Move inspector and loader to unified sources.

[WebKit-https.git] / Source / WebCore / ChangeLog

2017-10-24  Keith Miller  <keith_miller@apple.com>

        Move inspector and loader to unified sources.
        https://bugs.webkit.org/show_bug.cgi?id=178760

        Rubber-stamped by Tim Horton.

        * CMakeLists.txt:
        * Sources.txt:
        * WebCore.xcodeproj/project.pbxproj:

2017-10-24  Alex Christensen  <achristensen@webkit.org>

        Fix build after r223940

        * inspector/WebConsoleAgent.cpp:

2017-10-24  Alex Christensen  <achristensen@webkit.org>

        Fix Windows build after r223929.
        https://bugs.webkit.org/show_bug.cgi?id=177027

        * inspector/WebConsoleAgent.cpp:
        (WebCore::WebConsoleAgent::getLoggingChannels):
        Always initialize the variable "level".  Visual studio was complaining about the possibility of not initializing it
        but this is only possible if logChannel->level is an invalid enum value.

2017-10-24  Alex Christensen  <achristensen@webkit.org>

        Fix Windows build after r223925
        https://bugs.webkit.org/show_bug.cgi?id=178687

        * html/ImageBitmap.cpp:
        (WebCore::interpolationQualityForResizeQuality):
        Visual Studio was complaining that not all control paths returned a value.

2017-10-24  Youenn Fablet  <youenn@apple.com>

        Enable service worker to use cache storage api
        https://bugs.webkit.org/show_bug.cgi?id=178684

        Reviewed by Brady Eidson.

        Test: http/tests/workers/service/service-worker-cache-api.https.html

        Updated WorkerLoaderProxy so that it can create a CacheStorageConnection.
        Update WorkerCacheStorageConnection to take benefit of that.
        This allows creating a CacheStorageConnection based on the page for regular workers and differently for Service Worker context.

        Added ServiceWorkerThreadProxy as a proxy to ServiceWorkerThread.
        It is in particular responsible to do proxy for loading tasks.
        It implements cache API support for service worker by creating a dedicated CacheStorageConnection.

        * Modules/cache/WorkerCacheStorageConnection.cpp:
        (WebCore::WorkerCacheStorageConnection::create):
        (WebCore::WorkerCacheStorageConnection::~WorkerCacheStorageConnection):
        (WebCore::WorkerCacheStorageConnection::doOpen):
        (WebCore::WorkerCacheStorageConnection::doRemove):
        (WebCore::WorkerCacheStorageConnection::doRetrieveCaches):
        (WebCore::WorkerCacheStorageConnection::reference):
        (WebCore::WorkerCacheStorageConnection::dereference):
        (WebCore::WorkerCacheStorageConnection::doRetrieveRecords):
        (WebCore::WorkerCacheStorageConnection::doBatchDeleteOperation):
        (WebCore::WorkerCacheStorageConnection::doBatchPutOperation):
        * WebCore.xcodeproj/project.pbxproj:
        * workers/WorkerLoaderProxy.h:
        * workers/WorkerMessagingProxy.cpp:
        (WebCore::WorkerMessagingProxy::createCacheStorageConnection):
        * workers/WorkerMessagingProxy.h:
        * workers/service/context/ServiceWorkerThread.cpp:
        (WebCore::ServiceWorkerThread::ServiceWorkerThread):
        * workers/service/context/ServiceWorkerThread.h:
        * workers/service/context/ServiceWorkerThreadProxy.cpp: Added.
        (WebCore::ServiceWorkerThreadProxy::create):
        (WebCore::ServiceWorkerThreadProxy::ServiceWorkerThreadProxy):
        (WebCore::ServiceWorkerThreadProxy::postTaskForModeToWorkerGlobalScope):
        (WebCore::ServiceWorkerThreadProxy::postTaskToLoader):
        (WebCore::ServiceWorkerThreadProxy::createCacheStorageConnection):
        * workers/service/context/ServiceWorkerThreadProxy.h: Added.

2017-10-24  Alex Christensen  <achristensen@webkit.org>

        Optionally store entire ResourceRequest for ping loads
        https://bugs.webkit.org/show_bug.cgi?id=178756

        Reviewed by Tim Horton.

        No change in behavior.
        This uses less memory in the common loading case.
        This will be needed for moving appcache loading to the Networking Process.
        See https://bugs.webkit.org/show_bug.cgi?id=178540

        * loader/cache/CachedResource.cpp:
        (WebCore::CachedResource::load):
        * loader/cache/CachedResource.h:
        (WebCore::CachedResource::setOriginalRequest):
        (WebCore::CachedResource::originalRequest const):
        (WebCore::CachedResource::setOriginalRequestHeaders): Deleted.
        * loader/cache/CachedResourceLoader.cpp:
        (WebCore::CachedResourceLoader::requestResource):

2017-10-24  Andy Estes  <aestes@apple.com>

        [WebIDL] Support the ExportMacro attribute for dictionaries
        https://bugs.webkit.org/show_bug.cgi?id=178752

        Reviewed by Sam Weinig.

        * bindings/scripts/CodeGeneratorJS.pm:
        (GenerateDictionaryHeaderContent):
        * bindings/scripts/test/JS/JSTestStandaloneDictionary.h:
        * bindings/scripts/test/TestStandaloneDictionary.idl:

2017-10-24  Eric Carlson  <eric.carlson@apple.com>

        Web Inspector: Enable WebKit logging configuration and display
        https://bugs.webkit.org/show_bug.cgi?id=177027
        <rdar://problem/33964767>

        Reviewed by Joseph Pecoraro.

        Test: inspector/console/webcore-logging.html

        * dom/Document.cpp:
        (WebCore::Document::~Document): Stop observing the logger.
        (WebCore::Document::logger): Observe the logger.
        (WebCore::Document::didLogMessage): Forward logging messages to the inspector.
        * dom/Document.h:

        * inspector/WebConsoleAgent.cpp:
        (WebCore::WebConsoleAgent::getLoggingChannels): New, return the state of log runtime channels.
        (WebCore::WebConsoleAgent::setLoggingChannelLevel): New, set the state of a channel.
        * inspector/WebConsoleAgent.h:

        * platform/Logging.cpp:
        (WebCore::getLogChannel): New, get a log channel by name.
        * platform/Logging.h:

2017-10-24  Dean Jackson  <dino@apple.com>

        Attempted build fix for Sierra.

        * html/ImageBitmap.cpp:
        (WebCore::croppedSourceRectangleWithFormatting):

2017-10-24  Dean Jackson  <dino@apple.com>

        Implement resizing options for ImageBitmap rendering
        https://bugs.webkit.org/show_bug.cgi?id=178687
        <rdar://problem/35135417>

        Reviewed by Sam Weinig.

        Implement many of the sizing options for createImageBitmap.

        Test: http/wpt/2dcontext/imagebitmap/createImageBitmap-sizing.html

        * html/ImageBitmap.cpp:
        (WebCore::croppedSourceRectangleWithFormatting):

            Implement the first bit of the algorithm from
            the HTML specification.

        (WebCore::outputSizeForSourceRectangle):

            ... and then the second bit. Leave the rest in
            comments for now.

        (WebCore::interpolationQualityForResizeQuality):

            Helper function to map ImageBitmapOptions to
            GraphicsContext.

        (WebCore::ImageBitmap::createPromise):

            Implement more of the sizing algorithm.

        * html/ImageBitmap.h: Origin tainting is defined to be false by default.

2017-10-24  Chris Dumez  <cdumez@apple.com>

        Add initial implementation for serviceWorker.postMessage()
        https://bugs.webkit.org/show_bug.cgi?id=178534

        Reviewed by Youenn Fablet.

        Add initial implementation for serviceWorker.postMessage():
        - https://w3c.github.io/ServiceWorker/#service-worker-postmessage

        Test: http/tests/workers/service/basic-ServiceWorker-postMessage.https.html

        * CMakeLists.txt:
        * DerivedSources.make:
        * Sources.txt:
        * WebCore.xcodeproj/project.pbxproj:
        * bindings/js/JSBindingsAllInOne.cpp:
        * bindings/js/JSExtendableMessageEvent.cpp: Added.
        (WebCore::JSExtendableMessageEvent::data const):
        * bindings/js/WebCoreBuiltinNames.h:
        * dom/Document.h:
        * dom/EventNames.in:
        * dom/MessagePortChannel.h:
        * dom/ScriptExecutionContext.h:
        * workers/WorkerGlobalScope.h:
        * workers/service/ExtendableEvent.cpp:
        (WebCore::ExtendableEvent::ExtendableEvent):
        (WebCore::ExtendableEvent::~ExtendableEvent):
        * workers/service/ExtendableEvent.h:
        * workers/service/ExtendableMessageEvent.cpp: Added.
        (WebCore::ExtendableMessageEvent::create):
        (WebCore::ExtendableMessageEvent::ExtendableMessageEvent):
        (WebCore::ExtendableMessageEvent::~ExtendableMessageEvent):
        * workers/service/ExtendableMessageEvent.h: Added.
        * workers/service/ExtendableMessageEvent.idl: Added.
        * workers/service/ServiceWorker.cpp:
        (WebCore::ServiceWorker::ServiceWorker):
        (WebCore::ServiceWorker::postMessage):
        (WebCore::ServiceWorker::state const):
        (WebCore::ServiceWorker::scriptExecutionContext const):
        * workers/service/ServiceWorker.h:
        * workers/service/ServiceWorkerContainer.cpp:
        (WebCore::ServiceWorkerContainer::controller const):
        * workers/service/ServiceWorkerContainer.h:
        * workers/service/ServiceWorkerGlobalScope.cpp:
        (WebCore::ServiceWorkerGlobalScope::thread):
        * workers/service/ServiceWorkerGlobalScope.h:
        (isType):
        * workers/service/context/ServiceWorkerThread.cpp:
        (WebCore::ServiceWorkerThread::postMessageToServiceWorkerGlobalScope):
        * workers/service/context/ServiceWorkerThread.h:
        * workers/service/server/SWClientConnection.h:

2017-10-24  Andy Estes  <aestes@apple.com>

        [Payment Request] Implement the "PaymentRequest updated" algorithm
        https://bugs.webkit.org/show_bug.cgi?id=178689

        Reviewed by Alex Christensen.

        Implemented the "PaymentRequest updated" algorithm by firing shippingaddresschange and
        shippingoptionchange events at the right times and implementing
        PaymentRequestUpdateEvent.updateWith().

        Tests: http/tests/paymentrequest/payment-request-change-shipping-address.https.html
               http/tests/paymentrequest/payment-request-change-shipping-option.https.html
               http/tests/paymentrequest/updateWith-method-pmi-handling.https.html

        * Modules/applepay/paymentrequest/ApplePayPaymentHandler.cpp:
        (WebCore::convertAndValidate): Added. Converts a PaymentDetailsInit to a
        ApplePaySessionPaymentRequest::TotalAndLineItems.
        (WebCore::ApplePayPaymentHandler::shippingAddressUpdated): Created a ShippingContactUpdate
        and passed it to PaymentCoordinator::completeShippingContactSelection().
        (WebCore::ApplePayPaymentHandler::shippingOptionUpdated): Created a ShippingMethodUpdate and
        passed it to PaymentCoordinator::completeShippingMethodSelection().
        * Modules/applepay/paymentrequest/ApplePayPaymentHandler.h:
        * Modules/paymentrequest/PaymentHandler.h:
        * Modules/paymentrequest/PaymentRequest.cpp:
        (WebCore::checkAndCanonicalizeDetails): Moved the logic for checking and canonicalizing a
        PaymentDetailsBase from PaymentRequest::create() to here.
        (WebCore::PaymentRequest::create): Called checkAndCanonicalizeDetails().
        (WebCore::PaymentRequest::abortWithException): Moved the body of stop() to here and
        parameterized the Exception with which to abort m_showPromise.
        (WebCore::PaymentRequest::stop): Called abortWithException() with an AbortError.
        (WebCore::PaymentRequest::shippingAddressChanged): Called dispatchUpdateEvent() with
        shippingaddresschangeEvent.
        (WebCore::PaymentRequest::shippingOptionChanged): Ditto with shippingoptionchangeEvent.
        (WebCore::PaymentRequest::dispatchUpdateEvent): Created a PaymentRequestUpdateEvent and
        dispatched it.
        (WebCore::PaymentRequest::updateWith): Added a settle handler to m_detailsPromise.
        (WebCore::PaymentRequest::settleDetailsPromise): Updated the PaymentRequest with the new
        details and called PaymentHandler::shippingAddressUpdated() or
        PaymentHandler::shippingOptionUpdated().
        * Modules/paymentrequest/PaymentRequest.h:
        * Modules/paymentrequest/PaymentRequestUpdateEvent.cpp:
        (WebCore::PaymentRequestUpdateEvent::PaymentRequestUpdateEvent):
        (WebCore::PaymentRequestUpdateEvent::updateWith): Called PaymentRequest::updateWith().
        (WebCore::PaymentRequestUpdateEvent::eventInterface const): Returned
        PaymentRequestUpdateEventInterfaceType.
        * Modules/paymentrequest/PaymentRequestUpdateEvent.h:
        * Modules/paymentrequest/PaymentRequestUpdateEvent.idl:
        * testing/MockPaymentCoordinator.cpp:
        (WebCore::MockPaymentCoordinator::canMakePaymentsWithActiveCard):
        (WebCore::MockPaymentCoordinator::openPaymentSetup):
        (WebCore::MockPaymentCoordinator::completeMerchantValidation): Stopped calling
        PaymentCoordinator::didAuthorizePayment().
        (WebCore::MockPaymentCoordinator::changeShippingOption): Called
        PaymentCoordinator::didSelectShippingMethod().
        (WebCore::MockPaymentCoordinator::acceptPayment): Called
        PaymentCoordinator::didAuthorizePayment().
        * testing/MockPaymentCoordinator.h:
        * testing/MockPaymentCoordinator.idl:

2017-10-24  Alex Christensen  <achristensen@webkit.org>

        Apply custom header fields from WebsitePolicies to same-domain requests
        https://bugs.webkit.org/show_bug.cgi?id=178356
        <rdar://problem/31073436>

        Reviewed by Brady Eidson.

        Covered by new API tests.

        * loader/cache/CachedResourceLoader.cpp:
        (WebCore::CachedResourceLoader::requestResource):
        * platform/network/ResourceRequestBase.cpp:
        (WebCore::ResourceRequestBase::setCachePolicy):
        (WebCore::ResourceRequestBase::setTimeoutInterval):
        (WebCore::ResourceRequestBase::setHTTPMethod):
        (WebCore::ResourceRequestBase::setHTTPHeaderField):
        (WebCore::ResourceRequestBase::clearHTTPAuthorization):
        (WebCore::ResourceRequestBase::clearHTTPContentType):
        (WebCore::ResourceRequestBase::clearHTTPReferrer):
        (WebCore::ResourceRequestBase::clearHTTPOrigin):
        (WebCore::ResourceRequestBase::clearHTTPUserAgent):
        (WebCore::ResourceRequestBase::clearHTTPAccept):
        (WebCore::ResourceRequestBase::clearHTTPAcceptEncoding):
        (WebCore::ResourceRequestBase::setResponseContentDispositionEncodingFallbackArray):
        (WebCore::ResourceRequestBase::setHTTPBody):
        (WebCore::ResourceRequestBase::setAllowCookies):
        (WebCore::ResourceRequestBase::setPriority):
        (WebCore::ResourceRequestBase::addHTTPHeaderFieldIfNotPresent):
        (WebCore::ResourceRequestBase::addHTTPHeaderField):
        (WebCore::ResourceRequestBase::setHTTPHeaderFields):
        If we only update the platform request when headers are added (or other changes) for HTTP requests,
        then the changes will not affect the NSURLRequest that is sent over IPC or visible to the API.
        This is necessary for these new tests to work, but it's also of growing importance since our
        introduction of WKURLSchemeHandler.

2017-10-24  Brent Fulgham  <bfulgham@apple.com>

        Adopt new secure coding APIs
        https://bugs.webkit.org/show_bug.cgi?id=178484
        <rdar://problem/34837193>

        Reviewed by Tim Horton.

        Switch to new NSKeyed[Un]Archiver methods that active and use
        NSSecureCoding by default.

        Most of the new API is wrapped in a set of convenience methods so we can
        build without the new API on older systems.

        No change in behavior.

        * editing/cocoa/EditorCocoa.mm:
        (WebCore::archivedDataForAttributedString): Use new convenience method
        to archive the string object.
        * loader/archive/cf/LegacyWebArchiveMac.mm:
        (WebCore::LegacyWebArchive::createResourceResponseFromMacArchivedData): Update to
        use secure coding where possible.
        (WebCore::LegacyWebArchive::createPropertyListRepresentation): Ditto.
        * platform/ios/PlatformPasteboardIOS.mm:
        (WebCore::PlatformPasteboard::write): Use new secure API.
        (WebCore::PlatformPasteboard::typesSafeForDOMToReadAndWrite const): Ditto.
        * testing/cocoa/WebArchiveDumpSupport.mm:
        (WebCoreTestSupport::createCFURLResponseFromResponseData): Update to
        secure coding API where possible.

2017-10-24  Jeremy Jones  <jeremyj@apple.com>

        HTMLMediaElement should iterate HTMLTrackElements consistently.
        https://bugs.webkit.org/show_bug.cgi?id=178423
        rdar://problem/35044967

        Reviewed by Eric Carlson.

        No new tests because no expected behavior change.

        HTMLMediaElement iterates HTMLTrackElements as children in every place but one, where it iterates them
        as descendants. It should always iterate them as children.

        * html/HTMLMediaElement.cpp:
        (WebCore::HTMLMediaElement::finishParsingChildren):

2017-10-24  Chris Dumez  <cdumez@apple.com>

        SerializedScriptValue::deserialize() should take ports as a const Vector&
        https://bugs.webkit.org/show_bug.cgi?id=178727

        Reviewed by Alex Christensen.

        SerializedScriptValue::deserialize() should take ports as a const Vector&, not a Vector&.
        It does not modify the input vector.

        * bindings/js/JSMessageEventCustom.cpp:
        (WebCore::JSMessageEvent::data const):
        * bindings/js/SerializedScriptValue.cpp:
        (WebCore::CloneDeserializer::deserialize):
        (WebCore::CloneDeserializer::CloneDeserializer):
        (WebCore::SerializedScriptValue::deserialize):
        * bindings/js/SerializedScriptValue.h:

2017-10-24  Konstantin Tokarev  <annulen@yandex.ru>

        [MediaFoundation] Videos are always autoplaying for local files
        https://bugs.webkit.org/show_bug.cgi?id=178693

        Patch by Doug Massay.
        Reviewed by Alex Christensen.

        r199114 fixes autoplay issue only if starting session invokes
        buffering stage. However when local files are played, onBufferingStarted
        and onBufferingStopped are not called, and video is not paused.

        * platform/graphics/win/MediaPlayerPrivateMediaFoundation.cpp:
        (WebCore::MediaPlayerPrivateMediaFoundation::endGetEvent):
        (WebCore::MediaPlayerPrivateMediaFoundation::onSessionStarted):
        * platform/graphics/win/MediaPlayerPrivateMediaFoundation.h:

2017-10-24  Matt Lewis  <jlewis3@apple.com>

        Unreviewed, rolling out r223889.

        This caused multiple crashes on all platforms

        Reverted changeset:

        "Adopt new secure coding APIs"
        https://bugs.webkit.org/show_bug.cgi?id=178484
        https://trac.webkit.org/changeset/223889

2017-10-24  Antti Koivisto  <antti@apple.com>

        Create inline wrappers for before/after pseudo elements that have display:contents
        https://bugs.webkit.org/show_bug.cgi?id=178722

        Reviewed by Ryosuke Niwa.

        We can handle before and after pseudo elements with display:contents by giving them
        inline renderers with style inherited from display:contents style. This removes
        need for complicated logic for this case and handles everything correctly.

        This is a better approach and replaces the one taken in bug 178584.
        It also fixes two display:contents WPTs.

