[WebKit-https.git] / Source / WebCore / ChangeLog

2016-09-20  Nan Wang  <n_wang@apple.com>

        AX: voiceover does not read contents of input role="spinbutton"
        https://bugs.webkit.org/show_bug.cgi?id=162137

        Reviewed by Chris Fleizach.

        The aria-valuenow attribute value on the spinbutton is not exposed
        on iOS. We should expose aria-valuenow attribute for range controls
        based on https://www.w3.org/TR/wai-aria/states_and_properties#aria-valuenow

        Changes are covered in the modified test.

        * accessibility/ios/WebAccessibilityObjectWrapperIOS.mm:
        (-[WebAccessibilityObjectWrapper accessibilityValue]):

2016-09-20  Michael Catanzaro  <mcatanzaro@igalia.com>

        URLParser: uidna_IDNToASCII_56 is deprecated
        https://bugs.webkit.org/show_bug.cgi?id=161841

        Reviewed by Alex Christensen.

        Add pragmas to silence the warning, plus a FIXME.

        * platform/URLParser.cpp:
        (WebCore::domainToASCII):

2016-09-20  Alex Christensen  <achristensen@webkit.org>

        Make URLSearchParams spec-compliant
        https://bugs.webkit.org/show_bug.cgi?id=162247

        Reviewed by Chris Dumez and Sam Weinig.

        Covered by newly-passing web platform tests.

        * html/DOMURL.cpp:
        (WebCore::DOMURL::~DOMURL):
        (WebCore::DOMURL::setHref):
        (WebCore::DOMURL::setQuery):
        Update any associated URLSearchParams object when the query could change.
        (WebCore::DOMURL::searchParams):
        The lifetime of the URLSearchParams was wrong.  We were creating a new URLSearchParams each time
        URL.searchParams was called, and we should have been creating one the first time and returning the
        same instance for subsequent calls.  This means the DOMURL must own the URLSearchParams if it is associated,
        but if it is not associated, then a URLSearchParams can live on its own.
        * html/DOMURL.h:
        * html/URLSearchParams.h:
        (WebCore::URLSearchParams::URLDestroyed):
        (WebCore::URLSearchParams::setContents):

2016-09-20  Antti Koivisto  <antti@apple.com>

        Remove AuthorStyleSheets::m_hadActiveLoadingStylesheet bit
        https://bugs.webkit.org/show_bug.cgi?id=162312

        Reviewed by Chris Dumez.

        * dom/AuthorStyleSheets.cpp:
        (WebCore::AuthorStyleSheets::analyzeStyleSheetChange):

            We can handle loading sheets with the normal stylesheet change logic. Remove the special case.

        (WebCore::filterEnabledNonemptyCSSStyleSheets):

            Filter out loading stylesheets.

        * dom/AuthorStyleSheets.h:

2016-09-20  Keith Rollin  <krollin@apple.com>

        Adjust current networking logging
        https://bugs.webkit.org/show_bug.cgi?id=162235

        Reviewed by Antti Koivisto.

        Update the "always on" network logging in order to better track the
        loading of a particular resource and to better bind together the
        resources downloaded for a particular page and frame. Do this by
        consistently logging pageID, frameID, and resourceID.

        No new tests -- there are no tests for logging.

        * loader/FrameLoader.cpp:
        (WebCore::FrameLoader::checkLoadCompleteForThisFrame):
        * loader/ResourceLoader.h:
        (WebCore::ResourceLoader::frame):

2016-09-20  Alex Christensen  <achristensen@webkit.org>

        Non-special URLs should have an opaque origin
        https://bugs.webkit.org/show_bug.cgi?id=162254

        Reviewed by Sam Weinig.

        Covered by newly passing web platform tests.

        * page/SecurityOrigin.cpp:
        (WebCore::shouldTreatAsUniqueOrigin):
        According to https://url.spec.whatwg.org/#origin all URLs with non-special protocols
        should have a unique SecurityOrigin whose serialization is "null".

2016-09-20  Christopher Reid  <Christopher.Reid@am.sony.com>

        [WinCairo]  Not building since 206044
        https://bugs.webkit.org/show_bug.cgi?id=162246

        Reviewed by Alex Christensen.

        No new tests. No change in behaviour.

        * bindings/js/JSWebGLRenderingContextCustom.cpp:
        * platform/network/curl/CookieJarCurl.cpp:

2016-09-20  Alex Christensen  <achristensen@webkit.org>

        Align URLParser with web platform tests when parsing non-special relative URLs ending in AuthorityOrHost state
        https://bugs.webkit.org/show_bug.cgi?id=162251

        Reviewed by Tim Horton.

        Covered by new and updated API tests.

        * platform/URLParser.cpp:
        (WebCore::URLParser::parse):
        Fix parsing of non-special URLs that end after scheme:// with no authority.
        We used to assume that parsing non-special schemes would never end with just scheme:// but a string can indeed end right there.
        When a non-special relative URL contains just scheme:// we need the resulting URL to be valid to conform with the web platform tests.
        (WebCore::URLParser::parseHostAndPort):
        Renamed to reflect what the function actually does.
        (WebCore::URLParser::internalValuesConsistent):
        Add utility function for testing.
        (WebCore::URLParser::parseHost): Deleted.
        * platform/URLParser.h:

2016-09-20  Javier Fernandez  <jfernandez@igalia.com>

        [css-grid] The 'grid' shorthand has a new syntax.
        https://bugs.webkit.org/show_bug.cgi?id=161954

        Reviewed by Darin Adler.

        Implementation of the new CSS syntax for the 'grid' shorthand, as
        defined in the CSS Grid Layout specification:
        - https://drafts.csswg.org/css-grid/#grid-shorthand

        No new tests, just adapted the ones we already have and added a few additional test cases.

        * css/CSSValueKeywords.in:
        * css/parser/CSSParser.cpp:
        (WebCore::CSSParser::parseImplicitAutoFlow): Added. Similar to parseGridAutoFlow, but using the new 'auto-flow' keyword.
        (WebCore::CSSParser::parseGridShorthand): New syntax of the 'grid' shorthand.
        * css/parser/CSSParser.h:

2016-09-20  Alex Christensen  <achristensen@webkit.org>

        URLParser should allow '@' in user
        https://bugs.webkit.org/show_bug.cgi?id=162272

        Reviewed by Tim Horton.

        Covered by a new API test.

        * platform/URLParser.cpp:
        (WebCore::URLParser::parse):
        The spec describes using an "@ flag" and rewinding iterators.  I've implemented the authority parsing
        and host parsing a little differently, but this makes it equivalent.

2016-09-20  Alex Christensen  <achristensen@webkit.org>

        URLParser: Fix parsing relative URLs with one slash after the scheme:
        https://bugs.webkit.org/show_bug.cgi?id=162294

        Reviewed by Tim Horton.

        This fixes the relatively-obscure case where a relative URL has the same special scheme as the base,
        but there is only one slash after the scheme: at the beginning of the relative URL.  According to spec,
        this should be interpreted the same as if the scheme: were not there.
        For example, parsing "http:/example.com/" relative to "http://example.org/foo/bar" should be the same as
        parsing "/example.com/" relative to "http://example.org/foo/bar".

        Covered by a new API test.

        * platform/URLParser.cpp:
        (WebCore::URLParser::parse):

2016-09-20  Alex Christensen  <achristensen@webkit.org>

        Fix Windows file URL quirks in URLParser
        https://bugs.webkit.org/show_bug.cgi?id=162303

        Reviewed by Tim Horton.

        Windows file urls allow c:\ and c|\ to have the same meaning, but when serialized they should both be c:/.
        This is now standardized to allow cross-platform uniform behavior of URLs.

        Covered by new API tests and progress on web platform tests when URLParser is enabled.

        * platform/URLParser.cpp:
        (WebCore::incrementIteratorSkippingTabAndNewLine):
        (WebCore::isWindowsDriveLetter):
        (WebCore::checkWindowsDriveLetter):
        (WebCore::shouldCopyFileURL):
        (WebCore::URLParser::parseSerializedURL):
        (WebCore::URLParser::parse):

2016-09-20  Said Abou-Hallawa  <sabouhallawa@apple.com>

        Rename FrameData to ImageFrame, move it to a separate file and use it for all ports
        https://bugs.webkit.org/show_bug.cgi?id=159819

        Reviewed by Simon Fraser.

        Rename FrameData to ImageFrame and move it to a separate file so caching
        it can be managed outside the BitmapImage object. Make the data members
        of FrameData be private and add getters to return their values. Add backing
        store and disposalMethod members, getter and setters to ImageFrame so it can
        replace the non-CG ImageFrame class.

        * CMakeLists.txt:
        * WebCore.xcodeproj/project.pbxproj:
        Add ImageFrame class to WebCore project.
        
        * platform/graphics/BitmapImage.cpp:
        (WebCore::BitmapImage::BitmapImage): The metadata for the non-decoder case is now calculated in the ImageFrame::initialize().
        (WebCore::BitmapImage::haveFrameImageAtIndex): Call ImageFrame's getters instead of access private members.
        (WebCore::BitmapImage::destroyDecodedData): Pass ImageFrame::Caching::Metadata to ImageFrame::clear() to clear the image only.
        (WebCore::BitmapImage::destroyDecodedDataIfNecessary): ImageFrame::usedFrameBytes() is now renamed to ImageFrame::frameBytes().
        (WebCore::BitmapImage::cacheFrame): Call ImageFrame::initialize() to set the image and cache the frame's metadata.
        (WebCore::BitmapImage::dataChanged): Pass ImageFrame::Caching::Empty to ImageFrame::clear() to clear the frame's image and metadata.
        (WebCore::BitmapImage::ensureFrameAtIndexIsCached): Call ImageFrame's getters instead of access private members.
        (WebCore::BitmapImage::frameImageAtIndex): Call ImageFrame's getters instead of access private members.
        (WebCore::BitmapImage::frameIsCompleteAtIndex): Pass ImageFrame::Caching::Metadata to ensureFrameAtIndexIsCached() to ensure the frame's metadata is cached.
        (WebCore::BitmapImage::frameDurationAtIndex): Pass ImageFrame::Caching::Metadata to ensureFrameAtIndexIsCached() to ensure the frame's metadata is cached.
        (WebCore::BitmapImage::frameHasAlphaAtIndex): Pass ImageFrame::Caching::Metadata to ensureFrameAtIndexIsCached() to ensure the frame's metadata is cached.
        (WebCore::BitmapImage::frameOrientationAtIndex): Pass ImageFrame::Caching::Metadata to ensureFrameAtIndexIsCached() to ensure the frame's metadata is cached.
        (WebCore::BitmapImage::singlePixelSolidColor): Call ImageFrame's getters instead of access private members.
        (WebCore::BitmapImage::repetitionCount): Change the return type to be RepetitionCount instead of int.
        (WebCore::BitmapImage::shouldAnimate): Use a simpler condition since RepetitionCountNone is equal to zero.
        (WebCore::BitmapImage::startAnimation): Replace the cAnimation* constants by the new RepetitionCount* enum.
        (WebCore::BitmapImage::internalAdvanceAnimation): Replace the cAnimation* constants by the new RepetitionCount* enum.

        * platform/graphics/BitmapImage.h: FrameData is renamed to ImageFrame and moved to a separate file named ImageFrame.h.
        (WebCore::FrameData::FrameData): Deleted.
        (WebCore::FrameData::~FrameData): Deleted.
        (WebCore::FrameData::clear): Deleted.
        (WebCore::FrameData::usedFrameBytes): Deleted.

        * platform/graphics/ImageBackingStore.h: 
        (WebCore::ImageBackingStore::fillRect): Make it efficient to fill a rect in the ImageBackingStore with the same color.
        (WebCore::ImageBackingStore::pixelAt): Asserts the point is in the bounds of the ImageBackingStore size.
        (WebCore::ImageBackingStore::setPixel): Use pixelValue().
        (WebCore::ImageBackingStore::inBounds): Private functions check whether a point or a rect is in the bounds of the ImageBackingStore size.
        (WebCore::ImageBackingStore::pixelValue): Calculate the RGBA value form red, green, blue and alpha values.

        * platform/graphics/ImageFrame.cpp: Added.
        (WebCore::ImageFrame::ImageFrame): 
        (WebCore::ImageFrame::~ImageFrame):
        (WebCore::ImageFrame::operator=):
        (WebCore::ImageFrame::fillMetaData): Caches the ImageFrame's metadata.
        (WebCore::ImageFrame::clearImage): Deletes all the allocated memory by ImageFrame which can be the ImageBackingStore or the NativeImagePtr.
        (WebCore::ImageFrame::clear): Deletes the allocated memory and may or may not clears the metadata also.
        (WebCore::ImageFrame::initialize): Sets a new ImageBackingStore or a new NativeImagePtr in the ImageFrame.
        (WebCore::ImageFrame::size): Returns the size of the ImageFrame which can be the size of ImageBackingStore or the size of NativeImagePtr.
        (WebCore::ImageFrame::singlePixelSolidColor): Returns whether the ImageFrame can be drawn by filling the image rectangle with a solid color.
        
        * platform/graphics/ImageFrame.h: Added.
        (WebCore::operator++): SubsamplingLevel is strongly typed but RepetitionCount is not since it can be any unsigned value in addition to -1.
        (WebCore::ImageFrame::ImageFrame):
        (WebCore::ImageFrame::setDecoding):
        (WebCore::ImageFrame::decoding):
        (WebCore::ImageFrame::isEmpty):
        (WebCore::ImageFrame::isPartial):
        (WebCore::ImageFrame::isComplete):
        (WebCore::ImageFrame::sizeRespectingOrientation):
        (WebCore::ImageFrame::frameBytes):
        (WebCore::ImageFrame::subsamplingLevel):
        (WebCore::ImageFrame::setDisposalMethod):
        (WebCore::ImageFrame::disposalMethod):
        (WebCore::ImageFrame::image):
        (WebCore::ImageFrame::setOrientation):
        (WebCore::ImageFrame::orientation):
        (WebCore::ImageFrame::setDuration):
        (WebCore::ImageFrame::duration):
        (WebCore::ImageFrame::setHasAlpha):
        (WebCore::ImageFrame::hasAlpha):
        (WebCore::ImageFrame::hasImage):
        (WebCore::ImageFrame::hasInvalidImage):
        (WebCore::ImageFrame::hasMetadata):
        (WebCore::ImageFrame::backingStore):
        (WebCore::ImageFrame::hasBackingStore):
        Setters and getters for the private members.

        * platform/graphics/ImageSource.cpp:
        (WebCore::ImageSource::calculateMaximumSubsamplingLevel): allowSubsamplingOfFrameAtIndex() is renamed to frameAllowSubsamplingAtIndex().
        (WebCore::ImageSource::subsamplingLevelForScale): Use the values of the enum class SubsamplingLevel.
        (WebCore::ImageSource::size): Use the values of the enum class SubsamplingLevel.
        (WebCore::ImageSource::sizeRespectingOrientation): Use the values of the enum class SubsamplingLevel.
        (WebCore::ImageSource::repetitionCount): Replace the constants cAnimation* by the enum RepetitionCount*.
        (WebCore::ImageSource::frameAllowSubsamplingAtIndex): Rename allowSubsamplingOfFrameAtIndex() to frameAllowSubsamplingAtIndex().
        (WebCore::ImageSource::frameSizeAtIndex): Replace the call to orientationAtIndex() by frameOrientationAtIndex().
        (WebCore::ImageSource::frameOrientationAtIndex): Rename orientationAtIndex() to frameOrientationAtIndex().
        (WebCore::ImageSource::dump): Replace the call to orientationAtIndex() by frameOrientationAtIndex().
        (WebCore::ImageSource::allowSubsamplingOfFrameAtIndex): Deleted.
        (WebCore::ImageSource::orientationAtIndex): Deleted.
        
        * platform/graphics/ImageSource.h:
        (WebCore::ImageSource::decoder): We need this function temporarily till we move caching the frames outside BitmapImage. 

        * platform/graphics/NativeImage.h: Change SubImages() to Subimages(). See Darin's comment in https://bugs.webkit.org/show_bug.cgi?id=159819#c6.
        * platform/graphics/cairo/NativeImageCairo.cpp:
        (WebCore::clearNativeImageSubimages):
        (WebCore::clearNativeImageSubImages): Deleted.

        * platform/graphics/cg/ImageDecoderCG.cpp:
        (WebCore::createImageSourceOptions): Use the values of the enum class SubsamplingLevel.
        (WebCore::imageSourceOptions): Use the values of the enum class SubsamplingLevel.
        (WebCore::ImageDecoder::repetitionCount): Change the return type to be RepetitionCount instead of int.
        (WebCore::ImageDecoder::frameOrientationAtIndex): orientationAtIndex() is renamed to frameOrientationAtIndex().
        (WebCore::ImageDecoder::frameAllowSubsamplingAtIndex): allowSubsamplingOfFrameAtIndex() is renamed to frameAllowSubsamplingAtIndex().
        (WebCore::ImageDecoder::orientationAtIndex): Deleted.
        (WebCore::ImageDecoder::allowSubsamplingOfFrameAtIndex): Deleted.
        * platform/graphics/cg/ImageDecoderCG.h:

        * platform/graphics/cg/NativeImageCG.cpp:
        (WebCore::clearNativeImageSubimages): Change SubImages() to Subimages().
        (WebCore::clearNativeImageSubImages): Deleted.

        * platform/image-decoders/ImageDecoder.cpp:
        (WebCore::ImageDecoder::frameIsCompleteAtIndex): Use ImageFrame::isComplete() instead of checking the value of the decoding status().
        (WebCore::ImageDecoder::frameHasAlphaAtIndex): Use ImageFrame::isComplete() instead of checking the value of the decoding status().
        (WebCore::ImageDecoder::frameDurationAtIndex): Use ImageFrame::isEmpty() instead of checking the value of the decoding status().
        (WebCore::ImageDecoder::createFrameImageAtIndex): Access the ImageBackingStore::image() function directly.
        (WebCore::ImageFrame::ImageFrame): Deleted.
        (WebCore::ImageFrame::operator=): Deleted.
        (WebCore::ImageFrame::clearPixelData): Deleted.
        (WebCore::ImageFrame::zeroFillPixelData): Deleted.
        (WebCore::ImageFrame::zeroFillFrameRect): Deleted.
        (WebCore::ImageFrame::initializeBackingStore): Deleted.
        (WebCore::ImageFrame::hasAlpha): Deleted.
        (WebCore::ImageFrame::setHasAlpha): Deleted.
        (WebCore::ImageFrame::setOriginalFrameRect): Deleted.
        (WebCore::ImageFrame::setStatus): Deleted.

        * platform/image-decoders/ImageDecoder.h:
        (WebCore::ImageDecoder::repetitionCount): Use the type RepetitionCount and the enum RepetitionCount* values.
        (WebCore::ImageDecoder::frameOrientationAtIndex): Rename orientationAtIndex() to frameOrientationAtIndex().
        (WebCore::ImageDecoder::frameAllowSubsamplingAtIndex): Rename allowSubsamplingOfFrameAtIndex() to frameAllowSubsamplingAtIndex().
        (WebCore::ImageDecoder::subsamplingLevelForScale): Use the enum class SubsamplingLevel value instead of integer values.
        (WebCore::ImageFrame::ImageFrame): Deleted.
        (WebCore::ImageFrame::copyRowNTimes): Deleted.
        (WebCore::ImageFrame::size): Deleted.
        (WebCore::ImageFrame::asNewNativeImage): Deleted.
        (WebCore::ImageFrame::backingStore): Deleted.
        (WebCore::ImageFrame::hasBackingStore): Deleted.
        (WebCore::ImageFrame::originalFrameRect): Deleted.
        (WebCore::ImageFrame::status): Deleted.
        (WebCore::ImageFrame::duration): Deleted.
        (WebCore::ImageFrame::disposalMethod): Deleted.
        (WebCore::ImageFrame::setDuration): Deleted.
        (WebCore::ImageFrame::setDisposalMethod): Deleted.
        (WebCore::ImageFrame::pixelAt): Deleted.
        (WebCore::ImageFrame::setPixel): Deleted.
        (WebCore::ImageFrame::blendPixel): Deleted.
        (WebCore::ImageDecoder::orientationAtIndex): Deleted.
        (WebCore::ImageDecoder::allowSubsamplingOfFrameAtIndex): Deleted.

        * platform/image-decoders/bmp/BMPImageDecoder.cpp:
        (WebCore::BMPImageDecoder::frameBufferAtIndex): Call ImageFrame::isComplete() instead of checking the value of the decoding status().
        (WebCore::BMPImageDecoder::decode): Ditto.

        * platform/image-decoders/bmp/BMPImageReader.cpp:
        (WebCore::BMPImageReader::decodeBMP): Call ImageFrame::isEmpty(). ImageBuffer::initializeBackingStore() is renamed to initialize().
        (WebCore::BMPImageReader::processNonRLEData): Replace ImageFrame::zeroFillPixelData() by ImageBackingStore::clear() and ImageFrame::setAlpha().

        * platform/image-decoders/bmp/BMPImageReader.h:
        (WebCore::BMPImageReader::setPixel): Call ImageBackingStore::setPixel() directly.
        (WebCore::BMPImageReader::fillRGBA): Replace an efficient loop to call setPixel() by ImageBackingStore::fillRect().

        * platform/image-decoders/gif/GIFImageDecoder.cpp:
        (WebCore::GIFImageDecoder::GIFImageDecoder): Move the initialization of m_repetitionCount to the header file.
        (WebCore::GIFImageDecoder::repetitionCount): Change the return type.
        (WebCore::GIFImageDecoder::frameBufferAtIndex): Call ImageFrame::isComplete() instead of checking the value of the decoding status().
        (WebCore::GIFImageDecoder::clearFrameBufferCache): Use the values of the new enum class ImageFrame::DisposalMethod.
        (WebCore::GIFImageDecoder::haveDecodedRow): Call the ImageBackingStore API's directly.
        (WebCore::GIFImageDecoder::frameComplete): Use the values of the new enum class ImageFrame::DisposalMethod.
        (WebCore::GIFImageDecoder::initFrameBuffer): Move calling ImageBackingStore::setFrameRect() to be after initializing the ImageBackingStore itself.

        * platform/image-decoders/gif/GIFImageDecoder.h: Make repetitionCount() returns RepetitionCount and use the new enum class ImageFrame::DisposalMethod.
        
        * platform/image-decoders/gif/GIFImageReader.cpp:
        (GIFImageReader::parse):

        * platform/image-decoders/gif/GIFImageReader.h:
        (GIFFrameContext::GIFFrameContext): Use new enum class ImageFrame::DisposalMethod.
        
        * platform/image-decoders/ico/ICOImageDecoder.cpp:
        (WebCore::ICOImageDecoder::frameBufferAtIndex): Call ImageFrame::isComplete() instead of checking the value of the decoding status().
        (WebCore::ICOImageDecoder::decode): Ditto.

