[BDS-16776] The server does not check the size (length) of the nickname

The server does not check the size (length /number of characters in the nickname) when the client connects to the server.

Steps to reproduce:

1.Open the file options.txt,edit the value in mp_username (For example:123456789a123456789b123456789c123456789),save the file.

2.Log in to the server.

Waiting:
The server will check the size of the nickname and if it exceeds a certain value (number of characters) it will reset this "suspicious connection"

Actually:
The server accepts absolutely any size and values from the nickname.

Note:
This can be used to crash the server, you can edit options.txt so that the size of the nickname would be more than 71MB of text.You can do more, it depends on the power and the amount of RAM on the client device.

Upload a special file options.txt the size of 71MB I can't.Uploaded an analog with a smaller nickname.

Linked Issues

duplicates1

MCPE-152884Minecraft does not check the length of mp_username in options.txtFixed

Attachments3

32425472.png

Copitoch

2022-03-05, 07:50:15 PM

453424.png

Copitoch

2022-03-05, 07:50:15 PM

Снимок.PNG

Copitoch

2022-07-13, 04:07:31 PM

Comments7

[Mod] OcelotOnesie 2022-03-06, 02:09:47 PM

Restricted to staff

MEQS_KEEP_PRIVATE

Maciej Piornik 2022-07-13, 03:32:32 PM

Does this issue still occur after updating to 1.19.10?

This ticket will automatically reopen when you reply.

Copitoch 2022-07-13, 04:08:38 PM

edited 2022-07-13, 04:10:36 PM

😑

Maciej Piornik 2022-07-14, 01:09:17 PM

What file do you need to edit to change nickname lenght?

This ticket will automatically reopen when you reply.

Copitoch 2022-07-14, 02:10:22 PM

edited 2022-07-14, 02:11:57 PM

I don't think you understand what we are talking about.

The server receives a message about the nickname / indificator, does not check what the client tells it, processes and crashes, if the nickname is quite large.Which file, everything is listed above:options.txt . Where it is: at the client in Minecraft...

Maciej Piornik 2022-07-26, 05:04:23 PM

Thank you for your report!
We're tracking this issue in ~~MCPE-152884~~, so this ticket is being resolved and linked as a duplicate.

If you would like to add a vote and any extra information to the main ticket it would be appreciated.

If you haven't already, you might like to make use of the search feature to see if the issue has already been mentioned.

Quick Links:
📓 Bug Tracker Guidelines – 📧 Mojang Support
📓 Project Summary – ✍️ Feedback and Suggestions – 📖 BDS Wiki – 📖 FAQs

Copitoch 2022-07-26, 07:10:17 PM

*If you fix it in the minecraft client and don't fix it on the server software side, the problem won't be solved.

History8

[Mod] OcelotOnesie 2022-03-06, 02:09:47 PM

Added Security Level: Minecraft - Private

Maciej Piornik 2022-07-13, 03:32:32 PM

Resolution: Unresolved → Awaiting Response

Copitoch 2022-07-13, 04:07:31 PM

Added attachment:

Снимок.PNG

[Bot] Arisa 2022-07-13, 04:07:33 PM

Resolution: Awaiting Response → Unresolved

Maciej Piornik 2022-07-14, 01:09:17 PM

Resolution: Unresolved → Awaiting Response

[Bot] Arisa 2022-07-14, 02:10:29 PM

Resolution: Awaiting Response → Unresolved

Maciej Piornik 2022-07-26, 05:04:23 PM

Added duplicates link:
MCPE-152884Minecraft does not check the length of mp_username in options.txtFixed

Maciej Piornik 2022-07-26, 05:04:23 PM

Resolution: Unresolved → Duplicate