1. 28 Jan, 2011 40 commits
    • rniwa@webkit.org's avatar
      2011-01-28 Ryosuke Niwa <rniwa@webkit.org> · 628faee7
      rniwa@webkit.org authored
              Unreviewed; roll WebKit Chromium revision from 72894 to 73048.
      
              * DEPS:
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77047 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      628faee7
    • mitz@apple.com's avatar
      Updated test results after r76983. · 1a23039b
      mitz@apple.com authored
      Rubber-stamped by Maciej Stachowiak.
      
      * platform/mac-leopard/fast/forms/select-writing-direction-natural-expected.txt: Copied from LayoutTests/platform/mac/fast/forms/select-writing-direction-natural-expected.txt.
      * platform/mac-leopard/fast/text/international/bidi-menulist-expected.txt: Copied from LayoutTests/platform/mac/fast/text/international/bidi-menulist-expected.txt.
      * platform/mac/fast/forms/select-writing-direction-natural-expected.checksum:
      * platform/mac/fast/forms/select-writing-direction-natural-expected.png:
      * platform/mac/fast/forms/select-writing-direction-natural-expected.txt:
      * platform/mac/fast/text/international/bidi-menulist-expected.checksum:
      * platform/mac/fast/text/international/bidi-menulist-expected.png:
      * platform/mac/fast/text/international/bidi-menulist-expected.txt:
      
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77046 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      1a23039b
    • simon.fraser@apple.com's avatar
      2011-01-28 Simon Fraser <simon.fraser@apple.com> · 991ac213
      simon.fraser@apple.com authored
              Reviewed by Gavin Barraclough.
      
              Add various clampToInt() methods to MathExtras.h
              https://bugs.webkit.org/show_bug.cgi?id=52910
      
              Use clampToInteger() from MathExtras.h
      
              * css/CSSParser.cpp:
              (WebCore::CSSParser::parseCounter):
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77045 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      991ac213
    • rniwa@webkit.org's avatar
      2011-01-28 Sheriff Bot <webkit.review.bot@gmail.com> · 3857b1ea
      rniwa@webkit.org authored
              Unreviewed, rolling out r77006 and r77020.
              http://trac.webkit.org/changeset/77006
              http://trac.webkit.org/changeset/77020
              https://bugs.webkit.org/show_bug.cgi?id=53360
      
              "Broke Windows tests" (Requested by rniwa on #webkit).
      
