Add some security to avoid invalid Random::next() calls. (#5988)

MageKing17 · web-flow · commit 3a48613a2df1 · 2024-02-14T15:03:51.000-05:00
There were a few instances of `Random::next()` being called without ensuring its arguments couldn't trip an assertion. This should hopefully catch them all.
diff --git a/code/asteroid/asteroid.cpp b/code/asteroid/asteroid.cpp
@@ -1049,6 +1049,7 @@ bool asteroid_is_within_view(vec3d *pos, float range, bool range_override)
  */
 static void maybe_throw_asteroid()
 {
+	Assertion(Asteroid_field.num_used_field_debris_types > 0, "maybe_throw_asteroid() called while num_used_field_debris_types was 0; this should never happen, get a coder!");
 
 	for (asteroid_target& target : Asteroid_targets) {
 		if (!timestamp_elapsed(target.throw_stamp))
@@ -2584,6 +2585,11 @@ void asteroid_frame()
 		return;
 	}
 
+	// If no asteroid types are defined for the field, abort.
+	if (Asteroid_field.num_used_field_debris_types <= 0) {
+		return;
+	}
+
 	// If there are no explicit targets, fall back to default retail targeting behavior
 	if (Asteroid_field.target_names.empty()) {
 		int objnum = set_asteroid_throw_objnum();
diff --git a/code/debris/debris.cpp b/code/debris/debris.cpp
@@ -501,11 +501,11 @@ object *debris_create_only(int parent_objnum, int parent_ship_class, int alt_typ
 		}
 		else if (vaporize) {
 			db->model_num = Debris_vaporize_model;
-			db->submodel_num = Random::next(Debris_num_submodels);
+			db->submodel_num = (Debris_num_submodels <= 0 ? 0 : Random::next(Debris_num_submodels));
 		}
 		else {
 			db->model_num = Debris_model;
-			db->submodel_num = Random::next(Debris_num_submodels);
+			db->submodel_num = (Debris_num_submodels <= 0 ? 0 : Random::next(Debris_num_submodels));
 		}
 	}
 	else {
@@ -644,7 +644,7 @@ object *debris_create_only(int parent_objnum, int parent_ship_class, int alt_typ
 		if (spark_timeout >= 0) {
 			db->fire_timeout = _timestamp(spark_timeout);
 		} else if (parent_objnum >= 0) {
-			float t = 1000*Objects[parent_objnum].radius/3 + Random::next(fl2i(1000*3*Objects[parent_objnum].radius));
+			float t = 1000*Objects[parent_objnum].radius/3 + (fl2i(1000*3*Objects[parent_objnum].radius) == 0 ? 0 : Random::next(fl2i(1000*3*Objects[parent_objnum].radius)));
 			db->fire_timeout = _timestamp(fl2i(t));		// fireballs last from 5 - 30 seconds
 		} else {
 			db->fire_timeout = TIMESTAMP::immediate();
diff --git a/code/hud/hudartillery.cpp b/code/hud/hudartillery.cpp
@@ -327,7 +327,7 @@ void ssm_create(object *target, vec3d *start, size_t ssm_index, ssm_firing_info
 	// Init the ssm data
 
 	count = Ssm_info[ssm_index].count;
-	if (Ssm_info[ssm_index].max_count != -1) {
+	if (Ssm_info[ssm_index].max_count != -1 && (Ssm_info[ssm_index].max_count - count) > 0) {
 		count += Random::next(count, Ssm_info[ssm_index].max_count);
 	}
 

Original file line number	Diff line number	Diff line change
`@@ -501,11 +501,11 @@ object *debris_create_only(int parent_objnum, int parent_ship_class, int alt_typ`
`501`	`501`	`}`
`502`	`502`	`else if (vaporize) {`
`503`	`503`	`db->model_num = Debris_vaporize_model;`
`504`		`- db->submodel_num = Random::next(Debris_num_submodels);`
	`504`	`+ db->submodel_num = (Debris_num_submodels <= 0 ? 0 : Random::next(Debris_num_submodels));`
`505`	`505`	`}`
`506`	`506`	`else {`
`507`	`507`	`db->model_num = Debris_model;`
`508`		`- db->submodel_num = Random::next(Debris_num_submodels);`
	`508`	`+ db->submodel_num = (Debris_num_submodels <= 0 ? 0 : Random::next(Debris_num_submodels));`
`509`	`509`	`}`
`510`	`510`	`}`
`511`	`511`	`else {`
`@@ -644,7 +644,7 @@ object *debris_create_only(int parent_objnum, int parent_ship_class, int alt_typ`
`644`	`644`	`if (spark_timeout >= 0) {`
`645`	`645`	`db->fire_timeout = _timestamp(spark_timeout);`
`646`	`646`	`} else if (parent_objnum >= 0) {`
`647`		`- float t = 1000Objects[parent_objnum].radius/3 + Random::next(fl2i(10003*Objects[parent_objnum].radius));`
	`647`	`+ float t = 1000Objects[parent_objnum].radius/3 + (fl2i(10003Objects[parent_objnum].radius) == 0 ? 0 : Random::next(fl2i(10003*Objects[parent_objnum].radius)));`
`648`	`648`	`db->fire_timeout = _timestamp(fl2i(t)); // fireballs last from 5 - 30 seconds`
`649`	`649`	`} else {`
`650`	`650`	`db->fire_timeout = TIMESTAMP::immediate();`
Original file line number	Diff line number	Diff line change
`@@ -327,7 +327,7 @@ void ssm_create(object target, vec3d start, size_t ssm_index, ssm_firing_info`
`327`	`327`	`// Init the ssm data`
`328`	`328`
`329`	`329`	`count = Ssm_info[ssm_index].count;`
`330`		`- if (Ssm_info[ssm_index].max_count != -1) {`
	`330`	`+ if (Ssm_info[ssm_index].max_count != -1 && (Ssm_info[ssm_index].max_count - count) > 0) {`
`331`	`331`	`count += Random::next(count, Ssm_info[ssm_index].max_count);`
`332`	`332`	`}`
`333`	`333`