From ba56db2dfd61d9bb4af45bcad982a72a279832f5 Mon Sep 17 00:00:00 2001 From: Miran Date: Mon, 25 Nov 2024 02:03:08 +0100 Subject: [PATCH 1/4] Add error checks to OPCODE_READ_PARAM_STRING_FORMATTED and OPCODE_READ_PARAMS_FORMATTED macros. --- cleo_sdk/CLEO_Utils.h | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/cleo_sdk/CLEO_Utils.h b/cleo_sdk/CLEO_Utils.h index 3555d8e6..93f42f24 100644 --- a/cleo_sdk/CLEO_Utils.h +++ b/cleo_sdk/CLEO_Utils.h @@ -691,9 +691,11 @@ namespace CLEO #define OPCODE_READ_PARAM_STRING_LEN(_varName, _maxLen) char _buff_##_varName[_maxLen + 1]; const char* ##_varName = _readParamText(thread, _buff_##_varName, _maxLen + 1); if(##_varName != nullptr) ##_varName = _buff_##_varName; if(!_paramWasString()) { return OpcodeResult::OR_INTERRUPT; } #define OPCODE_READ_PARAM_STRING_FORMATTED(_varName) char _buff_format_##_varName[MAX_STR_LEN + 1]; const char* _format_##_varName = _readParamText(thread, _buff_format_##_varName, MAX_STR_LEN + 1); if(!_paramWasString()) { return OpcodeResult::OR_INTERRUPT; } \ - char _varName[2 * MAX_STR_LEN + 1]; char* _varName##Ok = CLEO_ReadParamsFormatted(thread, _buff_format_##_varName, _varName, sizeof(_varName)); + char _varName[2 * MAX_STR_LEN + 1]; char* _varName##Ok = CLEO_ReadParamsFormatted(thread, _buff_format_##_varName, _varName, sizeof(_varName)); \ + if(_varName##Ok == nullptr) { SHOW_ERROR("Invalid formatted string in script %s \nScript suspended.", CLEO::ScriptInfoStr(thread).c_str()); return thread->Suspend(); } - #define OPCODE_READ_PARAMS_FORMATTED(_format, _varName) char _varName[2 * MAX_STR_LEN + 1]; char* _varName##Ok = CLEO_ReadParamsFormatted(thread, _format, _varName, sizeof(_varName)); + #define OPCODE_READ_PARAMS_FORMATTED(_format, _varName) char _varName[2 * MAX_STR_LEN + 1]; char* _varName##Ok = CLEO_ReadParamsFormatted(thread, _format, _varName, sizeof(_varName)); \ + if(_varName##Ok == nullptr) { SHOW_ERROR("Invalid formatted string in script %s \nScript suspended.", CLEO::ScriptInfoStr(thread).c_str()); return thread->Suspend(); } #define OPCODE_READ_PARAM_FILEPATH(_varName) char _buff_##_varName[512]; const char* ##_varName = _readParamText(thread, _buff_##_varName, 512); if(##_varName != nullptr) ##_varName = _buff_##_varName; if(_paramWasString()) CLEO_ResolvePath(thread, _buff_##_varName, 512); else return OpcodeResult::OR_INTERRUPT; \ if(!FilepathIsSafe(thread, ##_varName)) { SHOW_ERROR("Forbidden file path '%s' outside game directories in script %s \nScript suspended.", ##_varName, ScriptInfoStr(thread).c_str()); return thread->Suspend(); } From 9f46ec74535d99504189f26a14768d3e4da6967b Mon Sep 17 00:00:00 2001 From: Miran Date: Mon, 25 Nov 2024 02:04:12 +0100 Subject: [PATCH 2/4] Add missing details to error message. --- source/CCustomOpcodeSystem.cpp | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/source/CCustomOpcodeSystem.cpp b/source/CCustomOpcodeSystem.cpp index 58ecbe4e..c64bf36b 100644 --- a/source/CCustomOpcodeSystem.cpp +++ b/source/CCustomOpcodeSystem.cpp @@ -481,7 +481,7 @@ namespace CLEO // invalid input arguments