              * API/JSCallbackObject.h:
              (JSC::JSCallbackObjectData::setPrivateProperty):
              (JSC::JSCallbackObjectData::JSPrivatePropertyMap::getPrivateProperty):
              (JSC::JSCallbackObjectData::JSPrivatePropertyMap::setPrivateProperty):
              (JSC::JSCallbackObjectData::JSPrivatePropertyMap::markChildren):
              (JSC::JSCallbackObject::setPrivateProperty):
              * API/JSCallbackObjectFunctions.h:
              (JSC::::put):
              (JSC::::staticFunctionGetter):
              * API/JSObjectRef.cpp:
              (JSObjectMakeConstructor):
              (JSObjectSetPrivateProperty):
              * API/JSWeakObjectMapRefInternal.h:
              * JavaScriptCore.exp:
              * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:
              * JavaScriptCore.xcodeproj/project.pbxproj:
              * bytecode/CodeBlock.cpp:
              (JSC::CodeBlock::markAggregate):
              * bytecode/CodeBlock.h:
              (JSC::CodeBlock::globalObject):
              * bytecompiler/BytecodeGenerator.cpp:
              (JSC::BytecodeGenerator::BytecodeGenerator):
              (JSC::BytecodeGenerator::emitJumpIfNotFunctionCall):
              (JSC::BytecodeGenerator::emitJumpIfNotFunctionApply):
              (JSC::BytecodeGenerator::findScopedProperty):
              * debugger/Debugger.cpp:
              (JSC::evaluateInGlobalCallFrame):
              * debugger/DebuggerActivation.cpp:
              (JSC::DebuggerActivation::DebuggerActivation):
              (JSC::DebuggerActivation::markChildren):
              * debugger/DebuggerActivation.h:
              * debugger/DebuggerCallFrame.cpp:
              (JSC::DebuggerCallFrame::evaluate):
              * interpreter/CallFrame.h:
              (JSC::ExecState::exception):
              * interpreter/Interpreter.cpp:
              (JSC::Interpreter::resolve):
              (JSC::Interpreter::resolveSkip):
              (JSC::Interpreter::resolveGlobal):
              (JSC::Interpreter::resolveGlobalDynamic):
              (JSC::Interpreter::resolveBaseAndProperty):
              (JSC::Interpreter::unwindCallFrame):
              (JSC::appendSourceToError):
              (JSC::Interpreter::execute):
              (JSC::Interpreter::tryCacheGetByID):
              (JSC::Interpreter::privateExecute):
              * jit/JITStubs.cpp:
              (JSC::JITThunks::tryCacheGetByID):
              (JSC::DEFINE_STUB_FUNCTION):
              * jsc.cpp:
              (GlobalObject::GlobalObject):
              * runtime/ArgList.cpp:
              (JSC::MarkedArgumentBuffer::markLists):
              * runtime/Arguments.cpp:
              (JSC::Arguments::markChildren):
              (JSC::Arguments::getOwnPropertySlot):
              (JSC::Arguments::getOwnPropertyDescriptor):
              (JSC::Arguments::put):
              * runtime/Arguments.h:
              (JSC::Arguments::setActivation):
              (JSC::Arguments::Arguments):
              * runtime/ArrayConstructor.cpp:
              (JSC::ArrayConstructor::ArrayConstructor):
              (JSC::constructArrayWithSizeQuirk):
              * runtime/ArrayPrototype.cpp:
              (JSC::arrayProtoFuncSplice):
              * runtime/BatchedTransitionOptimizer.h:
              (JSC::BatchedTransitionOptimizer::BatchedTransitionOptimizer):
              (JSC::BatchedTransitionOptimizer::~BatchedTransitionOptimizer):
              * runtime/BooleanConstructor.cpp:
              (JSC::BooleanConstructor::BooleanConstructor):
              (JSC::constructBoolean):
              (JSC::constructBooleanFromImmediateBoolean):
              * runtime/BooleanPrototype.cpp:
              (JSC::BooleanPrototype::BooleanPrototype):
              * runtime/ConservativeSet.cpp:
              (JSC::ConservativeSet::grow):
              * runtime/ConservativeSet.h:
              (JSC::ConservativeSet::~ConservativeSet):
              (JSC::ConservativeSet::mark):
              * runtime/DateConstructor.cpp:
              (JSC::DateConstructor::DateConstructor):
              * runtime/DateInstance.cpp:
              (JSC::DateInstance::DateInstance):
              * runtime/DatePrototype.cpp:
              (JSC::dateProtoFuncSetTime):
              (JSC::setNewValueFromTimeArgs):
              (JSC::setNewValueFromDateArgs):
              (JSC::dateProtoFuncSetYear):
              * runtime/ErrorConstructor.cpp:
              (JSC::ErrorConstructor::ErrorConstructor):
              * runtime/ErrorInstance.cpp:
              (JSC::ErrorInstance::ErrorInstance):
              * runtime/ErrorPrototype.cpp:
              (JSC::ErrorPrototype::ErrorPrototype):
              * runtime/FunctionConstructor.cpp:
              (JSC::FunctionConstructor::FunctionConstructor):
              * runtime/FunctionPrototype.cpp:
              (JSC::FunctionPrototype::FunctionPrototype):
              * runtime/GetterSetter.cpp:
              (JSC::GetterSetter::markChildren):
              * runtime/GetterSetter.h:
              (JSC::GetterSetter::GetterSetter):
              (JSC::GetterSetter::getter):
              (JSC::GetterSetter::setGetter):
              (JSC::GetterSetter::setter):
              (JSC::GetterSetter::setSetter):
              * runtime/GlobalEvalFunction.cpp:
              (JSC::GlobalEvalFunction::GlobalEvalFunction):
              (JSC::GlobalEvalFunction::markChildren):
              * runtime/GlobalEvalFunction.h:
              (JSC::GlobalEvalFunction::cachedGlobalObject):
              * runtime/Heap.cpp:
              (JSC::Heap::markProtectedObjects):
              (JSC::Heap::markTempSortVectors):
              (JSC::Heap::markRoots):
              * runtime/InternalFunction.cpp:
              (JSC::InternalFunction::InternalFunction):
              * runtime/JSAPIValueWrapper.h:
              (JSC::JSAPIValueWrapper::value):
              (JSC::JSAPIValueWrapper::JSAPIValueWrapper):
              * runtime/JSActivation.cpp:
              (JSC::JSActivation::markChildren):
              (JSC::JSActivation::put):
              * runtime/JSArray.cpp:
              (JSC::JSArray::JSArray):
              (JSC::JSArray::getOwnPropertySlot):
              (JSC::JSArray::getOwnPropertyDescriptor):
              (JSC::JSArray::put):
              (JSC::JSArray::putSlowCase):
              (JSC::JSArray::deleteProperty):
              (JSC::JSArray::increaseVectorLength):
              (JSC::JSArray::setLength):
              (JSC::JSArray::pop):
              (JSC::JSArray::push):
              (JSC::JSArray::unshiftCount):
              (JSC::JSArray::sort):
              (JSC::JSArray::fillArgList):
              (JSC::JSArray::copyToRegisters):
              (JSC::JSArray::compactForSorting):
              * runtime/JSArray.h:
              (JSC::JSArray::getIndex):
              (JSC::JSArray::setIndex):
              (JSC::JSArray::uncheckedSetIndex):
              (JSC::JSArray::markChildrenDirect):
              * runtime/JSByteArray.cpp:
              (JSC::JSByteArray::JSByteArray):
              * runtime/JSCell.h:
              (JSC::JSCell::JSValue::toThisObject):
              (JSC::JSCell::MarkStack::append):
              * runtime/JSFunction.cpp:
              (JSC::JSFunction::JSFunction):
              (JSC::JSFunction::getOwnPropertySlot):
              * runtime/JSGlobalData.h:
              * runtime/JSGlobalObject.cpp:
              (JSC::markIfNeeded):
              (JSC::JSGlobalObject::reset):
              (JSC::JSGlobalObject::resetPrototype):
              (JSC::JSGlobalObject::markChildren):
              * runtime/JSGlobalObject.h:
              (JSC::JSGlobalObject::JSGlobalObjectData::JSGlobalObjectData):
              (JSC::JSGlobalObject::regExpConstructor):
              (JSC::JSGlobalObject::errorConstructor):
              (JSC::JSGlobalObject::evalErrorConstructor):
              (JSC::JSGlobalObject::rangeErrorConstructor):
              (JSC::JSGlobalObject::referenceErrorConstructor):
              (JSC::JSGlobalObject::syntaxErrorConstructor):
              (JSC::JSGlobalObject::typeErrorConstructor):
              (JSC::JSGlobalObject::URIErrorConstructor):
              (JSC::JSGlobalObject::evalFunction):
              (JSC::JSGlobalObject::objectPrototype):
              (JSC::JSGlobalObject::functionPrototype):
              (JSC::JSGlobalObject::arrayPrototype):
              (JSC::JSGlobalObject::booleanPrototype):
              (JSC::JSGlobalObject::stringPrototype):
              (JSC::JSGlobalObject::numberPrototype):
              (JSC::JSGlobalObject::datePrototype):
              (JSC::JSGlobalObject::regExpPrototype):
              (JSC::JSGlobalObject::methodCallDummy):
              (JSC::Structure::prototypeForLookup):
              (JSC::constructArray):
              * runtime/JSONObject.cpp:
              (JSC::Stringifier::Holder::object):
              (JSC::Stringifier::markAggregate):
              (JSC::Stringifier::stringify):
              (JSC::Stringifier::Holder::appendNextProperty):
              (JSC::Walker::callReviver):
              (JSC::Walker::walk):
              * runtime/JSObject.cpp:
              (JSC::JSObject::defineGetter):
              (JSC::JSObject::defineSetter):
              (JSC::JSObject::removeDirect):
              (JSC::JSObject::putDirectFunction):
              (JSC::JSObject::putDirectFunctionWithoutTransition):
              (JSC::putDescriptor):
              (JSC::JSObject::defineOwnProperty):
              * runtime/JSObject.h:
              (JSC::JSObject::getDirectOffset):
              (JSC::JSObject::putDirectOffset):
              (JSC::JSObject::flattenDictionaryObject):
              (JSC::JSObject::putDirectInternal):
              (JSC::JSObject::putDirect):
              (JSC::JSObject::putDirectFunction):
              (JSC::JSObject::putDirectWithoutTransition):
              (JSC::JSObject::putDirectFunctionWithoutTransition):
              (JSC::JSValue::putDirect):
              (JSC::JSObject::allocatePropertyStorageInline):
              (JSC::JSObject::markChildrenDirect):
              * runtime/JSPropertyNameIterator.cpp:
              (JSC::JSPropertyNameIterator::JSPropertyNameIterator):
              (JSC::JSPropertyNameIterator::get):
              * runtime/JSPropertyNameIterator.h:
              * runtime/JSStaticScopeObject.cpp:
              (JSC::JSStaticScopeObject::markChildren):
              * runtime/JSString.cpp:
              (JSC::StringObject::create):
              * runtime/JSValue.h:
              * runtime/JSWrapperObject.cpp:
              (JSC::JSWrapperObject::markChildren):
              * runtime/JSWrapperObject.h:
              (JSC::JSWrapperObject::internalValue):
              (JSC::JSWrapperObject::setInternalValue):
              * runtime/LiteralParser.cpp:
              (JSC::LiteralParser::parse):
              * runtime/Lookup.cpp:
              (JSC::setUpStaticFunctionSlot):
              * runtime/Lookup.h:
              (JSC::lookupPut):
              * runtime/MarkStack.h:
              (JSC::MarkStack::appendValues):
              * runtime/MathObject.cpp:
              (JSC::MathObject::MathObject):
              * runtime/NativeErrorConstructor.cpp:
              (JSC::NativeErrorConstructor::NativeErrorConstructor):
              * runtime/NativeErrorPrototype.cpp:
              (JSC::NativeErrorPrototype::NativeErrorPrototype):
              * runtime/NumberConstructor.cpp:
              (JSC::NumberConstructor::NumberConstructor):
              (JSC::constructWithNumberConstructor):
              * runtime/NumberObject.cpp:
              (JSC::constructNumber):
              * runtime/NumberPrototype.cpp:
              (JSC::NumberPrototype::NumberPrototype):
              * runtime/ObjectConstructor.cpp:
              (JSC::ObjectConstructor::ObjectConstructor):
              (JSC::objectConstructorGetOwnPropertyDescriptor):
              * runtime/Operations.h:
              (JSC::normalizePrototypeChain):
              (JSC::resolveBase):
              * runtime/PrototypeFunction.cpp:
              (JSC::PrototypeFunction::PrototypeFunction):
              * runtime/PutPropertySlot.h:
              (JSC::PutPropertySlot::setExistingProperty):
              (JSC::PutPropertySlot::setNewProperty):
              (JSC::PutPropertySlot::base):
              * runtime/RegExpConstructor.cpp:
              (JSC::RegExpConstructor::RegExpConstructor):
              * runtime/ScopeChain.cpp:
              (JSC::ScopeChainNode::print):
              * runtime/ScopeChain.h:
              (JSC::ScopeChainNode::~ScopeChainNode):
              (JSC::ScopeChainIterator::operator*):
              (JSC::ScopeChainIterator::operator->):
              (JSC::ScopeChain::top):
              * runtime/ScopeChainMark.h:
              (JSC::ScopeChain::markAggregate):
              * runtime/SmallStrings.cpp:
              (JSC::isMarked):
              (JSC::SmallStrings::markChildren):
              * runtime/SmallStrings.h:
              (JSC::SmallStrings::emptyString):
              (JSC::SmallStrings::singleCharacterString):
              (JSC::SmallStrings::singleCharacterStrings):
              * runtime/StringConstructor.cpp:
              (JSC::StringConstructor::StringConstructor):
              * runtime/StringObject.cpp:
              (JSC::StringObject::StringObject):
              * runtime/StringObject.h:
              * runtime/StringPrototype.cpp:
              (JSC::StringPrototype::StringPrototype):
              * runtime/Structure.cpp:
              (JSC::Structure::Structure):
              (JSC::Structure::addPropertyTransition):
              (JSC::Structure::toDictionaryTransition):
              (JSC::Structure::flattenDictionaryStructure):
              * runtime/Structure.h:
              (JSC::Structure::storedPrototype):
              * runtime/WeakGCMap.h:
              (JSC::WeakGCMap::uncheckedGet):
              (JSC::WeakGCMap::isValid):
              (JSC::::get):
              (JSC::::take):
              (JSC::::set):
              (JSC::::uncheckedRemove):
              * runtime/WriteBarrier.h: Removed.
      2011-01-28  Sheriff Bot  <webkit.review.bot@gmail.com>
      
              Unreviewed, rolling out r77006 and r77020.
              http://trac.webkit.org/changeset/77006
              http://trac.webkit.org/changeset/77020
              https://bugs.webkit.org/show_bug.cgi?id=53360
      
              "Broke Windows tests" (Requested by rniwa on #webkit).
      
