You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This change modularizes a large, self-contained slice of the client: demo recording and playback (.dm_* files, record / demo / stoprecord console commands, and the logic that copies live server packets into an open demo file).
What changed
Newsrc/client/cl_demo.c and cl_demo.h — all demo I/O, command registration, and helpers that previously lived in cl_main.c.
cl_main.c — calls CL_Demo_InitCommands() / CL_Demo_ShutdownCommands() from CL_Init / CL_Shutdown, and CL_Demo_WriteServerPacket() from CL_PacketEvent when recording a live connection.
Docs — docs/ARCHITECTURE.md lists cl_demo under src/client/.
Behavior
No intended gameplay or protocol changes: public symbols CL_ReadDemoMessage and CL_StopRecord_f remain for existing call sites (cl_parse.c, cl_cgame.c).
Move record/demo/stoprecord commands, demo file I/O, and net-packet
demowriting from cl_main.c into cl_demo.c. cl_main calls
CL_Demo_InitCommands/Shutdown and CL_Demo_WriteServerPacket for live
recording. Public entry points (CL_ReadDemoMessage, CL_StopRecord_f)
remain in cl_demo.c for cl_parse and cgame.
Co-authored-by: Tim Fox <timfox@outlook.com>
The reason will be displayed to describe this comment to others. Learn more.
Call Forward+ upload before entering render pass
vk_forward_plus_upload_refdef() records a transfer barrier and vkCmdCopyBuffer, but this call site runs after RB_BeginDrawingView(). In this renderer path the command buffer is already inside the main render pass (started in vk_begin_frame()), so recording transfer commands here violates Vulkan command-validity rules and can trigger validation errors or device loss when r_forwardPlus=1. Move the upload to a point before the main pass begins (or outside any active render pass).
The reason will be displayed to describe this comment to others. Learn more.
Stale comment
Security review complete: no high-confidence medium-or-higher vulnerabilities found in the modified code.
Reviewed the demo command inputs, demo file open/write paths, pure-FS bypass usage, and moved playback/recording code against the prior implementation. The risky surfaces identified here appear to be pre-existing behavior preserved by the refactor rather than newly introduced or exposed by this PR. No new inline security findings.
The reason will be displayed to describe this comment to others. Learn more.
Security review complete. I did not find any high-confidence medium, high, or critical vulnerabilities introduced by this PR.
The demo filename/file parsing paths and nextdemo command execution remain the same behavior as the code previously in cl_main.c; this refactor primarily moves that logic into cl_demo.c and replaces call sites with module init/shutdown and CL_Demo_WriteServerPacket() delegation. No new finding comments are being left.
Sent by Cursor Automation: Find vulnerabilities
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
![chatgpt-codex-connector[bot]](https://avatars.githubusercontent.com/in/1144995?s=60&v=4){kind=small}
![cursor[bot]](https://avatars.githubusercontent.com/in/1210556?s=60&v=4){kind=small}
Summary
This change modularizes a large, self-contained slice of the client: demo recording and playback (
.dm_*files,record/demo/stoprecordconsole commands, and the logic that copies live server packets into an open demo file).What changed
src/client/cl_demo.candcl_demo.h— all demo I/O, command registration, and helpers that previously lived incl_main.c.cl_main.c— callsCL_Demo_InitCommands()/CL_Demo_ShutdownCommands()fromCL_Init/CL_Shutdown, andCL_Demo_WriteServerPacket()fromCL_PacketEventwhen recording a live connection.docs/ARCHITECTURE.mdlistscl_demoundersrc/client/.Behavior
No intended gameplay or protocol changes: public symbols
CL_ReadDemoMessageandCL_StopRecord_fremain for existing call sites (cl_parse.c,cl_cgame.c).Validation
./scripts/compile_engine.sh vulkan(Release)ctestinbuild-vk-Release— 19/19 passed