        * platform/image-decoders/jpeg/JPEGImageDecoder.cpp:
        (WebCore::JPEGImageDecoder::frameBufferAtIndex): Call ImageFrame::isComplete() instead of checking the value of the decoding status().
        (WebCore::setPixel): Call ImageBackingStore::setPixel() directly.
        (WebCore::JPEGImageDecoder::outputScanlines): ImageFrame::initializeBackingStore() is renamed to initialize().
        (WebCore::JPEGImageDecoder::jpegComplete): ImageFrame::setStatus() is renamed to ImageFrame::setDecoding().
        (WebCore::JPEGImageDecoder::decode): Call ImageFrame::isComplete() instead of checking the value of the decoding status().

        * platform/image-decoders/png/PNGImageDecoder.cpp:
        (WebCore::PNGImageDecoder::frameBufferAtIndex): Call ImageFrame::isComplete() instead of checking the value of the decoding status().
        (WebCore::PNGImageDecoder::rowAvailable): Call the ImageBackingStore APIs directly.
        (WebCore::PNGImageDecoder::pngComplete): ImageFrame::setStatus() is renamed to setDecoding().
        (WebCore::PNGImageDecoder::readChunks): Use the values of the new enum class ImageFrame::DisposalMethod.
        (WebCore::PNGImageDecoder::clearFrameBufferCache): Replace the call to ImageFrame::clearPixelData() by  ImageFrame::clear().
        (WebCore::PNGImageDecoder::initFrameBuffer): Move calling ImageBackingStore::setFrameRect() to be after initializing the ImageBackingStore itself.
        (WebCore::PNGImageDecoder::frameComplete): Call the ImageBackingStore APIs directly.

        * platform/image-decoders/png/PNGImageDecoder.h: Call ImageFrame::isComplete() instead of checking the value of the decoding status().

        * platform/image-decoders/webp/WEBPImageDecoder.cpp:
        (WebCore::WEBPImageDecoder::frameBufferAtIndex): Call ImageFrame::isComplete() instead of checking the value of the decoding status().
        (WebCore::WEBPImageDecoder::decode): ImageFrame::setStatus() is renamed to setDecoding(). And initializeBackingStore() is renamed to initialize().

2016-09-20  Don Olmstead  <don.olmstead@am.sony.com>

        [WinCairo] Use find_package cairo in build
        https://bugs.webkit.org/show_bug.cgi?id=162239

        Reviewed by Alex Christensen.

        No new tests. No change in behavior.

        * PlatformWinCairo.cmake:

2016-09-20  Jer Noble  <jer.noble@apple.com>

        [media-source] Support MediaSource.setLiveSeekableRanges()
        https://bugs.webkit.org/show_bug.cgi?id=162252

        Reviewed by Sam Weinig.

        Fixes tests: imported/w3c/web-platform-tests/media-source/interfaces.html
                     imported/w3c/web-platform-tests/media-source/mediasource-liveseekable.html

        Add support for a new part of the Media Source specification, the ability for clients to
        specify the seekable ranges for a MediaSource-backed HTMLMediaElement.

        Adding the live-seekable methods to MediaSource fixes a large number of the interfaces.html
        tests, and the rest are fixed by adding on<event> handlers to MediaSource, SourceBuffer,
        and SourceBufferList.

        * Modules/mediasource/MediaSource.cpp:
        (WebCore::MediaSource::seekable):
        (WebCore::MediaSource::setLiveSeekableRange):
        (WebCore::MediaSource::clearLiveSeekableRange):
        * Modules/mediasource/MediaSource.h:
        * Modules/mediasource/MediaSource.idl:
        * Modules/mediasource/SourceBuffer.idl:
        * Modules/mediasource/SourceBufferList.idl:
        * Modules/mediasource/VideoPlaybackQuality.idl:
        * html/HTMLMediaElement.cpp:
        (WebCore::HTMLMediaElement::seekable):

2016-09-20  Per Arne Vollan  <pvollan@apple.com>

        [Win] Unreviewed warning fix.

        * page/CaptionUserPreferencesMediaAF.cpp:

2016-09-19  Chris Dumez  <cdumez@apple.com>

        Add support for HTMLSourceElement.prototype.sizes / HTMLSourceElement.prototype.srcset
        https://bugs.webkit.org/show_bug.cgi?id=162244

        Reviewed by Alex Christensen.

        Add support for HTMLPrototype.prototype.sizes / HTMLPrototype.prototype.srcset:
        - https://html.spec.whatwg.org/#the-source-element

        We already support the corresponding content attributes internally. However, we
        are missing the corresponding IDL attributes that are supposed to reflect them.

        Chrome and Firefox support them. We already had those IDL attributes on
        HTMLImageElement.

        No new tests, rebaselined existing test.

        * html/HTMLSourceElement.idl:

2016-09-19  Anders Carlsson  <andersca@apple.com>

        Suppress JavaScript prompts early on in certain cases
        https://bugs.webkit.org/show_bug.cgi?id=162243
        rdar://problem/27661602

        Reviewed by Geoffrey Garen.

        Export symbols needed by WebKit2.

        * loader/FrameLoader.h:
        * loader/FrameLoaderStateMachine.h:

2016-09-19  Chris Dumez  <cdumez@apple.com>

        Align HTMLAppletElement with the specification
        https://bugs.webkit.org/show_bug.cgi?id=162240

        Reviewed by Alex Christensen.

        Align HTMLAppletElement with the specification:
        - https://html.spec.whatwg.org/#htmlappletelement

        In particular:
        - space / vspace should be of type "unsigned long", not DOMString
        - codeBase and object should reflect as URLs

        Firefox agree with the specification. Chrome does not have
        HTMLAppletElement anymore.

        No new tests, rebaselined existing test.

        * html/HTMLAppletElement.cpp:
        (WebCore::HTMLAppletElement::isURLAttribute):
        * html/HTMLAppletElement.h:
        * html/HTMLAppletElement.idl:

2016-09-16  Jer Noble  <jer.noble@apple.com>

        [media-source] Fix imported/w3c/web-platform-tests/media-source/mediasource-avtracks.html
        https://bugs.webkit.org/show_bug.cgi?id=162104

        Reviewed by Eric Carlson.

        Fixes test: imported/w3c/web-platform-tests/media-source/mediasource-avtracks.html

        Multiple overlapping issues are causing this test to fail:

        - When a MediaSource object is not attached from a HTMLMediaElement, it's SourceBuffer
          objects will return `null` from .videoTracks and .audioTracks, foiling the tests ability
          to assert that sourceBuffer.videoTracks.length == 0.

        - When a MediaSource object is detached from a HTMLMediaElement, it's tracks are removed
          but do not generate 'removedtrack' events.

        When these bugs were fixed, a few more popped up:

        - The HTMLMediaElement removes its tracks before it closes the MediaSource, which causes an
          assertion when the MediaSource tells the HTMLMediaElement to remove its copy of the 
          source's tracks (which have already been removed).

        - When the HTMLMediaElement is stop()-ed due to its ScriptExecutionContext being destroyed,
          it tries to close its MediaSource, which has itself already been stop()-ed and thus asserts.

        To eliminate all these bugs and make the code more self explanatory, we will rename the 
        HTMLMediaElement's closeMediaSource() method to detachMediaSource(), and the MediaSource's
        close() method to detachFromElement(). The only way to close a MediaSource is now by calling
        detachMediaSource() from the HTMLMediaElement.  The parts of the "Detaching from a media
        element" algorithm which were previously spread across setReadyState() and onReadyStateChange()
        are now unified in the newly renamed detachFromElement() method. The HTMLMediaElement will
        first detach its MediaSource, and only after that remove all its tracks.

        * Modules/mediasource/MediaSource.cpp:
        (WebCore::MediaSource::setReadyState): Move steps into detachFromElement().
        (WebCore::MediaSource::onReadyStateChange): Ditto.
        (WebCore::MediaSource::detachFromElement): Perform the steps as specified.
        (WebCore::MediaSource::attachToElement): Takes a reference rather than a bare pointer.
        (WebCore::MediaSource::stop): Ask the media elemnet to detach.
        (WebCore::MediaSource::close): Renamed to detachFromElement().
        * Modules/mediasource/MediaSource.h:
        * Modules/mediasource/SourceBuffer.cpp:
        (WebCore::SourceBuffer::videoTracks): Always return a valid TrackList object.
        (WebCore::SourceBuffer::audioTracks): Ditto.
        (WebCore::SourceBuffer::textTracks): Ditto.
        * html/HTMLMediaElement.cpp:
        (WebCore::HTMLMediaElement::~HTMLMediaElement): Renamed closeMediaSource() -> detachMediaSource().
        (WebCore::HTMLMediaElement::prepareForLoad): Ditto.
        (WebCore::HTMLMediaElement::loadResource): Ditto.
        (WebCore::HTMLMediaElement::noneSupported): Ditto.
        (WebCore::HTMLMediaElement::mediaLoadingFailedFatally): Ditto.
        (WebCore::HTMLMediaElement::detachMediaSource): Ditto.
        (WebCore::HTMLMediaElement::userCancelledLoad): Ditto.
        (WebCore::HTMLMediaElement::createMediaPlayer): Ditto.
        (WebCore::HTMLMediaElement::clearMediaPlayer): Ditto. Also, detach from the MediaSource before
            removing tracks.
        (WebCore::HTMLMediaElement::closeMediaSource): Deleted.
        * html/HTMLMediaElement.h:
        * html/track/TrackListBase.cpp:
        (TrackListBase::remove): Only try to clear the media element from Tracks that have one.

2016-09-19  Alex Christensen  <achristensen@webkit.org>

        URLParser can read memory out of bounds
        https://bugs.webkit.org/show_bug.cgi?id=162206

        Reviewed by Geoff Garen.

        Covered by new API tests.
        URLParser is disabled by default still.

        * platform/URLParser.cpp:
        (WebCore::parseIPv4Host):
        If there are fewer than two numbers in an ipv4 address, we would subtract two from the Vector's size, 
        causing us to read memory up to std::numeric_limits<size_t>::max() - 2.  Added a bounds check and many tests.

2016-09-19  Alex Christensen  <achristensen@webkit.org>

        URLParser should parse serialized valid URLs faster than unknown input
        https://bugs.webkit.org/show_bug.cgi?id=162228

        Reviewed by Chris Dumez.

        The URL constructor with ParsedURLStringTag is almost twice as fast as the other URL constructors.
        Assuming there are no tabs or newlines, and assuming characters are already encoded decreases the URLParser
        runtime by over 25% and adds infrastructure for more optimizations.

        No new tests. No change in behaviour.

        * platform/URL.cpp:
        (WebCore::URL::URL):
        * platform/URLParser.cpp:
        (WebCore::utf8PercentEncode):
        (WebCore::utf8PercentEncodeQuery):
        (WebCore::URLParser::parse):
        (WebCore::URLParser::parseSerializedURL):
        (WebCore::incrementIterator):
        (WebCore::URLParser::parseAuthority):
        (WebCore::URLParser::parsePort):
        (WebCore::URLParser::parseHost):
        * platform/URLParser.h:
        (WebCore::URLParser::parse): Deleted.

2016-09-19  Daniel Bates  <dabates@apple.com>

        Cleanup: Remove an extraneous copy of SecurityOrigin
        https://bugs.webkit.org/show_bug.cgi?id=162118

        Reviewed by Youenn Fablet.

        Share one isolated copy of the SecurityOrigin between the ContentSecurityPolicy and
        LoaderTaskOptions objects instead of creating two isolated copies of the SecurityOrigin.
        This is safe because both ContentSecurityPolicy and LoaderTaskOptions are instantiated
        in WorkerThreadableLoader::MainThreadBridge for use on the main thread only.

        * loader/WorkerThreadableLoader.cpp:
        (WebCore::LoaderTaskOptions::LoaderTaskOptions):
        (WebCore::WorkerThreadableLoader::MainThreadBridge::MainThreadBridge):

2016-09-19  Antti Koivisto  <antti@apple.com>

        Add size assert for RenderElement
        https://bugs.webkit.org/show_bug.cgi?id=162096

        Reviewed by Simon Fraser.

        Also remove the unused m_visibleInViewportState field.

        * rendering/RenderElement.cpp:
        (WebCore::RenderElement::unregisterForVisibleInViewportCallback):
        * rendering/RenderElement.h:

2016-09-19  Keith Rollin  <krollin@apple.com>

        REGRESSION (r205275): LOG_WITH_STREAM() macros are all compiled in release builds now
        https://bugs.webkit.org/show_bug.cgi?id=162180

        Reviewed by Simon Fraser.

        Disable LOG_WITH_STREAM in release mode. Along with this, remove a
        local variable in GraphcsContextCG.cpp in release mode that's no
        longer referenced. And adjust logFunctionResult so that it gets
        defined only in debug mode, too, to match its declaration in
        LogMacros.h.

        No new tests -- there are no tests for logging.

        * platform/LogMacros.h:
        * platform/Logging.cpp:
        * platform/graphics/cg/GraphicsContextCG.cpp:
        (WebCore::GraphicsContext::drawNativeImage):

2016-09-19  Daniel Bates  <dabates@apple.com>

        Remove ENABLE(TEXT_AUTOSIZING) automatic text size adjustment code
        https://bugs.webkit.org/show_bug.cgi?id=162167

        Reviewed by Simon Fraser.

        Remove the automatic text size adjustment code guarded by ENABLE(TEXT_AUTOSIZING)
        because it is not used by any port. On Mac and iOS, analogous code guarded by
        ENABLE(IOS_TEXT_AUTOSIZING) is used.

        * CMakeLists.txt:
        * Configurations/FeatureDefines.xcconfig:
        * dom/Document.cpp:
        (WebCore::Document::Document):
        * dom/Document.h:
        (WebCore::Document::textAutosizer): Deleted.
        * page/FrameView.cpp:
        (WebCore::FrameView::setFrameRect):
        (WebCore::FrameView::layout):
        * page/Settings.cpp:
        (WebCore::Settings::Settings):
        (WebCore::Settings::setTextAutosizingFontScaleFactor): Deleted.
        * page/Settings.h:
        (WebCore::Settings::textAutosizingFontScaleFactor): Deleted.
        * page/animation/CSSPropertyAnimation.cpp:
        (WebCore::CSSPropertyAnimationWrapperMap::CSSPropertyAnimationWrapperMap):
        * rendering/RenderingAllInOne.cpp:
        * rendering/TextAutosizer.cpp: Removed.
        * rendering/TextAutosizer.h: Removed.
        * rendering/style/RenderStyle.cpp:
        (WebCore::RenderStyle::changeRequiresLayout):
        (WebCore::RenderStyle::lineHeight):
        (WebCore::RenderStyle::setFontSize):
        * rendering/style/RenderStyle.h:
        (WebCore::RenderStyle::textAutosizingMultiplier): Deleted.
        (WebCore::RenderStyle::setTextAutosizingMultiplier): Deleted.
        * rendering/style/StyleVisualData.cpp:
        (WebCore::StyleVisualData::StyleVisualData):
        * rendering/style/StyleVisualData.h:
        * testing/InternalSettings.cpp:
        (WebCore::InternalSettings::Backup::Backup):
        (WebCore::InternalSettings::Backup::restoreTo):
        (WebCore::InternalSettings::setTextAutosizingEnabled):
        (WebCore::InternalSettings::setTextAutosizingWindowSizeOverride):
        (WebCore::InternalSettings::setTextAutosizingFontScaleFactor): Deleted.
        * testing/InternalSettings.h:
        * testing/InternalSettings.idl:

2016-09-19  Chris Dumez  <cdumez@apple.com>

        Update XHTMLParser to recognize "-//W3C//DTD MathML 2.0//EN" public identifier
        https://bugs.webkit.org/show_bug.cgi?id=162166

        Reviewed by Alex Christensen.

        Update XHTMLParser to recognize "-//W3C//DTD MathML 2.0//EN" public identifier as
        per the latest HTML specification.
        - https://html.spec.whatwg.org/#parsing-xhtml-documents

        Firefox already recognizes it properly.

        Test: imported/w3c/web-platform-tests/html/the-xhtml-syntax/parsing-xhtml-documents/xhtml-mathml-dtd-entity-support.htm

        * xml/parser/XMLDocumentParserLibxml2.cpp:
        (WebCore::convertUTF16EntityToUTF8):
        Fix assertion that was causing the new test to crash in debug. The input '\u0026'
        gets converted to '&' which is only 1 character. However, the assertion wrongly
        expected WTF::Unicode::convertUTF16ToUTF8() to generate more than 1 character.

        (WebCore::externalSubsetHandler):
        Add "-//W3C//DTD MathML 2.0//EN" to the list.

2016-09-19  Chris Dumez  <cdumez@apple.com>

        Window's pageXOffset / pageYOffset attributes should be replaceable
        https://bugs.webkit.org/show_bug.cgi?id=162046

        Reviewed by Darin Adler.

        Window's pageXOffset / pageYOffset attributes should be replaceable as per:
        - https://drafts.csswg.org/cssom-view/#extensions-to-the-window-interface

        Firefox agrees with the specification.

        No new tests, rebaselined existing test.

        * page/DOMWindow.h:
        * page/DOMWindow.idl:

2016-09-19  Commit Queue  <commit-queue@webkit.org>

        Unreviewed, rolling out r206107.
        https://bugs.webkit.org/show_bug.cgi?id=162229

        still failing on armv7 for some reason (Requested by anttik on
        #webkit).

        Reverted changeset:

        "Add size assert for RenderElement"
        https://bugs.webkit.org/show_bug.cgi?id=162096
        http://trac.webkit.org/changeset/206107

2016-09-19  Antti Koivisto  <antti@apple.com>

        Add size assert for RenderElement
        https://bugs.webkit.org/show_bug.cgi?id=162096

        Reviewed by Simon Fraser.

        Also remove the unused m_visibleInViewportState field.

        * rendering/RenderElement.cpp:
        (WebCore::RenderElement::unregisterForVisibleInViewportCallback):
        * rendering/RenderElement.h:

2016-09-19  Nan Wang  <n_wang@apple.com>

        AX: Add accessibility support for details element on iOS
        https://bugs.webkit.org/show_bug.cgi?id=162041

        Reviewed by Chris Fleizach.

        The details and summary elements are poorly supported on iOS.
        Two major issues:
            1. Assistive technologies taking focus onto details/summary elements will cause unexpected behavior.
            2. VoiceOver is not speaking the expanded status of the details element.
        Fixed them by not setting focus onto elements inside details and exposing the details element's expanded
        status to its summary's accessible children.

        Test: accessibility/ios-simulator/detail-summary-ios.html

        * accessibility/ios/WebAccessibilityObjectWrapperIOS.mm:
        (matchedParent):
        (-[WebAccessibilityObjectWrapper _accessibilityListAncestor]):
        (-[WebAccessibilityObjectWrapper _accessibilityLandmarkAncestor]):
        (-[WebAccessibilityObjectWrapper _accessibilityTableAncestor]):
        (-[WebAccessibilityObjectWrapper _accessibilityFieldsetAncestor]):
        (-[WebAccessibilityObjectWrapper tableCellParent]):
        (-[WebAccessibilityObjectWrapper tableParent]):
        (-[WebAccessibilityObjectWrapper convertPointToScreenSpace:]):
        (-[WebAccessibilityObjectWrapper convertRectToScreenSpace:]):
        (-[WebAccessibilityObjectWrapper detailParentForSummaryObject:]):
        (-[WebAccessibilityObjectWrapper detailParentForObject:]):
        (-[WebAccessibilityObjectWrapper accessibilityElementDidBecomeFocused]):
        (-[WebAccessibilityObjectWrapper accessibilitySupportsARIAExpanded]):
        (-[WebAccessibilityObjectWrapper accessibilityIsExpanded]):

2016-09-19  Zalan Bujtas  <zalan@apple.com>

        ASSERTION FAILED: clipRectsContext.rootLayer == m_clipRectsCache->m_clipRectsRoot[clipRectsType] while loading guardian.co.uk
        https://bugs.webkit.org/show_bug.cgi?id=162129
        <rdar://problem/28353350>

        Reviewed by Antti Koivisto.

        Neither ::localClipRect() nor ::selfClipRect() accounts for paginated context while computing the cliprects (See FIXMEs).
        This patch ensures that we don't end up caching these invalid cliprects.

        Test: fast/multicol/assert-on-cliprect-caching-when-paginated.html

        * rendering/RenderLayer.cpp:
        (WebCore::RenderLayer::calculateClipRects):

2016-09-19  Youenn Fablet  <youenn@apple.com>

        Clean-up after r206014
        https://bugs.webkit.org/show_bug.cgi?id=162140

        Reviewed by Sam Weinig.

        Covered by existing tests.

        * platform/network/HTTPHeaderMap.cpp:
        (WebCore::HTTPHeaderMap::add):

2016-09-19  Nael Ouedraogo  <nael.ouedraogo@crf.canon.fr>

        If a host object is only used as a variadic argument, its bindings header isn't properly included
        https://bugs.webkit.org/show_bug.cgi?id=150121

        Reviewed by Youenn Fablet.

        Modify JS binding generator to include binding headers of objects passed
        as variadic argument.

        * Modules/mediastream/RTCPeerConnection.h: Remove workaround.
        * bindings/scripts/CodeGeneratorJS.pm:
        (AddVariadicToImplIncludes):
        (GenerateParametersCheck):
        * bindings/scripts/test/JS/JSTestObj.cpp:

2016-09-19  Joseph Pecoraro  <pecoraro@apple.com>

        Web Inspector: ⇧⌘C should highlight node under cursor without re-moving mouse
        https://bugs.webkit.org/show_bug.cgi?id=162128

        Reviewed by Brian Burg.

        * inspector/InspectorDOMAgent.h:
        * inspector/InspectorDOMAgent.cpp:
        (WebCore::InspectorDOMAgent::willDestroyFrontendAndBackend):
        (WebCore::InspectorDOMAgent::mouseDidMoveOverElement):
        (WebCore::InspectorDOMAgent::highlightMousedOverNode):
        (WebCore::InspectorDOMAgent::setSearchingForNode):
        When the inspector is connected, remember the last moused over node.
        This produces far more consistent results of highlighting under
        the cursor when pressing and releasing the keyboard shortcut keys,
        without having to move the mouse. Even when using the shortcut to
        first connect the inspector this produces far more consistent
        results because releasing the keys for the shortcut produce new
        mouseDidMoveOverElement events.

2016-09-19  Nael Ouedraogo  <nael.ouedraogo@crf.canon.fr>

        JSDOMBindings' toArguments() should return a more descriptive object
        https://bugs.webkit.org/show_bug.cgi?id=161793

        Reviewed by Youenn Fablet.

        Replace std::pair with new VariadicHelperResult class with more
        readable members names.

        No additional tests required.

        * bindings/js/JSDOMBinding.h:
        (WebCore::VariadicHelper::Result::Result):
        * bindings/scripts/CodeGeneratorJS.pm:
        (GenerateParametersCheck):
        * bindings/scripts/test/JS/JSTestObj.cpp:
        (WebCore::jsTestObjPrototypeFunctionOverloadedMethod12):
        (WebCore::jsTestObjPrototypeFunctionVariadicStringMethod):
        (WebCore::jsTestObjPrototypeFunctionVariadicDoubleMethod):
        (WebCore::jsTestObjPrototypeFunctionVariadicNodeMethod):

2016-09-18  Alex Christensen  <achristensen@webkit.org>

        Remove unnecessary String allocations in URLParser
        https://bugs.webkit.org/show_bug.cgi?id=162089

        Reviewed by Chris Dumez.

