pilotspace · pilotspacex-byte · Apr 11, 2026 · Apr 10, 2026 · Apr 10, 2026 · Apr 10, 2026
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -41,7 +41,7 @@ jobs:
       - uses: actions/checkout@v6
       - uses: dtolnay/rust-toolchain@1.94.1
       - uses: Swatinem/rust-cache@v2
-      - run: cargo test --no-default-features --features runtime-tokio,jemalloc
+      - run: cargo test --lib --no-default-features --features runtime-tokio,jemalloc
         timeout-minutes: 15
         env:
           MOON_NO_URING: "1"
@@ -108,11 +108,25 @@ jobs:
         run: |
           ./target/release/moon --port 6399 --shards 1 &
           sleep 2
-          MOON_TEST_PORT=6399 cargo test --release --no-default-features --features runtime-tokio,jemalloc --test redis_compat -- --ignored
+          MOON_TEST_PORT=6399 cargo test --release --no-default-features --features runtime-tokio,jemalloc --test redis_compat -- --ignored --skip xadd --skip xrange --skip xtrim
-          MOON_TEST_PORT=6399 cargo test --release --no-default-features --features runtime-tokio,jemalloc --test redis_compat -- --ignored --skip xadd --skip xrange --skip xtrim
+          MOON_TEST_PORT=6399 cargo test --release --no-default-features --features runtime-tokio,jemalloc --test redis_compat -- --ignored
-          MOON_TEST_PORT=6399 cargo test --release --no-default-features --features runtime-tokio,jemalloc --test redis_compat -- --ignored --skip xadd --skip xrange --skip xtrim
+          MOON_TEST_PORT=6399 cargo test --release --no-default-features --features runtime-tokio,jemalloc --test redis_compat -- --ignored
         timeout-minutes: 5
         env:
           MOON_NO_URING: "1"
 
+  loom:
+    name: Loom Model Tests
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v6
+      - uses: dtolnay/rust-toolchain@1.94.1
+      - uses: Swatinem/rust-cache@v2
+      - name: Run loom exhaustive exploration
+        run: cargo test --no-default-features --features runtime-tokio,jemalloc --test loom_response_slot
+        timeout-minutes: 5
+        env:
+          MOON_NO_URING: "1"
+          RUSTFLAGS: "--cfg loom"
+
   msrv:
     name: MSRV (1.94)
     runs-on: ubuntu-latest