        * dom/PseudoElement.h:

            There is no need to track content renderers separately anymore. They always descendants of
            pseudo element's renderer (which is an inline wrapper in case of display:contents).

        * rendering/style/RenderStyle.cpp:
        (WebCore::RenderStyle::copyContentFrom):
        * rendering/style/RenderStyle.h:
        * style/RenderTreeUpdaterGeneratedContent.cpp:
        (WebCore::createContentRenderers):
        (WebCore::updateStyleForContentRenderers):
        (WebCore::RenderTreeUpdater::GeneratedContent::updatePseudoElement):
        (WebCore::removeAndDestroyContentRenderers): Deleted.

            Since content renderers are now always descendants of the pseudo renderer
            there is no need for a separate destruction path.

        * style/StyleTreeResolver.cpp:
        (WebCore::Style::TreeResolver::resolvePseudoStyle):

            Create ElementUpdate with a style that will produce an inline wrapper.

2017-10-24  Wenson Hsieh  <wenson_hsieh@apple.com>

        [iOS] MediaPlayer::isAvailable() takes ~150 ms during web process initialization
        https://bugs.webkit.org/show_bug.cgi?id=178713
        <rdar://problem/35115906>

        Reviewed by Eric Carlson.

        Loading AVFoundation should not be required to answer the question of MediaPlayer::isAvailable() on iOS, where
        both AVFoundation and CoreMedia frameworks should always exist. As such, we can bail early and return true to
        avoid always dynamically loading AVFoundation and CoreMedia.

        * platform/graphics/MediaPlayer.cpp:
        (WebCore::MediaPlayer::isAvailable):

2017-10-24  Antoine Quint  <graouts@apple.com>

        RenderThemeCocoa::mediaControlsFormattedStringForDuration may cause a crash due to unhandled Obj-C exception
        https://bugs.webkit.org/show_bug.cgi?id=178716
        <rdar://problem/35112900>

        Reviewed by Dean Jackson.

        * rendering/RenderThemeCocoa.mm:
        (WebCore::RenderThemeCocoa::mediaControlsFormattedStringForDuration):

2017-10-24  Ryosuke Niwa  <rniwa@webkit.org>

        SizesAttributeParser::SizesAttributeParser triggers layout
        https://bugs.webkit.org/show_bug.cgi?id=178712

        Reviewed by Antti Koivisto.

        Revert r213711 as this change introduced an unwated synchronous layout inside Node::insertedIntoAncestor.

        The test had been marked as timing out since r191379 and changed to failing expectation in r199225
        as the test result's error message changes from run to run.

        Disabled Tests: imported/w3c/web-platform-tests/html/semantics/embedded-content/the-img-element/environment-changes/viewport-change.html
                        had been marked failing since r199225, prior to which it was marked as timeout in r191379.
                        imported/w3c/web-platform-tests/html/semantics/embedded-content/the-img-element/sizes/parse-a-sizes-attribute.html
                        is now marked as flaky.

        * css/parser/SizesAttributeParser.cpp:
        (WebCore::SizesAttributeParser::SizesAttributeParser):

2017-10-24  Keith Miller  <keith_miller@apple.com>

        Unreviewed, fix internal iOS build.

        * Sources.txt:

2017-10-24  Brent Fulgham  <bfulgham@apple.com>

        Adopt new secure coding APIs
        https://bugs.webkit.org/show_bug.cgi?id=178484
        <rdar://problem/34837193>

        Reviewed by Tim Horton.

        Switch to new NSKeyed[Un]Archiver methods that active and use
        NSSecureCoding by default.

        Most of the new API is wrapped in a set of convenience methods so we can
        build without the new API on older systems.

        No change in behavior.

        * editing/cocoa/EditorCocoa.mm:
        (WebCore::archivedDataForAttributedString): Use new convenience method
        to archive the string object.
        * loader/archive/cf/LegacyWebArchiveMac.mm:
        (WebCore::LegacyWebArchive::createResourceResponseFromMacArchivedData): Update to
        use secure coding where possible.
        (WebCore::LegacyWebArchive::createPropertyListRepresentation): Ditto.
        * platform/ios/PlatformPasteboardIOS.mm:
        (WebCore::PlatformPasteboard::write): Use new secure API.
        (WebCore::PlatformPasteboard::typesSafeForDOMToReadAndWrite const): Ditto.
        * testing/cocoa/WebArchiveDumpSupport.mm:
        (WebCoreTestSupport::createCFURLResponseFromResponseData): Update to
        secure coding API where possible.

2017-10-24  Miguel Gomez  <magomez@igalia.com>

        [GTK][X11] Windy.com shows always straight wind lines
        https://bugs.webkit.org/show_bug.cgi?id=176718

        Reviewed by Carlos Garcia Campos.

        WebGL's GL_LUMINANCE_ALPHA format is not available in OpenGL when using a version >= 3.2
        and a core profile. In that case, we need to replace it with GL_RG and swizzle the color
        components appropriately.

        No new behavior.

        * platform/graphics/opengl/GraphicsContext3DOpenGL.cpp:
        (WebCore::GraphicsContext3D::texImage2D):
        * platform/graphics/opengl/GraphicsContext3DOpenGLCommon.cpp:
        (WebCore::GraphicsContext3D::texSubImage2D):

2017-10-24  Ryosuke Niwa  <rniwa@webkit.org>

        DocumentOrderedMap::add should release assert that tree scopes match
        https://bugs.webkit.org/show_bug.cgi?id=178708

        Reviewed by Antti Koivisto.

        Assert that the tree scope of element matches the given tree scope instead of asserting that
        element is in tree scope, and replaced the use of RELEASE_ASSERT by the newly added
        RELEASE_ASSERT_WITH_SECURITY_IMPLICATION to clarify the semantics of these assertions.

        Also removed now redudnant early exits which would never execute due to release assertions.

        * dom/DocumentOrderedMap.cpp:
        (WebCore::DocumentOrderedMap::add):
        (WebCore::DocumentOrderedMap::remove):
        (WebCore::DocumentOrderedMap::get const):

2017-10-24  Michael Catanzaro  <mcatanzaro@igalia.com>

        -Wsubobject-linkage warning in InspectorIndexedDBAgent.cpp
        https://bugs.webkit.org/show_bug.cgi?id=178698

        Reviewed by Joseph Pecoraro.

        * inspector/InspectorIndexedDBAgent.cpp:

2017-10-24  Antoine Quint  <graouts@apple.com>

        [Web Animations] Add basic timing and target properties
        https://bugs.webkit.org/show_bug.cgi?id=178674

        Reviewed by Dean Jackson.

        We add three new interfaces to expose enough properties to establish basic timing properties,
        a start time and duration, and the target of an animation. The startTime property is set on
        the Animation object, the target is set on the KeyframeEffect set as the effect property on
        the Animation object, and the duration is set on the AnimationEffectTiming set on the effect.

        Tests: webanimations/animation-effect-timing.html
               webanimations/animation-effect.html
               webanimations/animation-interface-effect-property.html
               webanimations/animation-interface-start-time-property.html
               webanimations/keyframe-effect-interface-timing-duration.html
               webanimations/keyframe-effect.html

        * CMakeLists.txt:
        * DerivedSources.make:
        * Sources.txt:
        * WebCore.xcodeproj/project.pbxproj:
        * animation/AnimationEffect.cpp: Copied from Source/WebCore/animation/WebAnimation.idl.
        (WebCore::AnimationEffect::AnimationEffect):
        (WebCore::AnimationEffect::~AnimationEffect):
        * animation/AnimationEffect.h: Copied from Source/WebCore/animation/WebAnimation.h.
        (WebCore::AnimationEffect::isKeyframeEffect const):
        (WebCore::AnimationEffect::timing const):
        (WebCore::AnimationEffect::classType const):
        * animation/AnimationEffect.idl: Copied from Source/WebCore/animation/WebAnimation.idl.
        * animation/AnimationEffectTiming.cpp: Copied from Source/WebCore/animation/WebAnimation.idl.
        (WebCore::AnimationEffectTiming::create):
        (WebCore::AnimationEffectTiming::AnimationEffectTiming):
        (WebCore::AnimationEffectTiming::~AnimationEffectTiming):
        * animation/AnimationEffectTiming.h: Copied from Source/WebCore/animation/WebAnimation.h.
        * animation/AnimationEffectTiming.idl: Copied from Source/WebCore/animation/WebAnimation.idl.
        * animation/KeyframeEffect.cpp: Copied from Source/WebCore/animation/WebAnimation.idl.
        (WebCore::KeyframeEffect::create):
        (WebCore::KeyframeEffect::KeyframeEffect):
        * animation/KeyframeEffect.h: Copied from Source/WebCore/animation/WebAnimation.h.
        * animation/KeyframeEffect.idl: Copied from Source/WebCore/animation/WebAnimation.idl.
        * animation/WebAnimation.cpp:
        (WebCore::WebAnimation::setEffect):
        * animation/WebAnimation.h:
        * animation/WebAnimation.idl:
        * bindings/js/JSAnimationEffectCustom.cpp: Copied from Source/WebCore/animation/WebAnimation.cpp.
        (WebCore::toJSNewlyCreated):
        (WebCore::toJS):
        * bindings/js/WebCoreBuiltinNames.h:

2017-10-24  Ryosuke Niwa  <rniwa@webkit.org>

        RenderSVGModelObject::checkIntersection triggers layout
        https://bugs.webkit.org/show_bug.cgi?id=178710

        Reviewed by Antti Koivisto.

        Don't trigger a layout inside getElementCTM. Update the layout upfront in getEnclosureList.

        * rendering/svg/RenderSVGModelObject.cpp:
        (WebCore::getElementCTM):
        * svg/SVGSVGElement.cpp:
        (WebCore::SVGSVGElement::getEnclosureList):

2017-10-24  Nan Wang  <n_wang@apple.com>

        AX: Crash at -[WebAccessibilityObjectWrapper _accessibilityMinValue] + 24
        https://bugs.webkit.org/show_bug.cgi?id=178697

        Reviewed by Chris Fleizach.

        When we are calling _accessibilityMinValue and _accessibilityMaxValue on iOS, 
        it might cause crash if the AX object has already been detached. Fixed this 
        by adding the necessary checks.

        Test: accessibility/ios-simulator/slider-min-value-crash.html

        * accessibility/ios/WebAccessibilityObjectWrapperIOS.mm:
        (-[WebAccessibilityObjectWrapper _accessibilityMinValue]):
        (-[WebAccessibilityObjectWrapper _accessibilityMaxValue]):

2017-10-23  Keith Miller  <keith_miller@apple.com>

        Unreviewed, restore unneeded all in ones.

        * CMakeLists.txt:

2017-10-23  Commit Queue  <commit-queue@webkit.org>

        Unreviewed, rolling out r223870 and r223871.
        https://bugs.webkit.org/show_bug.cgi?id=178702

        broke the windows build (Requested by keith_miller on
        #webkit).

        Reverted changesets:

        "Add html, inspector, loader to unified sources"
        https://bugs.webkit.org/show_bug.cgi?id=178695
        https://trac.webkit.org/changeset/223870

        "Unrievwed, fix windows build."
        https://trac.webkit.org/changeset/223871

2017-10-23  Michael Catanzaro  <mcatanzaro@igalia.com>

        Unreviewed, attempt to fix initializeSupportedImageMIMETypes after r223860
        https://bugs.webkit.org/show_bug.cgi?id=178618
        <rdar://problem/35108852>

        * platform/MIMETypeRegistry.cpp:
        (WebCore::initializeSupportedImageMIMETypes):

2017-10-23  Keith Miller  <keith_miller@apple.com>

        Unrievwed, fix windows build.

        * CMakeLists.txt:

2017-10-23  Keith Miller  <keith_miller@apple.com>

        Add html, inspector, loader to unified sources
        https://bugs.webkit.org/show_bug.cgi?id=178695

        Rubber-stamped by Tim Horton.

        * CMakeLists.txt:
        * Sources.txt:
        * WebCore.xcodeproj/project.pbxproj:

2017-10-23  Joseph Pecoraro  <pecoraro@apple.com>

        Web Inspector: Remove unused Console.setMonitoringXHREnabled
        https://bugs.webkit.org/show_bug.cgi?id=178617

        Reviewed by Sam Weinig.

        * inspector/InspectorInstrumentation.cpp:
        (WebCore::InspectorInstrumentation::didFinishXHRLoadingImpl):
        * inspector/InspectorInstrumentation.h:
        (WebCore::InspectorInstrumentation::didFinishXHRLoading):
        * inspector/WebConsoleAgent.cpp:
        (WebCore::WebConsoleAgent::setMonitoringXHREnabled): Deleted.
        (WebCore::WebConsoleAgent::didFinishXHRLoading): Deleted.
        * inspector/WebConsoleAgent.h:
        Remove XHR monitoring code.

        * xml/XMLHttpRequest.h:
        * xml/XMLHttpRequest.cpp:
        (WebCore::XMLHttpRequest::send):
        (WebCore::XMLHttpRequest::didFinishLoading):
        (WebCore::XMLHttpRequest::setLastSendLineAndColumnNumber): Deleted.
        * xml/XMLHttpRequest.idl:
        Remove now unused state on XHR and ExecState requirement for send().

2017-10-23  Keith Miller  <keith_miller@apple.com>

        Add dom, editing, fileapi, and history to unified sources
        https://bugs.webkit.org/show_bug.cgi?id=178694

        Rubber-stamped by Tim Horton.

        * CMakeLists.txt:
        * Sources.txt:
        * WebCore.xcodeproj/project.pbxproj:

2017-10-23  Keith Miller  <keith_miller@apple.com>

        Move bridge, contentextensions, crypto, and css to unified sources.
        https://bugs.webkit.org/show_bug.cgi?id=178691

        Reviewed by Tim Horton.

        * CMakeLists.txt:
        * Sources.txt:
        * WebCore.xcodeproj/project.pbxproj:

2017-10-23  Wenson Hsieh  <wenson_hsieh@apple.com>

        Unreviewed, fix the Windows build after r223860

        UTIUtilities only exists on Cocoa platforms, so we need to guard it accordingly.

        * platform/MIMETypeRegistry.cpp:
        (WebCore::initializeSupportedImageMIMETypes):

2017-10-23  Wenson Hsieh  <wenson_hsieh@apple.com>

        [iOS] DocumentWriter::createDocument can spend ~100ms unnecessarily converting image UTIs to MIME types
        https://bugs.webkit.org/show_bug.cgi?id=178618
        <rdar://problem/35108852>

        Reviewed by Said Abou-Hallawa.

        Currently, in setting up a new Document, DocumentWriter::createDocument() always asks whether or not the
        Document should be a PDF document by calling MIMETypeRegistry::isPDFMIMEType(), which forces lazy initialization
        of every MIME type dictionary (e.g. image types, PDF types, JavaScript types, etc.). As evidenced by traces,
        this can be an expensive operation on certain devices.

        This patch implements two optimizations. First, we refactor the initializeSupportedImageMIMETypes() helper to
        stop asking for MIMETypeForImageSourceType for each of the supported UTIs. This is because the known MIME types
        corresponding to these hard-coded UTI types is a fixed set anyways, so we can simply iterate over a constant
        array of MIME types and populate the supported image (and image resource) types. Also, add assertions to ensure
        that we keep allowed image MIME types in sync with allowed image UTIs.

        The second optimization removes initializeMIMETypeRegistry() altogether in favor of calling just the
        initialize*MIMETypes() functions needed to ensure the information required. For instance, getPDFMIMETypes()
        currently calls initializeMIMETypeRegistry() if the pdfMIMETypes dictionary doesn't exist, when it really only
        needs to ensure that the pdfMIMETypes is initialized, for which initializePDFMIMETypes() is sufficient.

        * platform/MIMETypeRegistry.cpp:
        (WebCore::initializeSupportedImageMIMETypes):
        (WebCore::initializeSupportedJavaScriptMIMETypes):
        (WebCore::initializePDFMIMETypes):
        (WebCore::initializeSupportedNonImageMimeTypes):
        (WebCore::initializeUnsupportedTextMIMETypes):

        Move MIME type dictionary creation into initialize*MIMETypes() helpers. Additionally, remove
        initializePDFAndPostScriptMIMETypes, which is no longer necessary.

        (WebCore::MIMETypeRegistry::isSupportedImageMIMEType):
        (WebCore::MIMETypeRegistry::isSupportedImageResourceMIMEType):
        (WebCore::MIMETypeRegistry::isSupportedJavaScriptMIMEType):
        (WebCore::MIMETypeRegistry::isSupportedNonImageMIMEType):
        (WebCore::MIMETypeRegistry::isUnsupportedTextMIMEType):
        (WebCore::MIMETypeRegistry::isPDFOrPostScriptMIMEType):

        Tweak to check that the type isPDFMIMEType(), or that it's otherwise "application/postscript".

        (WebCore::MIMETypeRegistry::isPDFMIMEType):
        (WebCore::MIMETypeRegistry::getSupportedImageMIMETypes):
        (WebCore::MIMETypeRegistry::getSupportedImageResourceMIMETypes):
        (WebCore::MIMETypeRegistry::getSupportedNonImageMIMETypes):
        (WebCore::MIMETypeRegistry::getPDFMIMETypes):
        (WebCore::MIMETypeRegistry::getUnsupportedTextMIMETypes):

        Call only the relevant MIME type initializers when needed.

        (WebCore::initializePostScriptMIMETypes): Deleted.
        (WebCore::initializeMIMETypeRegistry): Deleted.
        (WebCore::MIMETypeRegistry::getPDFAndPostScriptMIMETypes): Deleted.

        Remove an unused and unexported function.

        * platform/MIMETypeRegistry.h:

2017-10-23  Andy Estes  <aestes@apple.com>

        [Payment Request] Take the JSC API lock before creating the PaymentResponse.details object
        https://bugs.webkit.org/show_bug.cgi?id=178686

        Reviewed by Keith Miller.

        This fixes several flaky crashes in http/tests/paymentrequest/ after r223855.

        * Modules/applepay/paymentrequest/ApplePayPaymentHandler.cpp:
        (WebCore::ApplePayPaymentHandler::didAuthorizePayment):

2017-10-23  Joseph Pecoraro  <pecoraro@apple.com>

        Web Inspector: Please support HAR Export for network traffic
        https://bugs.webkit.org/show_bug.cgi?id=146692
        <rdar://problem/7463672>

        Reviewed by Brian Burg.

        Tests: http/tests/inspector/network/har/har-basic.html
               http/tests/inspector/network/har/har-page.html

        * inspector/InspectorNetworkAgent.cpp:
        (WebCore::InspectorNetworkAgent::willSendRequest):
        Include the wall time when sending a request. This is needed for HAR to
        include a wall time, and can be used for Cookie expiration time calculation
        as well.

2017-10-23  Andy Estes  <aestes@apple.com>

        [Payment Request] Resolve PaymentRequest.show()'s accept promise when a payment is authorized
        https://bugs.webkit.org/show_bug.cgi?id=178609
        <rdar://problem/33542813>

        Reviewed by Alex Christensen.

        This patch implements the logic for resolving PaymentRequest.show()'s accept promise when
        the user authorizes a payment, and implements PaymentResponse.complete().

