Changeset 82795 in webkit

Timestamp:

Apr 3, 2011 4:22:58 PM (13 years ago)

Author:

mitz@apple.com

Message:

fast/images/extra-image-in-image-document.html crashes when run after embed-image.html
​https://bugs.webkit.org/show_bug.cgi?id=57733

Reviewed by Maciej Stachowiak.

The crash happens because resetting the page scale as part of preparing the WebView for the
next test triggered layout, which in turn caused a plug-in to make a resource request, and
DumpRenderTree's delegate to be dispatched. The delegate doesn't expect to be called between
tests, and it references the layout test controller, which is null.

• page/Frame.cpp:

(WebCore::Frame::scalePage): Avoid an unnecessary layout if the page scale isn't changing. This
is more efficient, and has the side effect of avoiding the crash in DumpRenderTree, although
DumpRenderTree could still crash when after a test with disabled plug-ins and a non-1 page scale.
I think there are currently no such tests, so I am not fixing DumpRenderTree.

Location:

trunk/Source/WebCore

Files:

• ChangeLog (modified) (23 diffs)
• page/Frame.cpp (modified) (1 diff)

trunk/Source/WebCore/ChangeLog

@@ +1 @@
+2011-04-03  Dan Bernstein  <mitz@apple.com>
+
+        Reviewed by Maciej Stachowiak.
+
+        fast/images/extra-image-in-image-document.html crashes when run after embed-image.html
+        https://bugs.webkit.org/show_bug.cgi?id=57733
+
+        The crash happens because resetting the page scale as part of preparing the WebView for the
+        next test triggered layout, which in turn caused a plug-in to make a resource request, and
+        DumpRenderTreeÕs delegate to be dispatched. The delegate doesnÕt expect to be called between
+        tests, and it references the layout test controller, which is null.
+
+        * page/Frame.cpp:
+        (WebCore::Frame::scalePage): Avoid an unnecessary layout if the page scale isnÕt changing. This
+        is more efficient, and has the side effect of avoiding the crash in DumpRenderTree, although
+        DumpRenderTree could still crash when after a test with disabled plug-ins and a non-1 page scale.
+        I think there are currently no such tests, so I am not fixing DumpRenderTree.
+
 2011-04-03  Eric Seidel  <eric@webkit.org>
 
@@ -3789 +3807 @@
         (WebCore::propertyNameMatchesAttributeName):
 
-2011-03-29  Csaba Osztrogonác  <ossy@webkit.org>
+2011-03-29  Csaba Osztrogonác  <ossy@webkit.org>
 
         Unreviewed rollout r82282, part of r82288, r82298.
@@ -5439 +5457 @@
         * inspector/generate-inspector-idl:
 
-2011-03-28  Csaba Osztrogonác  <ossy@webkit.org>
+2011-03-28  Csaba Osztrogonác  <ossy@webkit.org>
 
         Buildfix after r82125.
@@ -5867 +5885 @@
 2011-03-28  Nancy Piedra  <nancy.piedra@nokia.com>
 
-        Reviewed by Csaba Osztrogonác.
+        Reviewed by Csaba Osztrogonác.
 
         This patch fixes linking errors on Qt Webkit Windows MinGW builds.
@@ -10538 +10556 @@
 2011-03-21  Andreas Kling  <kling@webkit.org>
 
-        Reviewed by Tor Arne Vestbø.
+        Reviewed by Tor Arne Vestbø.
 
         [Qt] Add QNetworkReplyHandler::wasAborted()
@@ -12969 +12987 @@
         (WebCore::AXObjectCache::setEnhancedUserInterfaceAccessibility):
 
-2011-03-16  Csaba Osztrogonác  <ossy@webkit.org>
+2011-03-16  Csaba Osztrogonác  <ossy@webkit.org>
 
         [Qt] Buildfix after r81230.
@@ -13172 +13190 @@
         only the clones on the RenderCombineText will be mutated.
         * rendering/RenderCombineText.cpp:
-        (WebCore::RenderCombineText::styleDidChange): Clone the style, to avoid mutating the parent’s
+        (WebCore::RenderCombineText::styleDidChange): Clone the style, to avoid mutating the parent’s
         style.
         (WebCore::RenderCombineText::combineText): Start off with the original font; restore it if
         the text cannot be combined.
         * rendering/RenderCombineText.h:
-        (WebCore::RenderCombineText::originalFont): Added. Returns the parent’s font.
+        (WebCore::RenderCombineText::originalFont): Added. Returns the parent’s font.
 
 2011-03-14  Pavel Podivilov  <podivilov@chromium.org>
@@ -19884 +19902 @@
 2011-03-08  Joe Wild  <joseph.wild@nokia.com>
 
-        Reviewed by Csaba Osztrogonác.
+        Reviewed by Csaba Osztrogonác.
 
         [Qt] Missing SVG variables
@@ -20974 +20992 @@
         * WebCore.gypi:
 
-2011-03-07  Csaba Osztrogonác  <ossy@webkit.org>
+2011-03-07  Csaba Osztrogonác  <ossy@webkit.org>
 
         Unreviewed buildfix after r80478.
@@ -23933 +23951 @@
         * editing/EditingStyle.h:
 
-2011-03-03  Csaba Osztrogonác  <ossy@webkit.org>
+2011-03-03  Csaba Osztrogonác  <ossy@webkit.org>
 
         Unreviewed trivial fix after r80169.
@@ -24628 +24646 @@
 2011-03-02  Aravind Akella  <aravind.akella@nokia.com>
 
-         Reviewed by Csaba Osztrogonác.
+         Reviewed by Csaba Osztrogonác.
 
