Fix crashes introduced by PR #3845

Dutchman101 · Dutchman101 · commit feb7e6567944 · 2025-11-15T19:47:20.000+08:00
Like a common one at gta_sa 0x0116112B
diff --git a/Client/game_sa/CGameSA.cpp b/Client/game_sa/CGameSA.cpp
@@ -896,12 +896,13 @@ void CGameSA::SetIgnoreFireStateEnabled(bool isEnabled)
 
     if (isEnabled)
     {
-        MemSet((void*)0x6511B9, 0x90, 10);            // CCarEnterExit::IsVehicleStealable
-        MemSet((void*)0x643A95, 0x90, 14);            // CTaskComplexEnterCar::CreateFirstSubTask
-        MemSet((void*)0x6900B5, 0x90, 14);            // CTaskComplexCopInCar::ControlSubTask
-        MemSet((void*)0x64F3DB, 0x90, 14);            // CCarEnterExit::IsPlayerToQuitCarEnter
-
-        MemSet((void*)0x685A7F, 0x90, 14);            // CTaskSimplePlayerOnFoot::ProcessPlayerWeapon
+        // All these patches disable fire state checks (m_pFire != nullptr)
+        // Related crash protection is handled by checks in TaskSA.cpp and CTaskManagementSystemSA.cpp
+        MemSet((void*)0x6511B9, 0x90, 10);            // CCarEnterExit::IsVehicleStealable - fire check
+        MemSet((void*)0x643A95, 0x90, 14);            // CTaskComplexEnterCar::CreateFirstSubTask - fire check
+        MemSet((void*)0x6900B5, 0x90, 14);            // CTaskComplexCopInCar::ControlSubTask - fire check
+        MemSet((void*)0x64F3DB, 0x90, 14);            // CCarEnterExit::IsPlayerToQuitCarEnter - fire check  
+        MemSet((void*)0x685A7F, 0x90, 14);            // CTaskSimplePlayerOnFoot::ProcessPlayerWeapon - fire check
 
         MemSet((void*)0x53A899, 0x90, 5);             // CFire::ProcessFire
         MemSet((void*)0x53A990, 0x90, 5);             // CFire::ProcessFire
diff --git a/Client/game_sa/CTaskManagementSystemSA.cpp b/Client/game_sa/CTaskManagementSystemSA.cpp
@@ -103,8 +103,21 @@ void CTaskManagementSystemSA::RemoveTask(CTaskSAInterface* pTaskInterface)
 CTaskSA* CTaskManagementSystemSA::GetTask(CTaskSAInterface* pTaskInterface)
 {
     // Return NULL if we got passed NULL
-    if (pTaskInterface == 0)
-        return NULL;
+    if (!pTaskInterface)
+        return nullptr;
+
+    // Check vtable pointer to prevent crash from corrupted task objects
+    TaskVTBL* pVTBL = pTaskInterface->VTBL;
+    if (!pVTBL)
+        return nullptr;
+
+    // Vtable should be in executable memory range (.text/.rdata sections)
+    // GTA SA base is around 0x400000-0x900000 range
+    constexpr DWORD GTA_BASE_MIN = 0x400000;
+    constexpr DWORD GTA_BASE_MAX = 0x900000;
+    DWORD dwVTableAddr = reinterpret_cast<DWORD>(pVTBL);
+    if (dwVTableAddr < GTA_BASE_MIN || dwVTableAddr > GTA_BASE_MAX)
+        return nullptr;
 
     // Find it in our list
     STaskListItem*                       pListItem;
@@ -123,7 +136,7 @@ CTaskSA* CTaskManagementSystemSA::GetTask(CTaskSAInterface* pTaskInterface)
     // its not existed before, lets create the task
     // First, we create a temp task
     int   iTaskType = 9999;
-    DWORD dwFunc = pTaskInterface->VTBL->GetTaskType;
+    DWORD dwFunc = pVTBL->GetTaskType;
     if (dwFunc && dwFunc != 0x82263A)
     {
         _asm
diff --git a/Client/game_sa/TaskSA.cpp b/Client/game_sa/TaskSA.cpp
@@ -84,12 +84,18 @@ CTask* CTaskSA::GetSubTask()
 {
     static CTaskManagementSystemSA* s_pTaskManagementSystem = pGame->GetTaskManagementSystem();
 