              * JSValueWrapper.cpp:
              (JSValueWrapper::JSObjectMark):
      2011-01-28  Sheriff Bot  <webkit.review.bot@gmail.com>
      
              Unreviewed, rolling out r77006 and r77020.
              http://trac.webkit.org/changeset/77006
              http://trac.webkit.org/changeset/77020
              https://bugs.webkit.org/show_bug.cgi?id=53360
      
              "Broke Windows tests" (Requested by rniwa on #webkit).
      
              * WebView/WebScriptDebugDelegate.mm:
              (-[WebScriptCallFrame scopeChain]):
      2011-01-28  Sheriff Bot  <webkit.review.bot@gmail.com>
      
              Unreviewed, rolling out r77006 and r77020.
              http://trac.webkit.org/changeset/77006
              http://trac.webkit.org/changeset/77020
              https://bugs.webkit.org/show_bug.cgi?id=53360
      
              "Broke Windows tests" (Requested by rniwa on #webkit).
      
              * ForwardingHeaders/runtime/WriteBarrier.h: Removed.
              * WebCore.exp.in:
              * bindings/js/DOMWrapperWorld.h:
              * bindings/js/JSAudioConstructor.cpp:
              (WebCore::JSAudioConstructor::JSAudioConstructor):
              * bindings/js/JSDOMBinding.cpp:
              (WebCore::markDOMNodesForDocument):
              (WebCore::markDOMObjectWrapper):
              (WebCore::markDOMNodeWrapper):
              * bindings/js/JSDOMGlobalObject.cpp:
              (WebCore::JSDOMGlobalObject::markChildren):
              (WebCore::JSDOMGlobalObject::setInjectedScript):
              (WebCore::JSDOMGlobalObject::injectedScript):
              * bindings/js/JSDOMGlobalObject.h:
              (WebCore::JSDOMGlobalObject::JSDOMGlobalObjectData::JSDOMGlobalObjectData):
              (WebCore::getDOMConstructor):
              * bindings/js/JSDOMWindowCustom.cpp:
              (WebCore::JSDOMWindow::setLocation):
              (WebCore::DialogHandler::dialogCreated):
              * bindings/js/JSDOMWindowShell.cpp:
              (WebCore::JSDOMWindowShell::JSDOMWindowShell):
              (WebCore::JSDOMWindowShell::setWindow):
              (WebCore::JSDOMWindowShell::markChildren):
              (WebCore::JSDOMWindowShell::unwrappedObject):
              * bindings/js/JSDOMWindowShell.h:
              (WebCore::JSDOMWindowShell::window):
              (WebCore::JSDOMWindowShell::setWindow):
              * bindings/js/JSDeviceMotionEventCustom.cpp:
              (WebCore::createAccelerationObject):
              (WebCore::createRotationRateObject):
              * bindings/js/JSEventListener.cpp:
              (WebCore::JSEventListener::JSEventListener):
              (WebCore::JSEventListener::markJSFunction):
              * bindings/js/JSEventListener.h:
              (WebCore::JSEventListener::jsFunction):
              * bindings/js/JSHTMLDocumentCustom.cpp:
              (WebCore::JSHTMLDocument::setAll):
              * bindings/js/JSImageConstructor.cpp:
              (WebCore::JSImageConstructor::JSImageConstructor):
              * bindings/js/JSImageDataCustom.cpp:
              (WebCore::toJS):
              * bindings/js/JSJavaScriptCallFrameCustom.cpp:
              (WebCore::JSJavaScriptCallFrame::scopeChain):
              (WebCore::JSJavaScriptCallFrame::scopeType):
              * bindings/js/JSNodeFilterCondition.cpp:
              (WebCore::JSNodeFilterCondition::markAggregate):
              (WebCore::JSNodeFilterCondition::acceptNode):
              * bindings/js/JSNodeFilterCondition.h:
              * bindings/js/JSNodeFilterCustom.cpp:
              * bindings/js/JSOptionConstructor.cpp:
              (WebCore::JSOptionConstructor::JSOptionConstructor):
              * bindings/js/JSSQLResultSetRowListCustom.cpp:
              (WebCore::JSSQLResultSetRowList::item):
              * bindings/js/ScriptCachedFrameData.cpp:
              (WebCore::ScriptCachedFrameData::restore):
              * bindings/js/ScriptObject.cpp:
              (WebCore::ScriptGlobalObject::set):
              * bindings/js/SerializedScriptValue.cpp:
              (WebCore::CloneDeserializer::putProperty):
              * bindings/scripts/CodeGeneratorJS.pm:
              * bridge/qt/qt_runtime.cpp:
              (JSC::Bindings::QtRuntimeMetaMethod::QtRuntimeMetaMethod):
              (JSC::Bindings::QtRuntimeMetaMethod::markChildren):
              (JSC::Bindings::QtRuntimeMetaMethod::connectGetter):
              (JSC::Bindings::QtRuntimeMetaMethod::disconnectGetter):
              * bridge/qt/qt_runtime.h:
              * bridge/runtime_root.cpp:
              (JSC::Bindings::RootObject::invalidate):
              * bridge/runtime_root.h:
              * dom/Document.h:
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77044 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      3857b1ea
    • mjs@apple.com's avatar
      2011-01-28 Maciej Stachowiak <mjs@apple.com> · e687428e
      mjs@apple.com authored
              Reviewed by Dan Bernstein.
      
              WKPageGetEstimatedProgress returns wrong value after a mainframe provisional load has started
              https://bugs.webkit.org/show_bug.cgi?id=53358
      
              * UIProcess/WebPageProxy.cpp:
              (WebKit::WebPageProxy::didStartProgress): Start progress at the magic initial value, not 0.
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77043 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      e687428e
    • mjs@apple.com's avatar
      2011-01-28 Maciej Stachowiak <mjs@apple.com> · 62b20f46
      mjs@apple.com authored
              Reviewed by Darin Adler.
      
              WebKitTestRunner needs layoutTestController.setPOSIXLocale
              https://bugs.webkit.org/show_bug.cgi?id=42682
      
              * platform/mac-wk2/Skipped:
      2011-01-28  Maciej Stachowiak  <mjs@apple.com>
      
              Reviewed by Darin Adler.
      
              WebKitTestRunner needs layoutTestController.setPOSIXLocale
              https://bugs.webkit.org/show_bug.cgi?id=42682
      
              * WebKitTestRunner/InjectedBundle/Bindings/LayoutTestController.idl:
              * WebKitTestRunner/InjectedBundle/InjectedBundle.cpp:
              (WTR::InjectedBundle::resetLocalSettings):
              (WTR::InjectedBundle::didReceiveMessage):
              * WebKitTestRunner/InjectedBundle/InjectedBundle.h:
              * WebKitTestRunner/InjectedBundle/LayoutTestController.cpp:
              (WTR::LayoutTestController::setPOSIXLocale):
              * WebKitTestRunner/InjectedBundle/LayoutTestController.h:
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77042 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      62b20f46
    • abarth@webkit.org's avatar
      2011-01-28 Adam Barth <abarth@webkit.org> · bfc7fcf5
      abarth@webkit.org authored
              Reviewed by Eric Seidel.
      
              XSSFilter should log to the console when it blocks something
              https://bugs.webkit.org/show_bug.cgi?id=53354
      
              This patch refactors a bunch of methods in XSSFilter to return a bool
              indicating whether they blocked anything.  Using this bool, we decide
              whether to log to the console.  We're using the same log message as the
              XSSAuditor, but it seems likely we can improve this message in the
              future (especially by piping in the correct line number, which is now
              accessible via the parser).
      
              * html/parser/XSSFilter.cpp:
              (WebCore::HTMLNames::isNameOfInlineEventHandler):
              (WebCore::XSSFilter::filterToken):
              (WebCore::XSSFilter::filterTokenInitial):
              (WebCore::XSSFilter::filterTokenAfterScriptStartTag):
              (WebCore::XSSFilter::filterScriptToken):
              (WebCore::XSSFilter::filterObjectToken):
              (WebCore::XSSFilter::filterEmbedToken):
              (WebCore::XSSFilter::filterAppletToken):
              (WebCore::XSSFilter::filterMetaToken):
              (WebCore::XSSFilter::filterBaseToken):
              (WebCore::XSSFilter::eraseInlineEventHandlersIfInjected):
              * html/parser/XSSFilter.h:
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77041 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      bfc7fcf5
    • dpranke@chromium.org's avatar
      2011-01-28 Dirk Pranke <dpranke@chromium.org> · a6ec07c1
      dpranke@chromium.org authored
               Reviewed by Mihai Parparita.
      
               test-webkitpy: fix webkitpy.layout_tests.port.mac_unittest.MacTest.test_skipped_file_paths
      
               This patch re-enables this test and changes it to
               handle all of the mac platform versions, not just the one
               it is running on.
      
               https://bugs.webkit.org/show_bug.cgi?id=53356
      
               * Scripts/webkitpy/layout_tests/port/mac_unittest.py:
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77039 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      a6ec07c1
    • dpranke@chromium.org's avatar
      2011-01-28 Dirk Pranke <dpranke@chromium.org> · db2fcd17
      dpranke@chromium.org authored
              Unreviewed, build fix.
      
              Take two. The fix in 77023 didn't work, because we were
              still calling path.abspath_to_uri, which calls _cygpath under
              the covers, and it appears the cygpath on the bots does
              something different than it does on my machine. This patch
              removes the calls to path.abspath_to_uri, so it should be safe.
              If it doesn't work, I'll roll it out along with r76982 and 77023.
      
              https://bugs.webkit.org/show_bug.cgi?id=53126
      
              * Scripts/webkitpy/layout_tests/port/test.py:
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77038 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      db2fcd17
    • abarth@webkit.org's avatar
      2011-01-28 Adam Barth <abarth@webkit.org> · 015fdee4
      abarth@webkit.org authored
              Reviewed by Daniel Bates.
      
              Wire up settings->xssAuditorEnabled to XSSFilter
              https://bugs.webkit.org/show_bug.cgi?id=53345
      
              * html/parser/XSSFilter.cpp:
              (WebCore::XSSFilter::XSSFilter):
              (WebCore::XSSFilter::filterToken):
              * html/parser/XSSFilter.h:
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77034 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      015fdee4
    • abarth@webkit.org's avatar
      2011-01-28 Adam Barth <abarth@webkit.org> · 0fbacc01
      abarth@webkit.org authored
              Reviewed by Daniel Bates.
      
              Teach XSSFilter about <meta> and <base> tags
              https://bugs.webkit.org/show_bug.cgi?id=53339
      
              I'm not 100% sure we need to block <meta http-equiv>, but it seems
              prudent given how powerful that attribute is.  We definitely need to
              block injection of <base href> because that can redirect script tags
              that use relative URLs.
      
              * html/parser/XSSFilter.cpp:
              (WebCore::XSSFilter::filterToken):
              (WebCore::XSSFilter::filterMetaToken):
              (WebCore::XSSFilter::filterBaseToken):
              * html/parser/XSSFilter.h:
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77033 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      0fbacc01
    • abarth@webkit.org's avatar
      2011-01-28 Adam Barth <abarth@webkit.org> · 87e8410e
      abarth@webkit.org authored
              Reviewed by Daniel Bates.
      
              Teach XSSFilter about <applet>
              https://bugs.webkit.org/show_bug.cgi?id=53338
      
              HTML5 is pretty light on information about how the <applet> tag works.
              According to this site:
      
              http://download.oracle.com/javase/1.4.2/docs/guide/misc/applet.html
      
              The "code" and "object" attributes are the essential attributes for
              determining which piece of Java to run.  We might need to expand to the
              codebase and archive attributes at some point, but hopefully code and
              object will be sufficient.
      
              * html/parser/XSSFilter.cpp:
              (WebCore::XSSFilter::filterToken):
              (WebCore::XSSFilter::filterAppletToken):
              * html/parser/XSSFilter.h:
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77032 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      87e8410e
    • abarth@webkit.org's avatar
      2011-01-28 Adam Barth <abarth@webkit.org> · f47ab540
      abarth@webkit.org authored
              Reviewed by Daniel Bates.
      
              Teach the XSSFilter about object and embed tags
              https://bugs.webkit.org/show_bug.cgi?id=53336
      
              For <object> and <embed>, we filter out attribute values that either
              indicate which piece of media to load or which plugin to load.  In a
              perfect world, we'd only need to filter out the URLs of the media, but
              some plug-ins (like Flash) have lots of fun places you can hide the
              URL (e.g., the "movie" <param>).
      
              * html/parser/XSSFilter.cpp:
              (WebCore::XSSFilter::filterToken):
              (WebCore::XSSFilter::filterScriptToken):
              (WebCore::XSSFilter::filterObjectToken):
              (WebCore::XSSFilter::filterEmbedToken):
              (WebCore::XSSFilter::eraseAttributeIfInjected):
              * html/parser/XSSFilter.h:
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77031 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      f47ab540
    • ddkilzer@apple.com's avatar
      Added link to bug in ChangeLog. · 464d7466
      ddkilzer@apple.com authored
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77030 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      464d7466
    • andersca@apple.com's avatar
      Yet another build fix (What was I thinking?) · 7efcf1c7
      andersca@apple.com authored
      * WebProcess/Downloads/Download.h:
      * WebProcess/Plugins/PluginProxy.h:
      
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77029 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      7efcf1c7
    • ddkilzer@apple.com's avatar
      <rdar://problem/8930699> build-webkit gives a bogus warning with newer versions of Xcode · f0a9ae48
      ddkilzer@apple.com authored
      Reviewed by Mark Rowe.
      
      * Scripts/webkitdirs.pm:
      (checkRequiredSystemConfig): Check the Xcode marketing version
      in addition to the DevCoreTools build version before complaining
      about an old version of Xcode.  Also make the Mac OS X version
      check use Perl's built-in version string comparitor.
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77028 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      f0a9ae48
    • rniwa@webkit.org's avatar
      2011-01-28 Ryosuke Niwa <rniwa@webkit.org> · dd312fd4
      rniwa@webkit.org authored
              Unreviewed; Fixed Chromium test expectation.
      
              * platform/chromium/test_expectations.txt:
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77027 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      dd312fd4
    • andersca@apple.com's avatar
      Build fix. · d341b691
      andersca@apple.com authored
              
      Update WKSI.
      
      * WebKitSystemInterface.h:
      * libWebKitSystemInterfaceLeopard.a:
      * libWebKitSystemInterfaceSnowLeopard.a:
      
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77026 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      d341b691
    • barraclough@apple.com's avatar
      https://bugs.webkit.org/show_bug.cgi?id=53352 · 85c4e205
      barraclough@apple.com authored
      Heavy external fragmentation in FixedVMPoolAllocator can lead to a CRASH().
      
      Reviewed by Geoff Garen.
      
      The FixedVMPoolAllocator currently uses a best fix policy -
      switch to first fit, this is less prone to external fragmentation.
      