        No change in behavior except a performance improvement.

        * platform/URL.cpp:
        (WebCore::assertProtocolIsGood):
        (WebCore::URL::protocolIs):
        (WebCore::protocolIs):
        * platform/URL.h:
        Added a new protocolIs for non-null-terminated strings from user input.
        * platform/URLParser.cpp:
        (WebCore::URLParser::parse):
        Don't make a String to compare protocols.

2016-09-17  Alex Christensen  <achristensen@webkit.org>

        Inline functions in URLParser
        https://bugs.webkit.org/show_bug.cgi?id=162106

        Reviewed by Antti Koivisto.

        No change in behavior. Just make URLParser faster.

        * platform/URLParser.cpp:
        (WebCore::isC0Control):
        (WebCore::isC0ControlOrSpace):
        (WebCore::isTabOrNewline):
        (WebCore::isInSimpleEncodeSet):
        (WebCore::isInDefaultEncodeSet):
        (WebCore::isInUserInfoEncodeSet):
        (WebCore::isInvalidDomainCharacter):
        (WebCore::isPercentOrNonASCII):
        (WebCore::isSlashQuestionOrHash):
        (WebCore::isWindowsDriveLetter):
        (WebCore::shouldCopyFileURL):
        (WebCore::percentEncode):
        (WebCore::utf8PercentEncode):
        (WebCore::utf8PercentEncodeQuery):
        (WebCore::encodeQuery):
        (WebCore::isDefaultPort):
        (WebCore::isSpecialScheme):
        (WebCore::copyASCIIStringUntil):
        (WebCore::isPercentEncodedDot):
        (WebCore::isSingleDotPathSegment):
        (WebCore::isDoubleDotPathSegment):
        (WebCore::consumeSingleDotPathSegment):
        (WebCore::consumeDoubleDotPathSegment):
        (WebCore::serializeIPv4):
        (WebCore::zeroSequenceLength):
        (WebCore::findLongestZeroSequence):
        (WebCore::serializeIPv6Piece):
        (WebCore::serializeIPv6):
        (WebCore::parseIPv4Number):
        (WebCore::pow256):
        (WebCore::parseIPv4Host):
        (WebCore::parseIPv6Host):
        (WebCore::percentDecode):
        (WebCore::containsOnlyASCII):
        (WebCore::domainToASCII):
        (WebCore::hasInvalidDomainCharacter):
        (WebCore::formURLDecode):
        (WebCore::serializeURLEncodedForm):

2016-09-17  David Kilzer  <ddkilzer@apple.com>

        MainThreadBridge needs an isolatedCopy() of SecurityOrigin
        <https://webkit.org/b/162116>
        <rdar://problem/27525870>

        Reviewed by Carlos Garcia Campos.

        Covered by existing tests.

        * loader/WorkerThreadableLoader.cpp:
        (WebCore::WorkerThreadableLoader::MainThreadBridge::MainThreadBridge):
        Make an isolatedCopy() of SecurityOrigin here since that's the
        correct idiom to use when the object is passed from a worker
        thread back to the main thread.  Fix suggested by Daniel Bates.

2016-09-16  Yusuke Suzuki  <utatane.tea@gmail.com>

        [DFG] Introduce IsCellWithType node and unify IsJSArray, IsRegExpObject and newly added IsProxyObject
        https://bugs.webkit.org/show_bug.cgi?id=162000

        Reviewed by Filip Pizlo.

        * bridge/runtime_array.h:
        (JSC::RuntimeArray::createStructure):

2016-09-16  Chris Dumez  <cdumez@apple.com>

        Cancelling one frame's load cancels load in other frames that have the same URL as well
        https://bugs.webkit.org/show_bug.cgi?id=162094

        Reviewed by Antti Koivisto.

        Cancelling one frame's load cancels load in other frames that have the same URL as well.

        So if you have several frames that are loading URL X and you navigate one of the frames
        to Y, then the load of X will be cancelled and this frame will navigate to Y. All other
        frames will not load URL X even though they should.

        The issue is that all the DocumentLoaders share the same CachedResource because of the
        memoryCache. When we call DocumentLoader::stopLoading(), it will cancel the
        CachedResource's load even though there are several clients for this CachedResource
        and other clients still want the load.

        The approach chosen in this patch is to not reuse CachedResources that are still
        loading when trying to load a main resource. This is not the most efficient approach.
        I still chose this approach because:
        - It is very unlikely to introduce new bugs.
        - The change is very simple.
        - This is a corner case (several iframes having the same URL and cancelling the load in
          one of them).

        Test: http/tests/navigation/frames-same-url-cancel-load.html

        * loader/cache/CachedResourceLoader.cpp:
        (WebCore::CachedResourceLoader::determineRevalidationPolicy):

2016-09-16  Michael Catanzaro  <mcatanzaro@igalia.com>

        ASSERTION FAILED: The string being removed is atomic in the string table of an other thread! iterator != atomicStringTable.end() at Source/WTF/wtf/text/AtomicStringImpl.cpp(453)
        https://bugs.webkit.org/show_bug.cgi?id=161800

        Reviewed by Žan Doberšek.

        Speculative fix. These strings are created as static objects on a secondary thread, but all
        static objects are destroyed in exit handlers on the main thread, and AtomicStrings must
        always be destroyed on the same thread they are created.

        * platform/graphics/texmap/TextureMapperShaderProgram.h:

2016-09-16  Commit Queue  <commit-queue@webkit.org>

        Unreviewed, rolling out r206055.
        https://bugs.webkit.org/show_bug.cgi?id=162110

        broke 32bit ARM build (Requested by anttik on #webkit).

        Reverted changeset:

        "Add size assert for RenderElement"
        https://bugs.webkit.org/show_bug.cgi?id=162096
        http://trac.webkit.org/changeset/206055

2016-09-16  Brent Fulgham  <bfulgham@apple.com>

        [Win][Direct2D] Provide Color support for Direct2D
        https://bugs.webkit.org/show_bug.cgi?id=162090

        Reviewed by Dean Jackson.

        Add casting operations to the Color class to allow easy interoption with
        native Direct2D operations.

        No new tests. No change in behavior.

        * PlatformWin.cmake: Add new Windows implementation file.
        * platform/graphics/Color.h:
        * platform/graphics/win/ColorDirect2D.cpp: Added.
        (WebCore::Color::Color):
        (WebCore::Color::operator D2D1_COLOR_F):

2016-09-16  Antti Koivisto  <antti@apple.com>

        Add size assert for RenderElement
        https://bugs.webkit.org/show_bug.cgi?id=162096

        Reviewed by Simon Fraser.

        Also remove the unused m_visibleInViewportState field.

        * rendering/RenderElement.cpp:
        (WebCore::RenderElement::unregisterForVisibleInViewportCallback):
        * rendering/RenderElement.h:

2016-09-16  Antti Koivisto  <antti@apple.com>

        Tighten region style map to use RenderElement instead of RenderObject
        https://bugs.webkit.org/show_bug.cgi?id=162064

        Reviewed by Zalan Bujtas.

        RenderTexts don't have styles of their own so the map can operate on RenderElements.

        * rendering/RenderElement.cpp:
        (WebCore::RenderElement::willBeRemovedFromTree):
        (WebCore::RenderElement::removeFromRenderFlowThread):
        (WebCore::RenderElement::removeFromRenderFlowThreadIncludingDescendants):
        (WebCore::RenderElement::invalidateFlowThreadContainingBlockIncludingDescendants):
        * rendering/RenderElement.h:
        * rendering/RenderFlowThread.cpp:
        (WebCore::RenderFlowThread::removeFlowChildInfo):
        * rendering/RenderFlowThread.h:
        * rendering/RenderNamedFlowFragment.cpp:
        (WebCore::RenderNamedFlowFragment::computeChildrenStyleInRegion):
        (WebCore::RenderNamedFlowFragment::setRendererStyleInRegion):
        (WebCore::RenderNamedFlowFragment::clearObjectStyleInRegion):
        (WebCore::RenderNamedFlowFragment::setRegionObjectsRegionStyle):
        (WebCore::RenderNamedFlowFragment::restoreRegionObjectsOriginalStyle):
        (WebCore::RenderNamedFlowFragment::setObjectStyleInRegion): Deleted.
        * rendering/RenderNamedFlowFragment.h:
        * rendering/RenderNamedFlowThread.cpp:
        (WebCore::RenderNamedFlowThread::clearRenderObjectCustomStyle):
        (WebCore::RenderNamedFlowThread::removeFlowChildInfo):
        * rendering/RenderNamedFlowThread.h:
        * rendering/RenderObject.cpp:
        (WebCore::RenderObject::willBeRemovedFromTree):
        (WebCore::RenderObject::removeFromRenderFlowThread): Deleted.
        (WebCore::RenderObject::removeFromRenderFlowThreadIncludingDescendants): Deleted.
        (WebCore::RenderObject::invalidateFlowThreadContainingBlockIncludingDescendants): Deleted.

            These can now move to RenderElement.

        * rendering/RenderObject.h:

2016-09-16  Brent Fulgham  <bfulgham@apple.com>

        CaptionUserPreferences's use of the PageGroup's page map is incorrect
        https://bugs.webkit.org/show_bug.cgi?id=122194
        <rdar://problem/27332004>

        Reviewed by Zalan Bujtas.

        Avoid the possibility of dereferencing an unsafe iterator by checking
        for an empty HashSet before using the result of 'begin()'.

        No new tests because there is no change in behavior.

        * page/CaptionUserPreferences.cpp:
        (WebCore::CaptionUserPreferences::CaptionUserPreferences): Use new safer
        accessor to retrieve the current page.
        (WebCore::CaptionUserPreferences::setCaptionDisplayMode): Ditto.
        (WebCore::CaptionUserPreferences::currentPage): Added.
        (WebCore::CaptionUserPreferences::userPrefersCaptions): Use new safer
        accessor to retrieve the current page.
        (WebCore::CaptionUserPreferences::setUserPrefersCaptions): Ditto.
        (WebCore::CaptionUserPreferences::userPrefersSubtitles): Ditto.
        (WebCore::CaptionUserPreferences::setUserPrefersSubtitles): Ditto.
        (WebCore::CaptionUserPreferences::userPrefersTextDescriptions): Ditto.
        (WebCore::CaptionUserPreferences::setUserPrefersTextDescriptions): Ditto.
        * page/CaptionUserPreferences.h:

2016-09-16  Alex Christensen  <achristensen@webkit.org>

        Use Vector<LChar> instead of StringBuilder for the ASCII parts of URLParser
        https://bugs.webkit.org/show_bug.cgi?id=162035

        Reviewed by Chris Dumez.

        StringBuilder::append checks to see whether its StringBuffer is 8-bit or 16-bit each time it is called.
        When parsing URLs, almost all of the parsed URL is guaranteed to be 8-bit ASCII.
        Using a Vector<LChar> for this allows us to use uncheckedAppend in some places, and it always eliminates the 8-bit check.
        This is a ~20% speedup in url parsing.

        Covered by existing API tests.

        * platform/URLParser.cpp:
        (WebCore::isWindowsDriveLetter):
        (WebCore::percentEncode):
        (WebCore::utf8PercentEncode):
        (WebCore::utf8PercentEncodeQuery):
        (WebCore::encodeQuery):
        (WebCore::URLParser::copyURLPartsUntil):
        (WebCore::URLParser::popPath):
        (WebCore::URLParser::parse):
        (WebCore::URLParser::parseAuthority):
        (WebCore::appendNumber):
        (WebCore::serializeIPv4):
        (WebCore::serializeIPv6Piece):
        (WebCore::serializeIPv6):
        (WebCore::URLParser::parsePort):
        (WebCore::URLParser::parseHost):
        (WebCore::serializeURLEncodedForm):
        (WebCore::URLParser::serialize):
        (WebCore::bufferView): Deleted.
        * platform/URLParser.h:

2016-09-16  Dave Hyatt  <hyatt@apple.com>

        [CSS Parser] Get CSSPropertyParserHelpers.cpp compiling
        https://bugs.webkit.org/show_bug.cgi?id=162078

        Reviewed by Dean Jackson.

        * css/CSSCalculationValue.cpp:
        (WebCore::hasDoubleValue):
        (WebCore::checkDepthAndIndex):
        (WebCore::CSSCalcExpressionNodeParser::parseCalc):
        (WebCore::CSSCalcExpressionNodeParser::operatorValue):
        (WebCore::CSSCalcExpressionNodeParser::parseValue):
        (WebCore::CSSCalcExpressionNodeParser::parseValueTerm):
        (WebCore::CSSCalcExpressionNodeParser::parseValueMultiplicativeExpression):
        (WebCore::CSSCalcExpressionNodeParser::parseAdditiveValueExpression):
        (WebCore::CSSCalcExpressionNodeParser::parseValueExpression):
        (WebCore::checkDepthAndIndexDeprecated):
        (WebCore::CSSCalcExpressionNodeParserDeprecated::parseValueTerm):
        (WebCore::CSSCalcExpressionNodeParserDeprecated::parseValueMultiplicativeExpression):
        (WebCore::CSSCalcExpressionNodeParserDeprecated::parseAdditiveValueExpression):
        (WebCore::CSSCalcValue::create):
        * css/CSSCalculationValue.h:
        (WebCore::CSSCalcValue::createCalculationValue):
        (WebCore::CSSCalcValue::setPermittedValueRange):
        Switch off the permitted calc value range enum, since we can just use the identical ValueRange enum.
        Deprecate the CSSParserValueList-based parser by renaming it, and add a new parser that operates
        on tokens.

        * css/CSSPrimitiveValue.cpp:
        (WebCore::isValidCSSUnitTypeForDoubleConversion):
        (WebCore::isStringType):
        (WebCore::CSSPrimitiveValue::cleanup):
        (WebCore::CSSPrimitiveValue::computeNonCalcLengthDouble):
        (WebCore::CSSPrimitiveValue::formatNumberForCustomCSSText):
        (WebCore::CSSPrimitiveValue::cloneForCSSOM):
        (WebCore::CSSPrimitiveValue::equals):
        (WebCore::CSSPrimitiveValue::buildParserValue):
        * css/CSSPrimitiveValue.h:
        Add support for CSS_QUIRKY_EMS as a unit type. This will let us eliminate the extra m_isQuirkValue boolean
        eventually.

        * css/parser/CSSParser.cpp:
        (WebCore::CSSParser::validateCalculationUnit):
        (WebCore::CSSParser::parseCalculation):
        * css/parser/CSSParser.h:
        Switch to ValueRange.

        * css/parser/CSSParserIdioms.cpp:
        (WebCore::completeURL):
        * css/parser/CSSParserIdioms.h:
        Make the URL completion function from CSSParser.cpp available to all.

        * css/parser/CSSParserMode.h:
        (WebCore::isUnitLessValueParsingEnabledForMode):
        (WebCore::isUnitLessLengthParsingEnabledForMode): Deleted.
        Rename this to value, since for now we're not supporting Blink's UserUnits. This means we need to support
        unitless parsing for times and angles in addition to lengths, making the name of the function inappropriate.

        * css/parser/CSSParserToken.cpp:
        (WebCore::cssPrimitiveValueUnitFromTrie):
        Turn quirky ems support back on.

        * css/parser/CSSParserValues.cpp:
        (WebCore::CSSParserValue::createCSSValue):
        Support quirky ems.

        * css/parser/CSSPropertyParserHelpers.cpp:
        (WebCore::CSSPropertyParserHelpers::CalcParser::consumeValue):
        (WebCore::CSSPropertyParserHelpers::CalcParser::consumeNumber):
        (WebCore::CSSPropertyParserHelpers::consumeInteger):
        (WebCore::CSSPropertyParserHelpers::consumePositiveInteger):
        (WebCore::CSSPropertyParserHelpers::consumeNumber):
        (WebCore::CSSPropertyParserHelpers::shouldAcceptUnitlessValue):
        (WebCore::CSSPropertyParserHelpers::consumeLength):
        (WebCore::CSSPropertyParserHelpers::consumePercent):
        (WebCore::CSSPropertyParserHelpers::canConsumeCalcValue):
        (WebCore::CSSPropertyParserHelpers::consumeLengthOrPercent):
        (WebCore::CSSPropertyParserHelpers::consumeAngle):
        (WebCore::CSSPropertyParserHelpers::consumeTime):
        (WebCore::CSSPropertyParserHelpers::consumeIdent):
        (WebCore::CSSPropertyParserHelpers::consumeIdentRange):
        (WebCore::CSSPropertyParserHelpers::consumeCustomIdent):
        (WebCore::CSSPropertyParserHelpers::consumeString):
        (WebCore::CSSPropertyParserHelpers::consumeUrl):
        (WebCore::CSSPropertyParserHelpers::parseRGBParameters):
        (WebCore::CSSPropertyParserHelpers::parseHSLParameters):
        (WebCore::CSSPropertyParserHelpers::consumeColor):
        (WebCore::CSSPropertyParserHelpers::consumePositionComponent):
        (WebCore::CSSPropertyParserHelpers::positionFromOneValue):
        (WebCore::CSSPropertyParserHelpers::positionFromTwoValues):
        (WebCore::CSSPropertyParserHelpers::createPrimitiveValuePair):
        (WebCore::CSSPropertyParserHelpers::positionFromThreeOrFourValues):
        (WebCore::CSSPropertyParserHelpers::consumePosition):
        (WebCore::CSSPropertyParserHelpers::consumeOneOrTwoValuedPosition):
        (WebCore::CSSPropertyParserHelpers::consumeDeprecatedGradientPoint):
        (WebCore::CSSPropertyParserHelpers::consumeDeprecatedGradientStopColor):
        (WebCore::CSSPropertyParserHelpers::consumeDeprecatedGradientColorStop):
        (WebCore::CSSPropertyParserHelpers::consumeDeprecatedGradient):
        (WebCore::CSSPropertyParserHelpers::consumeDeprecatedRadialGradient):
        (WebCore::CSSPropertyParserHelpers::consumeRadialGradient):
        (WebCore::CSSPropertyParserHelpers::consumeLinearGradient):
        (WebCore::CSSPropertyParserHelpers::consumeImageOrNone):
        (WebCore::CSSPropertyParserHelpers::consumeCrossFade):
        (WebCore::CSSPropertyParserHelpers::consumeGeneratedImage):
        (WebCore::CSSPropertyParserHelpers::consumeImageSet):
        (WebCore::CSSPropertyParserHelpers::consumeImage):
        * css/parser/CSSPropertyParserHelpers.h:
        (WebCore::CSSPropertyParserHelpers::isCSSWideKeyword):
        Lots of changes here. The most important is switching over to RefPtrs and Refs where appropriate, with the
        requisite WTFMoves. Unit types also have to be converted back to our values, and unitless parsing has
        to work with consumeTime and consumeAngle.

        * platform/CalculationValue.cpp:
        (WebCore::CalculationValue::create):
        * platform/CalculationValue.h:
        (WebCore::CalculationValue::CalculationValue):
        Use ValueRange.

        * platform/graphics/Color.cpp:
        (WebCore::Color::parseHexColor):
        (WebCore::Color::Color):
        * platform/graphics/Color.h:
        Add a StringView-based parseHexColor function.

        * rendering/style/BasicShapes.cpp:
        (WebCore::BasicShapeCenterCoordinate::updateComputedLength):
        Use ValueRange

2016-09-16  Jer Noble  <jer.noble@apple.com>

        [media-source] Fix imported/w3c/web-platform-tests/media-source/mediasource-config-change-mp4-av-audio-bitrate.html
        https://bugs.webkit.org/show_bug.cgi?id=162052

        Reviewed by Brent Fulgham.

        Fixes tests: imported/w3c/web-platform-tests/media-source/mediasource-config-change-mp4-av-audio-bitrate.html
                     imported/w3c/web-platform-tests/media-source/mediasource-config-change-mp4-av-video-bitrate.html

        The above tests would throw an assertion while trying to invert a range with an invalid end time. Check the
        validity of trackBuffer.lastEnqueuedPresentationTime before comparing it and assigning it to a range.

        * Modules/mediasource/SourceBuffer.cpp:
        (WebCore::SourceBuffer::removeCodedFrames):

2016-09-16  Alex Christensen  <achristensen@webkit.org>

        URLParser should percent encode the user and password according to spec
        https://bugs.webkit.org/show_bug.cgi?id=162049

        Reviewed by Tim Horton.

        Covered by new API tests based on the web platform tests.

        * platform/URLParser.cpp:
        (WebCore::URLParser::parseAuthority):

2016-09-16  Alex Christensen  <achristensen@webkit.org>

        Fix more edge cases in URLParser
        https://bugs.webkit.org/show_bug.cgi?id=162051

        Reviewed by Tim Horton.

        Added new API tests.

        * platform/URLParser.cpp:
        (WebCore::URLParser::parse):
        Some edge case handling was wrong. Also, some of the terminal states are not possible
        to reach because we transition to those states without incrementing the iterator.

2016-09-16  Alex Christensen  <achristensen@webkit.org>

        Fix Windows clean build after r205929

        * DerivedSources.cpp:

2016-09-16  Jer Noble  <jer.noble@apple.com>

        [media-source] Fix imported/w3c/web-platform-tests/media-source/mediasource-timestamp-offset.html
        https://bugs.webkit.org/show_bug.cgi?id=162038

        Reviewed by Eric Carlson.

        The timestampOffset property is no longer specified as an 'unrestricted' double.

        * Modules/mediasource/SourceBuffer.idl:

2016-09-16  Per Arne Vollan  <pvollan@apple.com>

        [Win] Compile fix.
        https://bugs.webkit.org/show_bug.cgi?id=162059

        Reviewed by Alex Christensen.

        If an include file exists in two places in the include paths, we can end up including the file twice,
        since #pragma once will not protect us against this.

        * PlatformWin.cmake: Put WebCore forwarding folder first in include list.

2016-09-16  Chris Dumez  <cdumez@apple.com>

        Cloning a textarea does not clone the textarea's value
        https://bugs.webkit.org/show_bug.cgi?id=156637

        Reviewed by Ryosuke Niwa.

        Update WebKit so that cloning a textarea element also clones its value.
        This matches the HTML specification after:
        - https://github.com/whatwg/html/pull/1784

        The new behavior also matches Chrome and Edge.

        Test: imported/w3c/web-platform-tests/html/semantics/forms/the-textarea-element/cloning-steps.html

        * html/HTMLInputElement.cpp:
        (WebCore::HTMLInputElement::copyNonAttributePropertiesFromElement):
        * html/HTMLTextAreaElement.cpp:
        (WebCore::HTMLTextAreaElement::copyNonAttributePropertiesFromElement):
        * html/HTMLTextAreaElement.h:

2016-09-16  Jer Noble  <jer.noble@apple.com>

        [media-source] Only fire 'resize' events when new sized frame is displayed, not parsed.
        https://bugs.webkit.org/show_bug.cgi?id=162039

        Reviewed by Eric Carlson.