-    DWORD dwThisInterface = (DWORD)GetInterface();
-    DWORD dwFunc = GetInterface()->VTBL->GetSubTask;
+    CTaskSAInterface* pTaskInterface = GetInterface();
+    if (!pTaskInterface)
+        return nullptr;
+
+    DWORD dwFunc = pTaskInterface->VTBL->GetSubTask;
+    if (!dwFunc || dwFunc == 0x82263A)
+        return nullptr;
+
     DWORD dwReturn = 0;
     _asm
     {
-        mov     ecx, dwThisInterface
+        mov     ecx, pTaskInterface
         call    dwFunc
         mov     dwReturn, eax
     }
@@ -326,21 +332,24 @@ CTask* CTaskComplexSA::CreateNextSubTask(CPed* pPed)
 {
     CPedSA* pPedSA = dynamic_cast<CPedSA*>(pPed);
     if (!pPedSA)
-        return NULL;
+        return nullptr;
+
+    CTaskSAInterface* pTaskInterface = GetInterface();
+    if (!pTaskInterface)
+        return nullptr;
+
+    DWORD dwFunc = ((TaskComplexVTBL*)pTaskInterface->VTBL)->CreateNextSubTask;
+    if (!dwFunc || dwFunc == 0x82263A)
+        return nullptr;
 
     DWORD dwPedInterface = (DWORD)pPedSA->GetInterface();
-    DWORD dwThisInterface = (DWORD)GetInterface();
-    DWORD dwFunc = ((TaskComplexVTBL*)GetInterface()->VTBL)->CreateNextSubTask;
     DWORD dwReturn = 0;
-    if (dwFunc != 0x82263A && dwFunc)
+    _asm
     {
-        _asm
-        {
-            mov     ecx, dwThisInterface
-            push    dwPedInterface
-            call    dwFunc
-            mov     dwReturn, eax
-        }
+        mov     ecx, pTaskInterface
+        push    dwPedInterface
+        call    dwFunc
+        mov     dwReturn, eax
     }
     return pGame->GetTaskManagementSystem()->GetTask((CTaskSAInterface*)dwReturn);
 }
@@ -349,21 +358,24 @@ CTask* CTaskComplexSA::CreateFirstSubTask(CPed* pPed)
 {
     CPedSA* pPedSA = dynamic_cast<CPedSA*>(pPed);
     if (!pPedSA)
-        return NULL;
+        return nullptr;
+
+    CTaskSAInterface* pTaskInterface = GetInterface();
+    if (!pTaskInterface)
+        return nullptr;
+
+    DWORD dwFunc = ((TaskComplexVTBL*)pTaskInterface->VTBL)->CreateFirstSubTask;
+    if (!dwFunc || dwFunc == 0x82263A)
+        return nullptr;
 
     DWORD dwPedInterface = (DWORD)pPedSA->GetInterface();
-    DWORD dwThisInterface = (DWORD)GetInterface();
-    DWORD dwFunc = ((TaskComplexVTBL*)GetInterface()->VTBL)->CreateFirstSubTask;
     DWORD dwReturn = 0;
-    if (dwFunc != 0x82263A && dwFunc)
+    _asm
     {
-        _asm
-        {
-            mov     ecx, dwThisInterface
-            push    dwPedInterface
-            call    dwFunc
-            mov     dwReturn, eax
-        }
+        mov     ecx, pTaskInterface
+        push    dwPedInterface
+        call    dwFunc
+        mov     dwReturn, eax
     }
     return pGame->GetTaskManagementSystem()->GetTask((CTaskSAInterface*)dwReturn);
 }
@@ -372,21 +384,24 @@ CTask* CTaskComplexSA::ControlSubTask(CPed* pPed)
 {
     CPedSA* pPedSA = dynamic_cast<CPedSA*>(pPed);
     if (!pPedSA)
-        return NULL;
+        return nullptr;
+
+    CTaskSAInterface* pTaskInterface = GetInterface();
+    if (!pTaskInterface)
+        return nullptr;
+
+    DWORD dwFunc = ((TaskComplexVTBL*)pTaskInterface->VTBL)->ControlSubTask;
+    if (!dwFunc || dwFunc == 0x82263A)
+        return nullptr;
 
     DWORD dwPedInterface = (DWORD)pPedSA->GetInterface();
-    DWORD dwThisInterface = (DWORD)GetInterface();
-    DWORD dwFunc = ((TaskComplexVTBL*)GetInterface()->VTBL)->ControlSubTask;
     DWORD dwReturn = 0;
-    if (dwFunc != 0x82263A && dwFunc)
+    _asm
     {
-        _asm
-        {
-            mov     ecx, dwThisInterface
-            push    dwPedInterface
-            call    dwFunc
-            mov     dwReturn, eax
-        }
+        mov     ecx, pTaskInterface
+        push    dwPedInterface
+        call    dwFunc
+        mov     dwReturn, eax
     }
     return pGame->GetTaskManagementSystem()->GetTask((CTaskSAInterface*)dwReturn);
 }