        Tests: http/tests/paymentrequest/payment-address-attributes-and-toJSON-method.https.html
               http/tests/paymentrequest/payment-response-complete-method.https.html
               http/tests/paymentrequest/payment-response-methodName-attribute.https.html
               http/tests/paymentrequest/payment-response-payerEmail-attribute.https.html
               http/tests/paymentrequest/payment-response-payerName-attribute.https.html
               http/tests/paymentrequest/payment-response-payerPhone-attribute.https.html

        * DerivedSources.make:
        * Modules/applepay/ApplePayPaymentContact.h:
        * Modules/applepay/Payment.h:
        (WebCore::Payment::Payment): Deleted.
        (WebCore::Payment::pkPayment const): Deleted.
        * Modules/applepay/PaymentContact.h:
        (WebCore::PaymentContact::PaymentContact): Deleted.
        (WebCore::PaymentContact::pkContact const): Deleted.
        * Modules/applepay/cocoa/PaymentContactCocoa.mm:
        (WebCore::convert):
        * Modules/applepay/paymentrequest/ApplePayPaymentHandler.cpp:
        (WebCore::ApplePayPaymentHandler::hasActiveSession):
        (WebCore::ApplePayPaymentHandler::ApplePayPaymentHandler):
        (WebCore::ApplePayPaymentHandler::document):
        (WebCore::ApplePayPaymentHandler::paymentCoordinator):
        (WebCore::ApplePayPaymentHandler::convertData):
        (WebCore::ApplePayPaymentHandler::show):
        (WebCore::ApplePayPaymentHandler::hide):
        (WebCore::ApplePayPaymentHandler::canMakePayment):
        (WebCore::ApplePayPaymentHandler::complete):
        (WebCore::convert):
        (WebCore::ApplePayPaymentHandler::didAuthorizePayment):
        (WebCore::ApplePayPaymentHandler::didSelectShippingMethod):
        (WebCore::ApplePayPaymentHandler::didSelectShippingContact):
        * Modules/applepay/paymentrequest/ApplePayPaymentHandler.h:
        * Modules/paymentrequest/PaymentAddress.h:
        * Modules/paymentrequest/PaymentAddress.idl:
        * Modules/paymentrequest/PaymentHandler.cpp:
        (WebCore::PaymentHandler::create):
        * Modules/paymentrequest/PaymentHandler.h:
        * Modules/paymentrequest/PaymentRequest.cpp:
        (WebCore::PaymentRequest::show):
        (WebCore::PaymentRequest::stop):
        (WebCore::PaymentRequest::canMakePayment):
        (WebCore::PaymentRequest::canSuspendForDocumentSuspension const):
        (WebCore::PaymentRequest::shippingAddressChanged):
        (WebCore::PaymentRequest::shippingOptionChanged):
        (WebCore::PaymentRequest::accept):
        (WebCore::PaymentRequest::complete):
        * Modules/paymentrequest/PaymentRequest.h:
        * Modules/paymentrequest/PaymentResponse.cpp:
        (WebCore::PaymentResponse::PaymentResponse):
        (WebCore::PaymentResponse::complete):
        * Modules/paymentrequest/PaymentResponse.h:
        * WebCore.xcodeproj/project.pbxproj:
        * testing/Internals.cpp:
        (WebCore::Internals::Internals):
        (WebCore::Internals::mockPaymentCoordinator const):
        * testing/Internals.h:
        * testing/Internals.idl:
        * testing/MockPayment.h: Added.
        * testing/MockPaymentAddress.h: Added.
        * testing/MockPaymentAddress.idl: Added.
        * testing/MockPaymentContact.h: Added.
        * testing/MockPaymentCoordinator.cpp:
        (WebCore::MockPaymentCoordinator::canMakePaymentsWithActiveCard):
        (WebCore::MockPaymentCoordinator::openPaymentSetup):
        (WebCore::dispatchIfShowing):
        (WebCore::MockPaymentCoordinator::showPaymentUI):
        (WebCore::MockPaymentCoordinator::completeMerchantValidation):
        (WebCore::MockPaymentCoordinator::completePaymentSession):
        (WebCore::MockPaymentCoordinator::abortPaymentSession):
        (WebCore::MockPaymentCoordinator::cancelPaymentSession):
        (WebCore::MockPaymentCoordinator::paymentCoordinatorDestroyed):
        * testing/MockPaymentCoordinator.h:
        * testing/MockPaymentCoordinator.idl: Added.

2017-10-23  Dean Jackson  <dino@apple.com>

        Attempt to stop iOS Simulator tests from failing because
        we don't support Accelerated ImageBuffer.

        * html/ImageBitmap.cpp:

2017-10-23  Zalan Bujtas  <zalan@apple.com>

        [FrameView::layout cleanup] Make m_subtreeLayoutRoot weak.
        https://bugs.webkit.org/show_bug.cgi?id=178621
        <rdar://problem/35110321>

        Reviewed by Simon Fraser.

        This patch turn m_subtreeLayoutRoot into a weak pointer to handle both the optional and the mutation cases.

        Covered by existing cases.

        * page/FrameView.cpp:
        (WebCore::FrameView::reset):
        (WebCore::FrameView::willDestroyRenderTree):
        (WebCore::FrameView::didDestroyRenderTree):
        (WebCore::FrameView::calculateScrollbarModesForLayout):
        (WebCore::FrameView::handleLayoutWithFrameFlatteningIfNeeded):
        (WebCore::FrameView::canPerformLayout const):
        (WebCore::FrameView::layout): WeakPtr<RenderElement> protects us from recursive layouts triggering UAF on layoutRoot.
        (WebCore::FrameView::convertSubtreeLayoutToFullLayout):
        (WebCore::FrameView::scheduleRelayout):
        (WebCore::FrameView::scheduleRelayoutOfSubtree):
        (WebCore::FrameView::needsLayout const):
        (WebCore::FrameView::autoSizeIfEnabled):
        * page/FrameView.h:

2017-10-23  Keith Miller  <keith_miller@apple.com>

        Unreviewed, fix windows build.

        * CMakeLists.txt:

2017-10-23  Keith Miller  <keith_miller@apple.com>

        Move shared accessibility and animiations files to unified sources.
        https://bugs.webkit.org/show_bug.cgi?id=178677

        Reviewed by Tim Horton.

        * Sources.txt:
        * WebCore.xcodeproj/project.pbxproj:

2017-10-23  Chris Dumez  <cdumez@apple.com>

        Drop confusing Event::dispatched() method
        https://bugs.webkit.org/show_bug.cgi?id=178670

        Reviewed by Youenn Fablet.

        Drop confusing Event::dispatched() method. What the call sites want to do is check
        that the Event's "dispatch" flag is set:
        - https://dom.spec.whatwg.org/#dispatch-flag

        This flag gets set at the beginning of dispatchEvent() and unset at the end of
        dispatchEvent():
        - https://dom.spec.whatwg.org/#ref-for-dispatch-flag③

        See as an example event.initEvent():
        - https://dom.spec.whatwg.org/#dom-event-initevent

        The right way to check the Event's "dispatch" flag is the Event::isBeingDispatched()
        method, so use this instead. One side effect of this change is that it is now
        possible to call the init*Event() method on events that have already been dispatched
        in order to dispatch them again, as per the specification.

        Test: fast/events/initEvent-after-dispatching.html

        * dom/CompositionEvent.cpp:
        (WebCore::CompositionEvent::initCompositionEvent):
        * dom/DeviceMotionEvent.cpp:
        (WebCore::DeviceMotionEvent::initDeviceMotionEvent):
        * dom/DeviceOrientationEvent.cpp:
        (WebCore::DeviceOrientationEvent::initDeviceOrientationEvent):
        * dom/Event.h:
        * dom/HashChangeEvent.h:
        * dom/KeyboardEvent.cpp:
        (WebCore::KeyboardEvent::initKeyboardEvent):
        * dom/MessageEvent.cpp:
        (WebCore::MessageEvent::initMessageEvent):
        * dom/MouseEvent.cpp:
        (WebCore::MouseEvent::initMouseEvent):
        * dom/OverflowEvent.cpp:
        (WebCore::OverflowEvent::initOverflowEvent):
        * dom/TextEvent.cpp:
        (WebCore::TextEvent::initTextEvent):
        * dom/TouchEvent.cpp:
        (WebCore::TouchEvent::initTouchEvent):
        * dom/UIEvent.cpp:
        (WebCore::UIEvent::initUIEvent):
        * dom/WheelEvent.cpp:
        (WebCore::WheelEvent::initWheelEvent):
        * storage/StorageEvent.cpp:
        (WebCore::StorageEvent::initStorageEvent):

2017-10-23  Antti Koivisto  <antti@apple.com>

        Remember previous child renderer during render tree update
        https://bugs.webkit.org/show_bug.cgi?id=178659

        Reviewed by Zalan Bujtas.

        We shouldn't need to recompute the previous renderer, we know it already.

        * style/RenderTreePosition.cpp:
        (WebCore::RenderTreePosition::previousSiblingRenderer const): Deleted.

            No longer needed. This was also subtly wrong as doesn't take display:contents into account.

        * style/RenderTreePosition.h:
        * style/RenderTreeUpdater.cpp:
        (WebCore::RenderTreeUpdater::updateRenderTree):
        (WebCore::RenderTreeUpdater::textRendererIsNeeded):

            Use the saved previous renderer.

        (WebCore::RenderTreeUpdater::updateTextRenderer):
        (WebCore::RenderTreeUpdater::storePreviousRenderer):

            Save the previous renderere as we walk the tree.

        (WebCore::textRendererIsNeeded): Deleted.
        * style/RenderTreeUpdater.h:

2017-10-23  Keith Miller  <keith_miller@apple.com>

        Add Shared Modules files to the unified source build.
        https://bugs.webkit.org/show_bug.cgi?id=178675

        Reviewed by Tim Horton.

        This patch all the Modules sources files shared across all ports to
        unified sources.

        * CMakeLists.txt:
        * Sources.txt:
        * WebCore.xcodeproj/project.pbxproj:

2017-10-22  Dean Jackson  <dino@apple.com>

        Implement drawImage(ImageBitmap) on 2d canvas
        https://bugs.webkit.org/show_bug.cgi?id=178653
        <rdar://problem/35104360>

        Reviewed by Antoine Quint.

        Implement CanvasRenderingContext2D::drawImage with ImageBitmap.
        It's probably not going to be a very common operation, but
        it importantly allows us to test the ImageBitmap creation
        code.

        Test: http/wpt/2dcontext/imagebitmap/drawImage-ImageBitmap.html

        * html/ImageBitmap.cpp:
        (WebCore::taintsOrigin): New helper function to determine if a
        CachedImage would provide a clean origin.
        (WebCore::ImageBitmap::createPromise): Set the flag that records
        if this ImageBitmap has a clean origin.
        * html/ImageBitmap.h:
        (WebCore::ImageBitmap::buffer): Exposes the ImageBuffer backing
        store, allowing access to the data for drawing.
        (WebCore::ImageBitmap::originClean const): Is this ImageBitmap
        going to taint a destination.
        * html/canvas/CanvasRenderingContext.cpp:
        (WebCore::CanvasRenderingContext::wouldTaintOrigin): Implement
        the ImageBitmap version of this template function.
        * html/canvas/CanvasRenderingContext.h:
        * html/canvas/CanvasRenderingContext2D.cpp:
        (WebCore::CanvasRenderingContext2D::drawImage): Implement the
        actual drawing of an ImageBitmap.

2017-10-23  Daniel Bates  <dabates@apple.com>

        Unreviewed, rolling out r223699.

        Caused regressions with right-to-left text selection and
        painting of markers in flipped writing mode and in overlapping
        lines. Will investigate offline.

        Reverted changeset:

        "Share logic in InlineTextBox to compute selection rect"
        https://bugs.webkit.org/show_bug.cgi?id=178232
        https://trac.webkit.org/changeset/223699

2017-10-23  Youenn Fablet  <youenn@apple.com>

        Create a Fetch event when ServiceWorker has to handle a fetch
        https://bugs.webkit.org/show_bug.cgi?id=178491

        Reviewed by Chris Dumez.

        Covered by existing test.

        Updating FetchEvent to pass a FetchResponse* within its onResponse callback.
        Making it a CompletionHandler.
        Fixing a check on respondWith to ensure that event is dispatched when respondWith is called.

        Adding ServiceWorkerFetch class to handle the creation of the fetch event, waiting for the fetch event to be responded
        and processing when fetch event is responded.
        ServiceWorkerFetchTask takes a client to which will be sent the response body or the error.
        WebKit implementation of it will be to send the related IPC message back to the WebProcess that made the fetch request.

        Adding a method to ServiceWorkerThread to create the fetch event on worker thread and dispatch on the global scope.

        * WebCore.xcodeproj/project.pbxproj:
        * platform/network/ResourceResponseBase.h:
        * testing/Internals.cpp:
        (WebCore::Internals::waitForFetchEventToFinish):
        * workers/service/FetchEvent.cpp:
        (WebCore::FetchEvent::~FetchEvent):
        (WebCore::FetchEvent::respondWith):
        (WebCore::FetchEvent::onResponse):
        (WebCore::FetchEvent::respondWithError):
        (WebCore::FetchEvent::processResponse):
        (WebCore::FetchEvent::promiseIsSettled):
        * workers/service/FetchEvent.h:
        * workers/service/context/ServiceWorkerFetch.cpp: Added.
        (WebCore::ServiceWorkerFetch::dispatchFetchTask):
        (WebCore::ServiceWorkerFetch::processResponse):
        * workers/service/context/ServiceWorkerFetch.h: Added.
        * workers/service/context/ServiceWorkerThread.cpp:
        (WebCore::m_workerObjectProxy):
        (WebCore::ServiceWorkerThread::dispatchFetchEvent):
        * workers/service/context/ServiceWorkerThread.h:

2017-10-23  Basuke Suzuki  <Basuke.Suzuki@sony.com>

        [Curl] Fix authentication related bugs
        https://bugs.webkit.org/show_bug.cgi?id=178652

        Reviewed by Alex Christensen.

        * platform/network/curl/AuthenticationChallengeCurl.cpp:
        (WebCore::AuthenticationChallenge::protectionSpaceFromHandle):
        * platform/network/curl/CurlContext.cpp:
        (WebCore::CurlHandle::setHttpAuthUserPass):
        * platform/network/curl/CurlRequest.cpp:
        (WebCore::CurlRequest::setUserPass):
        (WebCore::CurlRequest::setupTransfer):
        (WebCore::CurlRequest::didReceiveHeader):
        * platform/network/curl/CurlRequest.h:

2017-10-23  Matt Lewis  <jlewis3@apple.com>

        Unreviewed, rolling out r223820.

        This caused a build break on Windows.

        Reverted changeset:

        "Web Inspector: Remove unused Console.setMonitoringXHREnabled"
        https://bugs.webkit.org/show_bug.cgi?id=178617
        https://trac.webkit.org/changeset/223820

2017-10-23  Zalan Bujtas  <zalan@apple.com>

        Call FrameView::scheduleSelectionUpdate when selection needs repainting after layout instead of setting the RenderView dirty.
        https://bugs.webkit.org/show_bug.cgi?id=178651
        <rdar://problem/35117448>

        Reviewed by Antti Koivisto.

        Calling setNeedsLayout() on the RenderView to trigger selection update is problematic in 2 different ways:
        1. marking the root renderer dirty does not trigger layout (this is very specific to the root,
        other renderers do trigger layout). It means that it works as long as someone else schedules a layout.
        2. when a subtree layout is already scheduled and we mark the root renderer dirty, the root gets stuck with
        the dirty flag (since the entry point for the subsequent layout is a descendant of the root and not the root itself).

        This patch addresses these issues by scheduling/converting subtree layout when needed.  

        Covered by fast/dynamic/remove-invisible-node-inside-selection.html/remove-node-inside-selection.html

        * editing/FrameSelection.cpp:
        (WebCore::FrameSelection::respondToNodeModification):
        * page/FrameView.cpp:
        (WebCore::FrameView::scheduleSelectionUpdate):
        * page/FrameView.h:

2017-10-23  Miguel Gomez  <magomez@igalia.com>

        [TexMap] Remove GraphicsContext3D usage from TextureMapperShaderProgram
        https://bugs.webkit.org/show_bug.cgi?id=175425

        Reviewed by Žan Doberšek.

        Remove usage of the GraphicsContext3D class in TextureMapperShaderProgram.
        Direct OpenGL API calls, types and constants are used instead.

        By removing GraphicsContext3D, we don't use ANGLE anymore to perform the
        shader adaptation to the used OpenGL/GLES2 version, so we need to do that
        inside TextureMapperShaderProgram. The main changes required for this are
        adding the #version directive and use in/out to define input/output parameters
        when using OpenGL >= 3.2, and defining the default precision only when using
        GLES2.

        Besides that, now that VideoTextureCopierGStreamer doesn't have its own
        GraphicsContext3D, we need to add a VAO to it when using OpenGL >= 3.2.

        Based on a previous patch by Žan Doberšek <zdobersek@igalia.com>.

        No behavior change.

        * platform/graphics/gstreamer/VideoTextureCopierGStreamer.cpp:
        (WebCore::VideoTextureCopierGStreamer::VideoTextureCopierGStreamer):
        (WebCore::VideoTextureCopierGStreamer::~VideoTextureCopierGStreamer):
        (WebCore::VideoTextureCopierGStreamer::copyVideoTextureToPlatformTexture):
        * platform/graphics/gstreamer/VideoTextureCopierGStreamer.h:
        * platform/graphics/texmap/TextureMapperGL.cpp:
        (WebCore::TextureMapperGLData::getShaderProgram):
        (WebCore::prepareFilterProgram):
        (WebCore::TextureMapperGL::drawTexture):
        (WebCore::TextureMapperGL::drawFiltered):
        * platform/graphics/texmap/TextureMapperShaderProgram.cpp:
        (WebCore::TextureMapperShaderProgram::create):
        (WebCore::getShaderLog):
        (WebCore::getProgramLog):
        (WebCore::TextureMapperShaderProgram::TextureMapperShaderProgram):
        (WebCore::TextureMapperShaderProgram::~TextureMapperShaderProgram):
        (WebCore::TextureMapperShaderProgram::setMatrix):
        (WebCore::TextureMapperShaderProgram::getLocation):
        * platform/graphics/texmap/TextureMapperShaderProgram.h:
        (WebCore::TextureMapperShaderProgram::programID const):

2017-10-22  Sam Weinig  <sam@webkit.org>

        [Settings] Replace current Settings generation with template file based approach
        https://bugs.webkit.org/show_bug.cgi?id=178634

        Reviewed by Joseph Pecoraro.

        This replaces the recently added python based Settings generation with a generator
        built in ruby, so we can take advantage of ERB for templating. The result has much
        of the logic in the templates and as a result feels much easier to follow and cleaner.

        Since I was moving things to ruby, I took the opertunity to switch the Settings definition
        file from our .in format to yaml, which is quite a bit easier to read.

        * CMakeLists.txt:
        * DerivedSources.make:
        * Scripts/GenerateSettings: Removed.
        * Scripts/GenerateSettings.py: Removed.
        * Scripts/GenerateSettings.rb: Added.
        * Scripts/GenerateSettings/GenerateInternalSettingsHeaderFile.py: Removed.
        * Scripts/GenerateSettings/GenerateInternalSettingsIDLFile.py: Removed.
        * Scripts/GenerateSettings/GenerateInternalSettingsImplementationFile.py: Removed.
        * Scripts/GenerateSettings/GenerateSettings.py: Removed.
        * Scripts/GenerateSettings/GenerateSettingsHeaderFile.py: Removed.
        * Scripts/GenerateSettings/GenerateSettingsImplementationFile.py: Removed.
        * Scripts/GenerateSettings/Settings.py: Removed.
        * Scripts/GenerateSettings/__init__.py: Removed.
        * Scripts/SettingsTemplates: Added.
        * Scripts/SettingsTemplates/InternalSettingsGenerated.cpp.erb: Added.
        * Scripts/SettingsTemplates/InternalSettingsGenerated.h.erb: Added.
        * Scripts/SettingsTemplates/InternalSettingsGenerated.idl.erb: Added.
        * Scripts/SettingsTemplates/Settings.cpp.erb: Added.
        * Scripts/SettingsTemplates/Settings.h.erb: Added.
        * WebCore.xcodeproj/project.pbxproj:
        * WebCoreMacros.cmake:
        * page/Settings.in: Removed.
        * page/Settings.yaml: Added.

2017-10-22  Joseph Pecoraro  <pecoraro@apple.com>

        REGRESSION(r219675): Web Inspector: CommandLineAPI getEventListeners does not work
        https://bugs.webkit.org/show_bug.cgi?id=178650
        <rdar://problem/35116347>

        Reviewed by Sam Weinig.

        Test: inspector/console/command-line-api-getEventListeners.html

        * inspector/CommandLineAPIHost.cpp:
        (WebCore::listenerEntriesFromListenerInfo):
        Fix typo.

        (WebCore::CommandLineAPIHost::getEventListeners):
        Fix incorrect early return.

