• There is NO official Otland's Discord server and NO official Otland's server list. The Otland's Staff does not manage any Discord server or server list. Moderators or administrator of any Discord server or server lists have NO connection to the Otland's Staff. Do not get scammed!
  • If you're using Gesior 2012 or MyAAC, please review this thread for information about a serious security vulnerability and a fix.

TFS 1.X+ Nekiro TFS 1.5 Dawnport Debug Crash Client by Items

Mister Budex

BudexOT.com
Joined
Jun 22, 2016
Messages
1,541
Solutions
18
Reaction score
369
I've found a bug which is probably related to items.otb as something seems wrong, by some investigations there are over 80 invalid items in items.otb which cause this crash, so on a normal 8.60 regular client client just debugs whoever appears on screen or floors +1/2 , -1/2. One of these items is POT. so here i can show you a video
OTCV8 - POT
Regular 8.6 - POT ( After creating item, just crash)
Here is log packet from terminal of otcv8
Lua:
ProtocolGame parse message exception (24 bytes, 5 unread, last opcode is 0x61 (97), prev opcode is 0x6a (106), proto: 860): unhandled opcode 97
1c 00 3f 0b 92 89 10 00
6a 61 00 76 00 06 02 58 0b 83
61 00 76 00 06 0f

ProtocolGame parse message exception (24 bytes, 5 unread, last opcode is 0x5f (95), prev opcode is 0x6a (106), proto: 860): unhandled opcode 95
1c 00 81 10 48 d2 10 00
6a 5f 00 74 00 07 03 89 0d 83
5f 00 74 00 07 0f

ProtocolGame parse message exception (3442 bytes, 2743 unread, last opcode is 0x64 (100), prev opcode is 0x0a (10), proto: 860): unable to create item with invalid id 39679
74 0d ab b5 90 41 6a 0d
0a 0a 00 00 10 32 00 01
64 5f 00 74 00 07 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 d0 12 00 ff a6 11 73 11 00 ff a3 11 6f 11 00 ff a8 11 00 ff a3 11 62 0e 00 ff b2 11 00 ff a3 11 02 05 00 ff 98 01 11 09 81 0d 00 ff 98 01 10 09 26 0b 00 ff 98 01 10 09 68 0b bb 0b 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 d0 12 00 ff a3 11 73 11 00 ff ac 11 6f 11 00 ff ab 11 00 ff ab 11 47 18 00 ff ad 11 02 05 00 ff 98 01 1d 14 00 ff 98 01 01 05 00 ff 98 01 c7 06 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 d0 12 00 ff a3 11 73 11 00 ff a3 11 6f 11 00 ff b2 11 4a 18 00 ff a9 11 47 0e 49 18 00 ff a3 11 00 ff a3 11 48 18 00 ff a3 11 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 5b 04 00 ff a3 11 73 11 00 ff a7 11 6f 11 00 ff a3 11 00 ff a4 11 4a 18 00 ff a3 11 00 ff a3 11 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 ac 05 00 ff 68 04 aa 05 00 ff 68 04 bb 05 00 ff 68 04 aa 05 00 ff 68 04 bc 05 7f 0b 00 ff 68 04 aa 05 00 ff b2 11 bb 05 00 ff b2 11 aa 05 00 ff b2 11 aa 05 00 ff b1 11 62 0e 00 ff aa 11 36 0f 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 ab 05 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 e1 07 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 ab 05 a6 0a 00 ff a3 11 31 12 b8 11 25 0e 00 ff a3 11 31 12 73 0e 00 ff 68 04 ac 05 00 ff 68 04 aa 05 00 ff 68 04 aa 05 00 ff 68 04 ae 05 00 ff 9a 01 00 ff 9a 01 d2 15 00 ff 9a 01 d5 15 00 ff 9a 01 d5 15 00 ff 9a 01 d5 15 00 ff 9a 01 d8 15 00 ff 9a 01 00 ff 9a 01 ab 05 00 ff 67 00 b7 11 47 18 00 ff 67 00 00 ff 68 04 d9 05 7d 0b 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 d3 15 00 ff 9a 01 d6 15 00 ff 9a 01 d6 15 00 ff 9a 01 d6 15 00 ff 9a 01 d9 15 00 ff 9a 01 00 ff 9a 01 ab 05 00 ff a0 01 b6 11 33 12 00 ff a0 01 b6 11 33 12 00 ff 68 04 df 05 00 ff 9a 01 ec 07 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 d3 15 00 ff 9a 01 d6 15 61 00 00 00 00 00 0a 00 00 10 09 00 47 4f 44 20 42 75 64 65 78 64 02 4b 00 4e 44 3a 4c 00 ff 17 dc 05 00 00 00 00 89 0d 00 ff 9a 01 d6 15 00 ff 9a 01 d6 15 00 ff 9a 01 d9 15 00 ff 9a 01 00 ff 9a 01 fe 05 00 ff a0 01 00 ff a0 01 00 ff 68 04 d9 05 7d 0b 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 d3 15 00 ff 9a 01 d6 15 00 ff 9a 01 d6 15 00 ff 9a 01 d6 15 00 ff 9a 01 d9 15 00 ff 9a 01 00 ff 9a 01 ff 05 00 ff a0 01 b4 11 00 ff a0 01 b4 11 37 12 00 ff 68 04 ab 05 00 ff 9a 01 aa 05 00 ff 9a 01 aa 05 00 ff 9a 01 aa 05 00 ff 9a 01 00 ff 9a 01 d4 15 00 ff 9a 01 d7 15 00 ff 9a 01 d7 15 00 ff 9a 01 d7 15 00 ff 9a 01 da 15 00 ff 9a 01 00 ff 9a 01 b1 05 e7 07 00 ff b2 11 48 18 00 ff a3 11 b4 11 36 12 67 07 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 ab 05 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 ab 05 00 ff b1 11 31 0f 00 ff a3 11 36 12 bb 11 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 ab 05 00 ff 9a 01 aa 05 00 ff 9a 01 aa 05 00 ff 9a 01 cc 05 00 ff 9a 01 aa 05 00 ff 9a 01 aa 05 00 ff 9a 01 aa 05 74 01 00 ff 9a 01 aa 05 00 ff 9a 01 ae 05 00 ff 30 11 b6 11 00 ff 32 11 e6 11 b6 11 49 18 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 ab 05 00 ff 68 04 b0 05 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 ab 05 ae 0a 00 ff a7 11 62 0e 00 ff ab 11 61 0e 00 ff 2b 11 bc 11 47 0e 42 07 00 ff 2e 11 e2 11 b4 11 48 18 00 ff 2d 11 b8 11 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 ab 05 00 ff 9a 01 89 14 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 c9 05 a8 0a 00 ff ac 11 00 ff 38 11 bb 11 62 0e 00 ff 32 11 bd 11 00 ff a6 11 00 ff 3a 11 bc 11 62 0e 