diff --git a/.github/workflows/compat.yml b/.github/workflows/compat.yml
@@ -349,3 +349,120 @@ jobs:
           JEOF
           cd /tmp/jedis-test && javac -cp "jedis.jar:commons-pool2.jar:slf4j-api.jar:gson.jar" CompatTest.java
           cd /tmp/jedis-test && java -ea -cp ".:jedis.jar:commons-pool2.jar:slf4j-api.jar:slf4j-simple.jar:gson.jar" CompatTest
+
+  lettuce:
+    name: lettuce (Java)
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v6
+      - uses: dtolnay/rust-toolchain@1.94.0
+      - uses: Swatinem/rust-cache@v2
+      - name: Build Moon (tokio)
+        run: cargo build --release --no-default-features --features runtime-tokio,jemalloc
+        env:
+          MOON_NO_URING: "1"
+      - name: Start Moon
+        run: |
+          ./target/release/moon --port 6399 --shards 1 &
+          sleep 2
+        env:
+          MOON_NO_URING: "1"
+      - uses: actions/setup-java@v4
+        with:
+          distribution: 'temurin'
+          java-version: '21'
+      - name: Run lettuce smoke test
+        env:
+          LETTUCE_VERSION: "6.5.2.RELEASE"
+          NETTY_VERSION: "4.1.116.Final"
+          REACTOR_VERSION: "3.7.2"
+          REACTIVE_STREAMS_VERSION: "1.0.4"
+        run: |
+          mkdir -p /tmp/lettuce-test
+          curl -sL "https://repo1.maven.org/maven2/io/lettuce/lettuce-core/${LETTUCE_VERSION}/lettuce-core-${LETTUCE_VERSION}.jar" -o /tmp/lettuce-test/lettuce-core.jar
+          curl -sL "https://repo1.maven.org/maven2/io/netty/netty-all/${NETTY_VERSION}/netty-all-${NETTY_VERSION}.jar" -o /tmp/lettuce-test/netty-all.jar
+          curl -sL "https://repo1.maven.org/maven2/io/projectreactor/reactor-core/${REACTOR_VERSION}/reactor-core-${REACTOR_VERSION}.jar" -o /tmp/lettuce-test/reactor-core.jar
+          curl -sL "https://repo1.maven.org/maven2/org/reactivestreams/reactive-streams/${REACTIVE_STREAMS_VERSION}/reactive-streams-${REACTIVE_STREAMS_VERSION}.jar" -o /tmp/lettuce-test/reactive-streams.jar
+          cat > /tmp/lettuce-test/LettuceTest.java << 'LEOF'
+          import io.lettuce.core.RedisClient;
+          import io.lettuce.core.api.StatefulRedisConnection;
+          import io.lettuce.core.api.sync.RedisCommands;
+          public class LettuceTest {
+              public static void main(String[] args) {
+                  RedisClient client = RedisClient.create("redis://127.0.0.1:6399");
+                  try (StatefulRedisConnection<String, String> conn = client.connect()) {
+                      RedisCommands<String, String> cmd = conn.sync();
+                      cmd.set("lettuce_key", "lettuce_value");
+                      String v = cmd.get("lettuce_key");
+                      assert "lettuce_value".equals(v) : "GET failed";
+                      cmd.hset("lettuce_hash", "f1", "v1");
+                      String hv = cmd.hget("lettuce_hash", "f1");
+                      assert "v1".equals(hv) : "HGET failed";
+                      System.out.println("lettuce: ALL TESTS PASSED");
+                  } finally {
+                      client.shutdown();
+                  }
+              }
+          }
+          LEOF
+          cd /tmp/lettuce-test && javac -cp "lettuce-core.jar:netty-all.jar:reactor-core.jar:reactive-streams.jar" LettuceTest.java
+          cd /tmp/lettuce-test && java -ea -cp ".:lettuce-core.jar:netty-all.jar:reactor-core.jar:reactive-streams.jar" LettuceTest
+
+  stackexchange-redis:
+    name: StackExchange.Redis (.NET)
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v6
+      - uses: dtolnay/rust-toolchain@1.94.0
+      - uses: Swatinem/rust-cache@v2
+      - name: Build Moon (tokio)
+        run: cargo build --release --no-default-features --features runtime-tokio,jemalloc
+        env:
+          MOON_NO_URING: "1"
+      - name: Start Moon
+        run: |
+          ./target/release/moon --port 6399 --shards 1 &
+          sleep 2
+        env:
+          MOON_NO_URING: "1"
+      - uses: actions/setup-dotnet@v4
+        with:
+          dotnet-version: '9.0.x'
+      - name: Run StackExchange.Redis smoke test
+        run: |
+          mkdir -p /tmp/se-redis-test
+          cd /tmp/se-redis-test
+          dotnet new console -n CompatTest --force
+          cd CompatTest
+          dotnet add package StackExchange.Redis
+          cat > Program.cs << 'CSEOF'
+          using StackExchange.Redis;
+
+          var mux = ConnectionMultiplexer.Connect("127.0.0.1:6399");
+          var db = mux.GetDatabase();
+
+          // SET / GET
+          db.StringSet("dotnet_key", "dotnet_value");
+          var v = db.StringGet("dotnet_key");
+          if (v != "dotnet_value") throw new Exception("GET failed");
+
+          // HSET / HGET
+          db.HashSet("dotnet_hash", "f1", "v1");
+          var hv = db.HashGet("dotnet_hash", "f1");
+          if (hv != "v1") throw new Exception("HGET failed");
+
+          // Pipeline (batch)
+          var batch = db.CreateBatch();
+          var t1 = batch.StringSetAsync("dp1", "pv1");
+          var t2 = batch.StringSetAsync("dp2", "pv2");
+          var t3 = batch.StringGetAsync("dp1");
+          var t4 = batch.StringGetAsync("dp2");
+          batch.Execute();
+          Task.WaitAll(t1, t2, t3, t4);
+          if (t3.Result != "pv1") throw new Exception("batch GET1 failed");
+          if (t4.Result != "pv2") throw new Exception("batch GET2 failed");
+
+          Console.WriteLine("StackExchange.Redis: ALL TESTS PASSED");
+          mux.Dispose();
+          CSEOF
+          dotnet run
diff --git a/.github/workflows/fuzz.yml b/.github/workflows/fuzz.yml
@@ -20,7 +20,11 @@ jobs:
         target:
           - resp_parse
           - resp_parse_differential
+          - inline_parse
           - wal_v3_record
+          - gossip_deser
+          - acl_rule
+          - rdb_load
     steps:
       - uses: actions/checkout@v6
       - uses: dtolnay/rust-toolchain@nightly
@@ -38,8 +42,8 @@ jobs:
           name: fuzz-corpus
           path: fuzz/corpus/
         continue-on-error: true
-      - name: Run fuzzer (5m, multi-process)
-        run: cargo +nightly fuzz run "$TARGET" -- -max_total_time=300 -max_len=65536 -fork=2 -ignore_crashes=0
+      - name: Run fuzzer (15m, multi-process)
+        run: cargo +nightly fuzz run "$TARGET" -- -max_total_time=900 -max_len=65536 -fork=2 -ignore_crashes=0
         env:
           MOON_NO_URING: "1"
           TARGET: ${{ matrix.target }}