        * inspector/CommandLineAPIHost.h:
        * inspector/CommandLineAPIHost.idl:
        Add more attributes about the listener. These new attributes match output from Chrome.

2017-10-22  Antoine Quint  <graouts@apple.com>

        [Web Animations] Add animations to the timeline
        https://bugs.webkit.org/show_bug.cgi?id=178643

        Reviewed by Dean Jackson.

        If a timeline is provided as a parameter to the Animation constructor,
        add it to the timeline, and remove it when the object is destroyed.

        We also start the basic mechanism to dump the contents of a timeline
        as text for testing purposes, currently only logging the number of
        animations in a timeline and just logging the class name for animation
        themselves.

        Test: webanimations/animation-creation-addition.html

        * animation/AnimationTimeline.cpp:
        (WebCore::AnimationTimeline::description):
        * animation/AnimationTimeline.h:
        * animation/AnimationTimeline.idl:
        * animation/WebAnimation.cpp:
        (WebCore::WebAnimation::create):
        (WebCore::WebAnimation::~WebAnimation):
        (WebCore::WebAnimation::description):
        * animation/WebAnimation.h:
        * testing/Internals.cpp:
        (WebCore::Internals::timelineDescription):
        * testing/Internals.h:
        * testing/Internals.idl:

2017-10-21  Zalan Bujtas  <zalan@apple.com>

        [FrameView::layout cleanup] Drop allowSubtree parameter
        https://bugs.webkit.org/show_bug.cgi?id=178623
        <rdar://problem/35111012>

        Reviewed by Sam Weinig.

        This flag is only set through ::forceLayout(). Let's just convert the subtree layout
        to full layout right before calling ::layout().

        No change in functionality.

        * page/FrameView.cpp:
        (WebCore::FrameView::handleLayoutWithFrameFlatteningIfNeeded):
        (WebCore::FrameView::layout):
        (WebCore::FrameView::startLayoutAtMainFrameViewIfNeeded):
        (WebCore::FrameView::forceLayout):
        * page/FrameView.h:

2017-10-21  Joseph Pecoraro  <pecoraro@apple.com>

        Web Inspector: Remove unused Console.setMonitoringXHREnabled
        https://bugs.webkit.org/show_bug.cgi?id=178617

        Reviewed by Sam Weinig.

        * inspector/InspectorInstrumentation.cpp:
        (WebCore::InspectorInstrumentation::didFinishXHRLoadingImpl):
        * inspector/InspectorInstrumentation.h:
        (WebCore::InspectorInstrumentation::didFinishXHRLoading):
        * inspector/WebConsoleAgent.cpp:
        (WebCore::WebConsoleAgent::setMonitoringXHREnabled): Deleted.
        (WebCore::WebConsoleAgent::didFinishXHRLoading): Deleted.
        * inspector/WebConsoleAgent.h:
        Remove XHR monitoring code.

        * xml/XMLHttpRequest.h:
        * xml/XMLHttpRequest.cpp:
        (WebCore::XMLHttpRequest::send):
        (WebCore::XMLHttpRequest::didFinishLoading):
        (WebCore::XMLHttpRequest::setLastSendLineAndColumnNumber): Deleted.
        * xml/XMLHttpRequest.idl:
        Remove now unused state on XHR and ExecState requirement for send().

2017-10-21  Dean Jackson  <dino@apple.com>

        createImageBitmap with basic HTMLImageElement
        https://bugs.webkit.org/show_bug.cgi?id=178619
        <rdar://problem/35104118>

        Reviewed by Antoine Quint.

        Implement the basic infrastructure for creating
        an ImageBitmap from an HTMLImageElement.

        Test: http/wpt/2dcontext/imagebitmap/createImageBitmap.html

        * html/ImageBitmap.cpp:
        (WebCore::ImageBitmap::createPromise): Create the image buffer
        and draw the image into its backing store.
        * html/ImageBitmap.h:

2017-10-21  Antoine Quint  <graouts@apple.com>

        [Web Animations] Add bindings to unified sources
        https://bugs.webkit.org/show_bug.cgi?id=178620

        Reviewed by Dean Jackson.

        Removing the Web Animations bindings from the WebCore target and adding them to the unified sources list instead.

        * Sources.txt:
        * WebCore.xcodeproj/project.pbxproj:

2017-10-21  Tim Horton  <timothy_horton@apple.com>

        Fix the Mac CMake build

        * PlatformMac.cmake:

2017-10-21  Antti Koivisto  <antti@apple.com>

        Support ::before/::after pseudo elements with display:contents
        https://bugs.webkit.org/show_bug.cgi?id=178584

        Reviewed by Ryosuke Niwa.

        This is cases like

        ::before { display:contents; content:'foo' }

        * css/StyleResolver.cpp:
        (WebCore::StyleResolver::adjustDisplayContentsStyle): Added.

            Allow display:contents on pseudo elements.
            Factor into function.

        (WebCore::StyleResolver::adjustRenderStyle):
        * dom/PseudoElement.h:

            Add a weak vector of content renderers.

        * style/RenderTreePosition.h:
        (WebCore::RenderTreePosition::moveToLastChild):

            Add a way to set a valid render tree position without a node.

        * style/RenderTreeUpdaterGeneratedContent.cpp:
        (WebCore::createContentRenderers):

            Take RenderTreePosition.

        (WebCore::updateStyleForContentRenderers):

            Update based on the content renderer vector instead of doing a tree walk.

        (WebCore::removeAndDestroyContentRenderers):

            Helper for destroying content renderers.

        (WebCore::RenderTreeUpdater::GeneratedContent::updatePseudoElement):

            In the normal case create a render tree position for the pseudo element renderer and
            use RenderTreePosition::moveToLastChild to make it a valid position. (The existing
            RenderTreePosition interface didn't have way to move to positions in anonymous boxes)

            In the case of a non box generating display:contents pseudo element, use the current
            render tree position instead.

            Ensure that pseudo element renderers are destroyed before creating the new ones since in
            display:contents case they are not descendants of the pseudo renderer and don't get cleared
            automatically.

2017-10-20  Zalan Bujtas  <zalan@apple.com>

        [FrameView::layout cleanup] Use SetForScope to ensure layout state correctness
        https://bugs.webkit.org/show_bug.cgi?id=178604
        <rdar://problem/35101890>

        Reviewed by Simon Fraser.

        SetForScope guarantees state correctness even with nested layouts. This is a lot less
        error prone than resetting the state value after each potential recursive call.

        Covered by existing tests.

        * page/FrameView.cpp:
        (WebCore::FrameView::handleDeferredScrollbarsUpdateAfterDirectionChange): This layout state does
        not look too useful.
        (WebCore::FrameView::layout):
        * page/FrameView.h: While performPostLayoutTasks() is somewhat special since it can either be sync or async,
        so painting should be allowed in both cases.

2017-10-20  Said Abou-Hallawa  <sabouhallawa@apple.com>

        SVGPathElement should cache the built-up Path of its non animating pathByteStream()
        https://bugs.webkit.org/show_bug.cgi?id=178248

        Reviewed by Simon Fraser.

        Instead of creating a Path object from the non animating pathByteStream()
        every time we need to updatePathFromPathElement(), the Path object can be
        cached once it is created and used for later calls.

        * html/canvas/Path2D.h: buildPathFromString() now returns a Path.

        * platform/graphics/Path.h:
        * platform/graphics/cairo/PathCairo.cpp:
        (WebCore::Path::Path):
        (WebCore::Path::operator=):
        * platform/graphics/cg/PathCG.cpp:
        (WebCore::Path::Path):
        (WebCore::Path::operator=):
        * platform/graphics/win/PathDirect2D.cpp:
        (WebCore::Path::Path):
        (WebCore::Path::operator=):
        Define the move constructor and the move assignment operator for the the
        Path class so a statement like "Path path = buildPathFromString()" won't 
        go through the copy constructor and the copy assignment operator.

        * rendering/style/BasicShapes.cpp:
        (WebCore::SVGPathTranslatedByteStream::path const):
        * rendering/svg/RenderSVGResourceClipper.cpp:
        (WebCore::RenderSVGResourceClipper::pathOnlyClipping):
        * rendering/svg/RenderSVGShape.cpp:
        (WebCore::RenderSVGShape::updateShapeFromElement):
        * rendering/svg/RenderSVGTextPath.cpp:
        (WebCore::RenderSVGTextPath::layoutPath const):
        * rendering/svg/SVGPathData.cpp:
        (WebCore::pathFromCircleElement):
        (WebCore::pathFromEllipseElement):
        (WebCore::pathFromLineElement):
        (WebCore::pathFromPathElement):
        (WebCore::pathFromPolygonElement):
        (WebCore::pathFromPolylineElement):
        (WebCore::pathFromRectElement):
        (WebCore::pathFromGraphicsElement):
        (WebCore::updatePathFromCircleElement): Deleted.
        (WebCore::updatePathFromEllipseElement): Deleted.
        (WebCore::updatePathFromLineElement): Deleted.
        (WebCore::updatePathFromPathElement): Deleted.
        (WebCore::updatePathFromPolygonElement): Deleted.
        (WebCore::updatePathFromPolylineElement): Deleted.
        (WebCore::updatePathFromRectElement): Deleted.
        (WebCore::updatePathFromGraphicsElement): Deleted.
        * rendering/svg/SVGPathData.h:
        * svg/SVGAnimateMotionElement.cpp:
        (WebCore::SVGAnimateMotionElement::parseAttribute):
        (WebCore::SVGAnimateMotionElement::updateAnimationPath):
        * svg/SVGGraphicsElement.cpp:
        (WebCore::SVGGraphicsElement::toClipPath):
        * svg/SVGGraphicsElement.h:
        Rename updatePathFromElement() to pathFromGraphicsElement().

        * svg/SVGPathElement.cpp:
        (WebCore::SVGPathElement::parseAttribute): Clear the cache when
        m_pathByteStream changes.
        (WebCore::SVGPathElement::pathForByteStream const): Caches the m_cachedPath
        if it is null.
        (WebCore::SVGPathElement::pathSegListChanged): Clear the cache when
        m_pathByteStream changes.

        * svg/SVGPathElement.h:
        * svg/SVGPathUtilities.cpp:
        (WebCore::buildPathFromString):
        (WebCore::buildPathFromByteStream):
        * svg/SVGPathUtilities.h:
        Make thes buildPathFromString() and buildPathFromByteStream() return Paths.

        * svg/SVGUseElement.cpp:
        (WebCore::SVGUseElement::toClipPath):
        * svg/SVGUseElement.h:
        Make these toClipPath() return Path.

2017-10-20  Ryosuke Niwa  <rniwa@webkit.org>

        Rename insertedInto and removedFrom to insertedIntoAncestor and removedFromAncestor
        https://bugs.webkit.org/show_bug.cgi?id=178605

        Reviewed by Andy Estes.

        Renamed insertedInto and removedFrom to insertedIntoAncestor and removedFromAncestor respectively
        to make it clear that these functions can be called even when node's immediate parent didn't change.

        * dom/ContainerNodeAlgorithms.cpp:
        (WebCore::notifyNodeInsertedIntoDocument):
        (WebCore::notifyNodeInsertedIntoTree):
        (WebCore::notifyNodeRemovedFromDocument):
        (WebCore::notifyNodeRemovedFromTree):
        (WebCore::notifyChildNodeRemoved):
        * dom/ContainerNodeAlgorithms.h:
        * dom/Element.cpp:
        (WebCore::Element::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::Element::removedFromAncestor): Renamed from removedFrom.
        * dom/Element.h:
        * dom/Node.cpp:
        (WebCore::Node::insertedIntoAncestor): 
        (WebCore::Node::removedFromAncestor):
        (WebCore::Node::removedFrom): Deleted.
        * dom/Node.h:
        * dom/ProcessingInstruction.cpp:
        (WebCore::ProcessingInstruction::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::ProcessingInstruction::removedFromAncestor): Renamed from removedFrom.
        * dom/ProcessingInstruction.h:
        * dom/ScriptElement.h:
        (WebCore::ScriptElement::insertedIntoAncestor const): Renamed from insertedInto.
        * dom/ShadowRoot.cpp:
        (WebCore::ShadowRoot::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::ShadowRoot::removedFromAncestor): Renamed from removedFrom.
        * dom/ShadowRoot.h:
        * html/FormAssociatedElement.cpp:
        (WebCore::FormAssociatedElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::FormAssociatedElement::removedFromAncestor): Renamed from removedFrom.
        * html/FormAssociatedElement.h:
        * html/HTMLBaseElement.cpp:
        (WebCore::HTMLBaseElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::HTMLBaseElement::removedFromAncestor): Renamed from removedFrom.
        * html/HTMLBaseElement.h:
        * html/HTMLBodyElement.cpp:
        (WebCore::HTMLBodyElement::insertedIntoAncestor): Renamed from insertedInto.
        * html/HTMLBodyElement.h:
        * html/HTMLFormControlElement.cpp:
        (WebCore::HTMLFormControlElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::HTMLFormControlElement::removedFromAncestor): Renamed from removedFrom.
        * html/HTMLFormControlElement.h:
        * html/HTMLFormControlElementWithState.cpp:
        (WebCore::HTMLFormControlElementWithState::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::HTMLFormControlElementWithState::removedFromAncestor): Renamed from removedFrom.
        * html/HTMLFormControlElementWithState.h:
        * html/HTMLFormElement.cpp:
        (WebCore::HTMLFormElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::HTMLFormElement::removedFromAncestor): Renamed from removedFrom.
        * html/HTMLFormElement.h:
        * html/HTMLFrameElementBase.cpp:
        (WebCore::HTMLFrameElementBase::insertedIntoAncestor): Renamed from insertedInto.
        * html/HTMLFrameElementBase.h:
        * html/HTMLFrameSetElement.cpp:
        (WebCore::HTMLFrameSetElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::HTMLFrameSetElement::removedFromAncestor): Renamed from removedFrom.
        * html/HTMLFrameSetElement.h:
        * html/HTMLImageElement.cpp:
        (WebCore::HTMLImageElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::HTMLImageElement::removedFromAncestor): Renamed from removedFrom.
        * html/HTMLImageElement.h:
        * html/HTMLInputElement.cpp:
        (WebCore::HTMLInputElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::HTMLInputElement::removedFromAncestor): Renamed from removedFrom.
        * html/HTMLInputElement.h:
        * html/HTMLLinkElement.cpp:
        (WebCore::HTMLLinkElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::HTMLLinkElement::removedFromAncestor): Renamed from removedFrom.
        * html/HTMLLinkElement.h:
        * html/HTMLMapElement.cpp:
        (WebCore::HTMLMapElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::HTMLMapElement::removedFromAncestor): Renamed from removedFrom.
        * html/HTMLMapElement.h:
        * html/HTMLMediaElement.cpp:
        (WebCore::HTMLMediaElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::HTMLMediaElement::removedFromAncestor): Renamed from removedFrom.
        * html/HTMLMediaElement.h:
        * html/HTMLMetaElement.cpp:
        (WebCore::HTMLMetaElement::insertedIntoAncestor): Renamed from insertedInto.
        * html/HTMLMetaElement.h:
        * html/HTMLObjectElement.cpp:
        (WebCore::HTMLObjectElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::HTMLObjectElement::removedFromAncestor): Renamed from removedFrom.
        * html/HTMLObjectElement.h:
        * html/HTMLOptionElement.cpp:
        (WebCore::HTMLOptionElement::insertedIntoAncestor): Renamed from insertedInto.
        * html/HTMLOptionElement.h:
        * html/HTMLScriptElement.cpp:
        (WebCore::HTMLScriptElement::insertedIntoAncestor): Renamed from insertedInto.
        * html/HTMLScriptElement.h:
        * html/HTMLSelectElement.cpp:
        (WebCore::HTMLSelectElement::insertedIntoAncestor): Renamed from insertedInto.
        * html/HTMLSelectElement.h:
        * html/HTMLSlotElement.cpp:
        (WebCore::HTMLSlotElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::HTMLSlotElement::removedFromAncestor): Renamed from removedFrom.
        * html/HTMLSlotElement.h:
        * html/HTMLSourceElement.cpp:
        (WebCore::HTMLSourceElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::HTMLSourceElement::removedFromAncestor): Renamed from removedFrom.
        * html/HTMLSourceElement.h:
        * html/HTMLStyleElement.cpp:
        (WebCore::HTMLStyleElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::HTMLStyleElement::removedFromAncestor): Renamed from removedFrom.
        * html/HTMLStyleElement.h:
        * html/HTMLTextFormControlElement.cpp:
        (WebCore::HTMLTextFormControlElement::insertedIntoAncestor): Renamed from insertedInto.
        * html/HTMLTextFormControlElement.h:
        * html/HTMLTitleElement.cpp:
        (WebCore::HTMLTitleElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::HTMLTitleElement::removedFromAncestor): Renamed from removedFrom.
        * html/HTMLTitleElement.h:
        * html/HTMLTrackElement.cpp:
        (WebCore::HTMLTrackElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::HTMLTrackElement::removedFromAncestor): Renamed from removedFrom.
        * html/HTMLTrackElement.h:
        * svg/SVGElement.cpp:
        (WebCore::SVGElement::removedFromAncestor): Renamed from removedFrom.
        (WebCore::SVGElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::SVGElement::updateRelativeLengthsInformation):
        * svg/SVGElement.h:
        * svg/SVGFEImageElement.cpp:
        (WebCore::SVGFEImageElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::SVGFEImageElement::removedFromAncestor): Renamed from removedFrom.
        * svg/SVGFEImageElement.h:
        * svg/SVGFontFaceElement.cpp:
        (WebCore::SVGFontFaceElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::SVGFontFaceElement::removedFromAncestor): Renamed from removedFrom.
        * svg/SVGFontFaceElement.h:
        * svg/SVGFontFaceUriElement.cpp:
        (WebCore::SVGFontFaceUriElement::insertedIntoAncestor): Renamed from insertedInto.
        * svg/SVGFontFaceUriElement.h:
        * svg/SVGImageElement.cpp:
        (WebCore::SVGImageElement::insertedIntoAncestor): Renamed from insertedInto.
        * svg/SVGImageElement.h:
        * svg/SVGMPathElement.cpp:
        (WebCore::SVGMPathElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::SVGMPathElement::removedFromAncestor): Renamed from removedFrom.
        * svg/SVGMPathElement.h:
        * svg/SVGPathElement.cpp:
        (WebCore::SVGPathElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::SVGPathElement::removedFromAncestor): Renamed from removedFrom.
        * svg/SVGPathElement.h:
        * svg/SVGSVGElement.cpp:
        (WebCore::SVGSVGElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::SVGSVGElement::removedFromAncestor): Renamed from removedFrom.
        * svg/SVGSVGElement.h:
        * svg/SVGScriptElement.cpp:
        (WebCore::SVGScriptElement::insertedIntoAncestor): Renamed from insertedInto.
        * svg/SVGScriptElement.h:
        * svg/SVGStyleElement.cpp:
        (WebCore::SVGStyleElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::SVGStyleElement::removedFromAncestor): Renamed from removedFrom.
        * svg/SVGStyleElement.h:
        * svg/SVGTRefElement.cpp:
        (WebCore::SVGTRefElement::buildPendingResource):
        (WebCore::SVGTRefElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::SVGTRefElement::removedFromAncestor): Renamed from removedFrom.
        * svg/SVGTRefElement.h:
        * svg/SVGTextPathElement.cpp:
        (WebCore::SVGTextPathElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::SVGTextPathElement::removedFromAncestor): Renamed from removedFrom.
        * svg/SVGTextPathElement.h:
        * svg/SVGTitleElement.cpp:
        (WebCore::SVGTitleElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::SVGTitleElement::removedFromAncestor): Renamed from removedFrom.
        * svg/SVGTitleElement.h:
        * svg/SVGUseElement.cpp:
        (WebCore::SVGUseElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::SVGUseElement::removedFromAncestor): Renamed from removedFrom.
        * svg/SVGUseElement.h:
        * svg/animation/SVGSMILElement.cpp:
        (WebCore::SVGSMILElement::insertedIntoAncestor): Renamed from insertedInto.
        (WebCore::SVGSMILElement::removedFromAncestor): Renamed from removedFrom.
        * svg/animation/SVGSMILElement.h:

2017-10-20  Ryosuke Niwa  <rniwa@webkit.org>

        Fix conditions in HTMLSourceElement and HTMLTrackElement's insertedInto and removedFrom
        https://bugs.webkit.org/show_bug.cgi?id=178607

        Reviewed by Eric Carlson.