        Fixes tests: imported/w3c/web-platform-tests/media-source/mediasource-config-change-mp4-av-framesize.html
                     imported/w3c/web-platform-tests/media-source/mediasource-config-change-mp4-v-framesize.html

        Currently, the SourceBufferPrivateAVFObjC will signal a size change as soon as the sample is
        parsed during appendData(). This is incorrect, as the intrinsic size of the video element
        should be based on when the sample is displayed, and it causes some W3C test cases to fail.
        Set a boundary time observer on the player's synchronizer at each sample's presentation time
        where that sample signals a change in intrinsic size. Flush those observers whenever the
        samples are flushed un-displayed (typically, during a seek). Because the observer callback
        may have already been issued (but not executed) at a flush, use a separate weak pointer
        factory, and invalidate all outstanding size change observer weak pointers when flushing.

        * Modules/mediasource/SourceBuffer.cpp:
        (WebCore::SourceBuffer::reenqueueMediaForTime): When re-enqueing, enqueue the next decodable
            sample, even if it doesn't include the current time. This handles cases where the current
            time is 0, and the first video sample starts at 0.033.
        * platform/graphics/avfoundation/objc/MediaPlayerPrivateMediaSourceAVFObjC.h:
        * platform/graphics/avfoundation/objc/MediaPlayerPrivateMediaSourceAVFObjC.mm:
        (WebCore::MediaPlayerPrivateMediaSourceAVFObjC::MediaPlayerPrivateMediaSourceAVFObjC):
        (WebCore::MediaPlayerPrivateMediaSourceAVFObjC::~MediaPlayerPrivateMediaSourceAVFObjC):
        (WebCore::MediaPlayerPrivateMediaSourceAVFObjC::naturalSize):
        (WebCore::MediaPlayerPrivateMediaSourceAVFObjC::sizeWillChangeAtTime):
        (WebCore::MediaPlayerPrivateMediaSourceAVFObjC::flushPendingSizeChanges):
        (WebCore::MediaPlayerPrivateMediaSourceAVFObjC::sizeChanged): Deleted.
        * platform/graphics/avfoundation/objc/SourceBufferPrivateAVFObjC.h:
        * platform/graphics/avfoundation/objc/SourceBufferPrivateAVFObjC.mm:
        (WebCore::SourceBufferPrivateAVFObjC::processCodedFrame):
        (WebCore::SourceBufferPrivateAVFObjC::flushAndEnqueueNonDisplayingSamples):
        (WebCore::SourceBufferPrivateAVFObjC::enqueueSample):

2016-09-16  Alex Christensen  <achristensen@webkit.org>

        Fix Windows clean build after r205929

        * DerivedSources.cpp:

2016-09-16  Jer Noble  <jer.noble@apple.com>

        [media-source] ASAN crash running imported/w3c/web-platform-tests/media-source/mediasource-remove.html
        https://bugs.webkit.org/show_bug.cgi?id=162050

        Reviewed by Brent Fulgham.

        SampleMap::removeSample() was accessing the passed-in sample after removing it from its own storage. If
        the SampleMap held the last reference to the sample, it would end up acessing freed memory. Fix the
        post-removal access, but also ensure that the caller, SourceBuffer::removeCodedFrames(), retains the
        sample it passes into removeSample().

        * Modules/mediasource/SampleMap.cpp:
        (WebCore::SampleMap::removeSample):
        * Modules/mediasource/SourceBuffer.cpp:
        (WebCore::SourceBuffer::removeCodedFrames):

2016-09-16  Javier Fernandez  <jfernandez@igalia.com>

        [GTK] Unreviewed build fix after r206007.
        https://bugs.webkit.org/show_bug.cgi?id=162058

        * css/parser/CSSParserFastPaths.cpp:
        (WebCore::CSSParserFastPaths::isValidKeywordPropertyAndValue):

2016-09-16  Carlos Garcia Campos  <cgarcia@igalia.com>

        [TextureMapper] Scrolling through 01.org/dleyna crashes WebKitWebProcess
        https://bugs.webkit.org/show_bug.cgi?id=162020

        Reviewed by Žan Doberšek.

        The problem is that we are trying to clone a ReferenceFilterOperation, which is not expected to be cloned, from
        FilterAnimationValue copy constructor, and FilterOperations are never expected to be nullptr, so we end up
        crashing. We just need to validate the filters before setting then and before creating a TextureMapperAnimation
        for them.

        * platform/graphics/texmap/GraphicsLayerTextureMapper.cpp:
        (WebCore::GraphicsLayerTextureMapper::filtersCanBeComposited): Return false if there are reference filters or no
        filters at all. I don't know if we really support other filters, but at least we won't crash for the others.
        (WebCore::GraphicsLayerTextureMapper::addAnimation): Check if filters can be composited before creating a
        TextureMapperAnimation.
        (WebCore::GraphicsLayerTextureMapper::setFilters): Check if filters can be composited before setting them.
        * platform/graphics/texmap/GraphicsLayerTextureMapper.h:
        * platform/graphics/texmap/coordinated/CoordinatedGraphicsLayer.cpp:
        (WebCore::CoordinatedGraphicsLayer::filtersCanBeComposited): Return false if there are reference filters or no
        filters at all. I don't know if we really support other filters, but at least we won't crash for the others.
        (WebCore::CoordinatedGraphicsLayer::setFilters): Check if filters can be composited before setting them.
        (WebCore::CoordinatedGraphicsLayer::addAnimation): Check if filters can be composited before creating a
        TextureMapperAnimation.
        * platform/graphics/texmap/coordinated/CoordinatedGraphicsLayer.h:

2016-09-16  Youenn Fablet  <youenn@apple.com>

        CachedFont do not need to be updated according Origin/Fetch mode
        https://bugs.webkit.org/show_bug.cgi?id=161909

        Reviewed by Sam Weinig.

        No change of behavior.

        * loader/cache/CachedFont.h: Ensuring CachedFont is not reused.
        * loader/cache/CachedResourceLoader.cpp:
        (WebCore::CachedResourceLoader::updateCachedResourceWithCurrentRequest): Doing direct reuse for CachedFont as WebKit is ignoring CORS for all fonts related stuff.

2016-09-16  Youenn Fablet  <youenn@apple.com>

        CachedResource should efficiently construct its ResourceRequest
        https://bugs.webkit.org/show_bug.cgi?id=161609

        Reviewed by Sam Weinig.

        Covered by existing tests.

        Making CachedResourceLoader take a CachedResourceRequest&& when being asked to load resources.
        Making CachedResource et al take a CachedResourceRequest&& as constructor parameter.

        CachedResource now sets its options at construction time instead of load time.
        This may change some specific behaviors, for instance when loading manually images.

        Made some refactoring when both the resource and request are needed, for ResourceTimingInformation.
        Made local copies of some CachedResourceRequest fields so that we do not need it after being WTFMoved.
        Some of these properties may be put outside CachedResourceRequest in a later refactoring step.

        * css/CSSFontFaceSrcValue.cpp:
        (WebCore::CSSFontFaceSrcValue::cachedFont):
        * css/CSSImageSetValue.cpp:
        (WebCore::CSSImageSetValue::loadBestFitImage):
        * css/CSSImageValue.cpp:
        (WebCore::CSSImageValue::loadImage):
        * css/StyleRuleImport.cpp:
        (WebCore::StyleRuleImport::requestStyleSheet):
        * dom/ProcessingInstruction.cpp:
        (WebCore::ProcessingInstruction::checkStyleSheet):
        * dom/ScriptElement.cpp:
        (WebCore::ScriptElement::requestScriptWithCache):
        * html/HTMLLinkElement.cpp:
        (WebCore::HTMLLinkElement::process):
        * html/parser/HTMLResourcePreloader.cpp:
        (WebCore::HTMLResourcePreloader::preload):
        * loader/CrossOriginPreflightChecker.cpp:
        (WebCore::CrossOriginPreflightChecker::startPreflight):
        * loader/DocumentLoader.cpp:
        (WebCore::DocumentLoader::startLoadingMainResource):
        * loader/DocumentThreadableLoader.cpp:
        (WebCore::DocumentThreadableLoader::loadRequest):
        * loader/ImageLoader.cpp:
        (WebCore::ImageLoader::updateFromElement):
        * loader/LinkLoader.cpp:
        (WebCore::LinkLoader::preloadIfNeeded):
        (WebCore::LinkLoader::loadLink):
        * loader/MediaResourceLoader.cpp:
        (WebCore::MediaResourceLoader::requestResource):
        * loader/ResourceTimingInformation.cpp:
        (WebCore::ResourceTimingInformation::storeResourceTimingInitiatorInformation):
        * loader/ResourceTimingInformation.h:
        * loader/TextTrackLoader.cpp:
        (WebCore::TextTrackLoader::load):
        * loader/cache/CachedCSSStyleSheet.cpp:
        (WebCore::CachedCSSStyleSheet::CachedCSSStyleSheet):
        * loader/cache/CachedCSSStyleSheet.h:
        * loader/cache/CachedFont.cpp:
        (WebCore::CachedFont::CachedFont):
        (WebCore::CachedFont::load):
        (WebCore::CachedFont::beginLoadIfNeeded):
        * loader/cache/CachedFont.h:
        * loader/cache/CachedImage.cpp:
        (WebCore::CachedImage::CachedImage):
        (WebCore::CachedImage::load):
        * loader/cache/CachedImage.h:
        * loader/cache/CachedRawResource.cpp:
        (WebCore::CachedRawResource::CachedRawResource):
        * loader/cache/CachedRawResource.h:
        * loader/cache/CachedResource.cpp:
        (WebCore::CachedResource::CachedResource):
        (WebCore::CachedResource::load):
        (WebCore::CachedResource::loadFrom):
        * loader/cache/CachedResource.h:
        (WebCore::CachedResource::resourceRequest):
        * loader/cache/CachedResourceLoader.cpp:
        (WebCore::createResource):
        (WebCore::CachedResourceLoader::requestImage):
        (WebCore::CachedResourceLoader::requestFont):
        (WebCore::CachedResourceLoader::requestTextTrack):
        (WebCore::CachedResourceLoader::requestCSSStyleSheet):
        (WebCore::CachedResourceLoader::requestUserCSSStyleSheet):
        (WebCore::CachedResourceLoader::requestScript):
        (WebCore::CachedResourceLoader::requestXSLStyleSheet):
        (WebCore::CachedResourceLoader::requestSVGDocument):
        (WebCore::CachedResourceLoader::requestLinkResource):
        (WebCore::CachedResourceLoader::requestMedia):
        (WebCore::CachedResourceLoader::requestRawResource):
        (WebCore::CachedResourceLoader::requestMainResource):
        (WebCore::CachedResourceLoader::shouldUpdateCachedResourceWithCurrentRequest):
        (WebCore::CachedResourceLoader::updateCachedResourceWithCurrentRequest):
        (WebCore::CachedResourceLoader::requestResource):
        (WebCore::CachedResourceLoader::revalidateResource):
        (WebCore::CachedResourceLoader::loadResource):
        (WebCore::CachedResourceLoader::reloadImagesIfNotDeferred):
        (WebCore::CachedResourceLoader::preload):
        (WebCore::CachedResourceLoader::checkForPendingPreloads):
        (WebCore::CachedResourceLoader::requestPreload):
        * loader/cache/CachedResourceLoader.h:
        * loader/cache/CachedSVGDocument.cpp:
        (WebCore::CachedSVGDocument::CachedSVGDocument):
        * loader/cache/CachedSVGDocument.h:
        * loader/cache/CachedSVGDocumentReference.cpp:
        (WebCore::CachedSVGDocumentReference::load):
        * loader/cache/CachedSVGFont.cpp:
        (WebCore::CachedSVGFont::CachedSVGFont):
        * loader/cache/CachedSVGFont.h:
        * loader/cache/CachedScript.cpp:
        (WebCore::CachedScript::CachedScript):
        * loader/cache/CachedScript.h:
        * loader/cache/CachedTextTrack.cpp:
        (WebCore::CachedTextTrack::CachedTextTrack):
        * loader/cache/CachedTextTrack.h:
        * loader/cache/CachedXSLStyleSheet.cpp:
        (WebCore::CachedXSLStyleSheet::CachedXSLStyleSheet):
        (WebCore::CachedXSLStyleSheet::didAddClient):
        * loader/cache/CachedXSLStyleSheet.h:
        * loader/icon/IconLoader.cpp:
        (WebCore::IconLoader::startLoading):
        * platform/graphics/avfoundation/cf/WebCoreAVCFResourceLoader.cpp:
        (WebCore::WebCoreAVCFResourceLoader::startLoading):
        * platform/graphics/avfoundation/objc/WebCoreAVFResourceLoader.mm:
        (WebCore::WebCoreAVFResourceLoader::startLoading):
        * svg/SVGFEImageElement.cpp:
        (WebCore::SVGFEImageElement::requestImageResource):
        * svg/SVGFontFaceUriElement.cpp:
        (WebCore::SVGFontFaceUriElement::loadFont):
        * svg/SVGUseElement.cpp:
        (WebCore::SVGUseElement::updateExternalDocument):
        * xml/XSLImportRule.cpp:
        (WebCore::XSLImportRule::loadSheet):

2016-09-16  Youenn Fablet  <youenn@apple.com>

        [Fetch API] Headers should be combine with ',' and not ', '
        https://bugs.webkit.org/show_bug.cgi?id=161736

        Reviewed by Sam Weinig.

        Covered by updated tests and http/tests/xmlhttprequest/check-combining-headers.html.

        * loader/CrossOriginAccessControl.cpp:
        (WebCore::createAccessControlPreflightRequest): Combining with ',' for Access-Control-Request-Headers
        * platform/network/HTTPHeaderMap.cpp:
        (HTTPHeaderMap::add): Combining with ','

2016-09-16  Youenn Fablet  <youenn@apple.com>

        Custom promise-returning functions should not throw if callee has not the expected type
        https://bugs.webkit.org/show_bug.cgi?id=162011

        Reviewed by Sam Weinig.

        Covered by added test.

        Updating code generator to handle this case.
        Cleaning related getUserMedia implementation.

        * CMakeLists.txt: Removing Modules/mediastream/MediaDevices.js.
        * DerivedSources.make: Removing Modules/mediastream/MediaDevices.js.
        * Modules/mediastream/MediaDevices.idl: Cleaning IDL definition
        * Modules/mediastream/MediaDevices.js: Removing error throwing and so removing file.
        * Modules/mediastream/NavigatorUserMedia.js: getUsermMediaFromJS to getUserMedia.
        * WebCore.xcodeproj/project.pbxproj: Removing Modules/mediastream/MediaDevices.js.
        * bindings/js/JSDOMPromise.cpp:
        (WebCore::createRejectedPromiseWithTypeError): Helper routine.
        * bindings/js/JSDOMPromise.h:
        * bindings/js/WebCoreBuiltinNames.h: getUsermMediaFromJS to getUserMedia.
        * bindings/scripts/CodeGeneratorJS.pm:
        (GenerateImplementation): Rejecting promise in case of failing castedThis, but only for custom functions since
        they are handled differently for non custom methods.
        (GenerateFunctionCastedThis):
        * bindings/scripts/test/JS/JSTestObj.cpp:
        * bindings/scripts/test/JS/JSTestObj.h:
        * bindings/scripts/test/TestObj.idl: Adding custom promise test.

2016-09-16  Youenn Fablet  <youenn@apple.com>

        Link loader should use FetchOptions::mode according its crossOrigin attribute
        https://bugs.webkit.org/show_bug.cgi?id=161859

        Reviewed by Sam Weinig.

        Tests: http/tests/security/cached-cross-origin-preloaded-css-stylesheet.html
               http/tests/security/cached-cross-origin-preloading-css-stylesheet.html

        Setting fetch mode according crossorigin attribute for link preload elements.
        This allows calling onerror callback for CORS failures, which was not the case before the patch.

        Making cached CSS stylesheet reusable accross origins and fetch modes.

        * loader/LinkLoader.cpp:
        (WebCore::LinkLoader::preloadIfNeeded): Using CachedResourceRequest::setAsPotentiallyCrossOrigin to set fetch mode.
        * loader/cache/CachedCSSStyleSheet.cpp:
        (WebCore::CachedCSSStyleSheet::sheetText): clean-up.
        (WebCore::CachedCSSStyleSheet::setBodyDataFrom): Implementing data init for cached css stylesheets.
        * loader/cache/CachedCSSStyleSheet.h:
        * loader/cache/CachedResourceLoader.cpp:
        (WebCore::CachedResourceLoader::updateCachedResourceWithCurrentRequest): Activating update support for stylesheets.
        (WebCore::CachedResourceLoader::requestResource): Fixing for matching cached resources that need being reloaded due to different origin/fetch mode.

2016-09-16  Youenn Fablet  <youenn@apple.com>

        [Fetch API] Referrer and Origin header should not be considered as safe request headers
        https://bugs.webkit.org/show_bug.cgi?id=161902

        Reviewed by Sam Weinig.

        Test: http/tests/fetch/fetch-cors-with-referrer.html and updated WPT tests.

        Removing Origin and Referrer from safe request headers.
        Making referrer header setting after preflight for fetch API code path.

        Ensuring that no ThreadableLoader client sets Origin or Referrer headers of the ResourceRequest, as they should use the proper mechanisms for that.

        Handling no-referrer referrer special value by setting the referrer-policy to NoReferrer in FetchLoader.

        * Modules/fetch/FetchLoader.cpp:
        (WebCore::FetchLoader::start): Computing referrer value and handling special "client"and "no-referrer" cases.
        Passing the value directly to ThreadableLoader.
        * Modules/fetch/FetchRequest.cpp:
        (WebCore::FetchRequest::internalRequest): Removing setting of ResourceRequest referrer header.
        (WebCore::FetchRequest::clone): Removing obsolete FIXME.
        * Modules/fetch/FetchRequest.h:
        * loader/CrossOriginAccessControl.cpp:
        (WebCore::isOnAccessControlSimpleRequestHeaderWhitelist): Removing Origin and Referrer headers.
        * loader/DocumentThreadableLoader.cpp:
        (WebCore::DocumentThreadableLoader::create): Updated to take a referrer as parameter.
        (WebCore::DocumentThreadableLoader::DocumentThreadableLoader): Ditto.
        * loader/DocumentThreadableLoader.h: Ditto.
        * loader/ThreadableLoader.cpp: Ditto.
        (WebCore::ThreadableLoader::create): Ditto.
        * loader/ThreadableLoader.h: Ditto.
        * loader/WorkerThreadableLoader.cpp: Ditto.
        (WebCore::WorkerThreadableLoader::WorkerThreadableLoader): Ditto.
        (WebCore::WorkerThreadableLoader::loadResourceSynchronously): Ditto.
        * loader/WorkerThreadableLoader.h: Ditto.
        (WebCore::WorkerThreadableLoader::create): Ditto.
        * platform/network/ResourceRequestBase.cpp:
        (WebCore::ResourceRequestBase::hasHTTPReferrer): Added to enable asserting that no threadable loader client sets the referrer in the request.
        * platform/network/ResourceRequestBase.h:

2016-09-15  Dave Hyatt  <hyatt@apple.com>

        [CSS Parser] Get CSSParserFastPaths.cpp compiling
        https://bugs.webkit.org/show_bug.cgi?id=162033

        Reviewed by Dean Jackson.

        * CMakeLists.txt:
        * WebCore.xcodeproj/project.pbxproj:
        Add new StyleColor.h/.cpp files to the projecty

        * css/CSSFunctionValue.cpp:
        (WebCore::CSSFunctionValue::CSSFunctionValue):
        (WebCore::CSSFunctionValue::customCSSText):
        (WebCore::CSSFunctionValue::append):
        (WebCore::CSSFunctionValue::buildParserValueSubstitutingVariables):
        * css/CSSFunctionValue.h:
        Tweak CSSFunctionValue so that the name can be represented as a keyword ID instead of a String. Eventually we also
        want to make CSSFunctionValue subclass CSSValueList rather than referencing a separate CSSValueList as a member. For now
        I left that alone though in order to not change too much in the old parser.

        * css/CSSProperty.cpp:
        (WebCore::CSSProperty::isDescriptorOnly):
        Whether or not a property is only a descriptor, e.g., used in viewport and font face stuff.

        * css/CSSProperty.h:
        * css/CSSValueKeywords.in:
        Added new keywords for functions that can be used as values. The new parser uses keywords to represent function names.

        * css/StyleColor.cpp: Added.
        (WebCore::StyleColor::colorFromKeyword):
        (WebCore::StyleColor::isColorKeyword):
        (WebCore::StyleColor::isSystemColor):
        * css/StyleColor.h: Added.
        (WebCore::StyleColor::StyleColor):
        (WebCore::StyleColor::currentColor):
        (WebCore::StyleColor::isCurrentColor):
        (WebCore::StyleColor::getColor):
        (WebCore::StyleColor::resolve):
        (WebCore::operator==):
        (WebCore::operator!=):
        New color helper that contains code for checking and looking up colors. This code is similar to some code we already
        had in the old CSSParser.cpp file, but this way it can be used outside the parser and/or in different files.

        * css/parser/CSSParserFastPaths.cpp:
        (WebCore::parseSimpleLengthValue):
        (WebCore::isColorPropertyID):
        (WebCore::parseColorIntOrPercentage):
        (WebCore::fastParseColorInternal):
        (WebCore::CSSParserFastPaths::parseColor):
        (WebCore::CSSParserFastPaths::isValidKeywordPropertyAndValue):
        (WebCore::isUniversalKeyword):
        (WebCore::parseKeywordValue):
        (WebCore::parseTransformTranslateArguments):
        (WebCore::parseTransformNumberArguments):
        (WebCore::parseSimpleTransformValue):
        (WebCore::transformCanLikelyUseFastPath):
        (WebCore::parseSimpleTransformList):
        (WebCore::parseSimpleTransform):
        (WebCore::CSSParserFastPaths::maybeParseValue):
        * css/parser/CSSParserFastPaths.h:
        Get everything compiling in this file. Key changes included reverting to our old unit names, making CSSFunctionValue compatible,
        adding support for StyleColor, adding support for mode checking of keywords, and fixing up the memory management model so that
        RefPtrs are used on returns from parsing functions.

        * css/parser/CSSParserIdioms.cpp:
        (WebCore::isValueAllowedInMode):
        * css/parser/CSSParserIdioms.h:
        New helper function for restricting keywords to certain modes only. The -webkit-text color quirk has been moved to this function.

2016-09-15  Brady Eidson  <beidson@apple.com>

        WKWebView.hasOnlySecureContent always returns "YES" after going back to a CachedPage (even if it has http resources).
        <rdar://problem/27681261> and https://bugs.webkit.org/show_bug.cgi?id=162043

        Reviewed by Brent Fulgham. 

        No new tests (Not possible with current testing infrastructure).

        This adds the infrastructure for WebCore to track whether or not a CachedFrame had insecure content at the time
        it was cached, and then to report that back to the client when a CachedPage is restored.

        Since "has insecure content" is currently only tracked in the WK2 UI process, that is the only client of this code.

