Blizzard WC3TFT Patch 1.24 out soon!

[duckne55]

WARNING! BY APPLYING THIS PATCH YOU MAY NOT BE ABLE TO PLAY SOME MAPS, I REPEAT YOU MAY NOT BE ABLE TO PLAY SOME MAPS.

In the old JASS compiler, a function with multiple returns was only type-safe on the last return. That is to say

Code: Select all

function A takes handle h returns integer
    return h
endfunction

Would break, as h is not an integer. However,

Code: Select all

function B takes handle h returns integer
    return h
    return 0
endfunction

Would compile fine, as 0 is an integer and only the last return is type-safe. As functions exit after they hit a return, this allowed JASSers to "convert" types, such as getting an integer index of a handle via the above function B (called H2I).

However, this could also be exploited with functions to convert code to and from integers, allowing people to write and execute arbitrary bytecode. As a side effect, you could do a buffer overflow attack on the VM, allowing arbitrary machine code to be executed, obviously posing a significant security threat.

Rather than fixing the buffer overflow problem, Blizzard decided to instead fix the return bug. This may seem minor, but the return bug was key to attaching information to objects; you could get an object's ID via H2I and then use a gamecache to store things to it. Additionally, you could also pass around objects as integers and convert them back via a reverse I2H function.

As a solution for the demand for this kind of function but still feeling the need to close the return bug, Blizzard introduced the hashtables and StringHash/GetHandleId functions above. While for most things they will suffice or even be better, this means that all maps using the old system need to be recoded to support them or they will not work.

--------------------------------------------------------------------------------------------------------------------------------------
--------------------------------------------------------------------------
WARCRAFT III: THE FROZEN THRONE VERSION HISTORY
--------------------------------------------------------------------------

--------------------------------------------------------------------------
Patch 1.24
--------------------------------------------------------------------------

PC WORLD EDITOR CHANGES

- Added new JASS hash table functions to replace the lost functionality from
fixing unsafe type casting.
- Hash Table - Save Item Handle
- Hash Table - Save Unit Handle
- ...
- Hash Table - Load Item Handle
- Hash Table - Load Unit Handle
- ...
- Hash Table - Get Handle ID

FIXES

- Fixed an exploit related to unsafe type casting that allowed users to
execute arbitrary code in maps.
- Fixed the JASS unsafe type casting exploit ("return bug").
- Fixed several World Editor crashes.
--------------------------------------------------------------------------------------------------------------------------------------

Just a heads up to the developers and players
I think its on the Westfall server already.


Sauce:
http://www.hiveworkshop.com/forums/late ... ls-134193/
http://www.hiveworkshop.com/forums/late ... ng-131095/
http://forums.battle.net/thread.html?to ... 1&sid=3000

there is a developers: "help" list that can be found at the blizzard forums here: http://forums.battle.net/thread.html?to ... 8&sid=3000

[Hillo]

Old stuff, see this link.

Sauce:

This made me laugh

[Small Sized Duck]

So that's where he gets his sauce.

[duckne55]

The more important part is probably the part before and after the changelog.
And i spelled it sauce on purpose.

[initialD]

Not only a few maps cant be played.
A lot of maps can't be played when 1.24 is out.
Blizzard are dumb.

[Ozzapoo]

Not only a few maps cant be played.
A lot of maps can't be played when 1.24 is out.
Blizzard are dumb.

Think about it. Lots of people haven't updated to 1.23, and are still on 1.20e, where collision is still possible, and more importantly, cache modification. If Blizzard gets rid of gamecaches, DotA will move to hash tables, and the 1.20e people will either stay with 6.61b forever, or update and keep up with the newest DotA.

Clever move, I like!

[initialD]

I meant, a lot of old games such as TD, RPG etc.... and many old AoS games. They all can't be played when 1.24 is out. And those games have already reach their final version the maker woundn't update them anymore.

For collisions problems. Now all those cache cheats are made for DotA and DotA alone. So icefrog could just remove all cache data on his game and then it's done. Why does he need to wait for patch 1.24?
Well, even if wc3 release 1.24, icefrog have to remove all cache data too. Isn't it the same.
There are hundreds of game in my wc3 folder that's using game caches. I bet I will just have to delete them all if I got to update it to 1.24?
Sighs. This is a bad solutions. But whatever.

[Small Sized Duck]

I meant, a lot of old games such as TD, RPG etc.... and many old AoS games. They all can't be played when 1.24 is out. And those games have already reach their final version the maker woundn't update them anymore.

For collisions problems. Now all those cache cheats are made for DotA and DotA alone. So icefrog could just remove all cache data on his game and then it's done. Why does he need to wait for patch 1.24?
Well, even if wc3 release 1.24, icefrog have to remove all cache data too. Isn't it the same.
There are hundreds of game in my wc3 folder that's using game caches. I bet I will just have to delete them all if I got to update it to 1.24?
Sighs. This is a bad solutions. But whatever.

Yeah.. screws a lot of games over. I pray NotD: AM and Jurassic park EE still work.

[initialD]

- Fixed an exploit related to unsafe type casting that allowed users to
execute arbitrary code in maps.
- Fixed the JASS unsafe type casting exploit ("return bug").
- Fixed several World Editor crashes.

ok all I read about 1.24 is about fixing the "return bug" that's all. But I read somewhere else saying that the gamecache will be removed on patch 1.24. Could anyone please confirm about it? Will gamecache be removed, or not?
Please reply, I am now updating my cheat pack. So I need to know whether I need to remove gamecache or not.

All right checked. Gamecache will be remain I think. That chaged nothing. Collisions go on.
Without H2I people could simply use GetHandleId and continue to do their collided map.

No idea what is blizzard doing.

[Hillo]

- Added new JASS hash table functions to replace the lost functionality from
fixing unsafe type casting.
- Hash Table - Save Item Handle
- Hash Table - Save Unit Handle
- ...
- Hash Table - Load Item Handle
- Hash Table - Load Unit Handle
- ...
- Hash Table - Get Handle ID

This will replace gamecaches.