DDraceNetwork - developer

DDraceNetwork

Development / developer

Development discussion. Logged to https://ddnet.tw/irclogs/ Connected with DDNet's IRC channel, Matrix room and GitHub repositories — IRC: #ddnet on Quakenet | Matrix: #ddnet-developer:matrix.org GitHub: https://github.com/ddnet

Between 2021-05-26 00:00:00Z and 2021-05-27 00:00:00Z

Nooback

should be cl_download_skin VALUE1? and then it works? (edited)

lmao the link

https://m1racles.com/

M1RACLES: An Apple M1 Vulnerability

M1RACLES (CVE-2021-30747) is a covert channel vulnerability in the Apple Silicon “M1” chip.

07:13

A flaw in the design of the Apple Silicon “M1” chip allows any two applications running under an OS to covertly exchange data between them, without using memory, sockets, files, or any other normal operating system features. This works between processes running as different users and under different privilege levels, creating a covert channel for surreptitious data exchange.

>

The vulnerability is baked into Apple Silicon chips, and cannot be fixed without a new silicon revision.

07:13

gg apple

07:14

The only mitigation available to users is to run your entire OS as a VM.

07:16

lmao

07:16

Poking fun at how ridiculous infosec clickbait vulnerability reporting has become lately. Just because it has a flashy website or it makes the news doesn't mean you need to care.

07:16

i guess its not that bad

07:16

justatest

07:18

https://mastodon.sdf.org/@kline/106299403921451814 the freenode takeover started for real now

kline 🏴󠁧󠁢󠁳󠁣󠁴󠁿

(@kline@mastodon.sdf.org)

andrew lee just seized over 700 channels on freenode because they mentioned libera.chat in their topic. This includes projects like openbsd, wikimedia, FOSDEM, etc. https://archive.is/uHw1g shows 720 channels that match what is being checked. here's an example log: https://gist.github.com/pushcx/ab2a1d5b1d18e964c581ef18ccb3a79f boost this if...

creating a covert channel for surreptitious data exchange

07:32

it's not a bug, it's a feature

how to get my client id on server from client side in code

it's displayed in ctrl-shift-d so check the code for that

09:51

or for cl_show_ids 1

@Ryozuki maybe the lesson should be to read before you repost

deen

it's displayed in ctrl-shift-d so check the code for that

this is a bit confusing

Image attachment

deen

@Ryozuki maybe the lesson should be to read before you repost

yep

@Anime.pdf in gameclient.cpp: m_Snap.m_pLocalInfo->m_ClientID

thx but what about m_Snap.m_LocalClientID

10:25

this must work too i think (edited)

10:25

maybe

10:25

perhaps

I'm not sure if that's the same id honestly

10:28

but sounds reasonable, you can try

[ddnet/ddnet] Issue opened: #3843 ddnet_settings.cfg can get overwritten on Windows

Only possible way I see this happen, is that the config file fails to read, which then loads a clean config. Saving should be fine, as I explicitly asked, if the config he uses ever was saved/loaded correctly before(and he has no .tmp files) The person who reported that, said he didnt start as admin and only used 15.2.5 before... He's also on Win10 Pro

[ddnet/ddnet] Pull request opened: #3844 Add UI Ex class to share common ui implementations

Between menus and editor for example Currently only did DoEditBox, as this created crashes in the editor fixes #3395 It's copy and paste from the implementation of CMenus, except for 4 lines, which i'll mark below

Checklist

[x] Tested the change ingame
[ ] Provided screenshots if it is a visual change
[ ] Tested in combination with possibly related configuration options
[ ] Written a unit test if it works standalone, system.c especially
[ ] Considered possible ...

Ryozuki

https://mastodon.sdf.org/@kline/106299403921451814 the freenode takeover started for real now

Knew it was a matter of time before he actually started stopping people. Rich people never change

[ddnet:master] 2 new commits

b7adc5a Add UI Ex class to share common ui implementations - Jupeyy fbf3d6e Merge #3844 - bors[bot]

13:28

[ddnet/ddnet] Issue closed: #3395 Infinite loop in editor

13:28

[ddnet/ddnet] Pull request closed: #3844 Add UI Ex class to share common ui implementations

https://lwn.net/Articles/857252/

@Learath2 shits on fire https://www.gentoo.org/news/2021/05/26/gentoo-freenode-channels-hijacked.html

