Rocks'n'Diamonds

Talk and discussions around the game "Rocks'n'Diamonds".
https://www.artsoft.org/forum/

Segfault when taking snapshot

https://www.artsoft.org/forum/viewtopic.php?t=2002

Page 1 of 1

Segfault when taking snapshot

Posted: Wed Mar 24, 2010 4:30 am
by snert
When I press F1 and confirm that I want to override the old tape, RnD 3.2.6.1 writes past the end of an array, tries to free() an invalid pointer, and segfaults.

The fix:

Code: Select all

--- src/game.c.orig	2010-03-23 22:57:15.000000000 +1100
+++ src/game.c	2010-03-23 22:56:56.000000000 +1100
@@ -16401,8 +16401,8 @@
       int graphic = el2img(element);
       int anim_mode = graphic_info[graphic].anim_mode;
 
-      engine_snapshot_rnd.belt_graphic[i * 4 + j] = graphic;
-      engine_snapshot_rnd.belt_anim_mode[i * 4 + j] = anim_mode;
+      engine_snapshot_rnd.belt_graphic[i * NUM_BELT_PARTS + j] = graphic;
+      engine_snapshot_rnd.belt_anim_mode[i * NUM_BELT_PARTS + j] = anim_mode;
     }
   }
 }
Terrific game, by the way.

Posted: Wed Mar 24, 2010 9:44 am
by Holger
Yep, right -- this bug will be fixed in the next release version.

Thanks for the patch!
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited