Bug 252603

Summary:	[WebGPU] GPUBuffer::getMappedRange will attempt to copy from nullptr if mapping fails
Product:	WebKit	Reporter:	Mike Wyrzykowski <mwyrzykowski>
Component:	WebGPU	Assignee:	Nobody <webkit-unassigned>
Status:	RESOLVED FIXED
Severity:	Normal	CC:	webkit-bug-importer
Priority:	P2	Keywords:	InRadar
Version:	WebKit Nightly Build
Hardware:	Unspecified
OS:	Unspecified

Mike Wyrzykowski

Reported 2023-02-20 12:58:08 PST

[WebGPU] GPUBuffer::getMappedRange will attempt to copy from nullptr if mapping fails If mapping fails in the GPU process, then m_mappedRange.source is nullptr and we will attempt to perform a memcpy with a src address of 0

Attachments
Add attachment proposed patch, testcase, etc.

Radar WebKit Bug Importer

Comment 1 2023-02-20 13:00:50 PST

<rdar://problem/105692446>

Mike Wyrzykowski

Comment 2 2023-02-20 14:27:15 PST

Pull request: https://github.com/WebKit/WebKit/pull/10396

EWS

Comment 3 2023-03-12 17:18:52 PDT

Committed 261555@main (fee8a92ad0b7): <https://commits.webkit.org/261555@main> Reviewed commits have been landed. Closing PR #10396 and removing active labels.

Note You need to log in before you can comment on or make changes to this bug.