Gentoo Freenode channels have been hijacked – Gentoo Linux

News and information from Gentoo Linux

16:52

https://archlinux.org/news/move-of-official-irc-channels-to-liberachat/

Yeah great way to ensure everyone skips town

16:54

They were really stupid with this

is that even legal xd

Btw whoever owns our channel on freenode should probably just kick everyone and close it

Learath2

Btw whoever owns our channel on freenode should probably just kick everyone and close it

i think they dont care about ## yet

16:57

idk who owns it

16:57

im not even connected to freenode now :D

They did seize ##hntop

oh

But it’s not that they would seize our 5p channel. It’s just that I’d rather not be associated with these clowns if possible

maybe heinrich owns it

no one owns it afaik, but there are only 3 matrix users in that room except for me and the bridge

17:00

I'd kill the bridge on freenode once matrix access is ensured (e.g. by matrix working with libera.chat), effectively making that channel obsolete

they are working on it iirc

yes

it triggers me a bit that the irc bridge highlights me on the username

17:03

but i don want to mute it if someone says Ryozuki

add <, > to the list of characters that don't break words

17:04

(that's how I solved it, at least)

on weechat?

17:04

if u know how to do it i appreciate it

17:04

https://gist.github.com/TheFlyingCorpse/c7486531ea74ef897220e0eef4edcc0f

Avoid highlights in WeeChat in a specific channel

Avoid highlights in WeeChat in a specific channel. GitHub Gist: instantly share code, notes, and snippets.

17:05

maybe this works

https://weechat.org/files/doc/stable/weechat_user.en.html#option_weechat.look.word_chars_highlight

test

17:06

yay

17:06

that worked

17:06

thanks

17:06

i guess its not a default because some irc clients use this to highlight users?

it's not a default because < isn't really considered a word character, I think

ah

this is just a hack to fix the highlights

test Ryozuki

17:08

ok nice

17:08

test passed

17:09

btw the wiki main page has been accessed 13,151 times.

17:09

according to the plugin

17:09

poggers

hello which command i need to move all my new work to another branch with git

19:44

branch with work = origin and empty branch = newb

is it staged already?

yes

unstage it, stash, git checkout newb

19:48

stash apply

lmao i dont know how i create master and origin

Image attachment

19:49

this is wierd

you aren't using CLI?

yes

well gl i know nothing about graphical github interfaces lol

when i try to git checkou main and after push that said an error

idk what the error is

19:50

can you post it?

yeah wait

19:51

hmm that said git push --set-upstream origin main or something like that

19:52

fatal: The current branch origin has no upstream branch. To push the current branch and set the remote as upstream, use git push --set-upstream origin origin

idk what branches you want but

19:53

should probably just refer to main

1

2

did you run git push --set-upstream origin main ?

1

yes

1

sure

and when you git push -u ?

1

1

1

Everything up-to-date Branch 'main' set up to track remote branch 'main' from 'origin'.

19:56

but 1 files are missing

19:57

ok i will sleep, im pretty sure tomorow everything i need will be move in main branch

19:57

troll

just @ me when you wake up :D

1

1

1

1

1

1

@jao i found how modern discord bots work

Image attachment

20:26

poggers

nice

if u type /

20:26

u can select the command and from which bot it is

20:26

u dont need $ anymore

20:27

Image attachment

so there is API for registering commands for autocompletion?

20:27

how new is this?

ye

20:27

and u dont need weird prefixes

20:27

its some months old i think

yeah so much better

20:27

cool

20:28

no more help pages

@Ryozuki make it for ddnet

i dont like python much

20:47

u can do it

i can do it

20:47

uses d.py i assume?

or maybe you could fix /swap

[ddnet/ddnet] Pull request closed: #3772 Add client-side HTTP server info

@heinrich5991 @deen I would like to test the http server info too, what has to be done on server side?

21:17

I hope it fixes problems related to DoS on my server

there's no server side to it yet @fokkonaut

21:29

that's just the next step

How is it going to look like tho? I saw some PINGEX stuff in the server code, for example

21:29

What will change for the serverinfo on serverside

everything works the same way for servers for now

21:29

it's now the masterserver that contacts you for server info

21:29

via the same protocol as clients did before

so i can simply only send out serverinfo to the master?

