Move validation from IndexDataManager to the API.

This validates all necessary buffer sizes for element array buffers in the validation layer, before we start the draw. BUG=angle:571 Change-Id: I602744ca1ea493e9f0f7e1ccbeb85fc4ae5c9f5a Reviewed-on: https://chromium-review.googlesource.com/210648Tested-by: Jamie Madill <jmadill@chromium.org> Reviewed-by: Geoff Lang <geofflang@chromium.org>

Move validation from IndexDataManager to the API.
ae3000b4 · Jamie Madill · 83da0ec5 · ae3000b4 · ae3000b4 · ae3000b4
Commit ae3000b4 authored Aug 25, 2014 by Jamie Madill
Hide whitespace changes
Inline Side-by-side

Showing with 29 additions and 17 deletions

Buffer.h src/libGLESv2/Buffer.h +1 -1

IndexDataManager.cpp src/libGLESv2/renderer/d3d/IndexDataManager.cpp +2 -16

validationES.cpp src/libGLESv2/validationES.cpp +26 -0

No files found.
--- a/src/libGLESv2/Buffer.h
+++ b/src/libGLESv2/Buffer.h
@@ -58,7 +58,7 @@ class Buffer : public RefCountObject
    rx::BufferImpl *mBuffer;
    GLenum mUsage;
-    GLsizeiptr mSize;
+    GLint64 mSize;
    GLint mAccessFlags;
    GLboolean mMapped;
    GLvoid *mMapPointer;

--- a/src/libGLESv2/renderer/d3d/IndexDataManager.cpp
+++ b/src/libGLESv2/renderer/d3d/IndexDataManager.cpp
@@ -125,17 +125,7 @@ GLenum IndexDataManager::prepareIndexData(GLenum type, GLsizei count, gl::Buffer
          default: UNREACHABLE(); alignedOffset = false;
        }
-        // check for integer overflows
+        ASSERT(typeInfo.bytes * static_cast<unsigned int>(count) + offset <= storage->getSize());
-        if (static_cast<unsigned int>(count) > (std::numeric_limits<unsigned int>::max() / typeInfo.bytes) ||
-            typeInfo.bytes * static_cast<unsigned int>(count) + offset < offset)
-        {
-            return GL_OUT_OF_MEMORY;
-        }
-        if (typeInfo.bytes * static_cast<unsigned int>(count) + offset > storage->getSize())
-        {
-            return GL_INVALID_OPERATION;
-        }
        indices = static_cast<const GLubyte*>(storage->getData()) + offset;
    }
@@ -197,11 +187,7 @@ GLenum IndexDataManager::prepareIndexData(GLenum type, GLsizei count, gl::Buffer
            }
        }
-        if (!indexBuffer)
+        ASSERT(indexBuffer);
-        {
-            ERR("No valid index buffer.");
-            return GL_INVALID_OPERATION;
-        }
        if (convertCount > std::numeric_limits<unsigned int>::max() / destTypeInfo.bytes)
        {

--- a/src/libGLESv2/validationES.cpp
+++ b/src/libGLESv2/validationES.cpp
@@ -1489,6 +1489,32 @@ bool ValidateDrawElements(const gl::Context *context, GLenum mode, GLsizei count
        return gl::error(GL_INVALID_OPERATION, false);
    }
+    if (elementArrayBuffer)
+    {
+        const gl::Type &typeInfo = gl::GetTypeInfo(type);
+        GLint64 offset = reinterpret_cast<GLint64>(indices);
+        GLint64 byteCount = static_cast<GLint64>(typeInfo.bytes) * static_cast<GLint64>(count)+offset;
+        // check for integer overflows
+        if (static_cast<GLuint>(count) > (std::numeric_limits<GLuint>::max() / typeInfo.bytes) ||
+            byteCount > static_cast<GLint64>(std::numeric_limits<GLuint>::max()))
+        {
+            return gl::error(GL_OUT_OF_MEMORY, false);
+        }
+        // Check for reading past the end of the bound buffer object
+        if (byteCount > elementArrayBuffer->getSize())
+        {
+            return gl::error(GL_INVALID_OPERATION, false);
+        }
+    }
+    else if (!indices)
+    {
+        // Catch this programming error here
+        return gl::error(GL_INVALID_OPERATION, false);
+    }
    // Use max index to validate if our vertex buffers are large enough for the pull.
    // TODO: offer fast path, with disabled index validation.
    // TODO: also disable index checking on back-ends that are robust to out-of-range accesses.