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 ab 05 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 ab 05 00 ff 2b 11 b6 11 00 ff 36 11 e1 11 b7 11 00 ff 2f 11 b5 11 61 00 00 00 00 00 7c 00 00 40 06 00 52 61 62 62 69 74 64 00 4a 00 00 00 00 00 00 ff 00 b4 00 00 00 00 00 00 ff a4 11 49 18 00 ff 6b 11 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 ab 05 00 ff 9a 01 aa 05 00 ff 9a 01 aa 05 00 ff 9a 01 b9 05 00 ff 9a 01 aa 05 00 ff 9a 01 ae 05 00 ff 38 11 e0 11 b8 11 00 ff 34 11 00 ff 2c 11 e4 11 b9 11 00 ff 31 11 bd 11 00 ff 6a 11 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 68 04 00 ff 2f 11 6c 11 00 ff 32 11 04 07 00 ff 2f 11 b9 11 00 ff 2f 11 b7 11 00 ff 39 11 ba 11 47 18 00 ff 34 11 b4 11 00 ff 6b 11 00 ff 74 11 00 ff a0 01 b5 11 00 ff a7 11 00 ff b2 11 31 0f 00 ff 2a 11 64 11 bb 11 00 ff 2a 11 68 11 b6 11 04 ff 02 05 00 ff 98 01 01 05 00 ff 98 01 01 05 00 ff 98 01 c7 06 00 ff 98 01 1e 14 00 ff a0 01 b5 11 00 ff a8 11 00 ff 2a 11 bb 11 00 ff 2a 11 dc 11 b7 11 07 07 00 ff 2a 11 64 11 de 11 08 07 00 ff 2a 11 68 11 08 ff a0 01 be 11 00 ff a4 11 48 18 00 ff 2a 11 b3 11 00 ff 2a 11 dd 11 49 18 00 ff 2a 11 00 ff 2a 11 64 11 db 11 30 07 00 ff 2a 11 68 11 07 ff a3 11 00 ff aa 11 4a 18 00 ff b0 11 ac 05 00 ff 2a 11 aa 05 00 ff 2a 11 b9 05 00 ff 2a 11 aa 05 00 ff a3 11 aa 05 00 ff bc 05 7e 0b 00 ff aa 05 00 ff aa 05 00 ff aa 05 03 ff a3 11 49 18 00 ff a3 11 00 ff a9 11 ab 05 00 ff 9a 01 b9 09 00 ff 9a 01 00 ff 9a 01 ab 05 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 7d 09 00 ff 9a 01 7e 09 00 ff 9a 01 ab 05 03 ff b1 11 31 12 00 ff b1 11 35 12 00 ff df 05 00 ff 9a 01 b1 0b ba 09 00 ff 9a 01 00 ff 9a 01 ca 05 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 c9 05 03 ff a3 11 3a 12 31 12 00 ff a5 11 39 12 00 ff 80 04 ab 05 00 ff 9a 01 e1 18 00 ff 9a 01 00 ff 9a 01 ab 05 2b 0a 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 ab 05 03 ff a3 11 33 12 00 ff a3 11 33 12 00 ff 80 04 ab 05 00 ff 9a 01 aa 05 00 ff 9a 01 c0 05 00 ff 9a 01 ae 05 00 ff 9a 01 aa 05 44 0a 00 ff 9a 01 aa 05 45 0a 00 ff 9a 01 07 14 00 ff 9a 01 aa 05 00 ff 9a 01 ae 05 03 ff a0 01 b6 11 b5 11 00 ff a0 01 b6 11 bb 11 00 ff a0 01 ab 05 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 8e 09 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 ab 05 03 ff a0 01 b9 11 00 ff a0 01 b7 11 00 ff a0 01 ca 05 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 c9 05 03 ff a0 01 b4 11 00 ff a0 01 b4 11 b5 11 00 ff a0 01 ab 05 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 04 09 00 ff 9a 01 06 09 00 ff 9a 01 08 09 00 ff 9a 01 ab 05 03 ff a4 11 00 ff a5 11 49 18 00 ff ab 05 00 ff 9a 01 aa 05 00 ff 9a 01 aa 05 00 ff 9a 01 cc 05 00 ff 9a 01 bc 05 7f 0b 00 ff 9a 01 aa 05 00 ff 9a 01 aa 05 00 ff 9a 01 aa 05 00 ff 9a 01 ae 05 03 ff a3 11 00 ff aa 11 00 ff ab 11 ab 05 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 ab 05 a9 0a 06 ff a3 11 62 0e 00 ff b0 11 26 0e 00 ff a3 11 d8 05 00 ff 5b 03 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 ab 05 06 ff a3 11 1e 0e 00 ff a6 11 5d 0e 00 ff a3 11 ab 05 00 ff 9a 01 9c 07 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 ab 05 06 ff aa 11 00 ff b0 11 00 ff a3 11 ab 05 00 ff 9a 01 aa 05 00 ff 9a 01 aa 05 ad 0a 00 ff 9a 01 aa 05 ac 0a 00 ff 9a 01 aa 05 00 ff 9a 01 ae 05 05 ff 6b 11 00 ff a3 11 00 ff af 11 22 0e 00 ff b1 11 61 0e 00 ff a3 11 49 18 00 ff b0 11 5f 11 06 ff 6b 11 00 ff 69 11 00 ff 74 11 00 ff a3 11 62 0e 00 ff aa 11 47 18 00 ff aa 11 25 0e 00 ff a3 11 63 11 00 ff b1 11 67 11 06 ff 6a 11 00 ff 68 04 00 ff 68 04 1d ff 83 04 00 ff 82 04 00 ff 82 04 00 ff 82 04 00 ff 82 04 00 ff 82 04 00 ff 82 04 00 ff 82 04 00 ff 82 04 00 ff be 13 04 ff 81 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff bc 13 04 ff 81 