edg-l/ddnet
1
0
Fork 0
mirror of https://github.com/ddnet/ddnet.git synced 2024-11-10 10:08:18 +00:00
Code Issues Packages Projects Releases Wiki Activity

Validate ticks when reading demo chunk headers

Browse source 
Add checks to ensure that the ticks read from demo chunk headers are in the valid range (cf. `MIN_TICK` and `MAX_TICK` constants). Playing demos with invalid ticks is prevented entirely, as the invalid ticks would cause issues in other places. The server never uses ticks outside the valid range, so invalid ticks should never occur in correctly recorded demos.

Additionally, checks are added to detect if a tickmarker chunk with a tick delta occurs before a tickmarker chunk defining an initial tick. The tick delta is only meaningful when an initial tick has already been defined, so if this is not the case the demo is also considered invalid.
This commit is contained in:
Robert Müller 2023-10-15 13:49:15 +02:00
parent 6951795619
commit 92e2e17f0f
2 changed files with 56 additions and 17 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

63
src/engine/shared/demo.cpp
View file

@ -418,14 +418,14 @@ void CDemoPlayer::SetListener(IListener *pListener)
m_pListener = pListener; m_pListener = pListener;
} }
int CDemoPlayer::ReadChunkHeader(int *pType, int *pSize, int *pTick) CDemoPlayer::EReadChunkHeaderResult CDemoPlayer::ReadChunkHeader(int *pType, int *pSize, int *pTick)
{ {
*pSize = 0; *pSize = 0;
*pType = 0; *pType = 0;
unsigned char Chunk = 0; unsigned char Chunk = 0;
if(io_read(m_File, &Chunk, sizeof(Chunk)) != sizeof(Chunk)) if(io_read(m_File, &Chunk, sizeof(Chunk)) != sizeof(Chunk))
return -1; return CHUNKHEADER_EOF;
if(Chunk & CHUNKTYPEFLAG_TICKMARKER) if(Chunk & CHUNKTYPEFLAG_TICKMARKER)
{ {
@ -433,22 +433,30 @@ int CDemoPlayer::ReadChunkHeader(int *pType, int *pSize, int *pTick)
int Tickdelta_legacy = Chunk & CHUNKMASK_TICK_LEGACY; // compatibility int Tickdelta_legacy = Chunk & CHUNKMASK_TICK_LEGACY; // compatibility
*pType = Chunk & (CHUNKTYPEFLAG_TICKMARKER | CHUNKTICKFLAG_KEYFRAME); *pType = Chunk & (CHUNKTYPEFLAG_TICKMARKER | CHUNKTICKFLAG_KEYFRAME);
int NewTick;
if(m_Info.m_Header.m_Version < gs_VersionTickCompression && Tickdelta_legacy != 0) if(m_Info.m_Header.m_Version < gs_VersionTickCompression && Tickdelta_legacy != 0)
{ {
*pTick += Tickdelta_legacy; if(*pTick < 0) // initial tick not initialized before a tick delta
return CHUNKHEADER_ERROR;
NewTick = *pTick + Tickdelta_legacy;
} }
else if(Chunk & CHUNKTICKFLAG_TICK_COMPRESSED) else if(Chunk & CHUNKTICKFLAG_TICK_COMPRESSED)
{ {
if(*pTick < 0) // initial tick not initialized before a tick delta
return CHUNKHEADER_ERROR;
int Tickdelta = Chunk & CHUNKMASK_TICK; int Tickdelta = Chunk & CHUNKMASK_TICK;
*pTick += Tickdelta; NewTick = *pTick + Tickdelta;
} }
else else
{ {
unsigned char aTickdata[sizeof(int32_t)]; unsigned char aTickdata[sizeof(int32_t)];
if(io_read(m_File, aTickdata, sizeof(aTickdata)) != sizeof(aTickdata)) if(io_read(m_File, aTickdata, sizeof(aTickdata)) != sizeof(aTickdata))
return -1; return CHUNKHEADER_ERROR;
*pTick = bytes_be_to_uint(aTickdata); NewTick = bytes_be_to_uint(aTickdata);
} }
if(NewTick < MIN_TICK || NewTick >= MAX_TICK) // invalid tick
return CHUNKHEADER_ERROR;
*pTick = NewTick;
} }
else else
{ {
@ -460,34 +468,42 @@ int CDemoPlayer::ReadChunkHeader(int *pType, int *pSize, int *pTick)
{ {
unsigned char aSizedata[1]; unsigned char aSizedata[1];