        * history/CachedFrame.cpp:
        (WebCore::CachedFrame::setHasInsecureContent):
        * history/CachedFrame.h:
        (WebCore::CachedFrame::hasInsecureContent):

        * loader/EmptyClients.h:

        * loader/FrameLoader.cpp:
        (WebCore::FrameLoader::receivedFirstData):
        (WebCore::FrameLoader::commitProvisionalLoad):
        (WebCore::FrameLoader::dispatchDidCommitLoad):
        * loader/FrameLoader.h:

        * loader/FrameLoaderClient.h:

        * loader/FrameLoaderTypes.h:

2016-09-13  Jer Noble  <jer.noble@apple.com>

        [media-source] web-platform-test/media-source/mediasource-remove.html test failing
        https://bugs.webkit.org/show_bug.cgi?id=161950

        Reviewed by Eric Carlson.

        Fixes test: web-platform-test/media-source/mediasource-remove.html

        The mediasource-remove.html test was failing in a number of ways:

        - Tests with invalid start or end times were not throwing the correct exception
          code, or not throwing exception codes at all

        - Tests were showing an incorrect start buffered range at the beginning of each test.

        - Tests which removed samples were not getting the expected buffered values at the end
          each test.

        For the exception failures, update the implementation of abort() and remove() to throw
        the correct exceptions at the correct times.

        For the incorrect initial buffered range, update our buffered calculations to store
        individual PlatformTimeRanges on each TrackBuffer, and coalesce them into a single
        value when an append operation completes, a remove operation completes, or when the
        MediaSource's ready state changes.

        For the incorrect buffered ranges after removal, this is caused because the "samples"
        that make up an audio track are actually a collection of a large number of individual
        samples.  So when we are asked to remove media data in a given range, break these audio
        meta-samples into two pieces at the removal points. This allows the removal algorithm
        to operate on a individual audio sample basis. (We should look into using this technique
        when audio samples are evicted during an append operation.) This requires adding some
        methods to MediaSample and it's concrete subclasses to "divide" a sample into two at
        a given presentation time.

        Fixing these behaviors, however, breaks the media-source-end-of-stream-buffered.html
        test, which expects the buffered range for the entire element to expand to the maximum
        buffered time of any of the element's MediaSource's active sourceBuffers. To fix this,
        update the MediaSource's monitorSourceBuffer() implementation to match the current
        specification. The new spec no longer queries the individual SourceBuffers, but rather
        queries the already coalesced buffered ranges. So move the helper methods hasCurrentTime()
        hasFutureTime(), and canPlayThrough() up into MediaSource from SourceBuffer. Also, update
        seekToTime, since it has the same problem as monitorSourceBuffer().

        However, this breaks the media-source-monitor-source-buffers.html test, which appends
        10s of movie data instantaneously, then never appends again. The SourceBuffer's
        monitorBufferingRate() method only re-evaluates the rate after data has been appended,
        so the SourceBuffer thinks it's buffered data at a prodigious rate forever. Instead,
        allow the SourceBuffer to continuously re-evalute it's buffering rate by modifying the
        exponential moving average so that the co-efficient scales based on how frequently the
        method is called. Call the method more often, and the moving average changes less quickly,
        and it means that when media is stalled out at the end of a buffered range, the readyState
        of a video element will eventually drop to HAVE_CURRENT_DATA when the average buffering
        rate falls below the level where playback would continue uninterrupted.

        * Modules/mediasource/MediaSource.cpp:
        (WebCore::MediaSource::seekToTime):
        (WebCore::MediaSource::currentTimeFudgeFactor):
        (WebCore::MediaSource::hasBufferedTime):
        (WebCore::MediaSource::hasCurrentTime):
        (WebCore::MediaSource::hasFutureTime):
        (WebCore::MediaSource::monitorSourceBuffers):
        * Modules/mediasource/MediaSource.h:
        * Modules/mediasource/SourceBuffer.cpp:
        (WebCore::SourceBuffer::abort):
        (WebCore::SourceBuffer::remove):
        (WebCore::SourceBuffer::abortIfUpdating):
        (WebCore::SourceBuffer::removeCodedFrames):
        (WebCore::SourceBuffer::sourceBufferPrivateDidReceiveSample):
        (WebCore::SourceBuffer::updateBufferedFromTrackBuffers):
        (WebCore::SourceBuffer::canPlayThroughRange):
        (WebCore::SourceBuffer::monitorBufferingRate):
        (WebCore::currentTimeFudgeFactor): Deleted.
        (WebCore::SourceBuffer::hasCurrentTime): Deleted.
        (WebCore::SourceBuffer::hasFutureTime): Deleted.
        (WebCore::SourceBuffer::canPlayThrough): Deleted.
        * platform/MediaSample.h:
        * platform/cf/CoreMediaSoftLink.cpp:
        * platform/cf/CoreMediaSoftLink.h:
        * platform/graphics/avfoundation/MediaSampleAVFObjC.h:
        * platform/graphics/avfoundation/objc/MediaSampleAVFObjC.mm:
        (WebCore::MediaSampleAVFObjC::isDivisable):
        (WebCore::MediaSampleAVFObjC::divide):
        * platform/mock/mediasource/MockSourceBufferPrivate.cpp:

2016-09-15  Zalan Bujtas  <zalan@apple.com>

        ASSERTION FAILED: willBeComposited == needsToBeComposited(layer) in WebCore::RenderLayerCompositor::computeCompositingRequirements
        https://bugs.webkit.org/show_bug.cgi?id=151097
        <rdar://problem/27711678>

        Reviewed by Simon Fraser.

        This patch ensures that when will-change property triggers stacking context, we make the associated layer a non-normal flow layer.
        (This is similar to what any other stacking context-triggering CSS property does.)  

        Test: compositing/assert-on-will-change-transform-with-composited-descendant.html

        * rendering/RenderLayer.cpp:
        (WebCore::RenderLayer::calculateClipRects):

2016-09-15  Zalan Bujtas  <zalan@apple.com>

        Move RenderObject::shouldRespectImageOrientation to RenderElement.
        https://bugs.webkit.org/show_bug.cgi?id=162028

        Reviewed by Antti Koivisto.

        Tighten the type for imageSizeForRenderer/canRender so that RenderObject::shouldRespectImageOrientation could
        be moved to RenderElement.

        No change in functionality.

        * loader/cache/CachedImage.cpp:
        (WebCore::CachedImage::imageSizeForRenderer):
        * loader/cache/CachedImage.h:
        * rendering/RenderElement.cpp:
        (WebCore::RenderElement::shouldRespectImageOrientation):
        * rendering/RenderElement.h:
        * rendering/RenderObject.cpp:
        (WebCore::RenderObject::shouldRespectImageOrientation): Deleted.
        * rendering/RenderObject.h:
        * rendering/style/StyleCachedImage.cpp:
        (WebCore::StyleCachedImage::canRender):
        * rendering/style/StyleCachedImage.h:
        * rendering/style/StyleImage.h:
        (WebCore::StyleImage::canRender):

2016-09-15  Anders Carlsson  <andersca@apple.com>

        Fix build.

        * platform/spi/cocoa/PassKitSPI.h:

2016-09-15  Alex Christensen  <achristensen@webkit.org>

        Use character class table in URLParser
        https://bugs.webkit.org/show_bug.cgi?id=161997

        Reviewed by Chris Dumez.

        No change in behavior except a performance improvement.
        
        Before this change, URLParser took 1.514x as long to run my URL Parsing benchmark as URL::parse
        with a standard deviation of the ration of the runtimes of 0.063 after 8 runs with each parser.
        After this change, URLParser took 1.328x as long with a standard deviation of 0.037.
        This isn't the cleanest data, but it's enough to convince me that this is a significant improvement.

        * platform/URLParser.cpp:
        (WebCore::isC0Control):
        (WebCore::isC0ControlOrSpace):
        (WebCore::isTabOrNewline):
        (WebCore::isInSimpleEncodeSet):
        (WebCore::isInDefaultEncodeSet):
        (WebCore::isInUserInfoEncodeSet):
        (WebCore::isInvalidDomainCharacter):
        (WebCore::isSlashQuestionOrHash):
        (WebCore::shouldPercentEncodeQueryByte):
        (WebCore::shouldCopyFileURL):
        (WebCore::isSingleDotPathSegment):
        (WebCore::URLParser::parse):

2016-09-15  Keith Miller  <keith_miller@apple.com>

        Pragma out undefined-var-template warnings in JSC for JSObjects that are templatized
        https://bugs.webkit.org/show_bug.cgi?id=161985

        Reviewed by Alex Christensen.

        Delete unneeded using, which broke the build on newer versions of clang.

        * bridge/objc/WebScriptObject.mm:

2016-09-15  Alex Christensen  <achristensen@webkit.org>

        URLParser: Check for invalid characters in the host
        https://bugs.webkit.org/show_bug.cgi?id=162023

        Reviewed by Tim Horton.

        Covered by new API tests.

        * platform/URLParser.cpp:
        (WebCore::URLParser::failure):
        (WebCore::URLParser::parseHost):

2016-09-15  Antti Koivisto  <antti@apple.com>

        Remove some extra spaces.

        * rendering/TextDecorationPainter.cpp:
        (WebCore::collectStylesForRenderer):

2016-09-15  Alex Christensen  <achristensen@webkit.org>

        Use efficient iterators in URLParser
        https://bugs.webkit.org/show_bug.cgi?id=162007

        Reviewed by Tim Horton.

        URLParser used to use StringView::CodePoints::Iterator, which needs to check if
        the StringView is 8-bit or 16-bit every time it does anything.
        I wrote a new CodePointIterator template which already knows whether it is iterating
        8-bit or 16-bit characters, so it does not need to do the checks each time it gets a
        code point or advances to the next code point.

        No change in behavior except a performance increase.
        Covered by existing tests.

        * platform/URLParser.cpp:
        (WebCore::CodePointIterator::CodePointIterator):
        (WebCore::CodePointIterator::operator==):
        (WebCore::CodePointIterator::operator!=):
        (WebCore::CodePointIterator::operator=):
        (WebCore::CodePointIterator::atEnd):
        (WebCore::CodePointIterator<LChar>::operator):
        (WebCore::CodePointIterator<UChar>::operator):
        (WebCore::isWindowsDriveLetter):
        (WebCore::shouldCopyFileURL):
        (WebCore::isPercentEncodedDot):
        (WebCore::isSingleDotPathSegment):
        (WebCore::isDoubleDotPathSegment):
        (WebCore::consumeSingleDotPathSegment):
        (WebCore::consumeDoubleDotPathSegment):
        (WebCore::URLParser::failure):
        (WebCore::URLParser::parse):
        (WebCore::URLParser::parseAuthority):
        (WebCore::parseIPv4Number):
        (WebCore::parseIPv4Host):
        (WebCore::parseIPv6Host):
        (WebCore::URLParser::parsePort):
        (WebCore::URLParser::parseHost):
        * platform/URLParser.h:

2016-09-14  Antti Koivisto  <antti@apple.com>

        Move text decoration style computation from RenderObject to TextDecorationPainter
        https://bugs.webkit.org/show_bug.cgi?id=162004

        Reviewed by Zalan Bujtas.

        It is mostly an implementation detail of TextDecorationPainter.

        * accessibility/ios/WebAccessibilityObjectWrapperIOS.mm:
        (AXAttributeStringSetStyle):
        * accessibility/mac/WebAccessibilityObjectWrapperMac.mm:
        (AXAttributeStringSetStyle):
        * rendering/RenderObject.cpp:
        (WebCore::decorationColor): Deleted.
        (WebCore::RenderObject::getTextDecorationColorsAndStyles): Deleted.
        * rendering/RenderObject.h:
        * rendering/TextDecorationPainter.cpp:
        (WebCore::TextDecorationPainter::TextDecorationPainter):
        (WebCore::TextDecorationPainter::paintTextDecoration):
        (WebCore::decorationColor):
        * rendering/TextDecorationPainter.h:

2016-09-15  Dave Hyatt  <hyatt@apple.com>

        [CSS Parser] Make stylesheets parse using the new parser if the setting is enabled
        https://bugs.webkit.org/show_bug.cgi?id=162018

        Reviewed by Zalan Bujtas.

        * css/parser/CSSParser.cpp:
        (WebCore::CSSParserContext::CSSParserContext):
        (WebCore::CSSParser::parseSheet):
        * css/parser/CSSParserMode.h:

2016-09-15  Fujii Hironori  <Hironori.Fujii@sony.com>

        [CMake] Refactor GENERATE_BINDINGS
        https://bugs.webkit.org/show_bug.cgi?id=161854

        Reviewed by Gyuyoung Kim.

        * CMakeLists.txt: Changed the arguments of GENERATE_BINDINGS to
        new style.  Removed add_custom_command of preprocess-idls.pl which
        is moved to GENERATE_BINDINGS.  Moved IDL_ATTRIBUTES_FILE into
        GENERATE_BINDINGS.

2016-09-14  Anders Carlsson  <andersca@apple.com>

        Add CSS -webkit-appearance property for Apple Pay buttons
        https://bugs.webkit.org/show_bug.cgi?id=161986
        rdar://problem/27459216

        Reviewed by Dean Jackson.

        Add a new -webkit-appearance property, "-apple-pay-button".
        Also, add two properties, "-apple-pay-button-type" and "-apple-pay-button-style".

        * WebCore.xcodeproj/project.pbxproj:
        Add RenderThemeCocoa.h and RenderThemeCocoa.mm.

        * css/CSSComputedStyleDeclaration.cpp:
        (WebCore::ComputedStyleExtractor::propertyValue):
        Handle CSSPropertyApplePayButtonStyle and CSSPropertyApplePayButtonType.

        * css/CSSPrimitiveValueMappings.h:
        (WebCore::CSSPrimitiveValue::CSSPrimitiveValue):
        (WebCore::CSSPrimitiveValue::operator ApplePayButtonStyle):
        (WebCore::CSSPrimitiveValue::operator ApplePayButtonType):
        Add ApplePayButtonStyle and ApplePayButtonType conversion routines.

        * css/CSSPropertyNames.in:
        Add -apple-pay-button-style and -apple-pay-button-type.

        * css/CSSValueKeywords.in:
        Add CSS values.

        * css/parser/CSSParser.cpp:
        (WebCore::isValidKeywordPropertyAndValue):
        Handle CSSPropertyApplePayButtonStyle and CSSPropertyApplePayButtonType.

        * css/parser/CSSParserFastPaths.cpp:
        (WebCore::CSSParserFastPaths::isKeywordPropertyID):
        Handle CSSPropertyApplePayButtonStyle and CSSPropertyApplePayButtonType.

        (WebCore::isAppleLegacyCSSPropertyKeyword):
        New function that returns whether the CSS property should be rewritten to -webkit-.
        We want to rewrite -apple- but not -apple-pay-.

        (WebCore::cssPropertyID):
        Use the newly added isAppleLegacyCSSPropertyKeyword.

        (WebCore::isAppleLegacyCSSValueKeyword):
        Check for "-apple-pay-" in addition to "-apple-system-".

        * platform/ThemeTypes.h:
        Add ApplePayButtonPart.

        * platform/spi/cocoa/PassKitSPI.h:
        Add PKDrawApplePayButton declaration.

        * rendering/RenderTheme.cpp:
        (WebCore::RenderTheme::adjustStyle):
        Handle ApplePayButtonPart.

        (WebCore::RenderTheme::paint):
        Handle ApplePayButtonPart.

        * rendering/RenderTheme.h:
        (WebCore::RenderTheme::adjustApplePayButtonStyle):
        (WebCore::RenderTheme::paintApplePayButton):
        Add new functions.

        * rendering/RenderThemeCocoa.h: Added.
        * rendering/RenderThemeCocoa.mm: Added.
        (WebCore::RenderThemeCocoa::adjustApplePayButtonStyle):
        Adjust the minimum width and minimum height accordingly.

        (WebCore::toPKPaymentButtonStyle):
        (WebCore::toPKPaymentButtonType):
        Helper functions that convert our WebCore types to PK types.

        (WebCore::RenderThemeCocoa::paintApplePayButton):
        Call PKDrawApplePayButton.

        * rendering/RenderThemeIOS.h:
        * rendering/RenderThemeMac.h:
        Inherit from RenderThemeCocoa.

        * rendering/style/RenderStyle.h:
        (WebCore::RenderStyle::applePayButtonStyle):
        (WebCore::RenderStyle::applePayButtonType):
        (WebCore::RenderStyle::setApplePayButtonStyle):
        (WebCore::RenderStyle::setApplePayButtonType):
        (WebCore::RenderStyle::initialApplePayButtonStyle):
        (WebCore::RenderStyle::initialApplePayButtonType):
        * rendering/style/RenderStyleConstants.h:
        * rendering/style/StyleRareInheritedData.cpp:
        (WebCore::StyleRareInheritedData::StyleRareInheritedData):
        (WebCore::StyleRareInheritedData::operator==):
        * rendering/style/StyleRareInheritedData.h:
        Add new style members for the button style and button type properties.

2016-09-15  Sergio Villar Senin  <svillar@igalia.com>

        [css-grid] Implement fit-content track size
        https://bugs.webkit.org/show_bug.cgi?id=161379

        Reviewed by Manuel Rego Casasnovas.

        This implements the new <fit-content> track size which is defined as follows: "Represents
        the formula min(max-content, max(auto, argument)), which is calculated similar to auto
        (i.e. minmax(auto, max-content)), except that the track size is clamped at argument if it is
        greater than the auto minimum."

        From the parsing POV fit-content was implemented as a new type of function which only takes
        one argument. That forced us to refactor some code because minmax() was the only allowed
        function for <track-size>s so far.

        The implementation key is a new attribute in GridTrack called growthLimitCap which is
        precisely the single attribute of fit-content(). Some parts of the track sizing algorithm
        were adapted to this change like for example the sorting of tracks by growth potential (we
        need to consider the caps).

        Tests: fast/css-grid-layout/fit-content-columns.html
        fast/css-grid-layout/fit-content-rows.html

        * css/CSSComputedStyleDeclaration.cpp:
        (WebCore::specifiedValueForGridTrackSize): Added support for fit-content sizes.
        * css/StyleBuilderConverter.h:
        (WebCore::StyleBuilderConverter::createGridTrackSize): Added support for fit-content sizes.
        * css/parser/CSSParser.cpp:
        (WebCore::isGridTrackFixedSized): Added support for fit-content sizes.
        (WebCore::CSSParser::parseGridTrackSize): Added support for parsing fit-content() functions.
        * css/parser/CSSPropertyParser.cpp: Added support for parsing fit-content() functions so
        it'll be available once we switch to the new parser.
        * rendering/RenderGrid.cpp:
        (WebCore::GridTrack::baseSize): Just return a LayoutUnit, the return value optimization will
        keep it fast in any case.
        (WebCore::GridTrack::growthLimit): Ditto.
        (WebCore::GridTrack::setGrowthLimit): Added an ASSERT to check that the growth limit is
        never higher than the cap.
        (WebCore::GridTrack::infiniteGrowthPotential):
        (WebCore::GridTrack::plannedSize): Just return a LayoutUnit, the return value optimization will
        keep it fast in any case.
        (WebCore::GridTrack::tempSize): Just return a LayoutUnit, the return value optimization will
        keep it fast in any case.
        (WebCore::GridTrack::setTempSize): Added as we no longer return a reference in tempSize().
        (WebCore::GridTrack::growTempSize): New utility function which increases the tempSize.
        (WebCore::GridTrack::setInfinitelyGrowable):
        (WebCore::GridTrack::setGrowthLimitCap): Added.
        (WebCore::GridTrack::growthLimitCap): Ditto.
        (WebCore::GridTrack::growthLimitIsInfinite): Made private.
        (WebCore::RenderGrid::GridSizingData::freeSpace): Renamed from freeSpaceForDirection.
        (WebCore::RenderGrid::GridSizingData::availableSpace): We now cache the available space as
        it is used to compute relative (percentage) sizes.
        (WebCore::RenderGrid::GridSizingData::setAvailableSpace): Ditto.
        (WebCore::RenderGrid::GridSizingData::setFreeSpace): Renamed from setFreeSpaceForDirection.
        (WebCore::RenderGrid::computeTrackSizesForDirection): Receives the available space instead
        of the free space.
        (WebCore::RenderGrid::computeIntrinsicLogicalWidths): Properly initialize free and available
        spaces.
        (WebCore::RenderGrid::computeIntrinsicLogicalHeight): Ditto.
        (WebCore::RenderGrid::computeUsedBreadthOfGridTracks): Use available space to initialize the
        track sizes. Also use sizingOperation to decide whether or not sizes are indefinite. Last
        but not least, added support for fit-content tracks.
        (WebCore::RenderGrid::computeUsedBreadthOfMinLength): Pass a GridTrackSize instead of a GridLength.
        (WebCore::RenderGrid::computeUsedBreadthOfMaxLength): Ditto.
        (WebCore::RenderGrid::gridTrackSize): Added support for fit-content.
        (WebCore::RenderGrid::resolveContentBasedTrackSizingFunctions): Ditto.
        (WebCore::RenderGrid::resolveContentBasedTrackSizingFunctionsForNonSpanningItems): Ditto.
        (WebCore::trackSizeForTrackSizeComputationPhase):
        (WebCore::sortByGridTrackGrowthPotential): Reworked the function so it properly sorts tracks
        with growth limit caps to support fit-content().
        (WebCore::clampGrowthShareIfNeeded): Clamps the given growthShare passed as argument to the
        track growth limit cap.
        (WebCore::RenderGrid::distributeSpaceToTracks): Use the new setTempSize() method. Also sort
        the selected tracks to grow over growth limits in order to respect the track caps eventually
        set by fit-content (otherwise those tracks could indefinitely grow over the specified value).
        (WebCore::RenderGrid::tracksAreWiderThanMinTrackBreadth): Use the new defined functions.
        (WebCore::RenderGrid::applyStretchAlignmentToTracksIfNeeded): Use freeSpace().
        (WebCore::RenderGrid::populateGridPositionsForDirection): Ditto.
        (WebCore::GridTrack::infinitelyGrowable): Deleted.
        (WebCore::RenderGrid::GridSizingData::freeSpaceForDirection): Deleted.
        (WebCore::RenderGrid::GridSizingData::setFreeSpaceForDirection): Deleted.
        (WebCore::RenderGrid::trackSizeForTrackSizeComputationPhase): Deleted.
        * rendering/RenderGrid.h: Changed the signature of some methods. Moved
        TrackSizeComputationPhase out of the RenderGrid class.
        * rendering/style/GridTrackSize.h:
        (WebCore::GridTrackSize::GridTrackSize): Added some extra documentation. Added a new
        attribute to the constructor to support fit-content GridTrackSizes.
        (WebCore::GridTrackSize::fitContentTrackBreadth): New method which returns the growth limit
        cap set by fit-content().
        (WebCore::GridTrackSize::minTrackBreadth):
        (WebCore::GridTrackSize::isFitContent): Added.
        (WebCore::GridTrackSize::length): Deleted.
        (WebCore::GridTrackSize::isPercentage): Deleted.

2016-09-15  Sergio Villar Senin  <svillar@igalia.com>

        [css-grid] Fix a dangling reference
        https://bugs.webkit.org/show_bug.cgi?id=161739

        Reviewed by Alexey Proskuryakov.

        The code was trying to get a reference to a private attribute of a temporary object returned
        by gridTrackSize().