if(outputStr == nullptr || len == 0) { - LOG_WARNING(thread, "ReadFormattedString invalid input arg(s)"); + LOG_WARNING(thread, "ReadFormattedString invalid input arg(s) in script %s", ((CCustomScript*)thread)->GetInfoStr().c_str()); SkipUnusedVarArgs(thread); return -1; // error } From 661361e7767ce06585a9fabafca64a6299bac7fa Mon Sep 17 00:00:00 2001 From: Miran Date: Mon, 25 Nov 2024 02:05:15 +0100 Subject: [PATCH 3/4] Add check for unfinished format specifier. --- source/CCustomOpcodeSystem.cpp | 11 ++++++++++- 1 file changed, 10 insertions(+), 1 deletion(-) diff --git a/source/CCustomOpcodeSystem.cpp b/source/CCustomOpcodeSystem.cpp index c64bf36b..a55e34a6 100644 --- a/source/CCustomOpcodeSystem.cpp +++ b/source/CCustomOpcodeSystem.cpp @@ -498,10 +498,19 @@ namespace CLEO if (*iter == '%') { + // end of format string + if (iter[1] == '\0') + { + LOG_WARNING(thread, "ReadFormattedString encountered incomplete format specifier in script %s", ((CCustomScript*)thread)->GetInfoStr().c_str()); + SkipUnusedVarArgs(thread); + return -1; // error + } + + // escaped % character if (iter[1] == '%') { if (written++ >= len) goto _ReadFormattedString_OutOfMemory; - *outIter++ = '%'; /* "%%"->'%' */ + *outIter++ = '%'; iter += 2; continue; } From 929a1a4c493a1fadf2f8e1365d8b118473894807 Mon Sep 17 00:00:00 2001 From: Miran Date: Mon, 25 Nov 2024 02:06:48 +0100 Subject: [PATCH 4/4] Use macros for reading formatted strings. --- cleo_plugins/DebugUtils/DebugUtils.cpp | 7 +++---- cleo_plugins/FileSystemOperations/FileSystemOperations.cpp | 3 +-- 2 files changed, 4 insertions(+), 6 deletions(-) diff --git a/cleo_plugins/DebugUtils/DebugUtils.cpp b/cleo_plugins/DebugUtils/DebugUtils.cpp index f96e700b..bd999f82 100644 --- a/cleo_plugins/DebugUtils/DebugUtils.cpp +++ b/cleo_plugins/DebugUtils/DebugUtils.cpp @@ -232,8 +232,8 @@ class DebugUtils } else // breakpoint formatted name string { - auto format = CLEO_ReadStringOpcodeParam(thread); - name = CLEO_ReadParamsFormatted(thread, format); + OPCODE_READ_PARAM_STRING_FORMATTED(nameStr); + name = nameStr; } pausedScripts.emplace_back(thread, name.c_str()); @@ -262,8 +262,7 @@ class DebugUtils return OR_CONTINUE; } - auto format = CLEO_ReadStringOpcodeParam(thread); - auto message = CLEO_ReadParamsFormatted(thread, format); + OPCODE_READ_PARAM_STRING_FORMATTED(message); CLEO_Log(eLogLevel::Debug, message); return OR_CONTINUE; diff --git a/cleo_plugins/FileSystemOperations/FileSystemOperations.cpp b/cleo_plugins/FileSystemOperations/FileSystemOperations.cpp index 6b09d0b1..140aabfc 100644 --- a/cleo_plugins/FileSystemOperations/FileSystemOperations.cpp +++ b/cleo_plugins/FileSystemOperations/FileSystemOperations.cpp @@ -355,8 +355,7 @@ class FileSystemOperations static OpcodeResult WINAPI opcode_0AD9(CRunningScript* thread) { OPCODE_READ_PARAM_FILE_HANDLE(handle); - OPCODE_READ_PARAM_STRING(format); - static char text[4 * MAX_STR_LEN]; CLEO_ReadParamsFormatted(thread, format, text, MAX_STR_LEN); + OPCODE_READ_PARAM_STRING_FORMATTED(text); auto ok = File::writeString(handle, text); if (!ok)