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff bc 13 04 ff 81 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff bc 13 04 ff 81 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff bc 13 04 ff 81 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff bc 13 04 ff 81 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff bc 13 04 ff 81 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff bc 13 04 ff ac 05 00 ff 80 04 aa 05 00 ff 80 04 bc 05 7f 0b 00 ff 80 04 aa 05 00 ff 80 04 aa 05 00 ff 80 04 aa 05 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff bc 13 04 ff ab 05 00 ff 9a 01 86 09 00 ff 9a 01 00 ff 9a 01 9c 07 00 ff 9a 01 00 ff 9a 01 ab 05 00 ff b9 13 00 ff b9 13 00 ff b9 13 00 ff ba 13 04 ff c9 05 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 c9 05 08 ff ab 05 00 ff 5b 03 00 ff 9a 01 00 ff 9a 01 04 09 00 ff 9a 01 08 09 00 ff 9a 01 ab 05 08 ff ab 05 00 ff 9a 01 aa 05 00 ff 9a 01 aa 05 00 ff 9a 01 b9 05 00 ff 9a 01 aa 05 00 ff 9a 01 ae 05 00 ff ac 0a 13 ff 33 07 0b ff f5 06 03 1f 07 00 ff 50 07 00 ff 52 07 0b ff 41 07 00 ff 51 07 40 07 00 ff 53 07 7e ff ac 05 00 ff aa 05 00 ff bb 05 00 ff bb 05 00 ff aa 05 00 ff aa 05 08 ff ab 05 00 ff 9a 01 00 ff 9a 01 00 ff 5b 03 00 ff 9a 01 00 ff 9a 01 ab 05 08 ff d9 05 00 ff 9a 01 61 00 00 00 00 00 0d 00 00 80 0a 00 54 68 65 20 4f 72 61 63 6c 65 64 02 00 00 ef 07 ff 00 64 00 00 00 00 00 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 ab 05 08 ff ab 05 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 00 ff 9a 01 ab 05 08 ff ab 05 af 0a 00 ff 9a 01 aa 05 ac 0a 00 ff 9a 01 aa 05 00 ff 9a 01 aa 05 00 ff 9a 01 aa 05 00 ff 9a 01 ae 05 a9 0a ad 0a b0 ff 82 04 00 ff 82 04 00 ff 82 04 00 ff 82 04 00 ff 82 04 00 ff be 13 08 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff bc 13 08 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff bc 13 08 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff bc 13 08 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff 80 04 00 ff bc 13 08 ff b9 13 00 ff b9 13 00 ff b9 13 00 ff b9 13 00 ff b9 13 00 ff ba 13 ff ff ff ff ff ff 34 ff 83 5f 00 74 00 07 0b 78 01 38 1f 78 02 f1 0b 78 03 26 0b 78 04 37 1f 78 05 88 02 78 06 02 0c 78 07 22 0d 78 08 e0 0d 79 09 79 0a a0 64 00 64 00 ff ff ff ff 68 10 00 00 08 00 00 64 00 64 00 00 00 64 d8 09 a1 0a 00 0a 00 0a 00 0a 00 0a 00 0a 00 0a 00 82 ff d7 8d 0a 00 00 10 ff 17 a2 00 40 b4 18 13 00 57 65 6c 63 6f 6d 65 20 74 6f 20 42 75 64 65 78 4f 54 21 b4 18 31 00 59 6f 75 72 20 6c 61 73 74 20 76 69 73 69 74 20 69 6e 20 42 75 64 65 78 4f 54 3a 20 30 37 20 4a 75 6c 20 32 30 32 32 20 32 33 3a 35 33 3a 32 37 2e
 

Gesior.pl

Mega Noob&LOL 2012
Senator
Premium User
Joined
Sep 18, 2007
Messages
2,743
Solutions
86
Reaction score
2,740
Location
Poland
GitHub
gesior
Code:
6a 5f 00 74 00 07 03 89 0d 83
5f 00 74 00 07 0f

6a - add tile item packet
5f 00 74 00 07 - position
03 - stack position
89 0d 83 - Item

from your Nekiro 8.6 (I get it on Discord from Budex):
Code:
void NetworkMessage::addItem(const Item* item)
{
   const ItemType& it = Item::items[item->getID()];

   add<uint16_t>(it.clientId);

   if (it.stackable) {
      addByte(std::min<uint16_t>(0xFF, item->getItemCount()));
   } else if (it.isSplash()) {
      addByte(fluidMap[item->getFluidType() & 7]);
   }
}
89 0d is item ID, converted to decimal (137 + 13 * 256) it's 3465, it should be pot ID in Tibia.dat
83 - client reads this value as fluid type, which mean's that client expects - based on Tibia.dat information - pot to be able to contain some fluid, but server did not send this value as fluid, it's number of next packet (animated effect on tile on which you created pot as GM)

Here is fix from official Nekiro that your engine is missing:
 
Last edited:
Top