mirror of
https://github.com/PurpleI2P/i2pd.git
synced 2025-01-22 21:37:17 +01:00
reject routers with RSA signatures
This commit is contained in:
parent
34d6eb52d0
commit
0c34bd440b
|
@ -132,6 +132,14 @@ namespace data
|
||||||
}
|
}
|
||||||
if (verifySignature)
|
if (verifySignature)
|
||||||
{
|
{
|
||||||
|
// reject RSA signatures
|
||||||
|
auto sigType = m_RouterIdentity->GetSigningKeyType ();
|
||||||
|
if (sigType <= SIGNING_KEY_TYPE_RSA_SHA512_4096 && sigType >= SIGNING_KEY_TYPE_RSA_SHA256_2048)
|
||||||
|
{
|
||||||
|
LogPrint (eLogError, "RouterInfo: RSA signature type ", sigType, " is not allowed");
|
||||||
|
m_IsUnreachable = true;
|
||||||
|
return;
|
||||||
|
}
|
||||||
// verify signature
|
// verify signature
|
||||||
int l = m_BufferLen - m_RouterIdentity->GetSignatureLen ();
|
int l = m_BufferLen - m_RouterIdentity->GetSignatureLen ();
|
||||||
if (l < 0 || !m_RouterIdentity->Verify ((uint8_t *)m_Buffer, l, (uint8_t *)m_Buffer + l))
|
if (l < 0 || !m_RouterIdentity->Verify ((uint8_t *)m_Buffer, l, (uint8_t *)m_Buffer + l))
|
||||||
|
|
Loading…
Reference in a new issue