<!-- 
RSS generated by JIRA (9.12.2#9120002-sha1:301bf498dd45d800842af0b84230f1bb58606c13) at Sun Jan 12 11:50:28 UTC 2025

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary append 'field=key&field=summary' to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>Mojang Studios Jira</title>
    <link>https://bugs.mojang.com</link>
    <description>This file is an XML representation of an issue</description>
    <language>en</language>    <build-info>
        <version>9.12.2</version>
        <build-number>9120002</build-number>
        <build-date>10-01-2024</build-date>
    </build-info>


<item>
            <title>[MC-271] Buffer Overrun [?] Causes SMP Lock Up</title>
                <link>https://bugs.mojang.com/browse/MC-271</link>
                <project id="10400" key="MC">Minecraft: Java Edition</project>
                    <description>&lt;p&gt;In every version of Minecraft, third party (hacked) clients come along and manage to instantly lock multiplayer (i.e. cause SMP to freeze/go unresponsive).  I &lt;b&gt;assume&lt;/b&gt; this is a result of some kind of buffer overrun defect.&lt;/p&gt;

&lt;p&gt;I have no proof that the behavior is actually caused by a buffer overrun, it&apos;s just what I call it when it happens.&lt;/p&gt;

&lt;p&gt;Although managed languages such as Java and C# do not actually have buffer overruns, the specific virtual machines (JVM/CLR/etc) which actually run the code &lt;b&gt;may&lt;/b&gt;.&lt;/p&gt;

&lt;p&gt;Whatever it really is, something in a third party client is capable of generating a packet that can instantly choke the server, leaving it completely unresponsive, even to OS signals.&lt;/p&gt;

&lt;p&gt;Analysis of the log usually gives the SMP staff clues and patterns of behavior to help mitigate the problem after the fact.  Players using these techniques tend to announce they are about to crash the server, then do so.  Banning the player and their IP helps reduce further occurrences.&lt;/p&gt;

&lt;p&gt;The server does not typically generate a crash report for this situation.  It just freezes, although the garbage collector appears to continue running.&lt;/p&gt;

&lt;p&gt;The following is a log segment of it occurring today.  The staff did not notice the problem for forty minutes (note the time stamp).  In this example, the player (name redacted because I&apos;m sure they love publicity) performed the same attack less than 24 hours prior.  Their player name and IP was banned based on this pattern.&lt;/p&gt;


&lt;div class=&quot;preformatted panel&quot; style=&quot;border-width: 1px;&quot;&gt;&lt;div class=&quot;preformattedContent panelContent&quot;&gt;
&lt;pre&gt;2012-10-24 05:06:16 [INFO] ##REDACTED##[/##REDACTED##:21404] logged in with entity id 1155260 at (-928.1505147866586, 45.0, -104.012543085556)
2012-10-24 05:06:59 [INFO] ##REDACTED##[/##REDACTED##:21438] logged in with entity id 1155662 at (-916.5, 45.0, -111.6215497774692)
2012-10-24 05:46:01 [INFO] Starting minecraft server version 1.4.1
2012-10-24 05:46:01 [INFO] Loading properties
2012-10-24 05:46:01 [INFO] Default game type: SURVIVAL
2012-10-24 05:46:01 [INFO] Generating keypair
2012-10-24 05:46:01 [INFO] Starting Minecraft server on *:25565
2012-10-24 05:46:02 [INFO] Preparing level &quot;swim2&quot;
2012-10-24 05:46:02 [INFO] Preparing start region for level 0
2012-10-24 05:46:02 [INFO] Done (0.716s)! For help, type &quot;help&quot; or &quot;?&quot;
2012-10-24 05:46:02 [INFO] Starting GS4 status listener
2012-10-24 05:46:03 [INFO] Starting remote control listener
2012-10-24 05:46:03 [INFO] Query running on 0.0.0.0:25565
2012-10-24 05:46:03 [INFO] RCON running on 0.0.0.0:25575&lt;/pre&gt;
&lt;/div&gt;&lt;/div&gt;</description>
                <environment></environment>
        <key id="11528">MC-271</key>
            <summary>Buffer Overrun [?] Causes SMP Lock Up</summary>
                <type id="1" iconUrl="https://bugs.mojang.com/secure/viewavatar?size=xsmall&amp;avatarId=18903&amp;avatarType=issuetype">Bug</type>
                                    <status id="5" iconUrl="https://bugs.mojang.com/images/icons/statuses/resolved.png" description="A resolution has been taken, and it is awaiting verification by reporter. From here issues are either reopened, or are closed.">Resolved</status>
                    <statusCategory id="3" key="done" colorName="success"/>
                                    <resolution id="4">Incomplete</resolution>
                                        <assignee username="-1">Unassigned</assignee>
                                    <reporter username="inertia">Anthony Martin</reporter>
                        <labels>
                            <label>halt</label>
                            <label>multiplayers</label>
                    </labels>
                <created>Thu, 25 Oct 2012 01:30:19 +0200</created>
                <updated>Sat, 2 May 2015 03:57:13 +0200</updated>
                            <resolved>Thu, 16 Jan 2014 01:08:38 +0100</resolved>
                                    <version>Minecraft 1.4.2</version>
                    <version>Minecraft 1.6.2</version>
                                                                        <votes>1</votes>
                                    <watches>2</watches>
                                                                            <comments>
                            <comment id="131945" author="ezekielelin" created="Thu, 16 Jan 2014 01:08:38 +0100"  >&lt;p&gt;This ticket is &lt;em&gt;incomplete&lt;/em&gt; without the requested information, no response has been received within a reasonable time and we are assuming the issue has been resolved. If you are still experiencing this issue, we can reopen it at your request.&lt;br/&gt;
Please review the &lt;a href=&quot;http://help.mojang.com/customer/portal/articles/801354-writing-helpful-bug-reports-for-minecraft&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;guidelines&lt;/a&gt; before reporting issues.&lt;/p&gt;</comment>
                            <comment id="112815" author="ezekielelin" created="Sat, 19 Oct 2013 17:23:11 +0200"  >&lt;p&gt;Is this still a concern in the latest Minecraft version &lt;b&gt;13w42b&lt;/b&gt;? If so, please update the affected versions in order to best aid Mojang ensuring bugs are still valid in the latest releases/pre-releases.&lt;/p&gt;</comment>
                            <comment id="93320" author="inertia" created="Sun, 21 Jul 2013 02:33:23 +0200"  >&lt;p&gt;This problem has been observed in 1.6.2 when third party clients began to attack the server.&lt;/p&gt;</comment>
                            <comment id="65138" author="bljat" created="Sun, 5 May 2013 19:39:04 +0200"  >&lt;p&gt;Is this still a concern in the current Minecraft version? If so, please update the affected versions in order to best aid Mojang ensuring bugs are still valid in the latest releases/pre-releases.&lt;/p&gt;</comment>
                            <comment id="44599" author="inertia" created="Fri, 8 Feb 2013 23:04:39 +0100"  >&lt;p&gt;This cannot be tested in the snapshots since modded clients are a rare occurrence.  If they ever do occur, they rarely generate the kind of packets to cause this behavior.&lt;/p&gt;</comment>
                            <comment id="43549" author="bljat" created="Mon, 4 Feb 2013 23:20:21 +0100"  >&lt;p&gt;Is this still a concern in the current Minecraft version? If so, please update the affected versions in order to best aid Mojang ensuring bugs are still valid in the latest releases/pre-releases.&lt;/p&gt;</comment>
                            <comment id="13567" author="inertia" created="Thu, 25 Oct 2012 22:31:06 +0200"  >&lt;p&gt;Thank you, Matthew, but I am not able to initiate the condition.  I don&apos;t know what third party client these folks are using to initiate their attack.  All I know is, it happens often enough for me to suspect it is indeed intentional because they threaten to make the server go unresponsive, and it usually does after that.&lt;/p&gt;