diff --git a/.github/workflows/integration-tests.yml b/.github/workflows/integration-tests.yml
@@ -0,0 +1,41 @@
+name: Integration Tests
+
+on:
+  push:
+    branches: [main]
+  pull_request:
+    branches: [main]
+
+env:
+  CARGO_TERM_COLOR: always
+  MOON_NO_URING: "1"
+
+jobs:
+  durability:
+    name: Durability Tests
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v6
+      - uses: dtolnay/rust-toolchain@1.94.1
+      - uses: Swatinem/rust-cache@v2
+      - name: Build Moon (release)
+        run: cargo build --release --no-default-features --features runtime-tokio,jemalloc
+      - name: Run crash matrix tests
+        run: cargo test --release --no-default-features --features runtime-tokio,jemalloc --test durability
+        timeout-minutes: 10
+      - name: Run jepsen-lite tests
+        run: cargo test --release --no-default-features --features runtime-tokio,jemalloc --test jepsen_lite
+        timeout-minutes: 10
+
+  replication:
+    name: Replication Tests
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v6
+      - uses: dtolnay/rust-toolchain@1.94.1
+      - uses: Swatinem/rust-cache@v2
+      - name: Build Moon (release)
+        run: cargo build --release --no-default-features --features runtime-tokio,jemalloc
+      - name: Run replication hardening tests
+        run: cargo test --release --no-default-features --features runtime-tokio,jemalloc --test replication_hardening
+        timeout-minutes: 10
diff --git a/.planning b/.planning
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -6,6 +6,19 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+### Added — Client Connection Security Hardening (2026-04-10)
+
+- **`--maxclients` (P0):** Connection limit with atomic CAS rejection (default 10000, 0=unlimited). Returns `-ERR max number of clients reached` when exceeded.
+- **`--timeout` (P0):** Client idle timeout in seconds (default 0=disabled). Disconnects idle clients via `tokio::time::timeout` / `monoio::select!`.
+- **`--tcp-keepalive` (P0):** TCP keepalive interval (default 300s, 0=disabled). Sets `SO_KEEPALIVE` + `TCP_KEEPIDLE` on accepted sockets via `socket2`.
+- **AUTH rate limiting (P0):** Per-IP exponential backoff on AUTH failures (100ms base, 10s cap, 60s auto-reset). New module `src/auth_ratelimit.rs`.
+- **CLIENT LIST / INFO / KILL (P1):** Global client registry with Drop-guard deregister. Redis-compatible output format. Kill by ID/ADDR/USER. New module `src/client_registry.rs`.
+- **CLIENT PAUSE / UNPAUSE (P1):** Server-wide pause with ALL/WRITE modes and auto-expiry. New module `src/client_pause.rs`.
+- **CLIENT NO-EVICT / NO-TOUCH (P1):** Accepted stubs for Redis compatibility.
+- **ACL GENPASS (P1):** Cryptographically secure random password generation (1-4096 bits, hex output).
+- **CONFIG GET/SET** support for `maxclients`, `timeout`, `tcp-keepalive` (runtime-mutable).
+- **Monoio connection tracking:** Added missing `record_connection_opened` / `record_connection_closed` for accurate `connected_clients` metric.
+
 ### Fixed — Wave 0-4 Gap Closure (2026-04-09)
 
 - **ZREVRANGEBYSCORE/ZREVRANGEBYLEX correctness bug:** Fixed double-swap of min/max bounds in `zrange_by_score` and `zrange_by_lex` that caused empty results for finite score ranges (e.g., `ZREVRANGEBYSCORE key 3 1`). Added finite-range test to `test-commands.sh`.

diff --git a/Cargo.lock b/Cargo.lock