Add teleport/speedhack mitigation.

This commit is contained in:
Avi Weinstock 2021-04-14 17:55:19 -04:00
parent 50d0314a75
commit bf6ac56eb0
2 changed files with 47 additions and 5 deletions

View File

@ -33,6 +33,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
- Added /disconnect_all_players admin command - Added /disconnect_all_players admin command
- Added disconnectall CLI command - Added disconnectall CLI command
- One handed weapons can now be used and found in the world - One handed weapons can now be used and found in the world
- Players can now opt-in to server-authoritiative physics in gameplay settings.
### Changed ### Changed
@ -56,6 +57,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
- Item tooltips during trades will now inform the user of what ctrl-click and shift-click do - Item tooltips during trades will now inform the user of what ctrl-click and shift-click do
- International keyboards can now display more key names on Linux and Windows instead of `Unknown`. - International keyboards can now display more key names on Linux and Windows instead of `Unknown`.
- There is now a brief period after a character leaves the world where they cannot rejoin until their data is saved - There is now a brief period after a character leaves the world where they cannot rejoin until their data is saved
- Certain uses of client-authoritative physics now subject the player to server-authoritative physics.
### Removed ### Removed

View File

@ -12,7 +12,7 @@ use common_ecs::{Job, Origin, Phase, System};
use common_net::msg::{ClientGeneral, PresenceKind, ServerGeneral}; use common_net::msg::{ClientGeneral, PresenceKind, ServerGeneral};
use common_sys::state::{BlockChange, BuildAreas}; use common_sys::state::{BlockChange, BuildAreas};
use specs::{Entities, Join, Read, ReadExpect, ReadStorage, Write, WriteStorage}; use specs::{Entities, Join, Read, ReadExpect, ReadStorage, Write, WriteStorage};
use tracing::{debug, trace}; use tracing::{debug, trace, warn};
impl Sys { impl Sys {
#[allow(clippy::too_many_arguments)] #[allow(clippy::too_many_arguments)]
@ -107,12 +107,52 @@ impl Sys {
if matches!(presence.kind, PresenceKind::Character(_)) if matches!(presence.kind, PresenceKind::Character(_))
&& force_updates.get(entity).is_none() && force_updates.get(entity).is_none()
&& healths.get(entity).map_or(true, |h| !h.is_dead) && healths.get(entity).map_or(true, |h| !h.is_dead)
&& player_physics_setting.map_or(true, |s| s.client_authoritative()) && player_physics_setting
.as_ref()
.map_or(true, |s| s.client_authoritative())
{ {
let mut reject_update = false;
if let Some(mut setting) = player_physics_setting {
// If we detect any thresholds being exceeded, force server-authoritative
// physics for that player. This doesn't detect subtle hacks, but it
// prevents blatent ones and forces people to not debug physics hacks on the
// live server (and also mitigates some floating-point overflow crashes)
if let Some(prev_pos) = positions.get(entity) {
let value_squared = prev_pos.0.distance_squared(pos.0);
if value_squared > (500.0f32).powf(2.0) {
setting.server_optout = true;
reject_update = true;
warn!(
"PlayerPhysics position exceeded {:?} {:?} {:?}",
prev_pos,
pos,
value_squared.sqrt()
);
}
}
if vel.0.magnitude_squared() > (500.0f32).powf(2.0) {
setting.server_optout = true;
reject_update = true;
warn!(
"PlayerPhysics velocity exceeded {:?} {:?}",
pos,
vel.0.magnitude()
);
}
}
if reject_update {
warn!(
"Rejected PlayerPhysics update {:?} {:?} {:?} {:?}",
pos, vel, ori, maybe_player
);
} else {
let _ = positions.insert(entity, pos); let _ = positions.insert(entity, pos);
let _ = velocities.insert(entity, vel); let _ = velocities.insert(entity, vel);
let _ = orientations.insert(entity, ori); let _ = orientations.insert(entity, ori);
} }
}
}, },
ClientGeneral::BreakBlock(pos) => { ClientGeneral::BreakBlock(pos) => {
if let Some(comp_can_build) = can_build.get(entity) { if let Some(comp_can_build) = can_build.get(entity) {