21:30

and not to anyone else?

yes, but the masterserver might not have an easily identifiable IP address, it's behind a proxy so the actual IP address isn't disclosed

21:30

the next step™ will fix this properly

Will I need curl or stuff like that? I dont have that in my 0.7 codebase

yes, it'll require https (e.g. by using curl) for the next step

21:31

but the backwards compatibility will remain, so you don't have to change anything

fuck xD

21:32

eh

21:32

what do you mean by that? I want to specifically ONLY support the http serverinfo

21:33

you wont see my server in the serverlist currently via DDNet client, you have to verify your IP address manually first in order to be able to see the server or to connect

21:33

(via https://f.zillyhuhn.com)

you can try only responding to the masterserver (but I can't make guarantees about it not changing)

How would I do that?

block info requests from everything but what you believe the masters IP address is

[ddnet-web:pr-15.5] 1 new commit

5fa708a Version 15.5 - def-

21:35

[ddnet/ddnet-web] New branch created: pr-15.5

And how do I "believe" this?

I can tell you its current address, but I don't know if it'll change or not

Okay, thanks

[ddnet/ddnet-web] Pull request opened: #132 Version 15.5

Waiting for RC to finish

193.27.14.89 @fokkonaut

thanks

[ddnet-web:pr-15.5] 1 new commit

df8cd97 Version 15.5 - def-

21:43

[ddnet-web:pr-15.5] 1 new commit

926278c Version 15.5 - def-

21:47

[ddnet/ddnet] Pull request opened: #3845 Update russian.txt

Checklist

[ ] Tested the change ingame
[ ] Provided screenshots if it is a visual change
[ ] Tested in combination with possibly related configuration options
[ ] Written a unit test if it works standalone, system.c especially
[ ] Considered possible null pointers and out of bounds array indexing
[ ] Changed no physics that affect existing maps
[ ] Tested the change with [ASan+UBSan or valgrind's memcheck](https://github.com/ddnet/ddnet/#using-addresssanitizer--u...

21:52

[ddnet:15.5-rc1] 1 new commit

f5ca409 Version 15.5 - def-

21:56

[ddnet/ddnet] Pull request opened: #3846 Version 15.5

!screenshot-20210526@231611 DDNet 15.5 is supposed to release in 1 week, assuming no bad bugs are found. Please test Release Candidate 1 to prevent problems being only discovered after release. Report bugs in the #bugs channel on DDNet Discord or directly on Github:

Windows 32bit: https://ddnet.tw/downloads/DDNet-15.5-rc1-win32.zip
Windows 64bit: https://ddnet.tw/downloads/DDNet-15...

@deen can u send the markdown of that comment in a pm pls?

22:00

monkalaugh

Which one, in Discord or github?

github

[ddnet:master] 2 new commits

607ffaf Update russian.txt - gerdoe-jr 0d0f22a Merge #3845 - bors[bot]

22:23

[ddnet/ddnet] Pull request closed: #3845 Update russian.txt

@heinrich5991 why is the http serverinfo protocol not via tcp?

22:28

That would verify IP addresses before connecting

22:28

a pre auth via tcp

22:29

Or will that come?

I don't follow. HTTPS works over TCP, the client fetches the server info from the masterserver via HTTPS

22:29

clients will not contact indivdual servers anymore, because that leaks their IP address to all currently registered servers

I mean, to verify at a specific server directly

22:30

When wanting to connect

22:30

the client should make a pre auth via tcp, to validate the ip is valid :D

22:30

and not spoofed

fokkonaut

(via https://f.zillyhuhn.com)

thats what this makes

ah, because server hosters have support for DoS protection of TCP?

Anderson told me, he would just block udp until tcp is verified

22:31

So a tcp pre auth is what we need, according to him

22:32

I cant register my server for publicity in 0.6 anymore, since my server is getting hard ddos constantly

22:32

Thats why the website even exists

22:34

I would really like you and Anderson to talk about all this, while 15.5 is not released and while you are working on the whole system

this isn't really related to HTTPS masters as far as I can tell

22:37

HTTPS masters allow the client to fetch the server list from a simple HTTPS URL https://master1.ddnet.tw/ddnet/15/servers.json

22:37

that's really all there is. connection establishment isn't modified by this

i see

Exported 187 message(s)