From 72b61a29c2bd54e3c7d32df549b7bddabfc4e3f9 Mon Sep 17 00:00:00 2001
From: orignal <i2porignal@yandex.ru>
Date: Mon, 27 Jun 2022 15:56:47 -0400
Subject: [PATCH] check TokenRequest message size

---
 libi2pd/SSU2Session.cpp | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/libi2pd/SSU2Session.cpp b/libi2pd/SSU2Session.cpp
index 8154c14b..7ceb7188 100644
--- a/libi2pd/SSU2Session.cpp
+++ b/libi2pd/SSU2Session.cpp
@@ -788,6 +788,11 @@ namespace transport
 	void SSU2Session::ProcessTokenRequest (Header& header, uint8_t * buf, size_t len)
 	{
 		// we are Bob
+		if (len < 48)
+		{
+			LogPrint (eLogWarning, "SSU2: Incorrect TokenRequest len ", len);
+			return;
+		}	
 		uint8_t nonce[12] = {0};
 		uint8_t h[32];
 		memcpy (h, header.buf, 16);
@@ -920,6 +925,7 @@ namespace transport
 	bool SSU2Session::ProcessHolePunch (uint8_t * buf, size_t len)
 	{
 		// we are Alice
+		LogPrint (eLogDebug, "HolePunch");
 		Header header;
 		memcpy (header.buf, buf, 16);
 		header.ll[0] ^= CreateHeaderMask (i2p::context.GetSSU2IntroKey (), buf + (len - 24));