Thread: eqgame.exe crashing
View Single Post
  #22  
Old 08-27-2006, 11:15 AM
neville
Fire Beetle
  
Join Date: Aug 2006
Posts: 6
Default
Ok I've been looking through the packets some more and have uncovered more interesting information.

From what I see, the server sends me 5 full packets in a row of JUST servers.
An example of one is:
0000 00 30 1b b9 b4 41 00 0f 3d 65 b1 16 08 00 45 00 .0...A.. =e....E.
0010 02 1c b6 f2 40 00 31 11 09 2e d1 a5 f4 fc c0 a8 ....@.1. ........
0020 00 66 17 6e 04 fc 02 08 33 1f 00 0d 00 06 00 36 .f.n.... 3......6
0030 35 2e 32 36 2e 31 34 37 2e 31 30 30 00 01 00 00 5.26.147 .100....
0040 00 1c 00 00 00 5b 30 2e 37 2e 30 5d 20 5a 65 62 .....[0. 7.0] Zeb
0050 75 78 6f 72 75 6b 20 5b 43 75 73 74 6f 6d 2d 4c uxoruk [ Custom-L
0060 65 67 69 74 5d 00 45 4e 00 55 53 00 00 00 00 00 egit].EN .US.....
0070 1a 00 00 00 36 34 2e 33 34 2e 31 37 34 2e 39 36 ....64.3 4.174.96
0080 00 09 00 00 00 1d 00 00 00 5b 30 2e 37 2e 30 5d ........ .[0.7.0]
0090 20 5b 50 56 50 5d 20 53 75 6c 6c 6f 6e 20 5a 65 [PVP] S ullon Ze
00a0 6b 20 2d 20 4f 70 65 6e 20 42 65 74 61 00 45 4e k - Open Beta.EN
00b0 00 55 53 00 00 00 00 00 10 00 00 00 74 6f 64 65 .US..... ....tode
00c0 71 2e 6e 6f 2d 69 70 2e 6f 72 67 00 01 00 00 00 q.no-ip. org.....
00d0 1e 00 00 00 5b 30 2e 37 2e 30 5d 20 54 68 65 20 ....[0.7 .0] The
00e0 45 64 67 65 3b 20 53 65 63 72 65 74 20 53 6f 63 Edge; Se cret Soc
00f0 69 65 74 79 20 5b 50 72 69 76 61 74 65 5d 00 45 iety [Pr ivate].E
0100 4e 00 55 53 00 fe 00 00 00 01 00 00 00 36 38 2e N.US.... .....68.
0110 33 39 2e 31 34 35 2e 31 31 33 00 01 00 00 00 1f 39.145.1 13......
0120 00 00 00 5b 30 2e 37 2e 30 5d 20 43 61 76 65 69 ...[0.7. 0] Cavei
0130 66 74 6f 75 27 73 00 45 4e 00 55 53 00 fe 00 00 ftou's.E N.US....
0140 00 00 00 00 00 36 36 2e 34 34 2e 31 39 38 2e 31 .....66. 44.198.1
0150 35 35 00 01 00 00 00 20 00 00 00 5b 30 2e 37 2e 55..... ...[0.7.
0160 30 5d 20 41 7a 61 74 68 6f 74 68 27 73 20 43 65 0] Azath oth's Ce
0170 6e 74 65 72 20 6f 66 20 43 68 61 6f 73 00 45 4e nter of Chaos.EN
0180 00 55 53 00 00 00 00 00 00 00 00 00 32 30 38 2e .US..... ....208.
0190 31 30 30 2e 33 2e 33 31 00 01 00 00 00 21 00 00 100.3.31 .....!..
01a0 00 5b 30 2e 37 2e 30 5d 20 4c 65 67 61 63 79 20 .[0.7.0] Legacy
01b0 6f 66 20 5a 65 6b 00 45 4e 00 55 53 00 00 00 00 of Zek.E N.US....
01c0 00 00 00 00 00 36 37 2e 31 36 35 2e 32 34 33 2e .....67. 165.243.
01d0 31 30 00 01 00 00 00 22 00 00 00 5b 30 2e 37 2e 10....." ...[0.7.
01e0 30 5d 20 46 61 74 68 65 72 6e 69 74 77 69 74 27 0] Fathe rnitwit'
01f0 73 20 54 65 73 74 00 45 4e 00 55 53 00 00 00 00 s Test.E N.US....
0200 00 00 00 00 00 36 38 2e 35 37 2e 32 33 38 2e 31 .....68. 57.238.1
0210 35 34 00 01 00 00 00 23 00 00 00 5b 30 2e 37 2e 54.....# ...[0.7.
0220 30 5d 20 49 6e 64 79 65 71 5b 0] Indye q[


What this contains isn't important.
What I have noticed is that in the FAILED attempts instead of getting 5 full packets I seem to be getting a truncated packet containing this:

0000 00 30 1b b9 b4 41 00 0f 3d 65 b1 16 08 00 45 00 .0...A.. =e....E.
0010 00 30 b6 f4 40 00 31 11 0b 18 d1 a5 f4 fc c0 a8 .0..@.1. ........
0020 00 66 17 6e 04 fc 00 1c 5d e2 00 0d 00 08 65 00 .f.n.... ].....e.
0030 45 4e 00 55 53 00 00 00 00 00 00 00 00 00 b4 ec EN.US... ........

or this:
0000 00 30 1b b9 b4 41 00 0f 3d 65 b1 16 08 00 45 00 .0...A.. =e....E.
0010 00 73 ba 40 40 00 31 11 07 89 d1 a5 f4 fc c0 a8 .s.@@.1. ........
0020 00 66 17 6e 05 1b 00 5f 5d e0 00 0d 00 08 72 28 .f.n..._ ].....r(
0030 4e 6f 6e 2d 4c 65 67 69 74 29 00 45 4e 00 55 53 Non-Legi t).EN.US
0040 00 00 00 00 00 01 00 00 00 32 30 37 2e 36 38 2e ........ .207.68.
0050 32 34 37 2e 32 33 38 00 01 00 00 00 2a 00 00 00 247.238. ....*...
0060 5b 30 2e 37 2e 30 5d 20 45 53 44 65 66 69 61 6e [0.7.0] ESDefian
0070 63 65 00 45 4e 00 55 53 00 00 00 00 00 00 00 00 ce.EN.US ........
0080 00 .


In all successive attempts the ESDefiance.EN.US server is NOT truncated in it's own small packet, however, as seen above, in the failed attempts it is. I believe this may be the source of the crashes, that the client may be trying to read a set size of a packet from the server but is only getting a portion of it, and it probably getting an index-out-of-bounds exception.

I'll try to see what other findings i can make.
Reply With Quote