&lt;p&gt;They almost never engage in conversation.  They just get woody when they down a server, then they move on to their next conquest.&lt;/p&gt;

&lt;p&gt;Since 2012-07-18, there have been six separate attacks like this on my server.&lt;/p&gt;</comment>
                            <comment id="13518" author="mattheyy" created="Thu, 25 Oct 2012 22:10:19 +0200"  >&lt;p&gt;Most certainly not a &quot;Buffer Overrun&quot; (what?), but more likely a Buffer Overflow, in which the network adapter refuses to take the connection due to its workload. This happening will always result in in-console errors with raw stack-traces referencing the class that deals with network connections and the fact that a buffer overflow has been thrown on that socket/host.&lt;/p&gt;

&lt;p&gt;Besides, not exactly sure how it&apos;s possible to force a buffer overflow to all clients and certainly not the server...&lt;/p&gt;

&lt;p&gt;The existence of this has yet to be proved. For further testing I can put up a server and have you attempt to lock it up via whatever means you&apos;ve stated above. I can then examine the exploit and provide a more detailed approach to a solution.&lt;/p&gt;

&lt;p&gt;Thanks for bug-testing!&lt;/p&gt;</comment>
                            <comment id="12748" author="cloudy" created="Thu, 25 Oct 2012 01:40:03 +0200"  >&lt;p&gt;I very much doubt it is an Buffer Overrun. It does however look like an infinite loop, or thread deadlock. &amp;lt;/coder hat&amp;gt;&lt;/p&gt;</comment>
                    </comments>
                <issuelinks>
                            <issuelinktype id="10102">
                    <name>Duplicate</name>
                                                                <inwardlinks description="is duplicated by">
                                        <issuelink>
            <issuekey id="12103">MC-823</issuekey>
        </issuelink>
                            </inwardlinks>
                                    </issuelinktype>
                    </issuelinks>
                <attachments>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                                                                                                                                <customfield id="customfield_10701" key="com.atlassian.jira.plugin.system.customfieldtypes:datetime">
                        <customfieldname>CHK</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>Sat, 2 May 2015 03:57:00 +0200</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                            <customfield id="customfield_10500" key="com.atlassian.jira.plugin.system.customfieldtypes:radiobuttons">
                        <customfieldname>Confirmation Status</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="10301"><![CDATA[Plausible]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                        <customfield id="customfield_11700" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummary">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                            <customfield id="customfield_11600" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>0|i0motb:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                    </customfields>
    </item>
</channel>
</rss>