Open hoyhoy opened 1 month ago
@hoyhoy Can you paste the commands you ran to cause this use? I wasn't able to naively reproduce it.
@madolson you have a MSAN build? It's clang on linux only. Seems to happen immediately. We have a very simple test that does a minimum union and intersection, and clang -fsanitize=memory
flags it. Redis is reading and writing uninitialized memory.
Will take a look.
The valkey server appears to be reading from uninitialized memory in several places. Sometimes, random bits are
XOR
'd together for "entropy" and it doesn't matter -- which is possibly the case with lz4, but thesinterGenericCommand()
andsunionDiffGenericCommand()
look bad and possibly exploitable.