      * jit/ExecutableAllocatorFixedVMPool.cpp:
      (JSC::AllocationTableSizeClass::AllocationTableSizeClass):
      (JSC::AllocationTableSizeClass::blockSize):
      (JSC::AllocationTableSizeClass::blockCount):
      (JSC::AllocationTableSizeClass::blockAlignment):
      (JSC::AllocationTableSizeClass::size):
      (JSC::AllocationTableLeaf::AllocationTableLeaf):
      (JSC::AllocationTableLeaf::~AllocationTableLeaf):
      (JSC::AllocationTableLeaf::allocate):
      (JSC::AllocationTableLeaf::free):
      (JSC::AllocationTableLeaf::isEmpty):
      (JSC::AllocationTableLeaf::isFull):
      (JSC::AllocationTableLeaf::size):
      (JSC::AllocationTableLeaf::classForSize):
      (JSC::AllocationTableLeaf::dump):
      (JSC::LazyAllocationTable::LazyAllocationTable):
      (JSC::LazyAllocationTable::~LazyAllocationTable):
      (JSC::LazyAllocationTable::allocate):
      (JSC::LazyAllocationTable::free):
      (JSC::LazyAllocationTable::isEmpty):
      (JSC::LazyAllocationTable::isFull):
      (JSC::LazyAllocationTable::size):
      (JSC::LazyAllocationTable::dump):
      (JSC::LazyAllocationTable::classForSize):
      (JSC::AllocationTableDirectory::AllocationTableDirectory):
      (JSC::AllocationTableDirectory::~AllocationTableDirectory):
      (JSC::AllocationTableDirectory::allocate):
      (JSC::AllocationTableDirectory::free):
      (JSC::AllocationTableDirectory::isEmpty):
      (JSC::AllocationTableDirectory::isFull):
      (JSC::AllocationTableDirectory::size):
      (JSC::AllocationTableDirectory::classForSize):
      (JSC::AllocationTableDirectory::dump):
      (JSC::FixedVMPoolAllocator::FixedVMPoolAllocator):
      (JSC::FixedVMPoolAllocator::alloc):
      (JSC::FixedVMPoolAllocator::free):
      (JSC::FixedVMPoolAllocator::allocated):
      (JSC::FixedVMPoolAllocator::isValid):
      (JSC::FixedVMPoolAllocator::classForSize):
      (JSC::FixedVMPoolAllocator::offsetToPointer):
      (JSC::FixedVMPoolAllocator::pointerToOffset):
      (JSC::ExecutableAllocator::committedByteCount):
      (JSC::ExecutableAllocator::isValid):
      (JSC::ExecutableAllocator::underMemoryPressure):
      (JSC::ExecutablePool::systemAlloc):
      (JSC::ExecutablePool::systemRelease):
      * wtf/PageReservation.h:
      (WTF::PageReservation::PageReservation):
      (WTF::PageReservation::commit):
      (WTF::PageReservation::decommit):
      (WTF::PageReservation::committed):
      
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77025 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      85c4e205
    • andersca@apple.com's avatar
      Fix Windows build. · c345385b
      andersca@apple.com authored
      * Shared/PrintInfo.h:
      
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77024 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      c345385b
    • dpranke@chromium.org's avatar
      2011-01-28 Dirk Pranke <dpranke@chromium.org> · 92a42997
      dpranke@chromium.org authored
              Unreviewed, build fix.
      
              Work around breakage on Win 7 Release bot caused by r76982
              and the fact that windows ports use "file:////" instead of
              "file:///". Ideally the test code should be isolated from
              this, but it isn't yet. Will fix properly in a bit.
      
              * Scripts/webkitpy/layout_tests/port/mock_drt_unittest.py:
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77023 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      92a42997
    • jberlin@webkit.org's avatar
      [Windows 7 Release Tests] fast/repaint/select-option-background-color.html failing since · baf36fa6
      jberlin@webkit.org authored
      introduction in r76826.
      https://bugs.webkit.org/show_bug.cgi?id=53327
      
      Add the pixel-test results missing from http://trac.webkit.org/changeset/76976. Unreviewed.
      
      * platform/win/fast/repaint/select-option-background-color-expected.checksum: Added.
      * platform/win/fast/repaint/select-option-background-color-expected.png: Added.
      
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77021 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      baf36fa6
    • oliver@apple.com's avatar
      Fixed Qt build. · e0c483d0
      oliver@apple.com authored
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77020 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      e0c483d0
    • antti@apple.com's avatar
      CSS styles are shared based on uninitialized property values · f67fc8a2
      antti@apple.com authored
      https://bugs.webkit.org/show_bug.cgi?id=53285
              
      Reviewed by Simon Fraser.
      
      Null test.
      
      * dom/NamedNodeMap.cpp:
      (WebCore::NamedNodeMap::mappedMapsEquivalent):
      
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77019 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      f67fc8a2
    • rniwa@webkit.org's avatar
      2011-01-28 Ryosuke Niwa <rniwa@webkit.org> · 7afe370c
      rniwa@webkit.org authored
              Unreviewed Chromium test expectation update.
      
              * platform/chromium/test_expectations.txt:
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77014 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      7afe370c
    • andersca@apple.com's avatar
      Fix tyop. · 8a47625d
      andersca@apple.com authored
      * Shared/mac/CoreAnimationRenderer.mm:
      
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77013 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      8a47625d
    • andersca@apple.com's avatar
      2011-01-28 Anders Carlsson <andersca@apple.com> · c6d77aec
      andersca@apple.com authored
              Reviewed by Sam Weinig.
      
              Add CoreAnimationRenderer class
              https://bugs.webkit.org/show_bug.cgi?id=53343
      
              * Shared/mac/CoreAnimationRenderer.h: Added.
              * Shared/mac/CoreAnimationRenderer.mm: Added.
      
              (WebKit::CoreAnimationRenderer::CoreAnimationRenderer):
              Initialize the underlying CARenderer object and hook up a notification observer.
      
              (WebKit::CoreAnimationRenderer::~CoreAnimationRenderer):
              Assert that the client is null. It has been set to null by the call to invalidate().
      
              (WebKit::CoreAnimationRenderer::setBounds):
              Update the bounds on the CARenderer and the root layer.
      
              (WebKit::CoreAnimationRenderer::render):
              Ask the renderer to render and return the next frame time.
      
              (WebKit::CoreAnimationRenderer::invalidate):
              Remove the change observer and reset the client.
      
              (WebKit::CoreAnimationRenderer::rendererDidChange):
              Call the client member function.
      
              * WebKit2.xcodeproj/project.pbxproj:
              Add new files.
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77012 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      c6d77aec
    • andersca@apple.com's avatar
      2011-01-28 Anders Carlsson <andersca@apple.com> · c837d980
      andersca@apple.com authored
              Reviewed by Sam Weinig.
      
              Add an OBJC_CLASS macro for forward declaring an Objective-C class
              https://bugs.webkit.org/show_bug.cgi?id=53337
      
              * Shared/NativeWebKeyboardEvent.h:
              * Shared/PrintInfo.h:
              * UIProcess/ChunkedUpdateDrawingAreaProxy.h:
              * UIProcess/LayerBackedDrawingAreaProxy.h:
              * UIProcess/WebInspectorProxy.h:
              * UIProcess/mac/WebContextMenuProxyMac.h:
              * UIProcess/mac/WebPopupMenuProxyMac.h:
              * WebProcess/Downloads/Download.h:
              * WebProcess/Plugins/PluginProxy.h:
              * WebProcess/WebPage/LayerBackedDrawingArea.h:
              * WebProcess/WebPage/WebPage.h:
              * config.h:
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77007 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      c837d980
    • oliver@apple.com's avatar
      2011-01-27 Oliver Hunt <oliver@apple.com> · c975423a
      oliver@apple.com authored
              Reviewed by Geoffrey Garen.
      
              Convert markstack to a slot visitor API
              https://bugs.webkit.org/show_bug.cgi?id=53219
      
              Move the MarkStack over to a slot based marking API.
      
              In order to avoiding aliasing concerns there are two new types
              that need to be used when holding on to JSValues and JSCell that
              need to be marked: WriteBarrier and DeprecatedPtr.  WriteBarrier
              is expected to be used for any JSValue or Cell that's lifetime and
              marking is controlled by another GC object.  DeprecatedPtr is used
              for any value that we need to rework ownership for.
      
              The change over to this model has produced a large amount of
              code changes, but they are mostly mechanical (forwarding JSGlobalData,
              etc).
      
              * API/JSCallbackObject.h:
              (JSC::JSCallbackObjectData::setPrivateProperty):
              (JSC::JSCallbackObjectData::JSPrivatePropertyMap::getPrivateProperty):
              (JSC::JSCallbackObjectData::JSPrivatePropertyMap::setPrivateProperty):
              (JSC::JSCallbackObjectData::JSPrivatePropertyMap::markChildren):
              (JSC::JSCallbackObject::setPrivateProperty):
              * API/JSCallbackObjectFunctions.h:
              (JSC::::put):
              (JSC::::staticFunctionGetter):
              * API/JSObjectRef.cpp:
              (JSObjectMakeConstructor):
              (JSObjectSetPrivateProperty):
              * API/JSWeakObjectMapRefInternal.h:
              * JavaScriptCore.exp:
              * JavaScriptCore.vcproj/JavaScriptCore/JavaScriptCore.def:
              * JavaScriptCore.xcodeproj/project.pbxproj:
              * bytecode/CodeBlock.cpp:
              (JSC::CodeBlock::markAggregate):
              * bytecode/CodeBlock.h:
              (JSC::CodeBlock::globalObject):
              * bytecompiler/BytecodeGenerator.cpp:
              (JSC::BytecodeGenerator::BytecodeGenerator):
              (JSC::BytecodeGenerator::emitJumpIfNotFunctionCall):
              (JSC::BytecodeGenerator::emitJumpIfNotFunctionApply):
              (JSC::BytecodeGenerator::findScopedProperty):
              * debugger/DebuggerActivation.cpp:
              (JSC::DebuggerActivation::DebuggerActivation):
              (JSC::DebuggerActivation::markChildren):
              * debugger/DebuggerActivation.h:
              * interpreter/Interpreter.cpp:
              (JSC::Interpreter::resolve):
              (JSC::Interpreter::resolveSkip):
              (JSC::Interpreter::resolveGlobalDynamic):
              (JSC::Interpreter::resolveBaseAndProperty):
              (JSC::Interpreter::unwindCallFrame):
              (JSC::appendSourceToError):
              (JSC::Interpreter::execute):
              (JSC::Interpreter::privateExecute):
              * interpreter/Register.h:
              (JSC::Register::jsValueSlot):
              * jit/JITStubs.cpp:
              (JSC::JITThunks::tryCacheGetByID):
              (JSC::DEFINE_STUB_FUNCTION):
              * jsc.cpp:
              (GlobalObject::GlobalObject):
              * runtime/Arguments.cpp:
              (JSC::Arguments::markChildren):
              (JSC::Arguments::getOwnPropertySlot):
              (JSC::Arguments::getOwnPropertyDescriptor):
              (JSC::Arguments::put):
              * runtime/Arguments.h:
              (JSC::Arguments::setActivation):
              (JSC::Arguments::Arguments):
              * runtime/ArrayConstructor.cpp:
              (JSC::ArrayConstructor::ArrayConstructor):
              (JSC::constructArrayWithSizeQuirk):
              * runtime/ArrayPrototype.cpp:
              (JSC::arrayProtoFuncSplice):
              * runtime/BatchedTransitionOptimizer.h:
              (JSC::BatchedTransitionOptimizer::BatchedTransitionOptimizer):
              (JSC::BatchedTransitionOptimizer::~BatchedTransitionOptimizer):
              * runtime/BooleanConstructor.cpp:
              (JSC::BooleanConstructor::BooleanConstructor):
              (JSC::constructBoolean):
              (JSC::constructBooleanFromImmediateBoolean):
              * runtime/BooleanPrototype.cpp:
              (JSC::BooleanPrototype::BooleanPrototype):
              * runtime/ConservativeSet.h:
              (JSC::ConservativeSet::mark):
              * runtime/DateConstructor.cpp:
              (JSC::DateConstructor::DateConstructor):
              * runtime/DateInstance.cpp:
              (JSC::DateInstance::DateInstance):
              * runtime/DatePrototype.cpp:
              (JSC::dateProtoFuncSetTime):
              (JSC::setNewValueFromTimeArgs):
              (JSC::setNewValueFromDateArgs):
              (JSC::dateProtoFuncSetYear):
              * runtime/ErrorConstructor.cpp:
              (JSC::ErrorConstructor::ErrorConstructor):
              * runtime/ErrorInstance.cpp:
              (JSC::ErrorInstance::ErrorInstance):
              * runtime/ErrorPrototype.cpp:
              (JSC::ErrorPrototype::ErrorPrototype):
              * runtime/FunctionConstructor.cpp:
              (JSC::FunctionConstructor::FunctionConstructor):
              * runtime/FunctionPrototype.cpp:
              (JSC::FunctionPrototype::FunctionPrototype):
              * runtime/GetterSetter.cpp:
              (JSC::GetterSetter::markChildren):
              * runtime/GetterSetter.h:
              (JSC::GetterSetter::GetterSetter):
              (JSC::GetterSetter::getter):
              (JSC::GetterSetter::setGetter):
              (JSC::GetterSetter::setter):
              (JSC::GetterSetter::setSetter):
              * runtime/GlobalEvalFunction.cpp:
              (JSC::GlobalEvalFunction::GlobalEvalFunction):
              (JSC::GlobalEvalFunction::markChildren):
              * runtime/GlobalEvalFunction.h:
              (JSC::GlobalEvalFunction::cachedGlobalObject):
              * runtime/Heap.cpp:
              (JSC::Heap::markProtectedObjects):
              (JSC::Heap::markTempSortVectors):
              (JSC::Heap::markRoots):
              * runtime/InternalFunction.cpp:
              (JSC::InternalFunction::InternalFunction):
              * runtime/JSAPIValueWrapper.h:
              (JSC::JSAPIValueWrapper::value):
              (JSC::JSAPIValueWrapper::JSAPIValueWrapper):
              * runtime/JSActivation.cpp:
              (JSC::JSActivation::put):
              * runtime/JSArray.cpp:
              (JSC::JSArray::JSArray):
              (JSC::JSArray::getOwnPropertySlot):
              (JSC::JSArray::getOwnPropertyDescriptor):
              (JSC::JSArray::put):
              (JSC::JSArray::putSlowCase):
              (JSC::JSArray::deleteProperty):
              (JSC::JSArray::increaseVectorLength):
              (JSC::JSArray::setLength):
              (JSC::JSArray::pop):
              (JSC::JSArray::push):
              (JSC::JSArray::unshiftCount):
              (JSC::JSArray::sort):
              (JSC::JSArray::fillArgList):
              (JSC::JSArray::copyToRegisters):
              (JSC::JSArray::compactForSorting):
              * runtime/JSArray.h:
              (JSC::JSArray::getIndex):
              (JSC::JSArray::setIndex):
              (JSC::JSArray::uncheckedSetIndex):
              (JSC::JSArray::markChildrenDirect):
              * runtime/JSByteArray.cpp:
              (JSC::JSByteArray::JSByteArray):
              * runtime/JSCell.h:
              (JSC::JSCell::MarkStack::append):
              (JSC::JSCell::MarkStack::appendCell):
              * runtime/JSFunction.cpp:
              (JSC::JSFunction::JSFunction):
              (JSC::JSFunction::getOwnPropertySlot):
              * runtime/JSGlobalObject.cpp:
              (JSC::markIfNeeded):
              (JSC::JSGlobalObject::reset):
              (JSC::JSGlobalObject::resetPrototype):
              (JSC::JSGlobalObject::markChildren):
              * runtime/JSGlobalObject.h:
              (JSC::JSGlobalObject::JSGlobalObjectData::JSGlobalObjectData):
              (JSC::JSGlobalObject::regExpConstructor):
              (JSC::JSGlobalObject::errorConstructor):
              (JSC::JSGlobalObject::evalErrorConstructor):
              (JSC::JSGlobalObject::rangeErrorConstructor):
              (JSC::JSGlobalObject::referenceErrorConstructor):
              (JSC::JSGlobalObject::syntaxErrorConstructor):
              (JSC::JSGlobalObject::typeErrorConstructor):
              (JSC::JSGlobalObject::URIErrorConstructor):
              (JSC::JSGlobalObject::evalFunction):
              (JSC::JSGlobalObject::objectPrototype):
              (JSC::JSGlobalObject::functionPrototype):
              (JSC::JSGlobalObject::arrayPrototype):
              (JSC::JSGlobalObject::booleanPrototype):
              (JSC::JSGlobalObject::stringPrototype):
              (JSC::JSGlobalObject::numberPrototype):
              (JSC::JSGlobalObject::datePrototype):
              (JSC::JSGlobalObject::regExpPrototype):
              (JSC::JSGlobalObject::methodCallDummy):
              (JSC::constructArray):
              * runtime/JSONObject.cpp:
              (JSC::Stringifier::Holder::object):
              (JSC::Stringifier::Holder::objectSlot):
              (JSC::Stringifier::markAggregate):
              (JSC::Stringifier::stringify):
              (JSC::Stringifier::Holder::appendNextProperty):
              (JSC::Walker::callReviver):
              (JSC::Walker::walk):
              * runtime/JSObject.cpp:
              (JSC::JSObject::defineGetter):
              (JSC::JSObject::defineSetter):
              (JSC::JSObject::removeDirect):
              (JSC::JSObject::putDirectFunction):
              (JSC::JSObject::putDirectFunctionWithoutTransition):
              (JSC::putDescriptor):
              (JSC::JSObject::defineOwnProperty):
              * runtime/JSObject.h:
              (JSC::JSObject::putDirectOffset):
              (JSC::JSObject::putUndefinedAtDirectOffset):
              (JSC::JSObject::flattenDictionaryObject):
              (JSC::JSObject::putDirectInternal):
              (JSC::JSObject::putDirect):
              (JSC::JSObject::putDirectFunction):
              (JSC::JSObject::putDirectWithoutTransition):
              (JSC::JSObject::putDirectFunctionWithoutTransition):
              (JSC::JSValue::putDirect):
              (JSC::JSObject::allocatePropertyStorageInline):
              (JSC::JSObject::markChildrenDirect):
              * runtime/JSStaticScopeObject.cpp:
              (JSC::JSStaticScopeObject::markChildren):
              * runtime/JSString.cpp:
              (JSC::StringObject::create):
              * runtime/JSValue.h:
              * runtime/JSWrapperObject.cpp:
              (JSC::JSWrapperObject::markChildren):
              * runtime/JSWrapperObject.h:
              (JSC::JSWrapperObject::internalValue):
              (JSC::JSWrapperObject::setInternalValue):
              * runtime/LiteralParser.cpp:
              (JSC::LiteralParser::parse):
              * runtime/Lookup.cpp:
              (JSC::setUpStaticFunctionSlot):
              * runtime/Lookup.h:
              (JSC::lookupPut):
              * runtime/MarkStack.h:
              * runtime/MathObject.cpp:
              (JSC::MathObject::MathObject):
              * runtime/NativeErrorConstructor.cpp:
              (JSC::NativeErrorConstructor::NativeErrorConstructor):
              * runtime/NativeErrorPrototype.cpp:
              (JSC::NativeErrorPrototype::NativeErrorPrototype):
              * runtime/NumberConstructor.cpp:
              (JSC::NumberConstructor::NumberConstructor):
              (JSC::constructWithNumberConstructor):
              * runtime/NumberObject.cpp:
              (JSC::constructNumber):
              * runtime/NumberPrototype.cpp:
              (JSC::NumberPrototype::NumberPrototype):
              * runtime/ObjectConstructor.cpp:
              (JSC::ObjectConstructor::ObjectConstructor):
              (JSC::objectConstructorGetOwnPropertyDescriptor):
              * runtime/Operations.h:
              (JSC::normalizePrototypeChain):
              (JSC::resolveBase):
              * runtime/PrototypeFunction.cpp:
              (JSC::PrototypeFunction::PrototypeFunction):
              * runtime/PutPropertySlot.h:
              (JSC::PutPropertySlot::setExistingProperty):
              (JSC::PutPropertySlot::setNewProperty):
              (JSC::PutPropertySlot::base):
              * runtime/RegExpConstructor.cpp:
              (JSC::RegExpConstructor::RegExpConstructor):
              * runtime/ScopeChain.cpp:
              (JSC::ScopeChainNode::print):
              * runtime/ScopeChain.h:
              (JSC::ScopeChainNode::~ScopeChainNode):
              (JSC::ScopeChainIterator::operator*):
              (JSC::ScopeChainIterator::operator->):
              (JSC::ScopeChain::top):
              * runtime/ScopeChainMark.h:
              (JSC::ScopeChain::markAggregate):
              * runtime/SmallStrings.cpp:
              (JSC::isMarked):
              (JSC::SmallStrings::markChildren):
              * runtime/SmallStrings.h:
              (JSC::SmallStrings::emptyString):
              (JSC::SmallStrings::singleCharacterString):
              (JSC::SmallStrings::singleCharacterStrings):
              * runtime/StringConstructor.cpp:
              (JSC::StringConstructor::StringConstructor):
              * runtime/StringObject.cpp:
              (JSC::StringObject::StringObject):
              * runtime/StringObject.h:
              * runtime/StringPrototype.cpp:
              (JSC::StringPrototype::StringPrototype):
              * runtime/Structure.cpp:
              (JSC::Structure::flattenDictionaryStructure):
              * runtime/Structure.h:
              (JSC::Structure::storedPrototypeSlot):
              * runtime/WeakGCMap.h:
              (JSC::WeakGCMap::uncheckedGet):
              (JSC::WeakGCMap::uncheckedGetSlot):
              (JSC::::get):
              (JSC::::take):
              (JSC::::set):
              (JSC::::uncheckedRemove):
              * runtime/WriteBarrier.h: Added.
              (JSC::DeprecatedPtr::DeprecatedPtr):
              (JSC::DeprecatedPtr::get):
              (JSC::DeprecatedPtr::operator*):
              (JSC::DeprecatedPtr::operator->):
              (JSC::DeprecatedPtr::slot):
              (JSC::DeprecatedPtr::operator UnspecifiedBoolType*):
              (JSC::DeprecatedPtr::operator!):
              (JSC::WriteBarrierBase::set):
              (JSC::WriteBarrierBase::get):
              (JSC::WriteBarrierBase::operator*):
              (JSC::WriteBarrierBase::operator->):
              (JSC::WriteBarrierBase::slot):
              (JSC::WriteBarrierBase::operator UnspecifiedBoolType*):
              (JSC::WriteBarrierBase::operator!):
              (JSC::WriteBarrier::WriteBarrier):
              (JSC::operator==):
      2011-01-27  Oliver Hunt  <oliver@apple.com>
      
