline signature expired " + DataHelper.formatTime(in.getOfflineExpiration());
+                _log.error(msg);
+                _runner.disconnectClient(msg);
            } else {
-                _log.error("Signature verification failed on a create session message");
+                _log.error("Signature verification failed on a create session message:\n" + in);
                _runner.disconnectClient("Invalid signature on CreateSessionMessage");
            }
            return;