LÖVE


https://love2d.org./forums/

how does Enet handle large packets? i've read up on a vulnerability with it.

https://love2d.org./forums/viewtopic.php?t=86405

Page 1 of 1

how does Enet handle large packets? i've read up on a vulnerability with it.

Posted: Fri Feb 22, 2019 4:33 pm
by pyceanx
i read it specifically from here:
https://www.cvedetails.com/vulnerabilit ... /Enet.html

i'm afraid of people easily crashing my matchmaking servers, so i'd like to know if this is still an issue i should worry about. Enet (or at least how it's implemented in Love2D) doesn't seem to have a setting for capping packet sizes.

i'm wondering if there's some kind of workaround or if it's even an issue. i thought of making a thread to handle Enet servicing, but if Enet did hang, i have no way to kill the thread...

i'd appreciate if someone could ease my concerns here.

Re: how does Enet handle large packets? i've read up on a vulnerability with it.

Posted: Sat Feb 23, 2019 2:02 am
by slime
Those CVEs say they only apply to enet versions from 2005 and earlier, whereas love uses a much more recent version.

Re: how does Enet handle large packets? i've read up on a vulnerability with it.

Posted: Sun Feb 24, 2019 12:22 am
by pyceanx
thank you for the reply. i can accept that the vulnerability has likely been fixed. but i'm still concerned about dealing with large packets.

to my understanding, the only way to deal with it is by setting the bandwidth limit. but i'd imagine someone could still.. "clog" the other clients' messages, as the server handled the big one? :death: maybe. i'm not very familiar with the inner workings of Enet.
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited