From a5fa4ddb4cb5f0362ab7d763bf20f462e7a7b68b Mon Sep 17 00:00:00 2001
From: orignal <i2porignal@yandex.ru>
Date: Tue, 22 Apr 2025 21:21:51 -0400
Subject: [PATCH] compare LeaseSet's static keys with ratchets session it was
 received from

---
 libi2pd/Destination.cpp | 14 +++++++++++++-
 1 file changed, 13 insertions(+), 1 deletion(-)

diff --git a/libi2pd/Destination.cpp b/libi2pd/Destination.cpp
index b88865b6..91cc8380 100644
--- a/libi2pd/Destination.cpp
+++ b/libi2pd/Destination.cpp
@@ -469,9 +469,21 @@ namespace client
 					if (buf[DATABASE_STORE_TYPE_OFFSET] == i2p::data::NETDB_STORE_TYPE_LEASESET)
 						leaseSet = std::make_shared<i2p::data::LeaseSet> (buf + offset, len - offset); // LeaseSet
 					else
+					{	
 						leaseSet = std::make_shared<i2p::data::LeaseSet2> (buf[DATABASE_STORE_TYPE_OFFSET], 
 							buf + offset, len - offset, true, from ? from->GetRemoteStaticKeyType () : GetPreferredCryptoType () ); // LeaseSet2
-					if (leaseSet->IsValid () && leaseSet->GetIdentHash () == key && !leaseSet->IsExpired ())
+						if (from)
+						{
+							uint8_t pub[32];
+							leaseSet->Encrypt (nullptr, pub);
+							if (memcmp (from->GetRemoteStaticKey (), pub, 32))
+							{
+								LogPrint (eLogError, "Destination: Remote LeaseSet static key mismatch");
+								leaseSet = nullptr;
+							}	
+						}	
+					}		
+					if (leaseSet && leaseSet->IsValid () && leaseSet->GetIdentHash () == key && !leaseSet->IsExpired ())
 					{
 						if (leaseSet->GetIdentHash () != GetIdentHash ())
 						{