RESOLVED FIXED293703
[WebDriver] Driver segfault when a pointer move or scroll action is missing a coordinate 
https://bugs.webkit.org/show_bug.cgi?id=293703
Summary [WebDriver] Driver segfault when a pointer move or scroll action is missing a...
Lauro Moura
Reported 2025-05-28 14:19:57 PDT
`WebDriverService::processPointerMoveAction`/`processWheelAction` need to validate the incoming action request for the required fields before dispatching the actions. If it fails to do so, `Session::performActions` might access the `WebDriver::Action` x and y fields directly without checking whether they're present, leading to errors like `bad_optional_access`. Related WPT tests: imported/w3c/webdriver/tests/classic/perform_actions/pointer_mouse.py::test_missing_coordinates[x] imported/w3c/webdriver/tests/classic/perform_actions/pointer_mouse.py::test_missing_coordinates[y] imported/w3c/webdriver/tests/classic/perform_actions/invalid.py::test_wheel_action_scroll_missing_property[x] imported/w3c/webdriver/tests/classic/perform_actions/invalid.py::test_wheel_action_scroll_missing_property[y] imported/w3c/webdriver/tests/classic/perform_actions/invalid.py::test_wheel_action_scroll_missing_property[deltaX] imported/w3c/webdriver/tests/classic/perform_actions/invalid.py::test_wheel_action_scroll_missing_property[deltaY] Patch incoming, alongside other small related scroll invalid type fixes.
Attachments
Add attachment proposed patch, testcase, etc.
Lauro Moura
Comment 1 2025-05-28 14:27:16 PDT
Pull request: https://github.com/WebKit/WebKit/pull/46014
Lauro Moura
Comment 2 2025-05-28 14:50:21 PDT
*** Bug 290297 has been marked as a duplicate of this bug. ***
EWS
Comment 3 2025-06-03 18:50:00 PDT
Committed 295789@main (80ff32d5e1ae): <https://commits.webkit.org/295789@main> Reviewed commits have been landed. Closing PR #46014 and removing active labels.
Radar WebKit Bug Importer
Comment 4 2025-06-03 19:02:13 PDT
<rdar://problem/152545957>
Note You need to log in before you can comment on or make changes to this bug.