more NTP response sanity checks

2018-02-19 14:25:57 +00:00
parent 826d8ca07f
commit a5ca9364ef
1 changed files with 16 additions and 0 deletions
--- a/router/java/src/net/i2p/router/time/NtpClient.java
+++ b/router/java/src/net/i2p/router/time/NtpClient.java
@ -234,6 +234,22 @@ public class NtpClient {
                return null;
            }

+            // More sanity checks
+            // See http://doolittle.icarus.com/ntpclient/README
+            // See RFC 4330 Sec. 5
+            if (msg.leapIndicator == 3 ||
+                msg.version < 3 ||
+                // 4 for server. Above reference is wrong, it says 3 which is client.
+                msg.mode != 4 ||
+                msg.transmitTimestamp <= 0 ||
+                // following values are in seconds, vs. 1/65536 seconds in above reference
+                Math.abs(msg.rootDelay) > 1.0d ||
+                Math.abs(msg.rootDispersion) > 1.0d) {
+                if (log != null && log.shouldWarn())
+                    log.warn("Failed sanity checks:\n" + msg);
+                return null;
+            }
+
            // KoD check (AFTER spoof checks)
            if (msg.stratum == 0) {
                why = msg.referenceIdentifierToString();