        Fixed the conditions in insertedInto and removedFrom of HTMLSourceElement and HTMLTrackElement to be
        semantically sensisble. Since these elements are only functional when their immediate parents are
        HTMLMediaElement and HTMLPictureElement, we have to check that its immediate parent changed, not when
        some of its ancestor had changed by insertion or removal.

        * html/HTMLSourceElement.cpp:
        (WebCore::HTMLSourceElement::insertedInto):
        (WebCore::HTMLSourceElement::removedFrom):
        * html/HTMLTrackElement.cpp:
        (WebCore::HTMLTrackElement::insertedInto):
        (WebCore::HTMLTrackElement::removedFrom):

2017-10-20  Keith Miller  <keith_miller@apple.com>

        Unreviewed, fix windows build.

        * Sources.txt:
        * WebCore.xcodeproj/project.pbxproj:

2017-10-20  Daniel Bates  <dabates@apple.com>

        Use "= default" for more default constructors and destructors in WebCore
        https://bugs.webkit.org/show_bug.cgi?id=178585

        Reviewed by Alex Christensen.

        Also remove some destructors that would be implicitly generated.

        * Modules/applepay/PaymentMerchantSession.h:
        (WebCore::PaymentMerchantSession::~PaymentMerchantSession): Deleted.
        * platform/ControlStates.h:
        (WebCore::ControlStates::~ControlStates): Deleted.
        * platform/PlatformEvent.h:
        (WebCore::PlatformEvent::~PlatformEvent): Use default.
        * platform/PlatformStrategies.h:
        (WebCore::PlatformStrategies::PlatformStrategies): Ditto.
        * platform/image-decoders/gif/GIFImageReader.h:
        (GIFFrameContext::GIFFrameContext):
        (GIFFrameContext::~GIFFrameContext): Deleted.
        (GIFImageReader::~GIFImageReader): Deleted.
        * rendering/RenderBlockFlow.h:
        (WebCore::RenderBlockFlow::RenderBlockFlowRareData::~RenderBlockFlowRareData): Deleted.

2017-10-20  Zalan Bujtas  <zalan@apple.com>

        [FrameView::layout cleanup] Scheduling layout should be disabled for FrameView::layout
        https://bugs.webkit.org/show_bug.cgi?id=178562
        <rdar://problem/35089015>

        Reviewed by Simon Fraser.

        This patch extends the scope of m_layoutSchedulingEnabled. Now layout scheduling is disabled for the entire FrameView::layout(). 
        A scheduled layout at the end of FrameView::layout would indicated dirty tree (which is against FrameView::layout's contract).

        Covered by existing tests.

        * page/FrameView.cpp:
        (WebCore::FrameView::layout):

2017-10-20  Said Abou-Hallawa  <sabouhallawa@apple.com>

        When destroying a resource, register "only" the clients who are losing their resource as having pending resources
        https://bugs.webkit.org/show_bug.cgi?id=178567
        <rdar://problem/35064781>

        Reviewed by Simon Fraser.

        SVGResources::resourceDestroyed() will return a bool indicating whether 
        it had a reference to the destroyed resource or not. If it returns true
        SVGResourcesCache::resourceDestroyed() will register the client Element
        as having pending resources.

        * rendering/svg/SVGResources.cpp:
        (WebCore::paintingResourceFromSVGPaint):
        (WebCore::SVGResources::removeClientFromCache const):
        (WebCore::SVGResources::resourceDestroyed):
        (WebCore::SVGResources::buildSetOfResources):
        (WebCore::SVGResources::resetClipper):
        (WebCore::SVGResources::resetFilter):
        (WebCore::SVGResources::resetMarkerStart):
        (WebCore::SVGResources::resetMarkerMid):
        (WebCore::SVGResources::resetMarkerEnd):
        (WebCore::SVGResources::resetMasker):
        (WebCore::SVGResources::resetFill):
        (WebCore::SVGResources::resetStroke):
        (WebCore::SVGResources::resetLinkedResource):
        * rendering/svg/SVGResources.h:
        (WebCore::SVGResources::isEmpty const):
        (WebCore::SVGResources::ClipperFilterMaskerData::ClipperFilterMaskerData): Deleted.
        (WebCore::SVGResources::MarkerData::MarkerData): Deleted.
        (WebCore::SVGResources::FillStrokeData::FillStrokeData): Deleted.
        * rendering/svg/SVGResourcesCache.cpp:
        (WebCore::SVGResourcesCache::resourceDestroyed):

2017-10-20  Ryosuke Niwa  <rniwa@webkit.org>

        Unify the node removal code in ContainerNode and expand the coverage of NoEventDispatchAssertion
        https://bugs.webkit.org/show_bug.cgi?id=178568

        Reviewed by Antti Koivisto.

        Consolidated the code to remove a child node in ContainerNode into removeAllChildrenWithScriptAssertion
        and removeNodeWithScriptAssertion to share code and make the semantics of when it becomes unsafe to run scripts.

        Also renamed getChildNodes to collectChildNodes, and made it return NodeVector instead of taking an out argument.

        No new tests since there should be no behavioral changes.

        * dom/ContainerNode.cpp:
        (WebCore::ContainerNode::removeAllChildrenWithScriptAssertion): Added.
        (WebCore::ContainerNode::removeNodeWithScriptAssertion): Added.
        (WebCore::collectChildrenAndRemoveFromOldParent):
        (WebCore::ContainerNode::takeAllChildrenFrom): Deployed removeAllChildrenWithScriptAssertion.
        (WebCore::ContainerNode::notifyChildRemoved): Deleted. Merged into removeNodeWithScriptAssertion.
        (WebCore::willRemoveChild): Deleted. Ditto.
        (WebCore::willRemoveChildren): Deleted. Merged into removeAllChildrenWithScriptAssertion.
        (WebCore::ContainerNode::removeChild): Deployed removeNodeWithScriptAssertion.
        (WebCore::ContainerNode::parserRemoveChild): Ditto.
        (WebCore::ContainerNode::replaceAllChildren): Deployed removeAllChildrenWithScriptAssertion. Now removes the node
        outside executeNodeInsertionWithScriptAssertion but that's okay since executeNodeInsertionWithScriptAssertion
        doesn't execute any code with a side effect before invoking the callback.
        (WebCore::ContainerNode::removeChildren):
        (WebCore::dispatchChildRemovalEvents): Refactored to take Ref<Node>&.
        * dom/ContainerNode.h:
        (WebCore::collectChildNodes): Renamed from getChildNodes. Also removed the useless comment about NodeVector's
        initial size and instead prefer to webkit.org/b/80706 where the number 11 was picked.
        * editing/ApplyStyleCommand.cpp:
        (WebCore::ApplyStyleCommand::pushDownInlineStyleAroundNode):
        * editing/ReplaceNodeWithSpanCommand.cpp:
        (WebCore::swapInNodePreservingAttributesAndChildren):
        * svg/SVGUseElement.cpp:
        (WebCore::SVGUseElement::clearShadowTree): Added an assertion exception while tearing down the UA shadow tree.

2017-10-20  Youenn Fablet  <youenn@apple.com>

        ResourceResponse should have a ServiceWorker source
        https://bugs.webkit.org/show_bug.cgi?id=178593

        Reviewed by Alex Christensen.

        Covered by updated tests.

        Added ResourceResponse::Source::ServiceWorker.
        Added internals to get FetchResponse source.

        * inspector/InspectorNetworkAgent.cpp:
        (WebCore::responseSource):
        * loader/ResourceLoader.cpp:
        (WebCore::logResourceResponseSource):
        * page/DiagnosticLoggingKeys.cpp:
        (WebCore::DiagnosticLoggingKeys::serviceWorkerKey):
        * page/DiagnosticLoggingKeys.h:
        * platform/network/ResourceResponseBase.h:
        * testing/Internals.cpp:
        (WebCore::responseSourceToString):
        (WebCore::Internals::fetchResponseSource):
        * testing/Internals.h:
        * testing/Internals.idl:

2017-10-20  Andy Estes  <aestes@apple.com>

        Generated serializers do not properly handle optional interface attributes
        https://bugs.webkit.org/show_bug.cgi?id=178542

        Reviewed by Sam Weinig.

        * bindings/scripts/CodeGeneratorJS.pm:
        (GenerateSerializerDefinition):
        * bindings/scripts/test/JS/JSTestSerialization.cpp:
        (WebCore::JSTestSerialization::serialize):

2017-10-20  Antoine Quint  <graouts@apple.com>

        [Web Animations] Provide basic timeline and animation interfaces
        https://bugs.webkit.org/show_bug.cgi?id=178526

        Reviewed by Dean Jackson.

        We're getting Web Animations work started by implementing a very minimal codebase which provides
        a DocumentTimeline class which has an instance created for each Document. The parent class,
        AnimationTimeline, allows for animations to be added and removed, and animations can be created
        using the Animation class, with an optional timeline as parameter.

        Tests: webanimations/animation-creation-basic.html
               webanimations/document-timeline.html

        * CMakeLists.txt:
        * Configurations/FeatureDefines.xcconfig:
        * DerivedSources.make:
        * PlatformWin.cmake:
        * WebCore.xcodeproj/project.pbxproj:
        * animation/AnimationTimeline.cpp: Added.
        (WebCore::AnimationTimeline::AnimationTimeline):
        (WebCore::AnimationTimeline::~AnimationTimeline):
        (WebCore::AnimationTimeline::addAnimation):
        (WebCore::AnimationTimeline::removeAnimation):
        * animation/AnimationTimeline.h: Added.
        (WebCore::AnimationTimeline::isDocumentTimeline const):
        (WebCore::AnimationTimeline::classType const):
        * animation/AnimationTimeline.idl: Added.
        * animation/DocumentTimeline.cpp: Added.
        (WebCore::DocumentTimeline::create):
        (WebCore::DocumentTimeline::DocumentTimeline):
        * animation/DocumentTimeline.h: Added.
        * animation/DocumentTimeline.idl: Added.
        * animation/WebAnimation.cpp: Added.
        (WebCore::WebAnimation::create):
        (WebCore::WebAnimation::WebAnimation):
        (WebCore::WebAnimation::~WebAnimation):
        * animation/WebAnimation.h: Added.
        * animation/WebAnimation.idl: Added.
        * bindings/js/JSAnimationTimelineCustom.cpp: Added.
        (WebCore::toJSNewlyCreated):
        (WebCore::toJS):
        * bindings/js/WebCoreBuiltinNames.h:
        * dom/Document.cpp:
        (WebCore::Document::timeline):
        * dom/Document.h:
        * dom/Document.idl:
        * page/RuntimeEnabledFeatures.h:
        (WebCore::RuntimeEnabledFeatures::webAnimationsEnabled const):

2017-10-20  Commit Queue  <commit-queue@webkit.org>

        Unreviewed, rolling out r223744, r223750, and r223751.
        https://bugs.webkit.org/show_bug.cgi?id=178594

        These caused consistent failures in test that existed and were
        added in the patches. (Requested by mlewis13 on #webkit).

        Reverted changesets:

        "[JSC] ScriptFetcher should be notified directly from module
        pipeline"
        https://bugs.webkit.org/show_bug.cgi?id=178340
        https://trac.webkit.org/changeset/223744

        "Unreviewed, fix changed line number in test expect files"
        https://bugs.webkit.org/show_bug.cgi?id=178340
        https://trac.webkit.org/changeset/223750

        "Unreviewed, follow up to reflect comments"
        https://bugs.webkit.org/show_bug.cgi?id=178340
        https://trac.webkit.org/changeset/223751

2017-10-20  Zalan Bujtas  <zalan@apple.com>

        [FrameView::layout cleanup] Move can-enter-layout logic to a separate function
        https://bugs.webkit.org/show_bug.cgi?id=178546
        <rdar://problem/35083894>

        Reviewed by Antti Koivisto.

        No change in functionality.

        * page/FrameView.cpp:
        (WebCore::FrameView::canPerformLayout const):
        (WebCore::FrameView::layout): We already assert on certain reentrancy conditions, loggig the reason
        does not seem to have high value.
        * page/FrameView.h:

2017-10-20  Dean Jackson  <dino@apple.com>

        Add createImageBitmap to Window and Worker
        https://bugs.webkit.org/show_bug.cgi?id=178573
        <rdar://problem/35092692>

        Reviewed by Sam Weinig.

        Implement the createImageBitmap functions that are exposed on the Window
        and Worker objects.

        Covered by the Web Platform Tests.

        * html/ImageBitmap.cpp: Make sure to call suspendIfNeeded since this is
        an ActiveDOMObject.
        * html/ImageBitmap.h: Change the order of the classes in the Variant
        to match the order of definitions in the IDL.
        * page/DOMWindow.cpp:
        (WebCore::DOMWindow::createImageBitmap): Call ImageBitmap::createPromise.
        * page/DOMWindow.h:
        * page/WindowOrWorkerGlobalScope.idl: Add the createImageBitmap methods.
        * workers/WorkerGlobalScope.cpp:
        (WebCore::WorkerGlobalScope::createImageBitmap): Call ImageBitmap::createPromise.
        * workers/WorkerGlobalScope.h:

2017-10-20  Joanmarie Diggs  <jdiggs@igalia.com>

        AX: [ATK] Events missing and state incorrect for aria-activedescendant
        https://bugs.webkit.org/show_bug.cgi?id=178523

        Reviewed by Chris Fleizach.

        When the aria-activedescendant of an element changes, emit object:state-changed:focused.
        When a focused element has a valid active descendant, do not expose the focused state on
        the element, but rather on the active descendant. Also expose the focusable state on the
        active descendant.

        Tests: accessibility/gtk/aria-activedescendant-changed-notification.html
               accessibility/gtk/aria-activedescendant.html

        * accessibility/AccessibilityObject.cpp:
        (WebCore::AccessibilityObject::isActiveDescendantOfFocusedContainer const):
        (WebCore::AccessibilityObject::ariaActiveDescendantReferencingElements const):
        * accessibility/AccessibilityObject.h:
        * accessibility/AccessibilityRenderObject.cpp:
        (WebCore::AccessibilityRenderObject::shouldNotifyActiveDescendant const):
        * accessibility/atk/AXObjectCacheAtk.cpp:
        (WebCore::AXObjectCache::postPlatformNotification):
        * accessibility/atk/WebKitAccessibleWrapperAtk.cpp:
        (setAtkStateSetFromCoreObject):

2017-10-20  Ms2ger  <Ms2ger@igalia.com>

        Add the MAX_CLIENT_WAIT_TIMEOUT_WEBGL constant to WebGL2RenderingContext.
        https://bugs.webkit.org/show_bug.cgi?id=178572

        Reviewed by Žan Doberšek.

        Test: fast/canvas/webgl/webgl2/constants.html

        * html/canvas/WebGL2RenderingContext.idl:

2017-10-20  Miguel Gomez  <magomez@igalia.com>

        [GTK][WPE] Fix review comments on WEBPImageDecoder
        https://bugs.webkit.org/show_bug.cgi?id=178080

        Reviewed by Said Abou-Hallawa.

        Properly free the demuxer in case of error, improve the code to detect the first
        required frame to decode, fix the usage of the DecodingStatus and some styling
        changes.

        Covered by existent tests.

        * platform/image-decoders/webp/WEBPImageDecoder.cpp:
        (WebCore::webpFrameAtIndex):
        (WebCore::WEBPImageDecoder::findFirstRequiredFrameToDecode):
        (WebCore::WEBPImageDecoder::decode):
        (WebCore::WEBPImageDecoder::decodeFrame):
        (WebCore::WEBPImageDecoder::initFrameBuffer):
        (WebCore::WEBPImageDecoder::clearFrameBufferCache):

2017-10-20  Basuke Suzuki  <Basuke.Suzuki@sony.com>

        [Curl] Clean up old style code in old curl files.
        https://bugs.webkit.org/show_bug.cgi?id=178569

        Reviewed by Ryosuke Niwa.

        * platform/network/curl/AuthenticationChallenge.h:
        * platform/network/curl/CertificateInfo.h:
        * platform/network/curl/CookieJarCurl.h:
        * platform/network/curl/CurlCacheEntry.h:
        * platform/network/curl/CurlCacheManager.cpp:
        (WebCore::CurlCacheManager::singleton):
        (WebCore::CurlCacheManager::getInstance): Deleted.
        * platform/network/curl/CurlCacheManager.h:
        * platform/network/curl/CurlContext.cpp:
        (WebCore::CurlContext::singleton):
        * platform/network/curl/CurlContext.h:
        (WebCore::CurlContext::singleton): Deleted.
        * platform/network/curl/CurlJobManager.cpp:
        (WebCore::CurlJobManager::singleton):
        * platform/network/curl/CurlJobManager.h:
        (WebCore::CurlJobManager::singleton): Deleted.
        * platform/network/curl/CurlRequest.cpp:
        (WebCore::CurlRequest::setupTransfer):
        * platform/network/curl/CurlRequest.h:
        * platform/network/curl/CurlRequestDelegate.h:
        * platform/network/curl/CurlResponse.h:
        (WebCore::CurlResponse::isolatedCopy const):
        * platform/network/curl/CurlSSLHandle.h:
        * platform/network/curl/CurlSSLVerifier.h:
        * platform/network/curl/DownloadBundle.h:
        * platform/network/curl/MultipartHandle.h:
        * platform/network/curl/ResourceError.h:
        * platform/network/curl/ResourceHandleCurlDelegate.cpp:
        (WebCore::ResourceHandleCurlDelegate::createCurlRequest):
        (WebCore::ResourceHandleCurlDelegate::curlDidReceiveResponse):
        (WebCore::ResourceHandleCurlDelegate::curlDidReceiveBuffer):
        (WebCore::ResourceHandleCurlDelegate::curlDidComplete):
        (WebCore::ResourceHandleCurlDelegate::curlDidFailWithError):
        * platform/network/curl/ResourceRequest.h:
        (WebCore::ResourceRequest::ResourceRequest):
        (WebCore::ResourceRequest::updateFromDelegatePreservingOldProperties):
        (WebCore::ResourceRequest::cfURLRequest const):
        (WebCore::ResourceRequest::httpPipeliningEnabled):
        (WebCore::ResourceRequest::setHTTPPipeliningEnabled):
        (WebCore::ResourceRequest::doUpdatePlatformRequest):
        (WebCore::ResourceRequest::doUpdateResourceRequest):
        (WebCore::ResourceRequest::doUpdatePlatformHTTPBody):
        (WebCore::ResourceRequest::doUpdateResourceHTTPBody):
        (WebCore::ResourceRequest::doPlatformSetAsIsolatedCopy):
        * platform/network/curl/ResourceResponseCurl.cpp:
        (WebCore::ResourceResponse::isAppendableHeader):
        (WebCore::ResourceResponse::ResourceResponse):

2017-10-20  Frederic Wang  <fwang@igalia.com>

        RenderLayerCompositor: Move implementation of simple methods into the header file.
        https://bugs.webkit.org/show_bug.cgi?id=178514

        Reviewed by Darin Adler.

        No new tests, behavior unchanged.

2017-10-19  Antti Koivisto  <antti@apple.com>

        Support ::before/::after pseudo elements on elements with display:contents
        https://bugs.webkit.org/show_bug.cgi?id=178513

        Reviewed by Ryosuke Niwa.

        Add support for

            div { display:contents }
            div::after { content:'foo' }

        That is support non-box generating elements with generated content.

        * style/RenderTreePosition.cpp:
        (WebCore::RenderTreePosition::nextSiblingRenderer const):

            Implement full pseudo-inclusive traversal starting from any element (including pseudo)
            to locate the next rendering sibling. In case of display:content this may need to look
            into descendants.

        * style/RenderTreeUpdater.cpp:
        (WebCore::textRendererIsNeeded):

            RenderTreePosition::nextSiblingRenderer can no longer be called with a node that already has a renderer.
            Maintain the existing behavior.

        * style/RenderTreeUpdaterGeneratedContent.cpp:
        (WebCore::RenderTreeUpdater::GeneratedContent::updatePseudoElement):
        (WebCore::RenderTreeUpdater::GeneratedContent::needsPseudoElement):

            Don't require for host to have a renderer.

        * style/RenderTreeUpdaterGeneratedContent.h:
        * style/StyleTreeResolver.cpp:
        (WebCore::Style::TreeResolver::resolvePseudoStyle):

2017-10-20  Keith Miller  <keith_miller@apple.com>

        Move common bindings files to unified sources
        https://bugs.webkit.org/show_bug.cgi?id=178561

        Rubber-stamped by Ryosuke Niwa.

        This patch moves most of the common bindings files to unified sources.

        Additionally, it adds a change to make_names to unique a struct
        name that caused name conflicts that I missed when I made the
        source changes before.

        Lastly, add missing reference to WebCoreJSBuiltins.cpp in CMake build.

        No new behavior no tests.

        * CMakeLists.txt:
        * Sources.txt:
        * WebCore.xcodeproj/project.pbxproj:
        * dom/make_names.pl:
        (printFactoryCppFile):

2017-10-20  Saam Barati  <sbarati@apple.com>

        Optimize accesses to how we get the direct prototype
        https://bugs.webkit.org/show_bug.cgi?id=178548

        Reviewed by Yusuke Suzuki.

        No new tests: no functionality change.

        * bindings/js/JSDOMAbstractOperations.h:
        (WebCore::isVisibleNamedProperty):
        (WebCore::accessVisibleNamedProperty):
        * bindings/js/JSDOMWindowBase.cpp:
        (WebCore::toJSDOMWindow):
        * bindings/js/JSDOMWindowProperties.cpp:
        (WebCore::JSDOMWindowProperties::getOwnPropertySlot):
        * bindings/js/JSPluginElementFunctions.cpp:
        (WebCore::pluginElementCustomGetOwnPropertySlot):
        * bindings/js/WorkerScriptController.cpp:
        (WebCore::WorkerScriptController::initScript):
        * bindings/scripts/CodeGeneratorJS.pm:
        (GeneratePut):
        (GeneratePutByIndex):
        (GenerateConstructorHelperMethods):
        * bindings/scripts/test/JS/JSTestGlobalObject.cpp:
        (WebCore::JSTestGlobalObjectConstructor::initializeProperties):
        * bindings/scripts/test/JS/JSTestNamedAndIndexedSetterNoIdentifier.cpp:
        (WebCore::JSTestNamedAndIndexedSetterNoIdentifier::put):
        (WebCore::JSTestNamedAndIndexedSetterNoIdentifier::putByIndex):
        * bindings/scripts/test/JS/JSTestNamedAndIndexedSetterThrowingException.cpp:
        (WebCore::JSTestNamedAndIndexedSetterThrowingException::put):
        (WebCore::JSTestNamedAndIndexedSetterThrowingException::putByIndex):
        * bindings/scripts/test/JS/JSTestNamedAndIndexedSetterWithIdentifier.cpp:
        (WebCore::JSTestNamedAndIndexedSetterWithIdentifier::put):
        (WebCore::JSTestNamedAndIndexedSetterWithIdentifier::putByIndex):
        * bindings/scripts/test/JS/JSTestNamedSetterNoIdentifier.cpp:
        (WebCore::JSTestNamedSetterNoIdentifier::put):
        (WebCore::JSTestNamedSetterNoIdentifier::putByIndex):
        * bindings/scripts/test/JS/JSTestNamedSetterThrowingException.cpp:
        (WebCore::JSTestNamedSetterThrowingException::put):
        (WebCore::JSTestNamedSetterThrowingException::putByIndex):
        * bindings/scripts/test/JS/JSTestNamedSetterWithIdentifier.cpp:
        (WebCore::JSTestNamedSetterWithIdentifier::put):
        (WebCore::JSTestNamedSetterWithIdentifier::putByIndex):
        * bindings/scripts/test/JS/JSTestNamedSetterWithIndexedGetter.cpp:
        (WebCore::JSTestNamedSetterWithIndexedGetter::put):
        (WebCore::JSTestNamedSetterWithIndexedGetter::putByIndex):
        * bindings/scripts/test/JS/JSTestNamedSetterWithIndexedGetterAndSetter.cpp:
        (WebCore::JSTestNamedSetterWithIndexedGetterAndSetter::put):
        (WebCore::JSTestNamedSetterWithIndexedGetterAndSetter::putByIndex):
        * bindings/scripts/test/JS/JSTestNamedSetterWithUnforgableProperties.cpp:
        (WebCore::JSTestNamedSetterWithUnforgableProperties::put):
        (WebCore::JSTestNamedSetterWithUnforgableProperties::putByIndex):

2017-10-20  Yusuke Suzuki  <utatane.tea@gmail.com>

        [JSC] ScriptFetcher should be notified directly from module pipeline
        https://bugs.webkit.org/show_bug.cgi?id=178340

        Reviewed by Sam Weinig.

        No behavior change.

        * bindings/js/JSMainThreadExecState.h:
        (WebCore::JSMainThreadExecState::loadModule):
        * bindings/js/ScriptController.cpp:
        (WebCore::ScriptController::loadModuleScriptInWorld):
        (WebCore::jsValueToModuleKey): Deleted.
        (WebCore::ScriptController::setupModuleScriptHandlers): Deleted.
        * bindings/js/ScriptController.h:
        * dom/LoadableModuleScript.cpp:
        (WebCore::LoadableModuleScript::notifyLoadFailed):
        * dom/LoadableModuleScript.h:

2017-10-19  Ms2ger  <Ms2ger@igalia.com>

        Remove proprietary constants from WebGL2RenderingContext.
        https://bugs.webkit.org/show_bug.cgi?id=178511

        Reviewed by Ryosuke Niwa.

        As far as I can tell, these constants are not in the specification,
        and no other browser supports them.

        No new tests: just code removal.

        * html/canvas/WebGL2RenderingContext.idl:

2017-10-19  Zalan Bujtas  <zalan@apple.com>

        [FrameView::layout cleanup] Move style update related logic to a separate function
        https://bugs.webkit.org/show_bug.cgi?id=178558
        <rdar://problem/35088218>

        Reviewed by Simon Fraser.

        No change in functionality.

        * page/FrameView.cpp:
        (WebCore::FrameView::ensureStyleIsUpToDateForLayout):
        (WebCore::FrameView::layout):
        * page/FrameView.h:

2017-10-19  JF Bastien  <jfbastien@apple.com>

        WebAssembly: no VM / JS version of everything but Instance
        https://bugs.webkit.org/show_bug.cgi?id=177473

        Reviewed by Filip Pizlo, Saam Barati.

        * ForwardingHeaders/wasm/WasmModule.h: Added. This used to be
        included in JSWebAssemblyModule.h.
        * bindings/js/SerializedScriptValue.cpp: Update postMessage code
        according to C++ API changes.

2017-10-19  Chris Dumez  <cdumez@apple.com>

        SerializedScriptValue passed to postMessage() cannot be null
        https://bugs.webkit.org/show_bug.cgi?id=178550

        Reviewed by Youenn Fablet.

        SerializedScriptValue passed to postMessage() cannot be null. Therefore, we
        should use Ref<> type, not RefPtr<>.

        * dom/MessagePortChannel.h:
        * dom/default/PlatformMessagePortChannel.cpp:
        (WebCore::MessagePortChannel::postMessageToRemote):
        * workers/WorkerGlobalScopeProxy.h:
        * workers/WorkerMessagingProxy.cpp:
        (WebCore::WorkerMessagingProxy::postMessageToWorkerObject):
        (WebCore::WorkerMessagingProxy::postMessageToWorkerGlobalScope):
        * workers/WorkerMessagingProxy.h:
        * workers/WorkerObjectProxy.h:
        * workers/service/context/ServiceWorkerThread.cpp:

2017-10-19  Daniel Bates  <dabates@apple.com>

        Use "= default" to denote default constructor or destructor
        https://bugs.webkit.org/show_bug.cgi?id=178528

        Rubber-stamped by Andy Estes.

        * Modules/airplay/WebKitPlaybackTargetAvailabilityEvent.h:
        * Modules/applepay/ApplePayError.cpp:
        * Modules/applepay/ApplePayPaymentAuthorizedEvent.cpp:
        * Modules/applepay/ApplePayPaymentMethodSelectedEvent.cpp:
        * Modules/applepay/ApplePaySession.cpp:
        * Modules/applepay/ApplePaySessionPaymentRequest.cpp:
        * Modules/applepay/ApplePayShippingContactSelectedEvent.cpp:
        * Modules/applepay/ApplePayShippingMethodSelectedEvent.cpp:
        * Modules/applepay/ApplePayValidateMerchantEvent.cpp:
        * Modules/applepay/Payment.h:
        * Modules/applepay/PaymentCoordinatorClient.h:
        * Modules/credentials/BasicCredential.cpp:
        * Modules/credentials/FederatedCredential.cpp:
        * Modules/credentials/NavigatorCredentials.cpp:
        * Modules/credentials/PasswordCredential.cpp:
        * Modules/encryptedmedia/CDMClient.h:
        * Modules/encryptedmedia/legacy/LegacyCDM.cpp:
        * Modules/encryptedmedia/legacy/LegacyCDM.h:
        * Modules/encryptedmedia/legacy/LegacyCDMPrivate.h:
        * Modules/encryptedmedia/legacy/LegacyCDMPrivateClearKey.h:
        * Modules/encryptedmedia/legacy/LegacyCDMPrivateMediaPlayer.h:
        * Modules/encryptedmedia/legacy/LegacyCDMSessionClearKey.cpp:
        * Modules/encryptedmedia/legacy/WebKitMediaKeyMessageEvent.cpp:
        * Modules/encryptedmedia/legacy/WebKitMediaKeyNeededEvent.cpp:
        * Modules/entriesapi/DOMFileSystem.cpp:
        * Modules/entriesapi/FileSystemDirectoryReader.cpp:
        * Modules/entriesapi/FileSystemEntry.cpp:
        * Modules/fetch/FetchLoaderClient.h:
        * Modules/gamepad/Gamepad.cpp:
        * Modules/gamepad/GamepadEvent.h:
        * Modules/gamepad/deprecated/Gamepad.cpp:
        [ truncated ]

2017-10-19  Sam Weinig  <sam@webkit.org>

        [Bindings] Standardize on DOMPromise as the way to store passed in promises
        https://bugs.webkit.org/show_bug.cgi?id=178533

        Reviewed by Youenn Fablet.

        This standardizes on RefPtr<DOMPromise> as the canonical way to store a promise
        that has been passed in from JS. This does not change promises that start off in
        WebCore and are passed to JS; they remain using DOMPromiseDeferred and DOMPromiseProxy.

        * Modules/paymentrequest/PaymentRequestUpdateEvent.cpp:
        * Modules/paymentrequest/PaymentRequestUpdateEvent.h:
        * dom/PromiseRejectionEvent.cpp:
        * dom/PromiseRejectionEvent.h:
        * dom/RejectedPromiseTracker.cpp:

            Use a RefPtr<DOMPromise> rather than a JSPromise* to hold onto the promise.

        * bindings/IDLTypes.h:

            Use IDLWrapper to get better defaults, since DOMPromise is refcounted.

        * bindings/js/JSDOMConvertPromise.h:
        (WebCore::Converter<IDLPromise<T>>::convert):

            Switch default conversion to return a RefPtr<DOMPromise> rather than a JSPromise*

        (WebCore::JSConverter<IDLPromise<T>>::convert):

            Add support for converting from a DOMPromise to a JSValue.

        * bindings/js/JSDOMPromise.cpp:
        * bindings/js/JSDOMPromise.h:
        (WebCore::DOMPromise::create): Deleted.

            Remove now unused constructor.    

        * workers/service/ExtendableEvent.cpp:
        (WebCore::ExtendableEvent::waitUntil):
        * workers/service/ExtendableEvent.h:
        * workers/service/ExtendableEvent.idl:
        * workers/service/FetchEvent.cpp:
        (WebCore::FetchEvent::respondWith):
        (WebCore::FetchEvent::promiseIsSettled):
        * workers/service/FetchEvent.h:
        * workers/service/FetchEvent.idl:

            Address FIXMEs and remove need for passing an ExecState to ExtendableEvent
            and FetchEvent by using the new default conversion to DOMPromise.

2017-10-19  Sam Weinig  <sam@webkit.org>

        [Settings] Move global settings into their own file
        https://bugs.webkit.org/show_bug.cgi?id=178512

        Reviewed by Darin Adler.

        Moves all global settigns out of SettingsBase and into the new DeprecatedGlobalSettings.
        It's called DeprecatedGlobalSettings to indicate that this is an anti-pattern we would
        like to discourage, as WebCore can operate in a process with multiple clients, each of
        which should be able to set their own preferences.

        * WebCore.xcodeproj/project.pbxproj:
        * CMakeLists.txt:

            Add new files.
        
        * page/DeprecatedGlobalSettings.cpp: Copied from Source/WebCore/page/SettingsBase.cpp.
        * page/DeprecatedGlobalSettings.h: Copied from Source/WebCore/page/SettingsBase.h.
        * page/SettingsBase.cpp:
        * page/SettingsBase.h:
        
            Move all global settings out of SettingsBase and into the new DeprecatedGlobalSettings.
        
        * Modules/mediastream/UserMediaRequest.cpp:
        * bindings/js/CommonVM.cpp:
        * css/CSSStyleDeclaration.cpp:
        * dom/DataTransfer.cpp:
        * dom/DataTransferItemList.cpp:
        * editing/Editor.cpp:
        * loader/ResourceLoadObserver.cpp:
        * page/FrameView.cpp:
        * page/PerformanceMonitor.cpp:
        * platform/ScrollbarTheme.cpp:
        (WebCore::ScrollbarTheme::theme):
        * platform/audio/cocoa/MediaSessionManagerCocoa.cpp:
        * platform/graphics/MediaPlayer.cpp:
        * platform/graphics/avfoundation/MediaPlayerPrivateAVFoundation.cpp:
        * platform/graphics/avfoundation/objc/MediaPlayerPrivateAVFoundationObjC.mm:
        * platform/mac/NSScrollerImpDetails.mm:
        * platform/mock/ScrollbarThemeMock.cpp:
        * platform/network/cf/SocketStreamHandleImplCFNet.cpp:
        * platform/network/ios/NetworkStateNotifierIOS.mm:
        * platform/network/soup/SocketStreamHandleImplSoup.cpp:
        * platform/win/MainThreadSharedTimerWin.cpp:
        * rendering/RenderLayer.cpp:
        * rendering/RenderListBox.cpp:
        * testing/InternalSettings.cpp:
        * testing/Internals.cpp:

            Update users of global settings to reference the new class name.

2017-10-19  Youenn Fablet  <youenn@apple.com>

        Add preliminary support for ServiceWorker Handle Fetch
        https://bugs.webkit.org/show_bug.cgi?id=178475
        <rdar://problem/35066424>

        Reviewed by Chris Dumez.

        Test: http/tests/workers/service/basic-fetch.https.html

        Adding parameters to allow WebKit to do loading through Service Worker or through regular networking.
        A script context is now storing its selected service worker identifier. This should be fully implemented later on.
        This selected service worker identifier is passed to loading code as a ResourceLoaderOptions field.
        Service workers mode is also added as a ResourceLoaderOptions field so that the service worker can be bypassed.

        * WebCore.xcodeproj/project.pbxproj:
        * dom/ScriptExecutionContext.h:
        (WebCore::ScriptExecutionContext::selectedServiceWorkerIdentifier const):
        (WebCore::ScriptExecutionContext::setSelectedServiceWorkerIdentifier):
        * loader/DocumentThreadableLoader.cpp:
        (WebCore::DocumentThreadableLoader::DocumentThreadableLoader):
        * loader/FetchOptions.h:
        (WebCore::isPotentialNavigationOrSubresourceRequest):
        (WebCore::isNonSubresourceRequest):
        * loader/ResourceLoaderOptions.h:
        * loader/WorkerThreadableLoader.cpp:
        (WebCore::WorkerThreadableLoader::WorkerThreadableLoader):
        (WebCore::WorkerThreadableLoader::MainThreadBridge::MainThreadBridge):
        * loader/WorkerThreadableLoader.h:
        * platform/network/ResourceRequestBase.h:
        * platform/network/ResourceResponseBase.h:
        * workers/WorkerThread.h:
        * workers/service/ServiceWorkerContainer.cpp:
        (WebCore::ServiceWorkerContainer::jobResolvedWithRegistration):
        * workers/service/context/SWContextManager.cpp: Removed.
        * workers/service/context/ServiceWorkerThread.h:

2017-10-19  Zalan Bujtas  <zalan@apple.com>

        [FrameView::layout cleanup] Move post layout task scheduling logic to a separate function
        https://bugs.webkit.org/show_bug.cgi?id=178538
        <rdar://problem/35080743>

        Reviewed by Simon Fraser.

        Move and reorganize post layout task scheduling code.
        
        Covered by existing tests.

        * page/FrameView.cpp:
        (WebCore::FrameView::layout):
        (WebCore::FrameView::runOrSchedulePostLayoutTasks):
        * page/FrameView.h:

2017-10-19  Zalan Bujtas  <zalan@apple.com>

        [FrameView::layout cleanup] Move scrollbars setup logic to a separate function
        https://bugs.webkit.org/show_bug.cgi?id=178394
        <rdar://problem/35031066>

        Reviewed by Antti Koivisto.

        Decouple scrollbars setup and the unrelated first-layout logic.
        FIXME: find out why m_firstLayout depends on the subtree flag (I'd assume we issue full layout the very first time). 

        Covered by existing test cases.

        * page/FrameView.cpp:
        (WebCore::FrameView::adjustScrollbarsForLayout):
        (WebCore::FrameView::layout):
        * page/FrameView.h:

2017-10-19  Tim Horton  <timothy_horton@apple.com>

        Expand r209943 to suppress paste during provisional navigation as well
        https://bugs.webkit.org/show_bug.cgi?id=178429
        <rdar://problem/33952830>

        Reviewed by Dean Jackson.

        No new tests; adjusted an existing test to cover this case.

        * editing/Editor.cpp:
        (WebCore::Editor::canPaste const):
        Disable pasting during provisional navigation, like r209943 did for
        various other forms of text input.

        (WebCore::Editor::shouldInsertText const):
        * dom/EventDispatcher.cpp:
        (WebCore::shouldSuppressEventDispatchInDOM):
        * loader/FrameLoader.cpp:
        (WebCore::FrameLoader::shouldSuppressTextInputFromEditing const):
        (WebCore::FrameLoader::shouldSuppressKeyboardInput const): Deleted.
        * loader/FrameLoader.h:
        * page/Settings.in:
        Rename the setting to be about editing-related text input, not "keyboard" input.

        * editing/EditorCommand.cpp:
        (WebCore::allowExecutionWhenDisabled):
        (WebCore::doNotAllowExecutionWhenDisabled):
        (WebCore::allowExecutionWhenDisabledCopyCut):
        (WebCore::allowExecutionWhenDisabledPaste):
        (WebCore::createCommandMap):
        (WebCore::Editor::Command::allowExecutionWhenDisabled const):
        Completely disable execution of paste events when in no-text-input-from-editing mode.
        Otherwise, even though canPaste was false and we wouldn't do a default paste action,
        we would still dispatch the paste event to the DOM.

2017-10-19  Dean Jackson  <dino@apple.com>

        Avoid duplicate multisample resolve before WebGL compositing
        https://bugs.webkit.org/show_bug.cgi?id=178537
        <rdar://problem/35080724>

        Fix iOS build.