          [Qt][WK2] Memory exhausted when building qtwebkit2 on linux
@@ -26542 +26560 @@
 2011-03-01  Andras Becsi  <abecsi@webkit.org>
 
-        Reviewed by Csaba Osztrogonác.
+        Reviewed by Csaba Osztrogonác.
 
         [Qt] Clean up the project files and move common options to WebKit.pri.
@@ -27007 +27025 @@
         Reviewed by Darin Adler.
 
-        [Mac] Make "Change back to …" contextual menu item work with new autocorrection.
+        [Mac] Make "Change back to …" contextual menu item work with new autocorrection.
         https://bugs.webkit.org/show_bug.cgi?id=55396
         <rdar://problem/8836093>
@@ -27974 +27992 @@
         Reviewed by Eric Seidel.
 
-        <input value="type=submit"> throws a warning (“HTML parse error”)
+        <input value="type=submit"> throws a warning (“HTML parse error”)
         https://bugs.webkit.org/show_bug.cgi?id=55120
 
@@ -30938 +30956 @@
         * page/EventHandler.cpp:
         (WebCore::EventHandler::EventHandler): Initialize m_activationEventNumber
-        to -1. Since WebKit2 doesn�t support non-activating clicks yet (<http://webkit.org/b/55053>
-        <rdar://problem/9042197>) and doesn�t send event numbers, all events were considered to be
+        to -1. Since WebKit2 doesn�t support non-activating clicks yet (<http://webkit.org/b/55053>
+        <rdar://problem/9042197>) and doesn�t send event numbers, all events were considered to be
         window-activating events. This in turn prevented them from clearing the selection and resuming
         caret blinking on mouse up.
@@ -31438 +31456 @@
 2011-02-22  Chang Shu  <cshu@webkit.org>
 
-        Reviewed by Csaba Osztrogonác.
+        Reviewed by Csaba Osztrogonác.
 
         [Qt] editing/deleting/5408255.html fails
@@ -31507 +31525 @@
 2011-02-22  Andras Becsi  <abecsi@webkit.org>
 
-        Reviewed by Csaba Osztrogonác.
+        Reviewed by Csaba Osztrogonác.
 
         [Qt] Redesign the build system
@@ -31632 +31650 @@
 
         Reviewed by Laszlo Gombos.
-        Rubber-stamped by Csaba Osztrogonác.
+        Rubber-stamped by Csaba Osztrogonác.
 
         [Qt] Redesign the build system
@@ -32569 +32587 @@
         (WebCore::InspectorDOMAgent::create):
 
-2011-02-21  Csaba Osztrogonác  <ossy@webkit.org>
+2011-02-21  Csaba Osztrogonác  <ossy@webkit.org>
 
         Reviewed by Andreas Kling.
@@ -33346 +33364 @@
 2011-02-18  Yi Shen  <yi.4.shen@nokia.com>
 
-        Reviewed by Tor Arne Vestbø.
+        Reviewed by Tor Arne Vestbø.
 
         Always display the media controls when requiresFullscreenForVideoPlayback() is true
@@ -33985 +34003 @@
         (WebCore::DateComponents::parseTime):
 
-2011-02-18  Csaba Osztrogonác  <ossy@webkit.org>
+2011-02-18  Csaba Osztrogonác  <ossy@webkit.org>
 
         Rubber-stamped by Andreas Kling.
@@ -34180 +34198 @@
         * page/FrameView.cpp:
         (WebCore::FrameView::scrollXForFixedPosition): Moved from ScrollView here and changed to
-        account for page scale: when the page is scaled, the “viewport” with respect to which fixed
-        objects are positioned is scaled as well. Since it’s now bigger than the real viewport (that is,
+        account for page scale: when the page is scaled, the “viewport” with respect to which fixed
+        objects are positioned is scaled as well. Since it’s now bigger than the real viewport (that is,
         the frame view), we move it around in proportion to the document scroll, so that when the document
         is fully scrolled to the bottom-right, the bottom right of the scaled viewport is visible.
@@ -34837 +34855 @@
         (WebCore::RenderSVGResourcePattern::createTileImage):
 
-2011-02-17  Csaba Osztrogonác  <ossy@webkit.org>
+2011-02-17  Csaba Osztrogonác  <ossy@webkit.org>
 
         Unreviewed.

trunk/Source/WebCore/page/Frame.cpp

@@ -998 +998 @@
         return;
 
-    m_pageScaleFactor = scale;
-
-    if (document->renderer())
-        document->renderer()->setNeedsLayout(true);
-
-    document->recalcStyle(Node::Force);
+    if (scale != m_pageScaleFactor) {
+        m_pageScaleFactor = scale;
+
+        if (document->renderer())
+            document->renderer()->setNeedsLayout(true);
+
+        document->recalcStyle(Node::Force);
 
 #if USE(ACCELERATED_COMPOSITING)
-    updateContentsScale(scale);
-#endif
+        updateContentsScale(scale);
+#endif
+    }
 
     if (FrameView* view = this->view()) {