Hi, I recently tested to compile subversion with address sanitizer and it would immediately show a global out of bounds read when showing the help screen (svn help).
I actually was surprised that this seems to be semi-intentional. The code in utf_validate.c has a comment stating that this reads uninitialized bytes and there is an #ifdef option to disable it. I think this is bad programming behavior and shouldn't be done in production code. Reading invalid memory is undefined behavior in C, therefore you cannot rely on that your software will function properly when using such code. cu, -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42
pgpi7uQLC3AzA.pgp
Description: OpenPGP digital signature
