|
Ah nice, the BF was generated only a few days after the commit which exposed the bug. That's reasonable to me!
|
|
daniel.gottlieb this regression was introduced not too long ago in the master branch only (I declined the backport after realizing this) by SERVER-49103. When SERVER-47681 went in it made background validation yield its cursors, in addition to refreshing its storage snapshot. I believe a combination of those two exposed this issue. In addition, this affects the second phase of validation only, which is a harder code path to get to as you need to have corruption present 
|
|
gregory.wlodarek do you know when this bug was introduced? We took some measures a while back to better catch use-after-free errors specifically for when MDB is referencing memory pinned by a WT cursor. If this bug has been around for a long while, I'm curious if we know why this wasn't caught sooner. There may be a gap in the guard rails we put in.
|
|
Author:
{'name': 'Gregory Wlodarek', 'email': 'gregory.wlodarek@mongodb.com', 'username': 'GWlodarek'}
Message: SERVER-51444 BSONElement's buffer in IndexEntryInfo used for validation is unowned and unsafe to access after cursor advances
Branch: master
https://github.com/mongodb/mongo/commit/5f15abcb11e7abddd49e58616fe16e992c5c81d9
|
Generated at Thu Feb 08 05:25:30 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.