        * rendering/RenderGrid.cpp:
        (WebCore::RenderGrid::assumedRowsSizeForOrthogonalChild):

2016-09-15  Sergio Villar Senin  <svillar@igalia.com>

        Unreviewed, rolling out r205966.

        Triggered some assertions

        Reverted changeset:

        "[css-grid] Implement fit-content track size"
        https://bugs.webkit.org/show_bug.cgi?id=161379
        http://trac.webkit.org/changeset/205966

2016-09-15  Zalan Bujtas  <zalan@apple.com>

        Cleanup RenderLayer::shouldBeNormalFlowOnly
        https://bugs.webkit.org/show_bug.cgi?id=161981

        Reviewed by Simon Fraser.

        This patch changes the logic of figuring about if a particular layer is normal flow only by simply checking
        if the layer creates a stacking context. If it does, we assume that it can't be a normal flow layer anymore.
        This patch slightly changes behaviour by making layers with isolation and reflection to be non normal flow layers anymore.    

        Covered by existing testcases.

        * rendering/RenderLayer.cpp:
        (WebCore::RenderLayer::calculateClipRects):

2016-09-07  Sergio Villar Senin  <svillar@igalia.com>

        [css-grid] Implement fit-content track size
        https://bugs.webkit.org/show_bug.cgi?id=161379

        Reviewed by Manuel Rego Casasnovas.

        This implements the new <fit-content> track size which is defined as follows: "Represents
        the formula min(max-content, max(auto, argument)), which is calculated similar to auto
        (i.e. minmax(auto, max-content)), except that the track size is clamped at argument if it is
        greater than the auto minimum."

        From the parsing POV fit-content was implemented as a new type of function which only takes
        one argument. That forced us to refactor some code because minmax() was the only allowed
        function for <track-size>s so far.

        The implementation key is a new attribute in GridTrack called growthLimitCap which is
        precisely the single attribute of fit-content(). Some parts of the track sizing algorithm
        were adapted to this change like for example the sorting of tracks by growth potential (we
        need to consider the caps).

        Tests: fast/css-grid-layout/fit-content-columns.html
        fast/css-grid-layout/fit-content-rows.html

        * css/CSSComputedStyleDeclaration.cpp:
        (WebCore::specifiedValueForGridTrackSize): Added support for fit-content sizes.
        * css/StyleBuilderConverter.h:
        (WebCore::StyleBuilderConverter::createGridTrackSize): Added support for fit-content sizes.
        * css/parser/CSSParser.cpp:
        (WebCore::isGridTrackFixedSized): Added support for fit-content sizes.
        (WebCore::CSSParser::parseGridTrackSize): Added support for parsing fit-content() functions.
        * css/parser/CSSPropertyParser.cpp: Added support for parsing fit-content() functions so
        it'll be available once we switch to the new parser.
        * rendering/RenderGrid.cpp:
        (WebCore::GridTrack::baseSize): Just return a LayoutUnit, the return value optimization will
        keep it fast in any case.
        (WebCore::GridTrack::growthLimit): Ditto.
        (WebCore::GridTrack::setGrowthLimit): Added an ASSERT to check that the growth limit is
        never higher than the cap.
        (WebCore::GridTrack::infiniteGrowthPotential):
        (WebCore::GridTrack::plannedSize): Just return a LayoutUnit, the return value optimization will
        keep it fast in any case.
        (WebCore::GridTrack::tempSize): Just return a LayoutUnit, the return value optimization will
        keep it fast in any case.
        (WebCore::GridTrack::setTempSize): Added as we no longer return a reference in tempSize().
        (WebCore::GridTrack::growTempSize): New utility function which increases the tempSize.
        (WebCore::GridTrack::setInfinitelyGrowable):
        (WebCore::GridTrack::setGrowthLimitCap): Added.
        (WebCore::GridTrack::growthLimitCap): Ditto.
        (WebCore::GridTrack::growthLimitIsInfinite): Made private.
        (WebCore::RenderGrid::GridSizingData::freeSpace): Renamed from freeSpaceForDirection.
        (WebCore::RenderGrid::GridSizingData::availableSpace): We now cache the available space as
        it is used to compute relative (percentage) sizes.
        (WebCore::RenderGrid::GridSizingData::setAvailableSpace): Ditto.
        (WebCore::RenderGrid::GridSizingData::setFreeSpace): Renamed from setFreeSpaceForDirection.
        (WebCore::RenderGrid::computeTrackSizesForDirection): Receives the available space instead
        of the free space.
        (WebCore::RenderGrid::computeIntrinsicLogicalWidths): Properly initialize free and available
        spaces.
        (WebCore::RenderGrid::computeIntrinsicLogicalHeight): Ditto.
        (WebCore::RenderGrid::computeUsedBreadthOfGridTracks): Use available space to initialize the
        track sizes. Also use sizingOperation to decide whether or not sizes are indefinite. Last
        but not least, added support for fit-content tracks.
        (WebCore::RenderGrid::computeUsedBreadthOfMinLength): Pass a GridTrackSize instead of a GridLength.
        (WebCore::RenderGrid::computeUsedBreadthOfMaxLength): Ditto.
        (WebCore::RenderGrid::gridTrackSize): Added support for fit-content.
        (WebCore::RenderGrid::resolveContentBasedTrackSizingFunctions): Ditto.
        (WebCore::RenderGrid::resolveContentBasedTrackSizingFunctionsForNonSpanningItems): Ditto.
        (WebCore::trackSizeForTrackSizeComputationPhase):
        (WebCore::sortByGridTrackGrowthPotential): Reworked the function so it properly sorts tracks
        with growth limit caps to support fit-content().
        (WebCore::clampGrowthShareIfNeeded): Clamps the given growthShare passed as argument to the
        track growth limit cap.
        (WebCore::RenderGrid::distributeSpaceToTracks): Use the new setTempSize() method. Also sort
        the selected tracks to grow over growth limits in order to respect the track caps eventually
        set by fit-content (otherwise those tracks could indefinitely grow over the specified value).
        (WebCore::RenderGrid::tracksAreWiderThanMinTrackBreadth): Use the new defined functions.
        (WebCore::RenderGrid::applyStretchAlignmentToTracksIfNeeded): Use freeSpace().
        (WebCore::RenderGrid::populateGridPositionsForDirection): Ditto.
        (WebCore::GridTrack::infinitelyGrowable): Deleted.
        (WebCore::RenderGrid::GridSizingData::freeSpaceForDirection): Deleted.
        (WebCore::RenderGrid::GridSizingData::setFreeSpaceForDirection): Deleted.
        (WebCore::RenderGrid::trackSizeForTrackSizeComputationPhase): Deleted.
        * rendering/RenderGrid.h: Changed the signature of some methods. Moved
        TrackSizeComputationPhase out of the RenderGrid class.
        * rendering/style/GridTrackSize.h:
        (WebCore::GridTrackSize::GridTrackSize): Added some extra documentation. Added a new
        attribute to the constructor to support fit-content GridTrackSizes.
        (WebCore::GridTrackSize::fitContentTrackBreadth): New method which returns the growth limit
        cap set by fit-content().
        (WebCore::GridTrackSize::minTrackBreadth):
        (WebCore::GridTrackSize::isFitContent): Added.
        (WebCore::GridTrackSize::length): Deleted.
        (WebCore::GridTrackSize::isPercentage): Deleted.

2016-09-15  Alejandro G. Castro  <alex@igalia.com>

        Fix build warnings in the mediastream code
        https://bugs.webkit.org/show_bug.cgi?id=161957

        Reviewed by Philippe Normand.

        * platform/mediastream/MediaConstraints.cpp:
        (WebCore::MediaConstraint::create): Added assertion and mock return.
        * platform/mediastream/RealtimeMediaSourceSupportedConstraints.cpp:
        (WebCore::RealtimeMediaSourceSupportedConstraints::nameForConstraint):
        Added assertion and mock return.
        (WebCore::RealtimeMediaSourceSupportedConstraints::supportsConstraint):
        Added assertion and mock return.

2016-09-15  Youenn Fablet  <youenn@apple.com>

        Rebase binding tests after r205953
        https://bugs.webkit.org/show_bug.cgi?id=162012

        Unreviewed.

        * bindings/scripts/test/JS/JSTestNode.cpp:
        (WebCore::jsTestNodePrototypeFunctionTestWorkerPromise):
        (WebCore::jsTestNodePrototypeFunctionTestWorkerPromisePromise):
        * bindings/scripts/test/JS/JSTestObj.cpp:
        (WebCore::jsTestObjPrototypeFunctionTestPromiseFunction):
        (WebCore::jsTestObjPrototypeFunctionTestPromiseFunctionPromise):
        (WebCore::jsTestObjPrototypeFunctionTestPromiseFunctionWithFloatArgument):
        (WebCore::jsTestObjPrototypeFunctionTestPromiseFunctionWithFloatArgumentPromise):
        (WebCore::jsTestObjPrototypeFunctionTestPromiseFunctionWithException):
        (WebCore::jsTestObjPrototypeFunctionTestPromiseFunctionWithExceptionPromise):
        (WebCore::jsTestObjPrototypeFunctionTestPromiseFunctionWithOptionalIntArgument):
        (WebCore::jsTestObjPrototypeFunctionTestPromiseFunctionWithOptionalIntArgumentPromise):
        (WebCore::jsTestObjPrototypeFunctionTestPromiseOverloadedFunction1):
        (WebCore::jsTestObjPrototypeFunctionTestPromiseOverloadedFunction1Promise):
        (WebCore::jsTestObjPrototypeFunctionTestPromiseOverloadedFunction2):
        (WebCore::jsTestObjPrototypeFunctionTestPromiseOverloadedFunction2Promise):
        (WebCore::jsTestObjConstructorFunctionTestStaticPromiseFunction):
        (WebCore::jsTestObjConstructorFunctionTestStaticPromiseFunctionPromise):
        (WebCore::jsTestObjConstructorFunctionTestStaticPromiseFunctionWithException):
        (WebCore::jsTestObjConstructorFunctionTestStaticPromiseFunctionWithExceptionPromise):

2016-09-15  Alejandro G. Castro  <alex@igalia.com>

        [WebRTC][OpenWebRTC] crash in maybeHandleChangeMutedState
        https://bugs.webkit.org/show_bug.cgi?id=161619

        Added OpenWebRTC support to the RealtimeMediaSource mock class.

        Reviewed by Eric Carlson.

        Fixed tests.

        * platform/mediastream/openwebrtc/RealtimeMediaSourceOwr.h:
        (WebCore::RealtimeMediaSourceOwr::RealtimeMediaSourceOwr): Allowed
        inheritance of the class, required to use it when creating the
        mock class. Added a new constructor to create the class with null
        mediastream.
        * platform/mock/MockRealtimeMediaSource.cpp:
        (WebCore::MockRealtimeMediaSource::MockRealtimeMediaSource): Use
        the new BaseRealtimeMediaSourceClass in the constructor.
        * platform/mock/MockRealtimeMediaSource.h: Added a new
        BaseRealtimeMediaSourceClass defined using the
        RealtimeMediaSourceOwr class for OpenWebRTC platform.

2016-09-15  Sergio Villar Senin  <svillar@igalia.com>

        [css-grid] Fix intrinsic size computation with flexible sized tracks
        https://bugs.webkit.org/show_bug.cgi?id=161903

        Reviewed by Manuel Rego Casasnovas.

        This is fixing a regression added in r192154. When computing the min content size of a grid
        container (min preferred logical width) we should not take into account the fr tracks. As
        stated in the early versions of the spec that size is the sum of the tracks' base sizes
        before running the maximize tracks step.

        That regression was causing sizing issues in grids with fr tracks both when under
        min|max-content constrains and also when used as grid items (in nested grids).

        * rendering/RenderGrid.cpp:
        (WebCore::RenderGrid::computeUsedBreadthOfGridTracks):

2016-09-13  Sergio Villar Senin  <svillar@igalia.com>

        [css-grid] Too many gaps with trailing collapsing tracks
        https://bugs.webkit.org/show_bug.cgi?id=161905

        Reviewed by Darin Adler.

        The total number and size of gaps were incorrectly computed whenever there were trailing
        collapsed tracks (with collapsed gaps). The problem was that we were trying to optimize too
        much the amount of hash table queries required to know the gaps between two lines. We were
        considering that a gap always exist between 2 consecutive tracks if the first one is not
        empty. That's generally true (for both NOTEMPTY|NOTEMPTY and NOTEMPTY|EMPTY+|NOTEMPTY
        sequences) but not for all the cases (NOTEMPTY|EMPTY+).

        * rendering/RenderGrid.cpp:
        (WebCore::RenderGrid::guttersSize):

2016-09-15  Youenn Fablet  <youenn@apple.com>

        callPromiseFunction should be made usable for custom binding code
        https://bugs.webkit.org/show_bug.cgi?id=161961

        Reviewed by Darin Adler.

        Covered by updated test.

        * bindings/js/JSDOMBinding.h:
        (WebCore::castThisValue): Utility function to cast this value to a specific type.
        * bindings/js/JSDOMPromise.h:
        (WebCore::callPromiseFunction): Updated to take real promise function as a template parameter
        for improved efficiency. Added workerMode template parameter.
        (WebCore::bindingPromiseFunctionAdapter): Function signature adaptor.
        * bindings/js/JSMediaDevicesCustom.cpp:
        (WebCore::JSMediaDevicesGetUserMediaPromiseFunction):
        (WebCore::JSMediaDevices::getUserMedia): Making use of callPromiseFunction to properly handle exceptions.
        * bindings/scripts/CodeGeneratorJS.pm:
        (GenerateImplementation): Updated to use template parameter.
        * bindings/scripts/test/JS/JSTestNode.cpp:
        (WebCore::jsTestNodePrototypeFunctionTestWorkerPromise):
        (WebCore::jsTestNodePrototypeFunctionTestWorkerPromisePromise):
        * bindings/scripts/test/JS/JSTestObj.cpp:
        (WebCore::jsTestObjPrototypeFunctionTestPromiseFunction):
        (WebCore::jsTestObjPrototypeFunctionTestPromiseFunctionWithFloatArgument):
        (WebCore::jsTestObjPrototypeFunctionTestPromiseFunctionWithException):
        (WebCore::jsTestObjPrototypeFunctionTestPromiseFunctionWithOptionalIntArgument):
        (WebCore::jsTestObjPrototypeFunctionTestPromiseOverloadedFunction1):
        (WebCore::jsTestObjPrototypeFunctionTestPromiseOverloadedFunction2):
        (WebCore::jsTestObjConstructorFunctionTestStaticPromiseFunction):
        (WebCore::jsTestObjConstructorFunctionTestStaticPromiseFunctionWithException):
        * bindings/scripts/test/TestNode.idl: Adding Worker promise binding test.

2016-09-14  Jiewen Tan  <jiewen_tan@apple.com>

        WebCrypto algorithms should be exposed via KeyAlgorithm dictionary
        https://bugs.webkit.org/show_bug.cgi?id=128748
        <rdar://problem/27359438>

        Reviewed by Brent Fulgham and Chris Dumez.

        Replace custom CryptoAlgorithmBuilder/buildAlgorithmDescription with KeyAlgorithm dictionary which is
        defined by the spec: https://www.w3.org/TR/WebCryptoAPI/#key-algorithm-dictionary. Moreover, mark
        CryptoKey.usages as CachedAttribute.

        Tests: crypto/subtle/crypto-key-algorithm-gc.html
               crypto/subtle/crypto-key-usages-gc.html

        * PlatformEfl.cmake:
        * PlatformGTK.cmake:
        * PlatformMac.cmake:
        Remove CryptoAlgorithmDescriptionBuilder.cpp.
        * WebCore.xcodeproj/project.pbxproj:
        * bindings/js/JSCryptoAlgorithmBuilder.cpp:
        (WebCore::JSCryptoAlgorithmBuilder::add):
        (WebCore::JSCryptoAlgorithmBuilder::createEmptyClone): Deleted.
        * bindings/js/JSCryptoAlgorithmBuilder.h:
        * bindings/js/JSCryptoKeyCustom.cpp:
        (WebCore::JSCryptoKey::algorithm):
        Get rid of dependency on CryptoAlgorithmDescriptionBuilder.
        * crypto/CryptoAlgorithmDescriptionBuilder.cpp: Removed.
        * crypto/CryptoAlgorithmDescriptionBuilder.h: Removed.
        Replace it with KeyAlgorithm.
        * crypto/CryptoKey.cpp:
        (WebCore::CryptoKey::CryptoKey):
        (WebCore::CryptoKey::buildAlgorithmDescription): Deleted.
        * crypto/CryptoKey.h:
        (WebCore::KeyAlgorithm::KeyAlgorithm):
        (WebCore::KeyAlgorithm::~KeyAlgorithm):
        (WebCore::CryptoKey::algorithmIdentifier):
        * crypto/CryptoKey.idl:
        Add KeyAlgorithm dictionary which is returned via CryptoKey.buildAlgorithm() method,
        and rename m_algorithm to m_algorithmIdentifier to distingush it with newly
        added KeyAlgorithm dictionary.
        * crypto/gnutls/CryptoKeyRSAGnuTLS.cpp:
        (WebCore::buildAlgorithm):
        (WebCore::CryptoKeyRSA::buildAlgorithmDescription): Deleted.
        * crypto/keys/CryptoKeyAES.cpp:
        (WebCore::CryptoKeyAES::buildAlgorithm):
        (WebCore::CryptoKeyAES::buildAlgorithmDescription): Deleted.
        * crypto/keys/CryptoKeyAES.h:
        (WebCore::AesKeyAlgorithm::AesKeyAlgorithm):
        (WebCore::AesKeyAlgorithm::~AesKeyAlgorithm):
        * crypto/keys/CryptoKeyHMAC.cpp:
        (WebCore::CryptoKeyHMAC::buildAlgorithm):
        (WebCore::CryptoKeyHMAC::buildAlgorithmDescription): Deleted.
        * crypto/keys/CryptoKeyHMAC.h:
        (WebCore::HmacKeyAlgorithm::HmacKeyAlgorithm):
        (WebCore::HmacKeyAlgorithm::~HmacKeyAlgorithm):
        * crypto/keys/CryptoKeyRSA.h:
        (WebCore::RsaKeyAlgorithm::RsaKeyAlgorithm):
        (WebCore::RsaKeyAlgorithm::~RsaKeyAlgorithm):
        (WebCore::RsaHashedKeyAlgorithm::RsaHashedKeyAlgorithm):
        (WebCore::RsaHashedKeyAlgorithm::~RsaHashedKeyAlgorithm):
        * crypto/mac/CryptoKeyRSAMac.cpp:
        (WebCore::CryptoKeyRSA::buildAlgorithm):
        (WebCore::CryptoKeyRSA::buildAlgorithmDescription): Deleted.

2016-09-14  Chris Dumez  <cdumez@apple.com>

        REGRESSION (r205670): ASSERTION FAILED: methodTable(vm)->toThis(this, exec, NotStrictMode) == this
        https://bugs.webkit.org/show_bug.cgi?id=161982

        Reviewed by Saam Barati.

        We no longer need a custom [[SetPrototypeOf]] anymore as JSProxy::setPrototypeOf()
        no longer forwards the call to its target.

        No new layout tests because the behavior only changes in the context of the JSC
        tests (which were updated in this patch).

        * bindings/js/JSDOMWindowCustom.cpp:
        (WebCore::JSDOMWindow::setPrototype): Deleted.
        * page/DOMWindow.idl:

2016-09-14  Wenson Hsieh  <wenson_hsieh@apple.com>

        Media controls behave strangely when changing media sources
        https://bugs.webkit.org/show_bug.cgi?id=161914
        <rdar://problem/28227805>

        Reviewed by Tim Horton.

        Addresses media controls flickering while changing the source of a media element. To accomplish this, we make
        the following changes to the media controls main content heuristic:

        - Prevent elements that are not mostly within the mainframe rect (or elements with empty rects) from showing
          media controls. Many websites that rely on same document navigation will move videos offscreen when navigating
          to a section of their site that does not play media. Without this check, we would not know to hide a video
          element on certain popular websites that use this technique, since the video has been interacted with in the
          past.

        - Rather than check whether a media element currently has video/audio sources, check whether it has ever had
          audio. Many websites will use the same media element across different videos and change only the source, and
          we should not prevent a media element from having media controls on grounds of having no audio or video in
          this case.

        - Rather than add user gesture and playback behavior restrictions before dispatching an ended event, add only
          the gesture restriction immediately, and add the playback restriction after waiting for a grace period only if
          the user has not interacted with the video since ending, and the video is not currently playing or about to
          play. This gives the user a chance to interact with the controls when a video ends, but also allows the page
          to load or begin playing a new video with the same media element without thrashing media control state.

        Adds 3 new API tests.

        * html/HTMLMediaElement.cpp:
        (WebCore::HTMLMediaElement::HTMLMediaElement):
        (WebCore::HTMLMediaElement::~HTMLMediaElement):
        (WebCore::HTMLMediaElement::mediaPlayerActiveSourceBuffersChanged):
        (WebCore::HTMLMediaElement::seekWithTolerance):
        (WebCore::HTMLMediaElement::beginScrubbing):
        (WebCore::HTMLMediaElement::addBehaviorRestrictionsOnEndIfNecessary):
        (WebCore::HTMLMediaElement::mediaPlayerCharacteristicChanged):
        (WebCore::HTMLMediaElement::playbackControlsManagerBehaviorRestrictionsTimerFired):
        * html/HTMLMediaElement.h:
        (WebCore::HTMLMediaElement::hasEverHadAudio):
        (WebCore::HTMLMediaElement::hasEverHadVideo):
        * html/MediaElementSession.cpp:
        (WebCore::MediaElementSession::canShowControlsManager):
        (WebCore::isElementRectMostlyInMainFrame):
        * platform/graphics/MediaPlayer.h:
        (WebCore::MediaPlayerClient::mediaPlayerActiveSourceBuffersChanged):
        * platform/graphics/MediaPlayerPrivate.h:
        (WebCore::MediaPlayerPrivateInterface::notifyActiveSourceBuffersChanged):
        * platform/graphics/avfoundation/objc/MediaPlayerPrivateMediaSourceAVFObjC.h:
        * platform/graphics/avfoundation/objc/MediaPlayerPrivateMediaSourceAVFObjC.mm:
        (WebCore::MediaPlayerPrivateMediaSourceAVFObjC::notifyActiveSourceBuffersChanged):
        * platform/graphics/avfoundation/objc/MediaSourcePrivateAVFObjC.mm:
        (WebCore::MediaSourcePrivateAVFObjC::removeSourceBuffer):
        (WebCore::MediaSourcePrivateAVFObjC::sourceBufferPrivateDidChangeActiveState):

2016-09-14  Eric Carlson  <eric.carlson@apple.com>

        [MediaStream] Minor cleanup
        https://bugs.webkit.org/show_bug.cgi?id=161976

        Reviewed by Youenn Fablet and Dean Jackson.

        No new tests, no behavior change.