if(io_read(m_File, aSizedata, sizeof(aSizedata)) != sizeof(aSizedata)) if(io_read(m_File, aSizedata, sizeof(aSizedata)) != sizeof(aSizedata))
return -1; return CHUNKHEADER_ERROR;
*pSize = aSizedata[0]; *pSize = aSizedata[0];
} }
else if(*pSize == 31) else if(*pSize == 31)
{ {
unsigned char aSizedata[2]; unsigned char aSizedata[2];
if(io_read(m_File, aSizedata, sizeof(aSizedata)) != sizeof(aSizedata)) if(io_read(m_File, aSizedata, sizeof(aSizedata)) != sizeof(aSizedata))
return -1; return CHUNKHEADER_ERROR;
*pSize = (aSizedata[1] << 8) | aSizedata[0]; *pSize = (aSizedata[1] << 8) | aSizedata[0];
} }
} }
return 0; return CHUNKHEADER_SUCCESS;
} }
void CDemoPlayer::ScanFile() bool CDemoPlayer::ScanFile()
{ {
const long StartPos = io_tell(m_File); const long StartPos = io_tell(m_File);
m_vKeyFrames.clear(); m_vKeyFrames.clear();
int ChunkTick = 0; int ChunkTick = -1;
while(true) while(true)
{ {
const long CurrentPos = io_tell(m_File); const long CurrentPos = io_tell(m_File);
int ChunkType, ChunkSize; int ChunkType, ChunkSize;
if(ReadChunkHeader(&ChunkType, &ChunkSize, &ChunkTick)) const EReadChunkHeaderResult Result = ReadChunkHeader(&ChunkType, &ChunkSize, &ChunkTick);
if(Result == CHUNKHEADER_EOF)
{
break; break;
}
else if(Result == CHUNKHEADER_ERROR)
{
m_vKeyFrames.clear();
return false;
}
if(ChunkType & CHUNKTYPEFLAG_TICKMARKER) if(ChunkType & CHUNKTYPEFLAG_TICKMARKER)
{ {
@ -505,6 +521,7 @@ void CDemoPlayer::ScanFile()
} }
io_seek(m_File, StartPos, IOSEEK_START); io_seek(m_File, StartPos, IOSEEK_START);
return true;
} }
void CDemoPlayer::DoTick() void CDemoPlayer::DoTick()
@ -527,11 +544,18 @@ void CDemoPlayer::DoTick()
while(true) while(true)
{ {
int ChunkType, ChunkSize; int ChunkType, ChunkSize;
if(ReadChunkHeader(&ChunkType, &ChunkSize, &ChunkTick)) const EReadChunkHeaderResult Result = ReadChunkHeader(&ChunkType, &ChunkSize, &ChunkTick);
if(Result != CHUNKHEADER_SUCCESS)
{ {
// stop on error or eof // stop on error or eof
if(m_pConsole) if(m_pConsole)
m_pConsole->Print(IConsole::OUTPUT_LEVEL_ADDINFO, "demo_player", "end of file"); {
if(Result == CHUNKHEADER_EOF)
m_pConsole->Print(IConsole::OUTPUT_LEVEL_ADDINFO, "demo_player", "end of file");
else
m_pConsole->Print(IConsole::OUTPUT_LEVEL_STANDARD, "demo_player", "error reading chunk header");
}
#if defined(CONF_VIDEORECORDER) #if defined(CONF_VIDEORECORDER)
if(m_UseVideo && IVideo::Current()) if(m_UseVideo && IVideo::Current())
Stop(); Stop();
@ -782,7 +806,16 @@ int CDemoPlayer::Load(class IStorage *pStorage, class IConsole *pConsole, const
} }
// scan the file for interesting points // scan the file for interesting points
ScanFile(); if(!ScanFile())
{
if(m_pConsole)
{
m_pConsole->Print(IConsole::OUTPUT_LEVEL_STANDARD, "demo_player", "Error scanning demo file");
}
io_close(m_File);
m_File = 0;
return -1;
}
// reset slice markers // reset slice markers
g_Config.m_ClDemoSliceBegin = -1; g_Config.m_ClDemoSliceBegin = -1;

10
src/engine/shared/demo.h
View file

@ -123,9 +123,15 @@ private:
bool m_UseVideo; bool m_UseVideo;
bool m_WasRecording = false; bool m_WasRecording = false;
int ReadChunkHeader(int *pType, int *pSize, int *pTick); enum EReadChunkHeaderResult
{
CHUNKHEADER_SUCCESS,
CHUNKHEADER_ERROR,
CHUNKHEADER_EOF,
};
EReadChunkHeaderResult ReadChunkHeader(int *pType, int *pSize, int *pTick);
void DoTick(); void DoTick();
void ScanFile(); bool ScanFile();
int64_t Time(); int64_t Time();