<div dir="ltr"><div dir="ltr">Hello Liviu,<br><br>I am already running the last version of OpenSIPS. <br>opensips -V<br>version: opensips 3.4.3 (x86_64/linux)<br>deb <a href="https://apt.opensips.org">https://apt.opensips.org</a> bookworm 3.4-releases<br><br>In my example, the "iat" PASSporT value is correct. The only issue lies with the Date header field.</div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">Le mar. 20 févr. 2024 à 14:55, Liviu Chircu <<a href="mailto:liviu@opensips.org">liviu@opensips.org</a>> a écrit :<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><u></u>
<div>
<div>Hi James,</div>
<div><br>
</div>
<div>Make sure you're running a recent
OpenSIPS build, I recall this bug was caught <a href="https://github.com/OpenSIPS/opensips/commit/75a168a9f43" target="_blank">a
few months ago</a>.</div>
<div><br>
</div>
<div>Best regards,<br>
</div>
<p></p>
<pre cols="72">Liviu Chircu
<a href="http://www.twitter.com/liviuchircu" target="_blank">www.twitter.com/liviuchircu</a> | <a href="http://www.opensips-solutions.com" target="_blank">www.opensips-solutions.com</a>
OpenSIPS Summit 2024 Valencia, May 14-17 | <a href="http://www.opensips.org/events" target="_blank">www.opensips.org/events</a></pre>
<div>On 20.02.2024 15:03, James Seer wrote:<br>
</div>
<blockquote type="cite">
<div dir="ltr">Hello,<br>
<br>
I have a question regarding Date Header Verification in our
setup:<br>
<br>
Server Timezone: Central European Time<br>
Configuration: <br>
require_date_hdr: false<br>
verify_date_freshness : 300 seconds<br>
SIP INVITE Date Header: Tue, 20 Feb 2024 00:26:05 GMT<br>
Server time: 2024-02-20T00:26:06 CET<br>
Identity header payload "iat" value: 1708385165<br>
<br>
Despite the Date header being in the future, OpenSIPS proceeded
with verification. While I can see there's an existing error
code (-6: Date header value is older than local policy for
freshness), it only addresses cases where the header is "older"
than the local policy.<br>
<br>
This could be easily handled in script code, but shouldn't
opensips trigger a distinct failure with a new error code,
considering the discrepancy between the Date header and server
time ? (More than 300 seconds of difference)<br>
<br>
Thank you</div>
<br>
<fieldset></fieldset>
<pre>_______________________________________________
Users mailing list
<a href="mailto:Users@lists.opensips.org" target="_blank">Users@lists.opensips.org</a>
<a href="http://lists.opensips.org/cgi-bin/mailman/listinfo/users" target="_blank">http://lists.opensips.org/cgi-bin/mailman/listinfo/users</a>
</pre>
</blockquote>
</div>
_______________________________________________<br>
Users mailing list<br>
<a href="mailto:Users@lists.opensips.org" target="_blank">Users@lists.opensips.org</a><br>
<a href="http://lists.opensips.org/cgi-bin/mailman/listinfo/users" rel="noreferrer" target="_blank">http://lists.opensips.org/cgi-bin/mailman/listinfo/users</a><br>
</blockquote></div></div>