Bug 306936

Summary: REGRESSION (283678@main): WebKit::RemoteImageBufferSet contains duplicate m_previouslyPaintedRect member variable from base class
Product: WebKit Reporter: David Kilzer (:ddkilzer) <ddkilzer>
Component: WebKit Process ModelAssignee: David Kilzer (:ddkilzer) <ddkilzer>
Status: RESOLVED FIXED    
Severity: Normal CC: mattwoodrow, nham, webkit-bug-importer
Priority: P2 Keywords: InRadar, Regression
Version: WebKit Nightly Build   
Hardware: Unspecified   
OS: Unspecified   
Bug Depends on: 266201    
Bug Blocks:    

David Kilzer (:ddkilzer)
Reported 2026-02-03 23:50:58 PST
The `m_previouslyPaintedRect` member variable is declared in both `WebKit::ImageBufferSet` (base class) and `WebKit::RemoteImageBufferSet` (subclass), causing the subclass member to shadow the base class member. Files affected: - `Source/WebKit/Shared/graphics/ImageBufferSet.h` - `Source/WebKit/GPUProcess/graphics/RemoteImageBufferSet.h` Both declare: `std::optional<WebCore::IntRect> m_previouslyPaintedRect;` This can lead to subtle bugs where code in the base class writes to its member while the subclass reads its own shadowed member (or vice versa). Regressed in: Share code for buffer swapping and copy-forward between RemoteLayerWithInProcessRendering and RemoteImageBufferSet. <https://bugs.webkit.org/show_bug.cgi?id=266201> <rdar://119474592> <https://github.com/WebKit/WebKit/commit/27846c09e4fee72c441c3d78c0c93ed53bae2b2e>
Attachments
Add attachment proposed patch, testcase, etc.
Radar WebKit Bug Importer
Comment 1 2026-02-03 23:51:05 PST
<rdar://problem/169600253>
Radar WebKit Bug Importer
Comment 2 2026-02-03 23:51:06 PST
<rdar://problem/169600258>
David Kilzer (:ddkilzer)
Comment 3 2026-02-04 00:21:47 PST
Pull request: https://github.com/WebKit/WebKit/pull/57848
EWS
Comment 4 2026-02-04 11:29:42 PST
Committed 306794@main (d96a37b422a9): <https://commits.webkit.org/306794@main> Reviewed commits have been landed. Closing PR #57848 and removing active labels.
Note You need to log in before you can comment on or make changes to this bug.