        * platform/graphics/opengl/GraphicsContext3DOpenGLCommon.cpp:
        (WebCore::GraphicsContext3D::paintRenderingResultsToCanvas):

2017-10-19  Dean Jackson  <dino@apple.com>

        Avoid duplicate multisample resolve before WebGL compositing
        https://bugs.webkit.org/show_bug.cgi?id=178537
        <rdar://problem/35080724>

        Reviewed by Jer Noble.

        Both endPaint and prepareTexture were doing the MSAA resolve
        into the renderbuffer, and being called on macOS before compositing.
        Without that step, endPaint became unnecessary on iOS so I renamed
        it presentRenderbuffer.

        Covered by existing tests.

        * platform/graphics/GraphicsContext3D.h:
        * platform/graphics/cocoa/GraphicsContext3DCocoa.mm:
        (WebCore::GraphicsContext3D::presentRenderbuffer):
        (WebCore::GraphicsContext3D::endPaint): Deleted.
        * platform/graphics/cocoa/WebGLLayer.mm:
        (-[WebGLLayer display]):

2017-10-19  Andy Estes  <aestes@apple.com>

        [Payment Request] Only process shipping options if shipping is requested, and throw an exception on duplicate shipping option IDs
        https://bugs.webkit.org/show_bug.cgi?id=178535

        Reviewed by Alex Christensen.

        Progresses four tests in web-platform-tests/payment-request/payment-request-constructor.https.html.

        * Modules/paymentrequest/PaymentRequest.cpp:
        (WebCore::PaymentRequest::create):

2017-10-19  Daniel Bates  <dabates@apple.com>

        Share logic in InlineTextBox to compute selection rect
        https://bugs.webkit.org/show_bug.cgi?id=178232
        <rdar://problem/34963452>

        Reviewed by Zalan Bujtas.

        Currently each paint routine in InlineTextBox duplicates similar code to compute the selection
        rect it will paint. This change consolidates all the duplication into localSelectionRectWithClampedPositions()
        and writes all of the paint operations, except for paintCompositionUnderline(), in terms of it.
        We will write paintCompositionUnderline() in terms of localSelectionRectWithClampedPositions()
        in a subsequent patch.

        We also write localSelectionRect() in terms of localSelectionRectWithClampedPositions(). Ideally
        we would have one way to compute the selection rect. However, localSelectionRect() and paintDocumentMarker()
        currently expect the enclosing integral rectangle of the selection rectangle. The function
        paintDocumentMarker() needs the enclosing integral rectangle to avoid truncating the dot pattern
        drawn under marked words (e.g. a spelling error) on Cocoa platforms. With regards to localSelectionRect()
        we should look to have it return the actual selection rectangle. See <https://bugs.webkit.org/show_bug.cgi?id=138913>
        for more details.

        * rendering/InlineTextBox.cpp:
        (WebCore::InlineTextBox::localSelectionRect const): Move logic in common with paintSelection() into
        localSelectionRectWithClampedPositions() and modified code to use it.
        (WebCore::InlineTextBox::localSelectionRectWithClampedPositions const): Added.
        (WebCore::InlineTextBox::paint): Store the local paint offset as a LayoutPoint as it is the canonical
        data type for representing an offset when painting. Pass the local paint offset instead of the analagous boxOrigin value.
        (WebCore::InlineTextBox::paintSelection): Write in terms of localSelectionRectWithClampedPositions().
        (WebCore::InlineTextBox::paintTextSubrangeBackground): Ditto.
        (WebCore::InlineTextBox::paintCompositionBackground): Ditto.
        (WebCore::InlineTextBox::paintTextMatchMarker): Ditto.
        (WebCore::InlineTextBox::paintDocumentMarker): Ditto.
        (WebCore::InlineTextBox::paintDocumentMarkers): Pass paint offset instead of the analogous boxOrigin value.
        * rendering/InlineTextBox.h:

2017-10-19  Daniel Bates  <dabates@apple.com>

        Referrer policy should be inherited from creator
        https://bugs.webkit.org/show_bug.cgi?id=178403
        <rdar://problem/31546136>

        Reviewed by Andy Estes.

        As per section Browsing contexts of the the HTML standard, <https://html.spec.whatwg.org/multipage/browsers.html>
        (17 October 2017), the referrer policy of a document should initially be inherited from its
        creator.

        Tests: http/tests/security/referrer-policy-nested-subframe.html
               http/tests/security/referrer-policy-nested-window-open.html
               http/tests/security/referrer-policy-subframe-window-open.html
               http/tests/security/referrer-policy-window-open-subframe.html

        * dom/Document.cpp:
        (WebCore::Document::initSecurityContext): Ask the loader for the effective referrer policy.
        * loader/FrameLoader.cpp:
        (WebCore::FrameLoader::effectiveReferrerPolicy const): Added. Returns the referrer policy
        of the creator document. The creator document is document of the parent frame or the document
        of the opener for a subframe or child window, respectively. If we do not have a creator frame
        then we return the default referrer policy, non-referrer-when-downgrade, by <https://www.w3.org/TR/2017/CR-referrer-policy-20170126/#referrer-policy-empty-string>.
        * loader/FrameLoader.h:

2017-10-19  Zalan Bujtas  <zalan@apple.com>

        [FrameView::layout cleanup] Do not reenter FrameView::performPostLayoutTasks
        https://bugs.webkit.org/show_bug.cgi?id=178518
        <rdar://problem/35075409>

        Reviewed by Antti Koivisto.

        This patch tightens existing reentrancy policy on performPostLayoutTasks.

        Covered by existing test cases.

        * page/FrameView.cpp:
        (WebCore::FrameView::FrameView):
        (WebCore::FrameView::reset):
        (WebCore::FrameView::layout):
        (WebCore::FrameView::performPostLayoutTasks):
        * page/FrameView.h:

2017-10-19  Chris Dumez  <cdumez@apple.com>

        Unreviewed, revert r223650 as it caused crashes on the bots.

        * WebCore.xcodeproj/project.pbxproj:
        * dom/ScriptExecutionContext.h:
        * loader/DocumentThreadableLoader.cpp:
        (WebCore::DocumentThreadableLoader::DocumentThreadableLoader):
        * loader/FetchOptions.h:
        * loader/ResourceLoaderOptions.h:
        * loader/WorkerThreadableLoader.cpp:
        (WebCore::WorkerThreadableLoader::WorkerThreadableLoader):
        (WebCore::WorkerThreadableLoader::MainThreadBridge::MainThreadBridge):
        * loader/WorkerThreadableLoader.h:
        * platform/network/ResourceRequestBase.h:
        * platform/network/ResourceResponseBase.h:
        * workers/WorkerThread.h:
        * workers/service/ServiceWorkerContainer.cpp:
        (WebCore::ServiceWorkerContainer::jobResolvedWithRegistration):
        * workers/service/context/SWContextManager.cpp: Copied from Source/WebKit/WebProcess/Storage/ServiceWorkerContextManager.h.
        (WebCore::SWContextManager::singleton):
        (WebCore::SWContextManager::SWContextManager):
        (WebCore::SWContextManager::startServiceWorkerContext):
        * workers/service/context/SWContextManager.h: Renamed from Source/WebKit/WebProcess/Storage/ServiceWorkerContextManager.h.
        * workers/service/context/ServiceWorkerThread.h:

2017-10-19  Zalan Bujtas  <zalan@apple.com>

        [FrameView::layout cleanup] Replace m_nestedLayoutCount with isLayoutNested()
        https://bugs.webkit.org/show_bug.cgi?id=178503
        <rdar://problem/35066561>

        Reviewed by Antti Koivisto.

        Covered by existing tests.

        * page/FrameView.cpp:
        (WebCore::FrameView::reset):
        (WebCore::FrameView::layout):
        (WebCore::FrameView::updateLayerPositionsAfterScrolling):
        (WebCore::FrameView::updateCompositingLayersAfterScrolling):
        (WebCore::FrameView::updateEmbeddedObjects):
        (WebCore::FrameView::flushPostLayoutTasksQueue):
        (WebCore::FrameView::performPostLayoutTasks):
        (WebCore::FrameView::startLayoutAtMainFrameViewIfNeeded):
        * page/FrameView.h:

2017-10-19  Antti Koivisto  <antti@apple.com>

        Overlapping text on all CSS fonts specs
        https://bugs.webkit.org/show_bug.cgi?id=177585
        <rdar://problem/34704078>

        Reviewed by Daniel Bates.

        We were resetting StyleResolver::overrideDocumentElementStyle too early when resolving slot elements.
        This resulted in 'rem' units being miscomputed.

        Reduction by Zalan.

        Test: fast/html/details-line-height-overlap.html

        * style/StyleTreeResolver.cpp:
        (WebCore::Style::TreeResolver::Scope::Scope):
        (WebCore::Style::TreeResolver::Scope::~Scope):

            Only reset overrideDocumentElementStyle when destroying the scope.

        (WebCore::Style::TreeResolver::pushScope):
        (WebCore::Style::TreeResolver::pushEnclosingScope):
        (WebCore::Style::TreeResolver::popScope):

            A scope can show up multiple times in scope stack.

        * style/StyleTreeResolver.h:

2017-10-19  Ryosuke Niwa  <rniwa@webkit.org>

        Consolidate calls to insertedInto and expand the coverage of NoEventDispatchAssertion
        https://bugs.webkit.org/show_bug.cgi?id=178504

        Reviewed by Antti Koivisto.

        Consolidated calls to notifyChildNodeInserted, childrenChanged, didFinishInsertingNode, and
        dispatchChildInsertionEvents for inserting a node by executeNodeInsertionWithScriptAssertion,
        a new templatefunction which takes a closure to do the node insertion to make exactly when
        the script becomes runnable clear.

        Added an exception to SVGTRefElement::updateReferencedText since this code mutates user agent
        shadow root during insertedInto, and turned ChildChangeSource into an enum class.

        * dom/CharacterData.cpp:
        (WebCore::CharacterData::parserAppendData):
        (WebCore::CharacterData::setDataAndUpdate):
        * dom/ContainerNode.cpp:
        (WebCore::executeNodeInsertionWithScriptAssertion): Extracted.
        (WebCore::ContainerNode::takeAllChildrenFrom): Deployed executeNodeInsertionWithScriptAssertion.
        (WebCore::ContainerNode::insertBefore): Ditto.
        (WebCore::ContainerNode::changeForChildInsertion): Deleted.
        (WebCore::ContainerNode::notifyChildInserted): Deleted.
        (WebCore::ContainerNode::parserInsertBefore): Deployed executeNodeInsertionWithScriptAssertion. 
        (WebCore::ContainerNode::replaceChild): Ditto.
        (WebCore::ContainerNode::removeChild):
        (WebCore::ContainerNode::parserRemoveChild):
        (WebCore::ContainerNode::replaceAllChildren): Ditto.
        (WebCore::ContainerNode::removeChildren):
        (WebCore::ContainerNode::appendChildWithoutPreInsertionValidityCheck): Ditto.
        (WebCore::ContainerNode::parserAppendChild): Ditto.
        (WebCore::ContainerNode::childrenChanged):
        (WebCore::ContainerNode::updateTreeAfterInsertion): Deleted.
        * dom/ContainerNode.h:
        * dom/Element.cpp:
        (WebCore::Element::childrenChanged):
        * html/HTMLOutputElement.cpp:
        (WebCore::HTMLOutputElement::childrenChanged):
        * svg/SVGClipPathElement.cpp:
        (WebCore::SVGClipPathElement::childrenChanged):
        * svg/SVGElement.cpp:
        (WebCore::SVGElement::childrenChanged):
        * svg/SVGFELightElement.cpp:
        (WebCore::SVGFELightElement::childrenChanged):
        * svg/SVGFilterElement.cpp:
        (WebCore::SVGFilterElement::childrenChanged):
        * svg/SVGFilterPrimitiveStandardAttributes.cpp:
        (WebCore::SVGFilterPrimitiveStandardAttributes::childrenChanged):
        * svg/SVGGradientElement.cpp:
        (WebCore::SVGGradientElement::childrenChanged):
        * svg/SVGMarkerElement.cpp:
        (WebCore::SVGMarkerElement::childrenChanged):
        * svg/SVGMaskElement.cpp:
        (WebCore::SVGMaskElement::childrenChanged):
        * svg/SVGPatternElement.cpp:
        (WebCore::SVGPatternElement::childrenChanged):
        * svg/SVGTRefElement.cpp:
        (WebCore::SVGTRefElement::updateReferencedText): Allow DOM mutations inside the user agent shadow tree here.

2017-10-19  Ryosuke Niwa  <rniwa@webkit.org>

        Add an argument indicating the type of removal to Node::removedFrom
        https://bugs.webkit.org/show_bug.cgi?id=178505

        Reviewed by Antti Koivisto.

        Like r223628, added RemovalType as the first argument to Node::removedFrom, which contains two booleans indicating
        whether the node just become disconnected from a document, and whether node's tree scope had changed or not.

        These boolean flags simplifies the logic in removedFrom implementations, and are required to have a better
        guarantee about the correctness of node flags during calls to removedFrom. Right now, Node::isConnected() and
        Node::isInShadowTree() are both outdated until Node::removedFrom is called.

        Also renamed the second argument of removedFrom to parentOfRemovedTree to make the semantics clear.

        Note that in some implementations of removedFrom, we check whether isConnected() was true to decide whether
        the node had already been disconnected from a document prior to calls to this particular call of removedFrom.
        This extra check is no longer necessary since no node will be removed from a document without first being inserted
        completely somewhere after r223458.

        No new tests since there should be no behavioral changes.

        * dom/ContainerNodeAlgorithms.cpp:
        (WebCore::notifyNodeInsertedIntoDocument): Replaced RELEASE_ASSERT with RELEASE_ASSERT_WITH_SECURITY_IMPLICATION.
        (WebCore::notifyNodeRemovedFromDocument): Replaced the check that the node had not been re-connected by scripts
        by a release assert now that we believe we've eliminated all causes of these unwanted DOM mutations in r223458.
        Also moved the code to call setCSSTarget to Element::removedFrom. This random call to setCSSTarget predates r114351,
        as well as r40475. It was originally introduced by r29311 into Node::removedFromDocument() ten years ago.
        (WebCore::notifyNodeRemovedFromTree): Moved NoEventDispatchAssertion to notifyChildNodeRemoved.
        (WebCore::notifyChildNodeRemoved): Added NoEventDispatchAssertion.
        * dom/ContainerNodeAlgorithms.h:
        * dom/Element.cpp:
        (WebCore::Element::removedFrom): Replaced the complicated code to detect when this element is removed from a document
        and its tree scope had changed by removalType.disconnectedFromDocument and removalType.treeScopeChanged.
        * dom/Element.h:
        * dom/Node.cpp:
        (WebCore::Node::removedFrom):
        * dom/Node.h: Replaced a long block of comments above insertedInto by two lines of concise comments now that
        the semantics of insertedInto and didFinishInsertingNode are more clear, and enforced by assertions.
        (WebCore::Node::RemovalType::RemovalType): Addedl
        * dom/ProcessingInstruction.cpp:
        (WebCore::ProcessingInstruction::removedFrom):
        * dom/ProcessingInstruction.h:
        * dom/ShadowRoot.cpp:
        (WebCore::ShadowRoot::removedFrom): The extra !isConnected() check is no longer needed. See the description above.
        * dom/ShadowRoot.h:
        * html/FormAssociatedElement.cpp:
        (WebCore::FormAssociatedElement::removedFrom):
        * html/FormAssociatedElement.h:
        * html/HTMLBaseElement.cpp:
        (WebCore::HTMLBaseElement::removedFrom):
        * html/HTMLBaseElement.h:
        * html/HTMLFormControlElement.cpp:
        (WebCore::HTMLFormControlElement::removedFrom):
        * html/HTMLFormControlElement.h:
        * html/HTMLFormControlElementWithState.cpp:
        (WebCore::HTMLFormControlElementWithState::removedFrom):
        * html/HTMLFormControlElementWithState.h:
        * html/HTMLFormElement.cpp:
        (WebCore::HTMLFormElement::removedFrom):
        * html/HTMLFormElement.h:
        * html/HTMLFrameSetElement.cpp:
        (WebCore::HTMLFrameSetElement::removedFrom):
        * html/HTMLFrameSetElement.h:
        * html/HTMLImageElement.cpp:
        (WebCore::HTMLImageElement::removedFrom):
        * html/HTMLImageElement.h:
        * html/HTMLInputElement.cpp:
        (WebCore::HTMLInputElement::removedFrom):
        * html/HTMLInputElement.h:
        * html/HTMLLinkElement.cpp:
        (WebCore::HTMLLinkElement::removedFrom): The extra !isConnected() check is no longer needed. See above.
        * html/HTMLLinkElement.h:
        * html/HTMLMapElement.cpp:
        (WebCore::HTMLMapElement::removedFrom):
        * html/HTMLMapElement.h:
        * html/HTMLMediaElement.cpp:
        (WebCore::HTMLMediaElement::removedFrom):
        * html/HTMLMediaElement.h:
        * html/HTMLObjectElement.cpp:
        (WebCore::HTMLObjectElement::removedFrom):
        * html/HTMLObjectElement.h:
        * html/HTMLSlotElement.cpp:
        (WebCore::HTMLSlotElement::removedFrom): Simplifies the logic to detect when this slot element is being
        removed from a shadow tree using removalType.treeScopeChanged.
        * html/HTMLSlotElement.h:
        * html/HTMLSourceElement.cpp:
        (WebCore::HTMLSourceElement::insertedInto): Added a FIXME for an obvious bug.
        (WebCore::HTMLSourceElement::removedFrom): Ditto.
        * html/HTMLSourceElement.h:
        * html/HTMLStyleElement.cpp:
        (WebCore::HTMLStyleElement::removedFrom):
        * html/HTMLStyleElement.h:
        * html/HTMLTitleElement.cpp:
        (WebCore::HTMLTitleElement::removedFrom):
        * html/HTMLTitleElement.h:
        * html/HTMLTrackElement.cpp:
        (WebCore::HTMLTrackElement::removedFrom): Ditto.
        * html/HTMLTrackElement.h:
        * svg/SVGElement.cpp:
        (WebCore::SVGElement::removedFrom): Replaced isConnected() check before calling Node::removedFrom by the check of
        removalType.disconnectedFromDocument.
        * svg/SVGElement.h:
        * svg/SVGFEImageElement.cpp:
        (WebCore::SVGFEImageElement::removedFrom):
        * svg/SVGFEImageElement.h:
        * svg/SVGFontFaceElement.cpp:
        (WebCore::SVGFontFaceElement::removedFrom):
        * svg/SVGFontFaceElement.h:
        * svg/SVGMPathElement.cpp:
        (WebCore::SVGMPathElement::removedFrom):
        * svg/SVGMPathElement.h:
        * svg/SVGPathElement.cpp:
        (WebCore::SVGPathElement::removedFrom):
        * svg/SVGPathElement.h:
        * svg/SVGSVGElement.cpp:
        (WebCore::SVGSVGElement::removedFrom):
        * svg/SVGSVGElement.h:
        * svg/SVGStyleElement.cpp:
        (WebCore::SVGStyleElement::removedFrom): The extra !isConnected() check is no longer needed. See above.
        * svg/SVGStyleElement.h:
        * svg/SVGTRefElement.cpp:
        (WebCore::SVGTRefElement::removedFrom):
        * svg/SVGTRefElement.h:
        * svg/SVGTextPathElement.cpp:
        (WebCore::SVGTextPathElement::removedFrom):
        * svg/SVGTextPathElement.h:
        * svg/SVGTitleElement.cpp:
        (WebCore::SVGTitleElement::removedFrom):
        * svg/SVGTitleElement.h:
        * svg/SVGUseElement.cpp:
        (WebCore::SVGUseElement::removedFrom):
        * svg/SVGUseElement.h:
        * svg/animation/SVGSMILElement.cpp:
        (WebCore::SVGSMILElement::removedFrom):
        * svg/animation/SVGSMILElement.h:

2017-10-19  Ms2ger  <Ms2ger@igalia.com>

        Update the signatures of compressedTexSubImage3D.
        https://bugs.webkit.org/show_bug.cgi?id=178507

        Reviewed by Ryosuke Niwa.

        No new tests: not much point in adding tests now; this method doesn't
        do anything anyway.

