SmaugMuds.org
Files Forum Members Search Help Hierarchy AFKMud SmaugFUSS GDB Tutorial
Login
User Name:

Password:



Register
Forgot your password?
Vote for Us!
Recent Posts
Trying to get practice list to display ONLY spells
Apr 20, 2018, 1:35 pm
By joeyfogas
increasing output width
Apr 19, 2018, 6:38 pm
By Remcon
samson's qbits
Apr 15, 2018, 6:30 pm
By joeyfogas
obj_from_char NULL ch issues
Apr 13, 2018, 5:19 pm
By Vladaar
Copyover with Kavir protocol snippet
Apr 3, 2018, 8:14 pm
By Remcon
Recent Uploads
tintin++ ogg sound player script for linux
Author: Robert Smith
Submitted by: Vladaar
6Dragons ogg Soundpack
Author: Vladaar
Submitted by: Vladaar
6Dragons 4.4
Author: Vladaar
Submitted by: Vladaar
LoP 1.46
Author: Remcon
Submitted by: Remcon
LOP 1.45
Author: Remcon
Submitted by: Remcon
Top Posters
Samson (3643)
Remcon (1873)
Kayle (1195)
David Haley (903)
Conner (870)
Top Uploaders
Samson (158)
Kayle (133)
Hanaisse (36)
Gage (33)
Remcon (32)
Users Online
CommonCrawl, Google, Yandex, DotBot

Members: 0
Guests: 7
Stats
Files
Topics
Posts
Members
Newest Member 481
3,734
19,366
618
Micheal64X Today's Birthdays
There are no member birthdays today.
Related Links
» SmaugMuds.org » Bugfix Lists » SmaugFUSS Bugfix List » [Bug] fread_mobile function h...
Forum Rules | Mark all | Recent Posts

[Bug] fread_mobile function has several problems
< Newer Topic :: Older Topic >

Pages:<< prev 1 next >>
Post is unread #1 May 2, 2006, 6:44 pm
Go to the top of the page
Go to the bottom of the page

Samson
Black Hand
GroupAdministrators
Posts3,643
JoinedJan 1, 2002

Bug: fread_mobile function has several problems
Danger: Critical - The most severe problem leads to crashes during pfile loads
Found by: Remcon
Fixed by: Remcon/Samson

---

save.c, fread_mobile

Replace the entire function with this new one: 
CHAR_DATA *fread_mobile( FILE * fp )
{
   CHAR_DATA *mob = NULL;
   const char *word;
   bool fMatch;
   int inroom = 0;
   ROOM_INDEX_DATA *pRoomIndex = NULL;

   word = ( feof( fp ) ? "EndMobile" : fread_word( fp ) );

   if( word[0] == '\0' )
   {
      bug( "%s: EOF encountered reading file!", __FUNCTION__ );
      word = "EndMobile";
   }

   if( !strcmp( word, "Vnum" ) )
   {
      int vnum;

      vnum = fread_number( fp );
      mob = create_mobile( get_mob_index( vnum ) );
      if( !mob )
      {
         for( ;; )
         {
            word = ( feof( fp ) ? "EndMobile" : fread_word( fp ) );

            if( word[0] == '\0' )
            {
               bug( "%s: EOF encountered reading file!", __FUNCTION__ );
               word = "EndMobile";
            }

            /*
             * So we don't get so many bug messages when something messes up
             * * --Shaddai 
             */
            if( !strcmp( word, "EndMobile" ) )
               break;
         }
         bug( "%s: No index data for vnum %d", __FUNCTION__, vnum );
         return NULL;
      }
   }
   else
   {
      for( ;; )
      {
         word = ( feof( fp ) ? "EndMobile" : fread_word( fp ) );

         if( word[0] == '\0' )
         {
            bug( "%s: EOF encountered reading file!", __FUNCTION__ );
            word = "EndMobile";
         }

         /*
          * So we don't get so many bug messages when something messes up
          * * --Shaddai 
          */
         if( !strcmp( word, "EndMobile" ) )
            break;
      }
      bug( "%s: Vnum not found", __FUNCTION__ );
      return NULL;
   }

   for( ;; )
   {
      word = ( feof( fp ) ? "EndMobile" : fread_word( fp ) );

      if( word[0] == '\0' )
      {
         bug( "%s: EOF encountered reading file!", __FUNCTION__ );
         word = "EndMobile";
      }

      fMatch = FALSE;
      switch ( UPPER( word[0] ) )
      {
         case '*':
            fMatch = TRUE;
            fread_to_eol( fp );
            break;
         case '#':
            if( !strcmp( word, "#OBJECT" ) )
               fread_obj( mob, fp, OS_CARRY );
            break;

         case 'D':
            KEY( "Description", mob->description, fread_string( fp ) );
            break;

         case 'E':
            if( !strcmp( word, "EndMobile" ) )
            {
               if( inroom == 0 )
                  inroom = ROOM_VNUM_TEMPLE;
               pRoomIndex = get_room_index( inroom );
               if( !pRoomIndex )
                  pRoomIndex = get_room_index( ROOM_VNUM_TEMPLE );
               char_to_room( mob, pRoomIndex );
               return mob;
            }
            break;

         case 'F':
            KEY( "Flags", mob->act, fread_bitvector( fp ) );
            break;

         case 'L':
            KEY( "Long", mob->long_descr, fread_string( fp ) );
            break;

         case 'N':
            KEY( "Name", mob->name, fread_string( fp ) );
            break;

         case 'P':
            KEY( "Position", mob->position, fread_number( fp ) );
            break;

         case 'R':
            KEY( "Room", inroom, fread_number( fp ) );
            break;

         case 'S':
            KEY( "Short", mob->short_descr, fread_string( fp ) );
            break;
      }
      if( !fMatch )
      {
         bug( "%s: no match: %s", __FUNCTION__, word );
         fread_to_eol( fp );
      }
   }
}


This fix covers several spots where this function could run into trouble. Most of them deal with reading past the end of file, which has been shown to not be very reliable and will often result in infinite looping. The remaing problem being that if a vnum is not found, the code will attempt to extract a NULL mob, which can lead to a crash.
       
Pages:<< prev 1 next >>