Mirror/Erupe
1
0
Fork 0
mirror of https://github.com/Mezeporta/Erupe.git synced 2026-03-22 07:32:32 +01:00
Code Issues Packages Projects Releases Wiki Activity

docs: log savedata corruption defense in CHANGELOG

Browse Source 
Merge migrations 0007 and 0008 into a single 0007_savedata_integrity
migration since neither has been released yet.
This commit is contained in:
Houmgaor
2026-03-17 19:30:43 +01:00
parent 01b829d0e9
commit 197164bc94
3 changed files with 11 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
CHANGELOG.md
View File

@@ -22,6 +22,9 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
### Added ### Added
- Savedata corruption defense (tier 1): bounded decompression in nullcomp prevents OOM from crafted payloads, bounds-checked delta patching prevents buffer overflows, compressed payload size limits (512KB) and decompressed size limits (1MB) reject oversized saves, rotating savedata backups (3 slots, 30-minute interval) provide recovery points
- Savedata corruption defense (tier 2): SHA-256 checksum on decompressed savedata verified on every load, atomic DB transactions wrapping character data + house data + hash + backup in a single commit, per-character save mutex preventing concurrent save races
- Database migration `0007_savedata_integrity` (rotating backup table + integrity checksum column)
- Tests for `logoutPlayer`, `saveAllCharacterData`, and transit message handlers - Tests for `logoutPlayer`, `saveAllCharacterData`, and transit message handlers
- Alliance `scanAllianceWithGuilds` test for missing guild (nil return from GetByID) - Alliance `scanAllianceWithGuilds` test for missing guild (nil return from GetByID)
- Handler dispatch table test verifying all expected packet IDs are mapped - Handler dispatch table test verifying all expected packet IDs are mapped

9
server/migrations/sql/0007_savedata_backups.sql → server/migrations/sql/0007_savedata_integrity.sql
View File

@@ -1,4 +1,6 @@
-- Rotating savedata backup table (3 slots per character, time-gated). -- Savedata integrity protections: rotating backups + checksum verification.
-- Rotating backup table (3 slots per character, time-gated).
-- Prevents permanent data loss from save corruption by keeping recent snapshots. -- Prevents permanent data loss from save corruption by keeping recent snapshots.
CREATE TABLE IF NOT EXISTS savedata_backups ( CREATE TABLE IF NOT EXISTS savedata_backups (
char_id INTEGER NOT NULL REFERENCES characters(id) ON DELETE CASCADE, char_id INTEGER NOT NULL REFERENCES characters(id) ON DELETE CASCADE,
@@ -7,3 +9,8 @@ CREATE TABLE IF NOT EXISTS savedata_backups (
saved_at TIMESTAMPTZ NOT NULL DEFAULT now(), saved_at TIMESTAMPTZ NOT NULL DEFAULT now(),
PRIMARY KEY (char_id, slot) PRIMARY KEY (char_id, slot)
); );
-- SHA-256 checksum column for savedata integrity verification.
-- Stored as 32 raw bytes (not hex). NULL means no hash computed yet
-- (backwards-compatible with existing data).
ALTER TABLE characters ADD COLUMN IF NOT EXISTS savedata_hash BYTEA;

4
server/migrations/sql/0008_savedata_hash.sql
View File

@@ -1,4 +0,0 @@
-- Add SHA-256 checksum column for savedata integrity verification.
-- Stored as 32 raw bytes (not hex). NULL means no hash computed yet
-- (backwards-compatible with existing data).
ALTER TABLE characters ADD COLUMN IF NOT EXISTS savedata_hash BYTEA;