fix(enterchat): fixing statstring buffer overwrite of product

richard-pianka · richard-pianka · commit f90c3d505f99 · 2023-03-31T01:21:42.000-04:00
diff --git a/src/Atlasd/Battlenet/Protocols/Game/Messages/SID_ENTERCHAT.cs b/src/Atlasd/Battlenet/Protocols/Game/Messages/SID_ENTERCHAT.cs
@@ -1,6 +1,7 @@
 ﻿using Atlasd.Battlenet.Exceptions;
 using Atlasd.Daemon;
 using System;
+using System.Linq;
 using System.Collections.Generic;
 using System.IO;
 using System.Text;
@@ -51,17 +52,10 @@ public override bool Invoke(MessageContext context)
 
                         var productId = (UInt32)gameState.Product;
 
-                        // Statstring length is either 0 bytes or 4-128 bytes, not including the null-terminator.
-                        if (statstring.Length != 0 && (statstring.Length < 4 || statstring.Length > 128))
+                        // Statstring has a maximum length of 128 bytes
+                        if (statstring.Length > 128)
                             throw new GameProtocolViolationException(context.Client, $"Client sent invalid statstring size in {MessageName(Id)}");
 
-                        if (statstring.Length < 4) statstring = new byte[4];
-
-                        using var _m = new MemoryStream(statstring);
-                        using var _w = new BinaryWriter(_m);
-                        _w.BaseStream.Position = 0;
-                        _w.Write(productId); // ensure first 4 bytes of statstring always matches their agreed upon productId
-
                         return new SID_ENTERCHAT().Invoke(new MessageContext(context.Client, MessageDirection.ServerToClient,
                             new Dictionary<string, dynamic>(){{ "username", username }, { "statstring", statstring }})
                         );
@@ -74,7 +68,7 @@ public override bool Invoke(MessageContext context)
 
                         // Do not use client-provided statstring if config.battlenet.emulation.statstring_updates is not enabled for this product.
                         // Blizzard servers allowed statstring updates for Diablo, Diablo II (changing characters), Warcraft III (changing icons), and Shareware variants.
-                        if (!GameState.CanStatstringUpdate(gameState.Product)) statstring = gameState.GenerateStatstring();
+                        if (!GameState.CanStatstringUpdate(gameState.Product) || statstring.Length == 0) statstring = gameState.GenerateStatstring();
 
                         /**
                          * (STRING) Unique name