        * CMakeLists.txt:
        * DerivedSources.make:
        * Modules/mediastream/CaptureDeviceInfo.h: Removed.
        * Modules/mediastream/CaptureDeviceManager.cpp: Removed.
        * Modules/mediastream/CaptureDeviceManager.h: Removed.
        * Modules/mediastream/MediaDevicesRequest.cpp:
        (WebCore::MediaDevicesRequest::didCompletePermissionCheck):
        (WebCore::MediaDevicesRequest::didCompleteTrackSourceInfoRequest): Deleted.
        (WebCore::MediaDevicesRequest::requestOrigin): Deleted.
        * Modules/mediastream/MediaDevicesRequest.h:
        * Modules/mediastream/MediaStreamTrackSourcesCallback.h: Removed.
        * Modules/mediastream/MediaStreamTrackSourcesCallback.idl: Removed.
        * Modules/mediastream/SourceInfo.cpp: Removed.
        * Modules/mediastream/SourceInfo.h: Removed.
        * Modules/mediastream/SourceInfo.idl: Removed.
        * WebCore.xcodeproj/project.pbxproj:
        * platform/mediastream/CaptureDevice.h: Copied from Source/WebCore/Modules/mediastream/CaptureDeviceInfo.h.
        (WebCore::CaptureDevice::CaptureDevice):
        (WebCore::CaptureDevice::persistentId):
        (WebCore::CaptureDevice::label):
        (WebCore::CaptureDevice::groupId):
        (WebCore::CaptureDevice::kind):
        (WebCore::CaptureSessionInfo::~CaptureSessionInfo): Deleted.
        (WebCore::CaptureSessionInfo::supportsVideoSize): Deleted.
        (WebCore::CaptureSessionInfo::bestSessionPresetForVideoDimensions): Deleted.
        * platform/mediastream/CaptureDeviceManager.cpp: Copied from Source/WebCore/Modules/mediastream/CaptureDeviceManager.cpp.
        (CaptureDeviceManager::getSourcesInfo):
        * platform/mediastream/CaptureDeviceManager.h: Copied from Source/WebCore/Modules/mediastream/CaptureDeviceManager.h.
        (WebCore::CaptureSessionInfo::~CaptureSessionInfo):
        (WebCore::CaptureSessionInfo::supportsVideoSize):
        (WebCore::CaptureSessionInfo::bestSessionPresetForVideoDimensions):
        * platform/mediastream/MediaStreamTrackSourcesRequestClient.h: Removed.
        * platform/mediastream/RealtimeMediaSourceCenter.h:
        * platform/mediastream/mac/AVCaptureDeviceManager.h:
        * platform/mediastream/mac/AVCaptureDeviceManager.mm:
        (WebCore::AVCaptureDeviceManager::getSourcesInfo):
        * platform/mediastream/mac/RealtimeMediaSourceCenterMac.cpp:
        (WebCore::RealtimeMediaSourceCenterMac::getMediaStreamDevices):
        (WebCore::RealtimeMediaSourceCenterMac::getMediaStreamTrackSources): Deleted.
        (WebCore::RealtimeMediaSourceCenterMac::sourceWithUID): Deleted.
        * platform/mediastream/mac/RealtimeMediaSourceCenterMac.h:
        * platform/mediastream/openwebrtc/RealtimeMediaSourceCenterOwr.cpp:
        (WebCore::RealtimeMediaSourceCenterOwr::getMediaStreamDevices):
        (WebCore::RealtimeMediaSourceCenterOwr::getMediaStreamTrackSources): Deleted.
        (WebCore::RealtimeMediaSourceCenterOwr::sourceWithUID): Deleted.
        * platform/mediastream/openwebrtc/RealtimeMediaSourceCenterOwr.h:
        * platform/mock/MockRealtimeMediaSource.cpp:
        (WebCore::MockRealtimeMediaSource::audioDeviceInfo):
        (WebCore::MockRealtimeMediaSource::videoDeviceInfo):
        (WebCore::MockRealtimeMediaSource::trackSourceWithUID): Deleted.
        * platform/mock/MockRealtimeMediaSource.h:
        * platform/mock/MockRealtimeMediaSourceCenter.cpp:
        (WebCore::MockRealtimeMediaSourceCenter::getMediaStreamDevices):
        (WebCore::MockRealtimeMediaSourceCenter::getMediaStreamTrackSources): Deleted.
        (WebCore::MockRealtimeMediaSourceCenter::sourceWithUID): Deleted.
        * platform/mock/MockRealtimeMediaSourceCenter.h:

2016-09-14  Antti Koivisto  <antti@apple.com>

        Move more code out from RenderObject
        https://bugs.webkit.org/show_bug.cgi?id=161980

        Reviewed by Zalan Bujtas.

        Move some functions that are only needed for RenderElement there.
        Move collapsing anonymous table rows to RenderTableRow.

        * rendering/RenderElement.cpp:
        (WebCore::RenderElement::hasOutlineAnnotation):
        (WebCore::RenderElement::hasSelfPaintingLayer):
        (WebCore::RenderElement::checkForRepaintDuringLayout):
        * rendering/RenderElement.h:
        (WebCore::RenderElement::hasOutline):
        (WebCore::RenderElement::hasHiddenBackface): Deleted.
        * rendering/RenderLayerCompositor.cpp:
        (WebCore::RenderLayerCompositor::rootOrBodyStyleChanged):
        * rendering/RenderObject.cpp:
        (WebCore::RenderObject::pixelSnappedAbsoluteClippedOverflowRect):
        (WebCore::RenderObject::destroyAndCleanupAnonymousWrappers):
        (WebCore::RenderObject::hasSelfPaintingLayer): Deleted.
        (WebCore::RenderObject::checkForRepaintDuringLayout): Deleted.
        (WebCore::RenderObject::hasOutlineAnnotation): Deleted.
        (WebCore::RenderObject::hasEntirelyFixedBackground): Deleted.
        (WebCore::collapseAnonymousTableRowsIfNeeded): Deleted.
        * rendering/RenderObject.h:
        (WebCore::RenderObject::hasLayer):
        (WebCore::RenderObject::canBeSelectionLeaf):
        (WebCore::RenderObject::hasOutline): Deleted.
        (WebCore::RenderObject::hasSelectedChildren): Deleted.
        * rendering/RenderTableRow.cpp:
        (WebCore::RenderTableRow::destroyAndCollapseAnonymousSiblingRows):
        * rendering/RenderTableRow.h:
        * rendering/RenderView.cpp:
        (WebCore::RenderView::rootBackgroundIsEntirelyFixed):

2016-09-14  Daniel Bates  <dabates@apple.com>

        Switch CSSParser to use CSSParserFastPaths::isKeywordPropertyID()
        https://bugs.webkit.org/show_bug.cgi?id=161983

        Reviewed by David Hyatt.

        Towards switching to the new CSS parser keyword properties validation logic,
        switch over the old CSS parser logic for determining a keyword property to
        use the analogous logic in the new CSS parser.

        A side benefit of this change is that it is a step towards unifying CSS- and
        SVG CSS- keyword properties. The new CSS parser does not make a distinction
        between these kinds of properties and will allow us to have a shared code path
        for validating a keyword property.

        No functionality was changed. So, no new tests.

        * css/parser/CSSParser.cpp: Include header CSSParserFastPaths.h.
        (WebCore::isValidKeywordPropertyAndValue): Validate SVG CSS keyword properties. This
        logic was moved from CSSParser::parseSVGValue(). In subsequent patches we will switch
        the old CSS parser from this function to CSSParserFastPaths::isValidKeywordPropertyAndValue().
        (WebCore::parseKeywordValue): Modified to call CSSParserFastPaths::isKeywordPropertyID().
        (WebCore::CSSParser::parseValue): Ditto.
        (WebCore::isKeywordPropertyID): Deleted. Incorporated its functionality into
        CSSParserFastPaths::isKeywordPropertyID().
        * css/parser/CSSParserFastPaths.cpp:
        (WebCore::CSSParserFastPaths::isKeywordPropertyID): Incorporates the functionality
        of WebCore::isKeywordPropertyID().
        * css/parser/SVGCSSParser.cpp:
        (WebCore::CSSParser::parseSVGValue): Move properties that can be processed as
        keyword properties from here to WebCore::isValidKeywordPropertyAndValue().

2016-09-13  Dean Jackson  <dino@apple.com>

        Rename parseColorParameters and clean up conditional
        https://bugs.webkit.org/show_bug.cgi?id=161941
        <rdar://problem/28292750>

        Reviewed by Dan Bates.

        In preparation for adding color() support, rename the existing
        parseColorParameters to parseRGBParameters.

        Also clean up the logic in the parseColorFromValue function.

        * css/parser/CSSParser.cpp:
        (WebCore::CSSParser::parseRGBParameters):
        (WebCore::CSSParser::parseColorFromValue):
        (WebCore::CSSParser::parseColorParameters): Deleted.
        * css/parser/CSSParser.h:

2016-09-14  Chris Dumez  <cdumez@apple.com>

        Add support hr.color IDL attribute
        https://bugs.webkit.org/show_bug.cgi?id=161977

        Reviewed by Darin Adler.

        Add support hr.color IDL attribute as per:
        - https://html.spec.whatwg.org/#HTMLHRElement-partial

        Even though this is a legacy attribute, it is still part of the HTML specification
        and it is still supported by Firefox and Chrome.

        Also note that even though WebKit does not currently support the 'color' IDL
        attribute on <hr>, it does support the 'color' content attribute on <hr>.
        Therefore, we only need to reflect the 'color' content attribute.

        No new tests, rebaselined existing test.

        * html/HTMLHRElement.idl:

2016-09-14  Alex Christensen  <achristensen@webkit.org>

        URLParser: Add fast path for hosts containing no non-ASCII or percent characters
        https://bugs.webkit.org/show_bug.cgi?id=161970

        Reviewed by Daniel Bates.

        Covered by existing tests.

        * platform/URLParser.cpp:
        (WebCore::URLParser::parse):
        (WebCore::URLParser::parseHost):
        * platform/URLParser.h:
        When parsing the host of a URL, if it contains non-ASCII characters or percent-encoded values,
        we need to do additional encoding.  Many URLs, including all already-parsed URLs, do not have
        such characters in their host, and therefore do not need the additional encoding.  Skipping
        the additional encoding significantly speeds up my URL parsing benchmark.

2016-09-14  Zalan Bujtas  <zalan@apple.com>

        ShowRenderTree should take position offset into account when printing inflow positioned renderers.
        https://bugs.webkit.org/show_bug.cgi?id=161978

        Reviewed by Simon Fraser.

        Adjust (x, y) with the inflow positioned renderer's offset.  

        Not testable.

        * rendering/RenderObject.cpp:
        (WebCore::RenderObject::showRenderObject):

2016-09-14  Alex Christensen  <achristensen@webkit.org>

        URLParser: Add fast path for utf8 encoding queries
        https://bugs.webkit.org/show_bug.cgi?id=161968

        Reviewed by Daniel Bates.

        No change in behavior.  Covered by existing tests.

        * platform/URLParser.cpp:
        (WebCore::utf8PercentEncodeQuery):
        (WebCore::URLParser::parse):
        If the text encoding is UTF-8 (which is quite common), then we can encode the query
        as we iterate its code points. This reduces memory allocation and significantly speeds
        up my URL parsing benchmark.

2016-09-14  Chris Dumez  <cdumez@apple.com>

        Regression(r152725): generate-bindings.pl --write-dependencies does not work
        https://bugs.webkit.org/show_bug.cgi?id=161897

        Reviewed by Darin Adler.

        r152725 inadvertently dropped the code generating the JS*.dep files when
        --write-dependencies is passed to the bindings generator. As a result,
        our dependency tracking was broken. This patch restores the code that
        was dropped in r152725.

        * bindings/scripts/CodeGeneratorJS.pm:
        (new):
        (GenerateHeader):

2016-09-14  Chris Dumez  <cdumez@apple.com>

        input.type cannot be set to "file" after being set to another type
        https://bugs.webkit.org/show_bug.cgi?id=161943

        Reviewed by Daniel Bates.

        input.type cannot be set to "file" after being set to another type.
        This behavior does not match the HTML specification or the behavior
        of Firefox and Chrome. This patch drops this restriction and aligns
        our behavior with other browsers.

        Test: fast/dom/HTMLInputElement/input-type-change-to-file.html

        * html/FileInputType.cpp:
        (WebCore::FileInputType::canChangeFromAnotherType): Deleted.
        * html/FileInputType.h:
        * html/HTMLInputElement.cpp:
        (WebCore::HTMLInputElement::updateType):
        * html/InputType.cpp:
        (WebCore::InputType::canChangeFromAnotherType): Deleted.
        * html/InputType.h:

2016-09-14  Carlos Garnacho <carlosg@gnome.org>

        [GTK][Wayland] Implement clipboard support
        https://bugs.webkit.org/show_bug.cgi?id=146574

        Reviewed by Carlos Garcia Campos.

        Implement PlatformPasteboard in the GTK+ platform, and move Pasteboard
        to using PasteboardStrategy so clipboard management is left to the
        UIProcess.

        DataObjectGtk is still used in the Pasteboard GTK implementation, it's
        now just never backed by a GtkClipboard, this object is instead
        serialized through PasteboardStrategy, so the UIProcess side can mirror
        the content in a GtkClipboard-backed DataObjectGtk, which is then
        exposed to the windowing through PlatformPasteboard/PasteboardHelper.

        When requesting clipboard content, it works similarly, the UIProcess
        side first updates its DataObjectGtk, which is then mirrored by the
        WebProcess through the PasteboardStrategy requests.

        * PlatformGTK.cmake: Added PlatformPasteboardGtk.cpp
        * editing/gtk/EditorGtk.cpp:
        (WebCore::Editor::writeSelectionToPasteboard): Eliminate usage of
        PasteboardWebContent callback argument. This is done differently as
        we have to signal back the WebProcess.
        * platform/Pasteboard.h: Cleaned up of direct GTK+ dependency.
        * platform/PasteboardStrategy.h: Added plumbing towards the pasteboard
        proxy.
        * platform/PlatformPasteboard.h:
        * platform/gtk/DataObjectGtk.cpp:
        (WebCore::DataObjectGtk::clearAllExceptFilenames): Clear the "smart
        paste" flag if set, now that this is DataObjectGtk data.
        * platform/gtk/DataObjectGtk.h:
        (WebCore::DataObjectGtk::canSmartReplace):
        (WebCore::DataObjectGtk::setCanSmartReplace): Added functions, in order
        to flag whether a DataObjectGtk has the "smart paste" feature enabled
        or not.
        * platform/gtk/PasteboardGtk.cpp:
        (WebCore::Pasteboard::createForCopyAndPaste):
        (WebCore::Pasteboard::createForGlobalSelection):
        (WebCore::Pasteboard::Pasteboard):
        (WebCore::Pasteboard::writeToClipboard):
        (WebCore::Pasteboard::readFromClipboard):
        (WebCore::Pasteboard::writePlainText):
        (WebCore::Pasteboard::write):
        (WebCore::Pasteboard::writePasteboard):
        (WebCore::Pasteboard::clear):
        (WebCore::Pasteboard::canSmartReplace):
        (WebCore::Pasteboard::read):
        (WebCore::Pasteboard::hasData):
        (WebCore::Pasteboard::types):
        (WebCore::Pasteboard::readString):
        (WebCore::Pasteboard::readFilenames): Made to use the
        PasteboardStrategy instead of PasteboardHelper/GTK+ API.
        * platform/gtk/PasteboardHelper.cpp:
        (WebCore::PasteboardHelper::~PasteboardHelper):
        (WebCore::ClipboardSetData::ClipboardSetData):
        (WebCore::clearClipboardContentsCallback):
        (WebCore::PasteboardHelper::writeClipboardContents): Remove the GClosure
        to notify whether the global selection has been replaced. Use std:function
        instead. Remove SmartPasteInclusion argument, now figured out through
        DataObjectGtk canSmartPaste() member.
        * platform/gtk/PasteboardHelper.h:
        * platform/gtk/PlatformPasteboardGtk.cpp: Added.
        (WebCore::PlatformPasteboard::PlatformPasteboard):
        (WebCore::PlatformPasteboard::writeToClipboard):
        (WebCore::PlatformPasteboard::readFromClipboard): Implemented
        PlatformPasteboard using PasteboardHelper/GTK+ API.

2016-09-13  Dave Hyatt  <hyatt@apple.com>

        [CSS Parser] Enable the new sizes parser by default
        https://bugs.webkit.org/show_bug.cgi?id=161931

        Reviewed by Zalan Bujtas.

        Added new tests in fast/dom/HTMLImageElement/sizes.

        * CMakeLists.txt:
        * WebCore.xcodeproj/project.pbxproj:
        * css/CSSGrammar.y.in:
        Remove the old code that parsed source size lists.

        * css/MediaQueryEvaluator.cpp:
        (WebCore::MediaQueryEvaluator::MediaQueryEvaluator):
        * css/MediaQueryEvaluator.h:
        Change to take a const Document&, since the Document is not modified.

        * css/SourceSizeList.cpp: Removed.
        * css/SourceSizeList.h: Removed.
        * css/parser/CSSParser.cpp:
        (WebCore::CSSParser::parseSizesAttribute): Deleted.
        (WebCore::CSSParser::SourceSize::SourceSize): Deleted.
        (WebCore::CSSParser::sourceSize): Deleted.
        * css/parser/CSSParser.h:
        Remove the old sizes processing code.

        * css/parser/MediaQueryParser.cpp:
        (WebCore::MediaQueryParser::skipUntilComma):
        (WebCore::MediaQueryParser::parseInternal):
        Fix a bug I introduced when modifying this code from Blink. The Nones should have been Nots.

        * css/parser/SizesAttributeParser.cpp:
        (WebCore::SizesAttributeParser::computeLength):
        (WebCore::SizesAttributeParser::SizesAttributeParser):
        (WebCore::SizesAttributeParser::calculateLengthInPixels):
        (WebCore::SizesAttributeParser::mediaConditionMatches):
        (WebCore::SizesAttributeParser::effectiveSizeDefaultValue):
        * css/parser/SizesAttributeParser.h:
        * css/parser/SizesCalcParser.cpp:
        (WebCore::SizesCalcParser::SizesCalcParser):
        (WebCore::SizesCalcParser::appendLength):
        * css/parser/SizesCalcParser.h:
        Make the sizes parsers take a Document, since having separate style and view arguments made
        no sense, given that the style used is always the view's.

        * html/HTMLImageElement.cpp:
        (WebCore::HTMLImageElement::bestFitSourceFromPictureElement):
        (WebCore::HTMLImageElement::selectImageSource):
        * html/parser/HTMLPreloadScanner.cpp:
        (WebCore::TokenPreloadScanner::StartTagScanner::processAttributes):
        Switch image elements and the preload scanner over to the new code.

2016-09-13  Chris Dumez  <cdumez@apple.com>

        Unreviewed, rolling out r205887.

        Broke the Windows build

        Reverted changeset:

        "Merge Element::ScrollToOptions and
        DOMWindow::ScrollToOptions"
        https://bugs.webkit.org/show_bug.cgi?id=161932
        http://trac.webkit.org/changeset/205887

2016-09-13  Dean Jackson  <dino@apple.com>

        Remove a .rej file.

        * animation/DocumentTimeline.h.rej: Removed.

2016-09-13  Alex Christensen  <achristensen@webkit.org>

        Implement URLSearchParams
        https://bugs.webkit.org/show_bug.cgi?id=161920

        Reviewed by Chris Dumez.

        Covered by newly passing web platform tests.

        * CMakeLists.txt:
        * DerivedSources.make:
        * WebCore.xcodeproj/project.pbxproj:
        * html/DOMURL.cpp:
        (WebCore::DOMURL::setQuery):
        (WebCore::DOMURL::searchParams):
        * html/DOMURL.h:
        * html/URLSearchParams.cpp: Added.
        (WebCore::URLSearchParams::URLSearchParams):
        (WebCore::URLSearchParams::get):
        (WebCore::URLSearchParams::has):
        (WebCore::URLSearchParams::set):
        (WebCore::URLSearchParams::append):
        (WebCore::URLSearchParams::getAll):
        (WebCore::URLSearchParams::remove):
        (WebCore::URLSearchParams::toString):
        (WebCore::URLSearchParams::updateURL):
        (WebCore::URLSearchParams::Iterator::Iterator):
        * html/URLSearchParams.h: Added.
        (WebCore::URLSearchParams::create):
        (WebCore::URLSearchParams::createIterator):
        * html/URLSearchParams.idl: Added.
        * html/URLUtils.idl:
        * platform/URLParser.cpp:
        (WebCore::percentDecode):
        (WebCore::URLParser::parseHost):
        (WebCore::formURLDecode):
        (WebCore::serializeURLEncodedForm):
        (WebCore::URLParser::serialize):
        * platform/URLParser.h:

2016-09-12  Dean Jackson  <dino@apple.com>

        Replace RGBA32 with Color in member variables
        https://bugs.webkit.org/show_bug.cgi?id=161856
        <rdar://problem/28254324>

        Reviewed by Simon Fraser.

        In preparation for the Color class to become more than
        just a 4-byte RGBA value, I went through a few places
        that were using the RGBA32 type directly, and replaced
        them with Color. This will make some objects a little
        bigger e.g. BorderValue and its friends.

        I mostly looked at the places that were using RGBA32 as
        a member variable. There is still a lot of RGBA32 use
        around the project, in particular the CSS parser.

        There should be no behaviour change.

        * html/canvas/CanvasRenderingContext2D.cpp: Shadows now use Color.
        (WebCore::CanvasRenderingContext2D::setShadow):
        (WebCore::CanvasRenderingContext2D::shouldDrawShadows):
        (WebCore::CanvasRenderingContext2D::didDraw):
        * html/canvas/CanvasRenderingContext2D.h:
        * html/canvas/CanvasStyle.cpp: Canvas style uses Color for fills and strokes.
        (WebCore::CanvasStyle::CanvasStyle):
        (WebCore::CanvasStyle::isEquivalentColor):
        (WebCore::CanvasStyle::isEquivalentRGBA):
        (WebCore::CanvasStyle::applyStrokeColor):
        (WebCore::CanvasStyle::applyFillColor):
        * html/canvas/CanvasStyle.h:
        (WebCore::CanvasStyle::CMYKAValues::CMYKAValues):
        (WebCore::CanvasStyle::color):

        * html/track/TextTrackCueGeneric.h: Foreground, background and
        highlight colors.
        * platform/graphics/InbandTextTrackPrivateClient.h:
        (WebCore::GenericCueData::setForegroundColor):
        (WebCore::GenericCueData::setBackgroundColor):
        (WebCore::GenericCueData::setHighlightColor):

        * page/PageOverlay.cpp: Background color.
        (WebCore::PageOverlay::setBackgroundColor):
        * page/PageOverlay.h:

        * platform/graphics/mac/ColorMac.h: Random function that returned RGBA32.
        * platform/graphics/mac/ColorMac.mm:
        (WebCore::oldAquaFocusRingColor):

        * rendering/RenderTableCell.cpp: Update the size of CollapsedBorderValue.

        * rendering/RenderTheme.h: Use a NeverDestroyed Color rather than a static RGBA32.

