duckietm/Arcturus-Morningstar-Extended
1
0
Fork 0
mirror of https://github.com/duckietm/Arcturus-Morningstar-Extended.git synced 2026-06-19 15:06:19 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #219 from simoleo89/fix/trading-packet-guards

Browse Source 
fix(trading): bound offered item batches
This commit is contained in:
DuckieTM
2026-06-17 09:54:18 +02:00
committed by GitHub
parent 159ce25a88 b600ac499c
commit 2dac462f81
3 changed files with 63 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
Emulator/src/main/java/com/eu/habbo/habbohotel/rooms/RoomTrade.java
+5 -1
View File
@@ -23,6 +23,7 @@ public class RoomTrade {
//Configuration. Loaded from database & updated accordingly.
public static boolean TRADING_ENABLED = true;
public static boolean TRADING_REQUIRES_PERK = true;
public static final int MAX_OFFERED_ITEMS = 100;
private final List<RoomTradeUser> users;
private final Room room;
@@ -58,7 +59,7 @@ public class RoomTrade {
public synchronized void offerItem(Habbo habbo, HabboItem item) {
RoomTradeUser user = this.getRoomTradeUserForHabbo(habbo);
if (user == null || item == null || user.getItems().contains(item))
if (user == null || item == null || user.getItems().contains(item) || user.getItems().size() >= MAX_OFFERED_ITEMS)
return;
habbo.getInventory().getItemsComponent().removeHabboItem(item);
@@ -75,6 +76,9 @@ public class RoomTrade {
return;
for (HabboItem item : items) {
if (user.getItems().size() >= MAX_OFFERED_ITEMS)
break;
if (!user.getItems().contains(item)) {
habbo.getInventory().getItemsComponent().removeHabboItem(item);
user.getItems().add(item);
Emulator/src/main/java/com/eu/habbo/messages/incoming/trading/TradeOfferMultipleItemsEvent.java
+8 -1
View File
@@ -19,8 +19,15 @@ public class TradeOfferMultipleItemsEvent extends MessageHandler {
THashSet<HabboItem> items = new THashSet<>();
int count = this.packet.readInt();
if (count <= 0 || count > RoomTrade.MAX_OFFERED_ITEMS)
return;
for (int i = 0; i < count; i++) {
HabboItem item = this.client.getHabbo().getInventory().getItemsComponent().getHabboItem(this.packet.readInt());
int itemId = this.packet.readInt();
if (itemId <= 0)
continue;
HabboItem item = this.client.getHabbo().getInventory().getItemsComponent().getHabboItem(itemId);
if (item != null && item.getBaseItem().allowTrade()) {
items.add(item);
}
Emulator/src/test/java/com/eu/habbo/messages/incoming/trading/TradeOfferGuardContractTest.java
+50
View File
@@ -0,0 +1,50 @@
package com.eu.habbo.messages.incoming.trading;
import org.junit.jupiter.api.Test;
import java.nio.file.Files;
import java.nio.file.Path;
import static org.junit.jupiter.api.Assertions.assertTrue;
class TradeOfferGuardContractTest {
private static String incomingSource(String name) throws Exception {
return Files.readString(Path.of("src/main/java/com/eu/habbo/messages/incoming/trading/" + name + ".java"));
}
private static String roomTradeSource() throws Exception {
return Files.readString(Path.of("src/main/java/com/eu/habbo/habbohotel/rooms/RoomTrade.java"));
}
@Test
void multipleTradeOfferPacketBoundsClientSuppliedCountBeforeInventoryLookups() throws Exception {
String source = incomingSource("TradeOfferMultipleItemsEvent");
int count = source.indexOf("int count = this.packet.readInt()");
int guard = source.indexOf("count <= 0 || count > RoomTrade.MAX_OFFERED_ITEMS", count);
int loop = source.indexOf("for (int i = 0; i < count; i++)", count);
int lookup = source.indexOf("getHabboItem(itemId)", loop);
assertTrue(count > -1, "TradeOfferMultipleItemsEvent must read the client supplied count");
assertTrue(guard > count, "TradeOfferMultipleItemsEvent must validate the count after reading it");
assertTrue(guard < loop, "TradeOfferMultipleItemsEvent must validate the count before looping");
assertTrue(loop < lookup, "TradeOfferMultipleItemsEvent should only resolve inventory items inside the bounded loop");
assertTrue(source.contains("itemId <= 0"),
"TradeOfferMultipleItemsEvent must skip invalid item ids before inventory lookup");
}
@Test
void roomTradeEnforcesServerSideOfferedItemCapBeforeInventoryMutation() throws Exception {
String source = roomTradeSource();
int constant = source.indexOf("MAX_OFFERED_ITEMS = 100");
int singleGuard = source.indexOf("user.getItems().size() >= MAX_OFFERED_ITEMS");
int multipleGuard = source.indexOf("user.getItems().size() >= MAX_OFFERED_ITEMS", singleGuard + 1);
int remove = source.indexOf("removeHabboItem(item)", multipleGuard);
assertTrue(constant > -1, "RoomTrade must define a server-side offered item cap");
assertTrue(singleGuard > constant, "RoomTrade.offerItem must enforce the item cap");
assertTrue(multipleGuard > singleGuard, "RoomTrade.offerMultipleItems must enforce the item cap");
assertTrue(multipleGuard < remove, "RoomTrade must enforce the cap before mutating inventory");
}
}