              Reviewed by Geoffrey Garen.
      
              Convert markstack to a slot visitor API
              https://bugs.webkit.org/show_bug.cgi?id=53219
      
              There's no reason to recurse here, the value we
              were marking was protected.
      
              * JSValueWrapper.cpp:
              (JSValueWrapper::JSObjectMark):
      2011-01-27  Oliver Hunt  <oliver@apple.com>
      
              Reviewed by Geoffrey Garen.
      
              Convert markstack to a slot visitor API
              https://bugs.webkit.org/show_bug.cgi?id=53219
      
              Update WebCore to the new marking apis, correct bindings
              codegen.
      
              * ForwardingHeaders/runtime/WriteBarrier.h: Added.
              * WebCore.exp.in:
              * bindings/js/DOMWrapperWorld.h:
              (WebCore::DOMWrapperWorld::globalData):
              * bindings/js/JSAudioConstructor.cpp:
              (WebCore::JSAudioConstructor::JSAudioConstructor):
              * bindings/js/JSDOMBinding.cpp:
              (WebCore::markDOMNodesForDocument):
              (WebCore::markDOMObjectWrapper):
              (WebCore::markDOMNodeWrapper):
              * bindings/js/JSDOMGlobalObject.cpp:
              (WebCore::JSDOMGlobalObject::markChildren):
              (WebCore::JSDOMGlobalObject::setInjectedScript):
              (WebCore::JSDOMGlobalObject::injectedScript):
              * bindings/js/JSDOMGlobalObject.h:
              (WebCore::JSDOMGlobalObject::JSDOMGlobalObjectData::JSDOMGlobalObjectData):
              (WebCore::getDOMConstructor):
              * bindings/js/JSDOMWindowCustom.cpp:
              (WebCore::JSDOMWindow::setLocation):
              (WebCore::DialogHandler::dialogCreated):
              * bindings/js/JSDOMWindowShell.cpp:
              (WebCore::JSDOMWindowShell::JSDOMWindowShell):
              (WebCore::JSDOMWindowShell::setWindow):
              (WebCore::JSDOMWindowShell::markChildren):
              (WebCore::JSDOMWindowShell::unwrappedObject):
              * bindings/js/JSDOMWindowShell.h:
              (WebCore::JSDOMWindowShell::window):
              (WebCore::JSDOMWindowShell::setWindow):
              * bindings/js/JSEventListener.cpp:
              (WebCore::JSEventListener::JSEventListener):
              (WebCore::JSEventListener::markJSFunction):
              * bindings/js/JSEventListener.h:
              (WebCore::JSEventListener::jsFunction):
              * bindings/js/JSHTMLDocumentCustom.cpp:
              (WebCore::JSHTMLDocument::setAll):
              * bindings/js/JSImageConstructor.cpp:
              (WebCore::JSImageConstructor::JSImageConstructor):
              * bindings/js/JSImageDataCustom.cpp:
              (WebCore::toJS):
              * bindings/js/JSJavaScriptCallFrameCustom.cpp:
              (WebCore::JSJavaScriptCallFrame::scopeChain):
              (WebCore::JSJavaScriptCallFrame::scopeType):
              * bindings/js/JSNodeFilterCondition.cpp:
              (WebCore::JSNodeFilterCondition::markAggregate):
              (WebCore::JSNodeFilterCondition::acceptNode):
              * bindings/js/JSNodeFilterCondition.h:
              * bindings/js/JSNodeFilterCustom.cpp:
              * bindings/js/JSOptionConstructor.cpp:
              (WebCore::JSOptionConstructor::JSOptionConstructor):
              * bindings/js/JSSQLResultSetRowListCustom.cpp:
              (WebCore::JSSQLResultSetRowList::item):
              * bindings/js/ScriptCachedFrameData.cpp:
              (WebCore::ScriptCachedFrameData::restore):
              * bindings/js/ScriptObject.cpp:
              (WebCore::ScriptGlobalObject::set):
              * bindings/js/SerializedScriptValue.cpp:
              (WebCore::CloneDeserializer::putProperty):
              * bindings/scripts/CodeGeneratorJS.pm:
              * dom/Document.h:
      2011-01-27  Oliver Hunt  <oliver@apple.com>
      
              Reviewed by Geoffrey Garen.
      
              Convert markstack to a slot visitor API
              https://bugs.webkit.org/show_bug.cgi?id=53219
      
              Update to new marking api
      
              * WebView/WebScriptDebugDelegate.mm:
              (-[WebScriptCallFrame scopeChain]):
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77006 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      c975423a
    • dpranke@chromium.org's avatar
      2011-01-28 Dirk Pranke <dpranke@chromium.org> · 2e954057
      dpranke@chromium.org authored
              Reviewed by Tony Chang.
      
              new-run-webkit-tests: change worker model values to
              "old-inline", "old-threads" in preparation for test_runner2 /
              multiprocessing changes.
      
              https://bugs.webkit.org/show_bug.cgi?id=53156
      
              * Scripts/webkitpy/layout_tests/layout_package/test_runner.py:
              * Scripts/webkitpy/layout_tests/port/base.py:
              * Scripts/webkitpy/layout_tests/port/chromium_mac.py:
              * Scripts/webkitpy/layout_tests/port/mac.py:
              * Scripts/webkitpy/layout_tests/run_webkit_tests.py:
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77004 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      2e954057
    • weinig@apple.com's avatar
      Keyboard scrolling doesn’t work in WebKit2 · 685ed248
      weinig@apple.com authored
      <rdar://problem/8909672>
      
      Reviewed by Anders Carlsson.
      
      * platform/mac/ScrollAnimatorMac.mm:
      (-[ScrollAnimationHelperDelegate convertSizeToBacking:]):
      (-[ScrollAnimationHelperDelegate convertSizeFromBacking:]):
      Add additional necessary delegate methods.
      
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77003 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      685ed248
    • andersca@apple.com's avatar
      Don't put config.h in the message headers. · ec5b4394
      andersca@apple.com authored
      Reviewed by Sam Weinig.
      
      * Scripts/webkit2/messages.py:
      * Scripts/webkit2/messages_unittest.py:
      
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77000 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      ec5b4394
    • darin@apple.com's avatar
      Re-land this patch with the missing null check that caused crashes in layout tests. · e3229301
      darin@apple.com authored
      Reviewed by Dan Bernstein.
      
      Changing cursor style has no effect until the mouse moves
      https://bugs.webkit.org/show_bug.cgi?id=14344
      rdar://problem/7563712
      
      No tests added because we don't have infrastructure for testing actual cursor
      changes (as opposed to cursor style computation) at this time. We might add it later.
      
      * page/EventHandler.cpp:
      (WebCore::EventHandler::dispatchFakeMouseMoveEventSoon): Added.
      * page/EventHandler.h: Ditto.
      
      * rendering/RenderObject.cpp:
      (WebCore::areNonIdenticalCursorListsEqual): Added.
      (WebCore::areCursorsEqual): Added.
      (WebCore::RenderObject::styleDidChange): Call dispatchFakeMouseMoveEventSoon if
      cursor styles changed.
      
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@76999 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      e3229301
    • dpranke@chromium.org's avatar
      2011-01-28 Dirk Pranke <dpranke@chromium.org> · f48245f6
      dpranke@chromium.org authored
              Reviewed by Tony Chang.
      
              committers.py - add an IRC nickname for dpranke
              https://bugs.webkit.org/show_bug.cgi?id=53335
      
              * Scripts/webkitpy/common/config/committers.py:
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@76998 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      f48245f6
    • andersca@apple.com's avatar
      Fix build. · 8c819ded
      andersca@apple.com authored
      * Shared/mac/ShareableSurface.cpp:
      
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@76996 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      8c819ded
    • andersca@apple.com's avatar
      Try to unbreak the Windows build. · ee401897
      andersca@apple.com authored
      * UIProcess/cf/WebPageProxyCF.cpp:
      
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@76995 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      ee401897
    • tony@chromium.org's avatar
      2011-01-28 Tony Chang <tony@chromium.org> · 4fff9be6
      tony@chromium.org authored
              Unreviewed, a chromium win/linux rebaseline.  The mac result was
              rebaselined in r76735.
      
              * platform/chromium-linux/fast/overflow/overflow-rtl-vertical-expected.checksum:
              * platform/chromium-linux/fast/overflow/overflow-rtl-vertical-expected.png:
              * platform/chromium-win/fast/overflow/overflow-rtl-vertical-expected.checksum:
              * platform/chromium-win/fast/overflow/overflow-rtl-vertical-expected.png:
              * platform/chromium-win/fast/overflow/overflow-rtl-vertical-expected.txt:
              * platform/chromium/test_expectations.txt:
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@76994 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      4fff9be6
    • beidson@apple.com's avatar
      https://bugs.webkit.org/show_bug.cgi?id=53330 · 89873df1
      beidson@apple.com authored
      Need InjectedBundle API to get the response MIMEType for a URL
      
      Reviewed by John Sullivan.
      
      * WebProcess/InjectedBundle/API/c/WKBundleFrame.cpp:
      (WKBundleFrameCopyMIMETypeForResourceWithURL):
      * WebProcess/InjectedBundle/API/c/WKBundleFrame.h:
      
      Get the MIMEType from the in-memory cache, or cachedResponseMIMETypeForURL() if not available:
      * WebProcess/WebPage/WebFrame.cpp:
      (WebKit::WebFrame::mimeTypeForResourceWithURL):
      * WebProcess/WebPage/WebFrame.h:
      
      Get the MIMEType from the platform's disk cache if available:
      * WebProcess/WebPage/WebPage.h:
      * WebProcess/WebPage/mac/WebPageMac.mm:
      (WebKit::WebPage::cachedResponseMIMETypeForURL):
      * WebProcess/WebPage/qt/WebPageQt.cpp:
      (WebKit::WebPage::cachedResponseMIMETypeForURL):
      * WebProcess/WebPage/win/WebPageWin.cpp:
      (WebKit::WebPage::cachedResponseMIMETypeForURL):
      
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@76993 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      89873df1
    • andersca@apple.com's avatar
      Clean up the mess introduced when config.h was added to the project: · 9a31c4bb
      andersca@apple.com authored
      Reviewed by Sam Weinig.
      
      - Remove the contents of WebKit2Prefix.h that is now in config.h, to avoid including everything
        twice in each file, probably slowing down compile time.
      
      - Add config.h to all the files that were forgotten in order to keep the build from breaking.
      
      - Added trap to ensure that config.h is included at the top of every implementation file. If this
        had been added it would have caught the previous issue.
      
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@76991 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      9a31c4bb
    • jschuh@chromium.org's avatar
      2011-01-28 Justin Schuh <jschuh@chromium.org> · 79d31dbb
      jschuh@chromium.org authored
              Reviewed by Eric Seidel.
      
              We should hold RefPtrs to SVG font faces
              https://bugs.webkit.org/show_bug.cgi?id=53270
      
              * svg/custom/use-multiple-on-nested-disallowed-font-expected.txt: Added.
              * svg/custom/use-multiple-on-nested-disallowed-font.html: Added.
      2011-01-28  Justin Schuh  <jschuh@chromium.org>
      
              Reviewed by Eric Seidel.
      
              We should hold RefPtrs to SVG font faces
              https://bugs.webkit.org/show_bug.cgi?id=53270
      
              Test: svg/custom/use-multiple-on-nested-disallowed-font.html
      
              * css/CSSFontFaceSource.cpp:
              (WebCore::CSSFontFaceSource::getFontData):
              * css/CSSFontFaceSource.h:
              * svg/SVGFontFaceElement.cpp:
              (WebCore::SVGFontFaceElement::associatedFontElement):
              * svg/SVGFontFaceElement.h:
      
      
      git-svn-id: http://svn.webkit.org/repository/webkit/trunk@76990 268f45cc-cd09-0410-ab3c-d52691b4dbfc
      79d31dbb