        * html/canvas/WebGL2RenderingContext.cpp:
        (WebCore::WebGL2RenderingContext::compressedTexSubImage3D):
        * html/canvas/WebGL2RenderingContext.h:
        * html/canvas/WebGL2RenderingContext.idl:

2017-10-19  Basuke Suzuki  <Basuke.Suzuki@sony.com>

        [curl] Segfault in WebCore::CurlRequest::setupPOST
        https://bugs.webkit.org/show_bug.cgi?id=178434

        Reviewed by Ryosuke Niwa.

        * platform/network/curl/CurlRequest.cpp:
        (WebCore::CurlRequest::resolveBlobReferences):
        (WebCore::CurlRequest::setupPOST):

2017-10-18  Ryosuke Niwa  <rniwa@webkit.org>

        Don't expose raw HTML in pasteboard to the web content
        https://bugs.webkit.org/show_bug.cgi?id=178422
        <rdar://problem/34567052>

        Reviewed by Wenson Hsieh.

        This patch enables HTML sanitization added in r223440 when WebKit pastes & concludes edit drag as opposed to
        just when dataTransfer.get is used. This is important to avoid leaking privacy sensitive information such as
        local file paths and pasting potentially harmful content such as scripts in event handler serialized by
        WebKit prior to r223462. In addition, we start using blob URLs in the pasted content instead of retaining
        the original URL and overriding the document loader like r222839 for RTFD and r222119 for image files.

        To do this, a new superclass FrameWebContentReader of PasteboardWebContentReader and WebContentMarkupReader
        is introduced, and helper functions are extracted out of WebContentMarkupReader in WebContentReaderCocoa.mm
        to be also used in WebContentReader.

        Tests: http/tests/security/clipboard/copy-paste-html-cross-origin-iframe-across-origin.html
               http/tests/security/clipboard/copy-paste-html-cross-origin-iframe-in-same-origin.html
               http/tests/security/clipboard/drag-drop-html-cross-origin-iframe-in-same-origin.html
               PasteWebArchive.SanitizesHTML

        * editing/WebContentReader.cpp:
        (WebCore::FrameWebContentReader::shouldSanitize const): Moved from WebContentMarkupReader.
        * editing/WebContentReader.h:
        (WebCore::FrameWebContentReader): Added to share code between WebContentReader and WebContentMarkupReader.
        (WebCore::FrameWebContentReader::FrameWebContentReader): Added.
        * editing/cocoa/EditorCocoa.mm:
        (WebCore::Editor::writeSelectionToPasteboard): Store the content's origin in the pasteboard so that we can
        avoid sanitizing the content when pasting into the same document. This is important since converting all URLs
        into blob URLs would break editors on the Web which tracks images, etc... in the content using URLs.
        (WebCore::Editor::writeSelection): Ditto.
        * editing/cocoa/WebContentReaderCocoa.mm:
        (WebCore::MarkupAndArchive): Replaced FragmentAndArchive. Now returns the markup string in the archive
        instead of the parsed fragment.
        (WebCore::extractMarkupAndArchive): Renamed from createFragmentFromWebArchive. Now returns the markup string.
        (WebCore::sanitizeMarkupWithArchive): Extracted out of WebContentMarkupReader::readWebArchive to share code
        between WebContentReader and WebContentMarkupReader, and added the code to handle subframes recursively.
        As inefficient as this code is, we can't delay the conversion of subframes' marksup until later time since
        the main frame's markup would contain blob URLs to refer to those subframes. 
        (WebCore::WebContentReader::readWebArchive): Use sanitizeMarkupWithArchive when shouldSanitize() is true.
        Don't add the subresources to the document loader when the content will be loaded into the same origin since
        subresouces are mostly likely available in the document anyway.
        (WebCore::WebContentMarkupReader::readWebArchive):
        * platform/Pasteboard.h:
        (WebCore::PasteboardWebContent): Added contentOrigin.
        * platform/PasteboardWriterData.h:
        (WebCore::PasteboardWriterData): Ditto.
        * platform/ios/PasteboardIOS.mm:
        (WebCore::Pasteboard::read): Read the origin before branching out to readRespectingUTIFidelities.
        * platform/ios/PlatformPasteboardIOS.mm:
        (WebCore::PlatformPasteboard::write): Record the content origin into the pasteboard.
        * platform/mac/PasteboardMac.mm:
        (WebCore::Pasteboard::write): Ditto.
        * platform/mac/PasteboardWriter.mm:
        (WebCore::createPasteboardWriter): Ditto.

2017-10-18  Sam Weinig  <sam@webkit.org>

        Another attempt to fix the windows build.

        * page/SettingsBase.cpp:
        (WebCore::SettingsBase::resourceUsageOverlayVisibleChanged):
        * page/SettingsBase.h:

2017-10-18  Sam Weinig  <sam@webkit.org>

        Attempt to fix the windows build.

        * page/SettingsBase.cpp:
        (WebCore::SettingsBase::resourceUsageOverlayVisibleChanged):
        * page/SettingsBase.h:

2017-10-18  Sam Weinig  <sam@webkit.org>

        [Settings] Convert more settings to be generated
        https://bugs.webkit.org/show_bug.cgi?id=177766

        Reviewed by Dean Jackson.

        - Replaces setNeedsStyleRecalcInAllFrames option in Settings.in
          with a more generic, onChange, which allows you to specify a function
          in SettingsBase that will be called when the setting changes. 
          setNeedsStyleRecalcInAllFrames is then reimplemented in terms of
          onChange.
        - Moves most (all but two) of the remaining non-static settings from
          SettingsBase to Settings.in

        * Scripts/GenerateSettings/GenerateSettingsImplementationFile.py:
        (printSetterBody):
        * Scripts/GenerateSettings/Settings.py:
        (Setting.__init__):
        (Setting.__str__):
        (Setting.typeIsValueType):
        (Setting.setterFunctionName):
        (Setting.setterChangeFunctionName):
        (Setting.hasComplexSetter):
        (parseInput):
        
            Add support for the onChange option.
        
        * page/Settings.in:

            Migrate most of the remaining non-static settings to Settings.in.
            Adopt onChange option.

        * page/SettingsBase.cpp:
        * page/SettingsBase.h:

            Add helper functions for use by the onChange option.

2017-10-18  Chris Dumez  <cdumez@apple.com>

        Implement ServiceWorkerRegistration.scope / updateViaCache
        https://bugs.webkit.org/show_bug.cgi?id=178497

        Reviewed by Youenn Fablet.

        Implement ServiceWorkerRegistration.scope / updateViaCache.

        No new tests, updated existing test.

        * WebCore.xcodeproj/project.pbxproj:
        * workers/service/ServiceWorkerContainer.cpp:
        (WebCore::ServiceWorkerContainer::jobResolvedWithRegistration):
        * workers/service/ServiceWorkerContainer.h:
        * workers/service/ServiceWorkerJob.cpp:
        (WebCore::ServiceWorkerJob::resolvedWithRegistration):
        * workers/service/ServiceWorkerJob.h:
        * workers/service/ServiceWorkerJobClient.h:
        * workers/service/ServiceWorkerRegistration.cpp:
        (WebCore::ServiceWorkerRegistration::ServiceWorkerRegistration):
        (WebCore::ServiceWorkerRegistration::scope const):
        (WebCore::ServiceWorkerRegistration::updateViaCache const):
        (WebCore::ServiceWorkerRegistration::update):
        (WebCore::ServiceWorkerRegistration::unregister):
        (WebCore::ServiceWorkerRegistration::scriptExecutionContext const):
        (WebCore::ServiceWorkerRegistration::activeDOMObjectName const):
        (WebCore::ServiceWorkerRegistration::canSuspendForDocumentSuspension const):
        * workers/service/ServiceWorkerRegistration.h:
        * workers/service/ServiceWorkerRegistration.idl:
        * workers/service/ServiceWorkerRegistrationData.cpp:
        (WebCore::ServiceWorkerRegistrationData::isolatedCopy const):
        * workers/service/ServiceWorkerRegistrationData.h:
        (WebCore::ServiceWorkerRegistrationData::encode const):
        (WebCore::ServiceWorkerRegistrationData::decode):
        * workers/service/server/SWClientConnection.cpp:
        (WebCore::SWClientConnection::jobResolvedInServer):
        * workers/service/server/SWClientConnection.h:
        * workers/service/server/SWServerRegistration.cpp:
        (WebCore::SWServerRegistration::scriptContextStarted):
        (WebCore::SWServerRegistration::data const):

2017-10-18  Youenn Fablet  <youenn@apple.com>

        Add preliminary support for ServiceWorker Handle Fetch
        https://bugs.webkit.org/show_bug.cgi?id=178475

        Reviewed by Chris Dumez.

        Test: http/tests/workers/service/basic-fetch.https.html

        Adding parameters to allow WebKit to do loading through Service Worker or through regular networking.
        A script context is now storing its selected service worker identifier. This should be fully implemented later on.
        This selected service worker identifier is passed to loading code as a ResourceLoaderOptions field.
        Service workers mode is also added as a ResourceLoaderOptions field so that the service worker can be bypassed.

        * WebCore.xcodeproj/project.pbxproj:
        * dom/ScriptExecutionContext.h:
        (WebCore::ScriptExecutionContext::selectedServiceWorkerIdentifier const):
        (WebCore::ScriptExecutionContext::setSelectedServiceWorkerIdentifier):
        * loader/DocumentThreadableLoader.cpp:
        (WebCore::DocumentThreadableLoader::DocumentThreadableLoader):
        * loader/FetchOptions.h:
        (WebCore::isPotentialNavigationOrSubresourceRequest):
        (WebCore::isNonSubresourceRequest):
        * loader/ResourceLoaderOptions.h:
        * loader/WorkerThreadableLoader.cpp:
        (WebCore::WorkerThreadableLoader::WorkerThreadableLoader):
        (WebCore::WorkerThreadableLoader::MainThreadBridge::MainThreadBridge):
        * loader/WorkerThreadableLoader.h:
        * platform/network/ResourceRequestBase.h:
        * platform/network/ResourceResponseBase.h:
        * workers/WorkerThread.h:
        * workers/service/ServiceWorkerContainer.cpp:
        (WebCore::ServiceWorkerContainer::jobResolvedWithRegistration):
        * workers/service/ServiceWorkerProvider.h:
        * workers/service/context/SWContextManager.cpp: Removed.
        * workers/service/context/ServiceWorkerThread.h:
        * workers/service/server/SWServer.h:

2017-10-18  Zalan Bujtas  <zalan@apple.com>

        [FrameView::layout cleanup] Group related pre-layout code to improve readability
        https://bugs.webkit.org/show_bug.cgi?id=178496
        <rdar://problem/35065718>

        Reviewed by Simon Fraser.

        Early returns/asserts/member variable resets etc.

        Covered by existing tests.

        * page/FrameView.cpp:
        (WebCore::FrameView::layout):

2017-10-17  Jiewen Tan  <jiewen_tan@apple.com>

        Replace some stack raw pointers with RefPtrs within WebCore/html
        https://bugs.webkit.org/show_bug.cgi?id=178201
        <rdar://problem/34841692>

        Reviewed by Ryosuke Niwa.

        This is an effort to reduce raw pointer usage in DOM code. In this patch, raw pointers
        that are ref countable are blindly selected to be replaced with RefPtrs with one exception
        which is auto*.

        Also, this patch occasionally modifies the return type of some methods, and therefore callers
        of those methods are modified accordingly.

        * Modules/encryptedmedia/legacy/LegacyCDM.cpp:
        (WebCore::LegacyCDM::mediaPlayer const):
        * Modules/encryptedmedia/legacy/LegacyCDM.h:
        * Modules/encryptedmedia/legacy/LegacyCDMPrivateMediaPlayer.cpp:
        (WebCore::CDMPrivateMediaPlayer::createSession):
        * Modules/encryptedmedia/legacy/WebKitMediaKeys.cpp:
        (WebCore::WebKitMediaKeys::cdmMediaPlayer const):
        * Modules/encryptedmedia/legacy/WebKitMediaKeys.h:
        * Modules/mediacontrols/MediaControlsHost.cpp:
        (WebCore::MediaControlsHost::externalDeviceDisplayName const):
        (WebCore::MediaControlsHost::externalDeviceType const):
        * dom/Element.cpp:
        (WebCore::Element::focusDelegate):
        (WebCore::Element::userAgentShadowRoot const):
        (WebCore::Element::ensureUserAgentShadowRoot):
        * dom/Element.h:
        * dom/EventContext.cpp:
        (WebCore::TouchEventContext::checkReachability const):
        * dom/EventPath.cpp:
        (WebCore::shouldEventCrossShadowBoundary):
        (WebCore::EventPath::setRelatedTarget):
        (WebCore::EventPath::retargetTouch):
        (WebCore:: const):
        * dom/EventTarget.cpp:
        (WebCore::EventTarget::toNode):
        (WebCore::EventTarget::addEventListener):
        * dom/EventTarget.h:
        * dom/MouseEvent.cpp:
        (WebCore::MouseEvent::toElement const):
        (WebCore::MouseEvent::fromElement const):
        * dom/MouseEvent.h:
        * dom/MouseRelatedEvent.cpp:
        (WebCore::MouseRelatedEvent::computeRelativePosition):
        * dom/Node.cpp:
        (WebCore::Node::toNode):
        * dom/Node.h:
        * dom/ScopedEventQueue.cpp:
        * editing/Editor.cpp:
        (WebCore::Editor::selectionForCommand):
        * editing/EditorCommand.cpp:
        (WebCore::targetFrame):
        * editing/TextIterator.cpp:
        (WebCore::TextIterator::handleReplacedElement):
        * html/BaseChooserOnlyDateAndTimeInputType.cpp:
        (WebCore::BaseChooserOnlyDateAndTimeInputType::updateAppearance):
        * html/ColorInputType.cpp:
        (WebCore::ColorInputType::updateColorSwatch):
        (WebCore::ColorInputType::shadowColorSwatch const):
        * html/FileInputType.cpp:
        (WebCore::FileInputType::disabledAttributeChanged):
        (WebCore::FileInputType::multipleAttributeChanged):
        * html/FormAssociatedElement.cpp:
        (WebCore::FormAssociatedElement::findAssociatedForm):
        (WebCore::FormAssociatedElement::formOwnerRemovedFromTree):
        (WebCore::FormAssociatedElement::resetFormOwner):
        (WebCore::FormAssociatedElement::formAttributeChanged):
        * html/FormController.cpp:
        (WebCore::recordFormStructure):
        (WebCore::FormKeyGenerator::formKey):
        (WebCore::FormController::restoreControlStateIn):
        * html/HTMLAnchorElement.cpp:
        (WebCore::appendServerMapMousePosition):
        (WebCore::HTMLAnchorElement::handleClick):
        * html/HTMLAppletElement.cpp:
        (WebCore::HTMLAppletElement::updateWidget):
        * html/HTMLAreaElement.cpp:
        (WebCore::HTMLAreaElement::imageElement const):
        (WebCore::HTMLAreaElement::isFocusable const):
        (WebCore::HTMLAreaElement::setFocus):
        (WebCore::HTMLAreaElement::updateFocusAppearance):
        * html/HTMLBodyElement.cpp:
        (WebCore::HTMLBodyElement::scrollLeft):
        (WebCore::HTMLBodyElement::setScrollLeft):
        (WebCore::HTMLBodyElement::scrollTop):
        (WebCore::HTMLBodyElement::setScrollTop):
        (WebCore::HTMLBodyElement::scrollHeight):
        (WebCore::HTMLBodyElement::scrollWidth):
        * html/HTMLCanvasElement.cpp:
        (WebCore::HTMLCanvasElement::createElementRenderer):
        (WebCore:: const):
        * html/HTMLDocument.cpp:
        (WebCore::HTMLDocument::width):
        (WebCore::HTMLDocument::height):
        * html/HTMLElement.cpp:
        (WebCore::HTMLElement::rendererIsNeeded):
        (WebCore::setHasDirAutoFlagRecursively):
        (WebCore::HTMLElement::directionality const):
        (WebCore::HTMLElement::dirAttributeChanged):
        (WebCore::HTMLElement::adjustDirectionalityIfNeededAfterChildrenChanged):
        * html/HTMLEmbedElement.cpp:
        (WebCore::HTMLEmbedElement::renderWidgetLoadingPlugin const):
        (WebCore::HTMLEmbedElement::rendererIsNeeded):
        * html/HTMLFieldSetElement.cpp:
        (WebCore::updateFromControlElementsAncestorDisabledStateUnder):
        (WebCore::HTMLFieldSetElement::disabledStateChanged):
        (WebCore::HTMLFieldSetElement::childrenChanged):
        * html/HTMLFormControlElement.cpp:
        (WebCore::HTMLFormControlElement::computeIsDisabledByFieldsetAncestor const):
        (WebCore::HTMLFormControlElement::setNeedsWillValidateCheck):
        (WebCore::HTMLFormControlElement::didChangeForm):
        (WebCore::HTMLFormControlElement::shouldAutocorrect const):
        (WebCore::HTMLFormControlElement::autocapitalizeType const):
        * html/HTMLFormElement.cpp:
        (WebCore::HTMLFormElement::handleLocalEvents):
        (WebCore::submitElementFromEvent):
        (WebCore::HTMLFormElement::prepareForSubmission):
        (WebCore::HTMLFormElement::submit):
        (WebCore::HTMLFormElement::reset):
        (WebCore::HTMLFormElement::shouldAutocorrect const):
        (WebCore::HTMLFormElement::parseAttribute):
        (WebCore::HTMLFormElement::resetDefaultButton):
        (WebCore::HTMLFormElement::elementFromPastNamesMap const):
        (WebCore::HTMLFormElement::namedElements):
        * html/HTMLFormElement.h:
        * html/HTMLFrameElement.cpp:
        (WebCore::HTMLFrameElement::didAttachRenderers):
        * html/HTMLFrameElementBase.cpp:
        (WebCore::HTMLFrameElementBase::isURLAllowed const):
        (WebCore::HTMLFrameElementBase::openURL):
        (WebCore::HTMLFrameElementBase::didAttachRenderers):
        * html/HTMLFrameOwnerElement.cpp:
        (WebCore::HTMLFrameOwnerElement::setContentFrame):
        (WebCore::HTMLFrameOwnerElement::clearContentFrame):
        (WebCore::HTMLFrameOwnerElement::disconnectContentFrame):
        (WebCore::SubframeLoadingDisabler::canLoadFrame):
        * html/HTMLFrameSetElement.cpp:
        (WebCore::HTMLFrameSetElement::findContaining):
        (WebCore::HTMLFrameSetElement::willAttachRenderers):
        (WebCore::HTMLFrameSetElement::insertedInto):
        (WebCore::HTMLFrameSetElement::removedFrom):
        * html/HTMLFrameSetElement.h:
        * html/HTMLImageElement.cpp:
        (WebCore::HTMLImageElement::bestFitSourceFromPictureElement):
        (WebCore::HTMLImageElement::pictureElement const):
        (WebCore::HTMLImageElement::destroyImageControls):
        (WebCore::HTMLImageElement::hasImageControls const):
        * html/HTMLInputElement.cpp:
        (WebCore::HTMLInputElement::innerTextElement const):
        (WebCore::HTMLInputElement::endEditing):
        (WebCore::HTMLInputElement::dataList const):
        (WebCore::HTMLInputElement::resetListAttributeTargetObserver): Deleted.
        (WebCore::HTMLInputElement::listAttributeTargetChanged): Deleted.
        (WebCore::HTMLInputElement::isSteppable const): Deleted.
        (WebCore::HTMLInputElement::dateType const): Deleted.
        (WebCore::HTMLInputElement::isTextButton const): Deleted.
        (WebCore::HTMLInputElement::isRadioButton const): Deleted.
        (WebCore::HTMLInputElement::isSearchField const): Deleted.
        (WebCore::HTMLInputElement::isInputTypeHidden const): Deleted.
        (WebCore::HTMLInputElement::isPasswordField const): Deleted.
        (WebCore::HTMLInputElement::isCheckbox const): Deleted.
        (WebCore::HT