mas-bandwidth / netcode

Secure client/server connections over UDP
BSD 3-Clause "New" or "Revised" License
2.44k stars 191 forks source link

Add replay protection DoS vulnerability fix #85

Closed RandyGaul closed 5 years ago

RandyGaul commented 5 years ago

Fixes a vulnerability where players can potentially be DoS'd by packets crafted with large sequence numbers. The fix simply separates replay protection into a read only part (the culling part), and a track and write max sequence part that happens after a successful decryption.

More details: https://github.com/networkprotocol/netcode.io/issues/86

gafferongames commented 4 years ago

This has already been fixed in master.