Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add better farbuild exploit mitigation #464

Merged
merged 1 commit into from Mar 16, 2019
Merged

Add better farbuild exploit mitigation #464

merged 1 commit into from Mar 16, 2019

Conversation

NotAFile
Copy link
Member

@NotAFile NotAFile commented Feb 26, 2019
edited

This mitigation used to be very flakey and had many false positives.
Inspired by 1AmYF's new fbpatch2 mitigation script, which is much
better than the original fbpatch mitigation, we now record and check the
start location of the line build in addition to the end location.

This is now also more readable because these checks are actually in the correct place now, right with the other packet validity checks.

@NotAFile
Add better farbuild exploit mitigation
a98a3f1 
This mitigation used to be very flakey and had many false positives.
Inspired by 1AmYF's new fbpatch2 mitigation script, which is much less
better than the original fbpatch mitigation, we now record and check the
start location of the line build in addition to the end location.
@NotAFile NotAFile requested review from samuelallan72, feikname and godwhoa and removed request for samuelallan72 February 26, 2019 19:50
@godwhoa
Copy link
Member

godwhoa commented Feb 27, 2019

Tested it?

@NotAFile
Copy link
Member Author

I haven't tested if the farbuild exploit works with this this exact patch, but line building works and the check is identical to the existing one above. I did want to try adding some unit tests though.

@feikname feikname added PR: improvement This PR includes an enhancement to piqueserver cheating prevention labels Feb 27, 2019
@NotAFile
Copy link
Member Author

ftr, @godwhoa tested this and it worked

@NotAFile NotAFile merged commit dd4b8b8 into master Mar 16, 2019
@godwhoa godwhoa mentioned this pull request Mar 17, 2019
Closed
@samuelallan72 samuelallan72 deleted the improved-farbuild-mitigation branch May 29, 2019 00:56
@1AmYF 1AmYF mentioned this pull request Apr 19, 2020
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@godwhoa godwhoa godwhoa approved these changes

@feikname feikname Awaiting requested review from feikname

Assignees
No one assigned
Labels
cheating prevention PR: improvement This PR includes an enhancement to piqueserver
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@NotAFile @godwhoa @feikname