Fix crash on zero size but non-NULL bufferData.

Could cause a crash when running the WebGL CTS with Firefox. BUG=angle:675 Change-Id: I58bf9eed622660d4702b775f368ff9cbd693197a Reviewed-on: https://chromium-review.googlesource.com/203456Reviewed-by: Geoff Lang <geofflang@chromium.org> Tested-by: Jamie Madill <jmadill@chromium.org> Reviewed-by: Nicolas Capens <nicolascapens@chromium.org>

Fix crash on zero size but non-NULL bufferData.
e09f1c82 · Jamie Madill · 6ed8d8af · e09f1c82 · e09f1c82
Commit e09f1c82 authored Jun 12, 2014 by Jamie Madill
Hide whitespace changes
Inline Side-by-side

Showing with 16 additions and 1 deletion

BufferStorage11.cpp src/libGLESv2/renderer/d3d11/BufferStorage11.cpp +1 -1

BufferDataTest.cpp tests/angle_tests/BufferDataTest.cpp +15 -0

No files found.
--- a/src/libGLESv2/renderer/d3d11/BufferStorage11.cpp
+++ b/src/libGLESv2/renderer/d3d11/BufferStorage11.cpp
@@ -221,7 +221,7 @@ void BufferStorage11::setData(const void* data, size_t size, size_t offset)
    size_t requiredSize = size + offset;
    mSize = std::max(mSize, requiredSize);
-    if (data)
+    if (data && size > 0)
    {
        NativeBuffer11 *stagingBuffer = getStagingBuffer();

--- a/tests/angle_tests/BufferDataTest.cpp
+++ b/tests/angle_tests/BufferDataTest.cpp
@@ -97,6 +97,21 @@ TEST_F(BufferDataTest, null_data)
    }
 }
+TEST_F(BufferDataTest, zero_nonnull_data)
+{
+    glBindBuffer(GL_ARRAY_BUFFER, mBuffer);
+    EXPECT_GL_NO_ERROR();
+    char *zeroData = new char[0];
+    glBufferData(GL_ARRAY_BUFFER, 0, zeroData, GL_STATIC_DRAW);
+    EXPECT_GL_NO_ERROR();
+    glBufferSubData(GL_ARRAY_BUFFER, 0, 0, zeroData);
+    EXPECT_GL_NO_ERROR();
+    delete [] zeroData;
+}
 TEST_F(BufferDataTest, huge_setdata_should_not_crash)
 {
    glBindBuffer(GL_ARRAY_BUFFER, mBuffer);