        * rendering/style/BorderValue.h: Use a Color.
        (WebCore::BorderValue::BorderValue):
        (WebCore::BorderValue::isTransparent):
        (WebCore::BorderValue::operator==):
        (WebCore::BorderValue::setColor):
        (WebCore::BorderValue::color):
        * rendering/style/CollapsedBorderValue.h:
        (WebCore::CollapsedBorderValue::CollapsedBorderValue):
        (WebCore::CollapsedBorderValue::color):
        * rendering/style/OutlineValue.h:
        (WebCore::OutlineValue::operator==):

        * rendering/style/RenderStyle.cpp: Update to match new BorderValue.

2016-09-13  Jer Noble  <jer.noble@apple.com>

        [media-source] MediaSource.addSourceBuffer(null) should throw an exception
        https://bugs.webkit.org/show_bug.cgi?id=161884

        Reviewed by Eric Carlson.

        Fixes test: imported/w3c/web-platform-tests/media-source/mediasource-addsourcebuffer.html

        * Modules/mediasource/MediaSource.idl: The addSourceBuffer() parameter is not optional
            and not nullable.

2016-09-13  Daniel Bates  <dabates@apple.com>

        Remove Chrome app-specific CSS property -webkit-app-region
        https://bugs.webkit.org/show_bug.cgi?id=161935

        Reviewed by Simon Fraser.

        * css/parser/CSSParserFastPaths.cpp:

2016-09-13  Daniel Bates  <dabates@apple.com>

        Treat some CSS properties as keyword properties
        https://bugs.webkit.org/show_bug.cgi?id=161934

        Reviewed by Simon Fraser.

        Move validation of the following CSS keyword properties from CSSParser::parseValue() to
        WebCore::isValidKeywordPropertyAndValue():

        CSSPropertyColumnProgression
        CSSPropertyFontStretch
        CSSPropertyTextAlign
        CSSPropertyUnicodeBidi
        CSSPropertyWebkitColumnAxis
        CSSPropertyWebkitCursorVisibility
        CSSPropertyWebkitTextDecorationStyle
        CSSPropertyWebkitTextOrientation
        CSSPropertyWebkitTextZoom
        CSSPropertyWebkitTouchCallout

        Among other benefits, this will make it more straightforward to migrate from CSSParser::is{KeywordPropertyID, ValidKeywordPropertyAndValue}()
        to CSSParserFastPaths::is{KeywordPropertyID, ValidKeywordPropertyAndValue}(), respectively.

        * css/parser/CSSParser.cpp:
        (WebCore::isValidKeywordPropertyAndValue):
        (WebCore::isKeywordPropertyID):
        (WebCore::CSSParser::parseValue):

2016-09-13  Chris Dumez  <cdumez@apple.com>

        Merge Element::ScrollToOptions and DOMWindow::ScrollToOptions
        https://bugs.webkit.org/show_bug.cgi?id=161932

        Reviewed by Simon Fraser.

        Merge Element::ScrollToOptions and DOMWindow::ScrollToOptions.
        Ideally we would merge them on IDL side as well but this is for
        another patch.

        * WebCore.xcodeproj/project.pbxproj:
        * bindings/scripts/CodeGeneratorJS.pm:
        (GenerateDictionaryImplementationContent):
        * bindings/scripts/test/JS/JSTestObj.cpp:
        (WebCore::convertDictionary<TestObj::Dictionary>):
        (WebCore::convertDictionary<TestObj::DictionaryThatShouldNotTolerateNull>):
        (WebCore::convertDictionary<TestObj::DictionaryThatShouldTolerateNull>):
        (WebCore::convertDictionary<AlternateDictionaryName>):
        * dom/Element.h:
        * dom/Element.idl:
        * dom/ScrollToOptions.h: Added.
        * html/HTMLBodyElement.cpp:
        (WebCore::HTMLBodyElement::scrollTo):
        * page/DOMWindow.h:
        * page/DOMWindow.idl:

2016-09-13  Myles C. Maxfield  <mmaxfield@apple.com>

        [Cocoa] Unify font's ascent, descent, and x-height between macOS and iOS
        https://bugs.webkit.org/show_bug.cgi?id=161877

        Reviewed by Simon Fraser.

        macOS and iOS have slightly different handling of ascent, descent, and x-height.
        This patch migrates them to have the same handling of them.

        There are slight behavior changes here because our previous code converted between
        floats and doubles in unnecessary places, and does not handle rounding in
        consistent ways. The differences are all miniscule, but nevertheless lead to test
        results needing to be updated.

        Coincidentally, by performing this unification, there are no longer any places
        on macOS Sierra which are using the CGFontRef member of PlatformFontData. This
        patch removes the member on that operating system for memory savings as well as
        clarity.

        Covered by existing tests.

        * platform/graphics/FontPlatformData.cpp:
        * platform/graphics/FontPlatformData.h:
        * platform/graphics/cocoa/FontCocoa.mm:
        (WebCore::Font::platformInit):
        * platform/graphics/cocoa/FontPlatformDataCocoa.mm:
        (WebCore::FontPlatformData::FontPlatformData):
        (WebCore::FontPlatformData::platformIsEqual):
        (WebCore::FontPlatformData::ctFont):

2016-09-13  Brent Fulgham  <bfulgham@apple.com>

        [Win] Unreviewed build fix.

        Based on a suggestion by Simon Fraser, I have corrected the
        headers to avoid including <d2d1.h> directly, relying instead
        on forward declarations.

        * platform/graphics/FloatPoint.h:
        * platform/graphics/FloatRect.h:
        * platform/graphics/FloatSize.h:
        * platform/graphics/IntPoint.h:
        * platform/graphics/IntRect.h:
        * platform/graphics/IntSize.h:
        * platform/graphics/transforms/AffineTransform.h:
        * platform/graphics/transforms/TransformationMatrix.h:

2016-09-13  Said Abou-Hallawa  <sabouhallawa@apple.com>

        Get rid of the m_premultiplyAlpha flag of the ImageFrame class
        https://bugs.webkit.org/show_bug.cgi?id=159721

        Reviewed by Simon Fraser.

        This flag was only needed when calling ImageBackingStore::create() in 
        ImageFrame::setSize(). Instead we can pass ImageDecoder::m_premultiplyAlpha 
        to ImageFrame::setSize(), which is renamed ImageFrame::initializeBackingStore().
        The passed premultiplyAlpha can then be passed to ImageBackingStore::create().

        * platform/image-decoders/ImageDecoder.cpp:
        (WebCore::ImageFrame::ImageFrame):
        (WebCore::ImageFrame::operator=):
        (WebCore::ImageFrame::initializeBackingStore):
        (WebCore::ImageFrame::copyBitmapData): Deleted.
        (WebCore::ImageFrame::setSize): Deleted.
        * platform/image-decoders/ImageDecoder.h:
        (WebCore::ImageFrame::disposalMethod):
        (WebCore::ImageFrame::setDisposalMethod):
        (WebCore::ImageDecoder::premultiplyAlpha):
        (WebCore::ImageFrame::premultiplyAlpha): Deleted.
        (WebCore::ImageFrame::setPremultiplyAlpha): Deleted.
        * platform/image-decoders/bmp/BMPImageDecoder.cpp:
        (WebCore::BMPImageDecoder::frameBufferAtIndex):
        * platform/image-decoders/bmp/BMPImageReader.cpp:
        (WebCore::BMPImageReader::decodeBMP):
        * platform/image-decoders/gif/GIFImageDecoder.cpp:
        (WebCore::GIFImageDecoder::decode):
        (WebCore::GIFImageDecoder::initFrameBuffer):
        * platform/image-decoders/ico/ICOImageDecoder.cpp:
        (WebCore::ICOImageDecoder::frameCount):
        * platform/image-decoders/jpeg/JPEGImageDecoder.cpp:
        (WebCore::JPEGImageDecoder::frameBufferAtIndex):
        (WebCore::JPEGImageDecoder::outputScanlines):
        * platform/image-decoders/png/PNGImageDecoder.cpp:
        (WebCore::PNGImageDecoder::frameBufferAtIndex):
        (WebCore::PNGImageDecoder::rowAvailable):
        (WebCore::PNGImageDecoder::readChunks):
        (WebCore::PNGImageDecoder::initFrameBuffer):
        (WebCore::setPixelRGB): Deleted.
        (WebCore::setPixelRGBA): Deleted.
        (WebCore::setPixelPremultipliedRGBA): Deleted.
        * platform/image-decoders/webp/WEBPImageDecoder.cpp:
        (WebCore::WEBPImageDecoder::frameBufferAtIndex):
        (WebCore::WEBPImageDecoder::decode):

2016-09-12  Brent Fulgham  <bfulgham@apple.com>

        [Win][Direct2D] Provide Direct2D-based geometry and transform cast operations
        https://bugs.webkit.org/show_bug.cgi?id=161818

        Reviewed by Dean Jackson.

        Tested by new TestWebKitAPI tests.

        Add new casting operators to and from various Direct2D data types.

        * PlatformWin.cmake:
        * platform/graphics/FloatPoint.h:
        (WebCore::FloatPoint::FloatPoint):
        * platform/graphics/FloatRect.h:
        * platform/graphics/FloatSize.h:
        (WebCore::FloatSize::FloatSize):
        * platform/graphics/IntPoint.h:
        * platform/graphics/IntRect.h:
        * platform/graphics/IntSize.h:
        * platform/graphics/transforms/AffineTransform.h:
        * platform/graphics/transforms/TransformationMatrix.h:
        * platform/graphics/win/FloatPointDirect2D.cpp:
        * platform/graphics/win/FloatRectDirect2D.cpp:
        * platform/graphics/win/FloatSizeDirect2D.cpp:
        * platform/graphics/win/IntPointWin.cpp:
        (WebCore::IntPoint::IntPoint):
        (WebCore::IntPoint::operator D2D1_POINT_2F):
        (WebCore::IntPoint::operator D2D1_POINT_2U):
        * platform/graphics/win/IntRectWin.cpp:
        (WebCore::IntRect::IntRect):
        (WebCore::IntRect::operator D2D1_RECT_F):
        (WebCore::IntRect::operator D2D1_RECT_U):
        * platform/graphics/win/IntSizeWin.cpp:
        (WebCore::IntSize::IntSize):
        (WebCore::IntSize::operator D2D1_SIZE_U):
        (WebCore::IntSize::operator D2D1_SIZE_F):
        * platform/graphics/win/TransformationMatrixDirect2D.cpp: Added.
        (WebCore::TransformationMatrix::TransformationMatrix):
        (WebCore::TransformationMatrix::operator D2D1_MATRIX_3X2_F):
        (WebCore::AffineTransform::AffineTransform):
        (WebCore::AffineTransform::operator D2D1_MATRIX_3X2_F):

2016-09-13  Tim Horton  <timothy_horton@apple.com>

        Undoing a candidate insertion results in the replaced text being selected
        https://bugs.webkit.org/show_bug.cgi?id=161894
        <rdar://problem/28225774>

        Reviewed by Simon Fraser.

        Test: editing/mac/spelling/accept-candidate-undo-does-not-select.html

        * WebCore.xcodeproj/project.pbxproj:
        * editing/ReplaceRangeWithTextCommand.cpp: Added.
        (WebCore::ReplaceRangeWithTextCommand::ReplaceRangeWithTextCommand):
        (WebCore::ReplaceRangeWithTextCommand::doApply):
        * editing/ReplaceRangeWithTextCommand.h: Added.
        (WebCore::ReplaceRangeWithTextCommand::create):
        Add a editor command that replaces a range with the given text.

        * editing/Editor.cpp:
        (WebCore::Editor::rangeForTextCheckingResult):
        (WebCore::Editor::handleAcceptedCandidate):
        (WebCore::Editor::selectTextCheckingResult): Deleted.
        * editing/Editor.h:
        Make use of the new editor command to do candidate insertion as a single
        composite operation, so that it is undone as a unit. Otherwise, undo ends up
        undoing the insertion, but not the selection, and we are left with the old
        text, selected, which is undesirable.

2016-09-13  Dave Hyatt  <hyatt@apple.com>

        [CSS Parser] Add CSS Variable Parsing support
        https://bugs.webkit.org/show_bug.cgi?id=161916

        Reviewed by Dean Jackson.

        This patch not only adds the parser for CSS variables (from Blink), but it also brings in
        all of the data structures used to store variables and custom property declarations. We
        will be abandoning our old data structures eventually in favor of these new ones. They
        are not significantly different other than operating on the CSSParserTokenRanges rather
        than the soon-to-be-removed parser value lists.

        * CMakeLists.txt:
        * WebCore.xcodeproj/project.pbxproj:
        * css/CSSCustomIdentValue.cpp: Added.
        (WebCore::CSSCustomIdentValue::CSSCustomIdentValue):
        (WebCore::CSSCustomIdentValue::customCSSText):
        * css/CSSCustomIdentValue.h: Added.
        (WebCore::CSSCustomIdentValue::create):
        (WebCore::CSSCustomIdentValue::value):
        (WebCore::CSSCustomIdentValue::isKnownPropertyID):
        (WebCore::CSSCustomIdentValue::valueAsPropertyID):
        (WebCore::CSSCustomIdentValue::equals):
        * css/CSSCustomPropertyDeclaration.cpp: Added.
        (WebCore::CSSCustomPropertyDeclaration::customCSSText):
        * css/CSSCustomPropertyDeclaration.h: Added.
        (WebCore::CSSCustomPropertyDeclaration::create):
        (WebCore::CSSCustomPropertyDeclaration::name):
        (WebCore::CSSCustomPropertyDeclaration::value):
        (WebCore::CSSCustomPropertyDeclaration::id):
        (WebCore::CSSCustomPropertyDeclaration::equals):
        (WebCore::CSSCustomPropertyDeclaration::CSSCustomPropertyDeclaration):
        * css/CSSCustomPropertyValue.h:
        * css/CSSValue.cpp:
        (WebCore::CSSValue::cssText):
        (WebCore::CSSValue::destroy):
        * css/CSSValue.h:
        (WebCore::CSSValue::isCustomPropertyDeclaration):
        (WebCore::CSSValue::isCustomIdentValue):
        (WebCore::CSSValue::isVariableReferenceValue):
        * css/CSSValueKeywords.in:
        * css/CSSVariableData.cpp: Added.
        (WebCore::CSSVariableData::updateTokens):
        (WebCore::CSSVariableData::operator==):
        (WebCore::CSSVariableData::consumeAndUpdateTokens):
        (WebCore::CSSVariableData::CSSVariableData):
        * css/CSSVariableData.h: Added.
        (WebCore::CSSVariableData::create):
        (WebCore::CSSVariableData::createResolved):
        (WebCore::CSSVariableData::tokenRange):
        (WebCore::CSSVariableData::tokens):
        (WebCore::CSSVariableData::needsVariableResolution):
        (WebCore::CSSVariableData::CSSVariableData):
        * css/CSSVariableDependentValue.h:
        * css/CSSVariableReferenceValue.cpp: Added.
        (WebCore::CSSVariableReferenceValue::customCSSText):
        * css/CSSVariableReferenceValue.h: Added.
        (WebCore::CSSVariableReferenceValue::create):
        (WebCore::CSSVariableReferenceValue::variableDataValue):
        (WebCore::CSSVariableReferenceValue::equals):
        (WebCore::CSSVariableReferenceValue::CSSVariableReferenceValue):
        * css/CSSVariableValue.h:
        * css/parser/CSSParserImpl.cpp:
        (WebCore::filterProperties):
        (WebCore::CSSParserImpl::consumeDeclaration):
        (WebCore::CSSParserImpl::consumeVariableValue):
        * css/parser/CSSVariableParser.cpp: Added.
        (WebCore::CSSVariableParser::isValidVariableName):
        (WebCore::classifyBlock):
        (WebCore::isValidVariableReference):
        (WebCore::classifyVariableRange):
        (WebCore::CSSVariableParser::containsValidVariableReferences):
        (WebCore::CSSVariableParser::parseDeclarationValue):
        * css/parser/CSSVariableParser.h: Added.

2016-09-13  Daniel Bates  <dabates@apple.com>

        Remove CSS keyword properties from CSSParser::parseValue(CSSPropertyID, bool)
        https://bugs.webkit.org/show_bug.cgi?id=161918

        Reviewed by Simon Fraser.

        CSSParser::parseValue(CSSPropertyID, bool) calls ASSERT_NOT_REACHED() when processing a CSS property
        that is known to accept only keyword values as a means to guide a person to add such a CSS property
        to the switch block in WebCore::isValidKeywordPropertyAndValue(). In theory this sounds good, but
        in practice it does not work out and the list of such properties is stale. We should remove the
        case statements for such properties and the maintenance burden they required, which was manual and
        error prone. We should think about a better way to enforce that all CSS properties are parsed/validated.

        The approach of calling ASSERT_NOT_REACHED is not beneficial to catching coding mistakes because
        CSSParser::parseValue() has a default case statement to parse/validate SVG CSS properties and hence
        does not allow the C++ compiler to validate that the switch block covers all CSSPropertyIDs.

        * css/parser/CSSParser.cpp:
        (WebCore::CSSParser::parseValue):

2016-09-13  Daniel Bates  <dabates@apple.com>

        Organize CSS keyword properties in WebCore::isKeywordPropertyID()
        https://bugs.webkit.org/show_bug.cgi?id=161917

        Reviewed by Simon Fraser.

        Group and sort compile-time feature keywords and move them to the end of the switch block
        to avoid the distraction of preprocessor statements scattered throughout the list. Sort
        all the other keyword properties to make it straightforward to find a property by name.

        * css/parser/CSSParser.cpp:
        (WebCore::isKeywordPropertyID):

2016-09-13  Nan Wang  <n_wang@apple.com>

        AX: Crash at AccessibilityRenderObject::computeAccessibilityIsIgnored const  + 552
        https://bugs.webkit.org/show_bug.cgi?id=161276

        Reviewed by Chris Fleizach.

        Sometimes when calling JavaScript removeChild or setAttribute on a node, it seems like
        the renderer is deallocated during the process of computeAccessibilityIsIgnored. It's 
        causing a crash when we are accessing the renderer after that. Since RenderObject is not ref
        counted and we cannot hold onto it for the duration of the function, fixed it by adding
        more nil checks.

        Despite my best efforts, I couldn't make a layout test that destroys the renderer within
        the computeAccessibilityIsIgnored function. 

        * accessibility/AccessibilityRenderObject.cpp:
        (WebCore::AccessibilityRenderObject::computeAccessibilityIsIgnored):

2016-09-12  Jer Noble  <jer.noble@apple.com>

        Media-source backed elements block load event; cause web-platform-test flakiness
        https://bugs.webkit.org/show_bug.cgi?id=161881

        Reviewed by Eric Carlson.

        Test: media/media-source/media-source-delaying-load-event.html

        The MSE specification has added an explicit step to their "attaching to media element"
        algorithm which tells the media element to stop delaying the load event. And indeed,
        the HTMLMediaElement blocks the load event when a MediaSource is attached but its data
        is never loaded.

        * Modules/mediasource/MediaSource.cpp:
        (WebCore::MediaSource::setPrivateAndOpen):
        * html/HTMLMediaElement.h:

2016-09-12  Zalan Bujtas  <zalan@apple.com>

        Input type object and the associated render can go out of sync.
        https://bugs.webkit.org/show_bug.cgi?id=161871
        <rdar://problem/28178094>

        Reviewed by Antti Koivisto.

        Bail out when we've got a mismatched renderer.

        Test: fast/forms/assert-on-input-type-change.html

        * html/ImageInputType.cpp:
        (WebCore::ImageInputType::altAttributeChanged):

2016-09-13  Carlos Garcia Campos  <cgarcia@igalia.com>

        [GTK] Get rid of DataObjectGtk::forClipboard and cleanup pasteboard code
        https://bugs.webkit.org/show_bug.cgi?id=161907

        Reviewed by Michael Catanzaro.

        We don't really need to keep a DataObjectGtk for every clipboard, we could simply pass the DataObjectGtk to read
        and write methods of PasteboardHelper.

        * editing/gtk/EditorGtk.cpp:
        (WebCore::createFragmentFromPasteboardData): Update for DataObjectGtk API changes.
        * platform/Pasteboard.h:
        * platform/gtk/DataObjectGtk.cpp: Remove forClipboard() static method.
        * platform/gtk/DataObjectGtk.h: Ditto.
        * platform/gtk/PasteboardGtk.cpp:
        (WebCore::Pasteboard::Pasteboard): Always create a new DataObjectGtk.
        (WebCore::Pasteboard::dataObject): Return a const reference instead of a pointer.
        (WebCore::Pasteboard::writePlainText): Pass the DataObjectGtk to PasteboardHelper.
        (WebCore::Pasteboard::write): Ditto.
        (WebCore::Pasteboard::writePasteboard): Ditto.
        (WebCore::Pasteboard::clear): Ditto.
        (WebCore::Pasteboard::read): Ditto.
        (WebCore::Pasteboard::hasData): Ditto.
        (WebCore::Pasteboard::types): Ditto.
        (WebCore::Pasteboard::readString): Ditto.
        (WebCore::Pasteboard::readFilenames): Ditto.
        * platform/gtk/PasteboardHelper.cpp:
        (WebCore::PasteboardHelper::getClipboardContents): Update the given DataObjectGtk.
        (WebCore::PasteboardHelper::fillSelectionData): Use a const reference to DataObjectGtk instead of a pointer.
        (WebCore::PasteboardHelper::targetListForDataObject): Ditto.
        (WebCore::PasteboardHelper::fillDataObjectFromDropData): Use a reference to DataObjectGtk instead of a pointer.
        (WebCore::ClipboardSetData::ClipboardSetData): Helper struct to pass DataObjectGtk and callback to clipboard callbacks.
        (WebCore::ClipboardSetData::~ClipboardSetData):
        (WebCore::getClipboardContentsCallback): Get the DataObjectGtk from ClipboardSetData struct passed as user data.
        (WebCore::clearClipboardContentsCallback): Get the DataObjectGtk and callback from ClipboardSetData struct
        passed as user data.
        (WebCore::PasteboardHelper::writeClipboardContents): Write the given DataObjectGtk.
        * platform/gtk/PasteboardHelper.h:

2016-09-13  Chris Dumez  <cdumez@apple.com>

        Drop support for <isindex>
        https://bugs.webkit.org/show_bug.cgi?id=7139

        Reviewed by Ryosuke Niwa.

        Drop support for <isindex> and <input name=isindex>. Those are no longer
        in the HTML specification and Chrome / Edge have already dropped their
        support. Firefox is also planning on dropping this.

        Test: imported/w3c/web-platform-tests/html/semantics/forms/historical.html

        * css/StyleResolver.cpp:
        (WebCore::elementTypeHasAppearanceFromUAStyle):
        * css/html.css:
        (input, textarea, keygen, select, button, meter, progress):
        (input, textarea, keygen, select, button):
        (#if defined(WTF_PLATFORM_IOS) && WTF_PLATFORM_IOS):
        (input::placeholder):
        (input:focus, textarea:focus, keygen:focus, select:focus):
        * dom/Element.cpp:
        (WebCore::Element::ieForbidsInsertHTML):
        * html/HTMLInputElement.cpp:
        (WebCore::HTMLInputElement::HTMLInputElement):
        * html/HTMLTagNames.in:
        * html/parser/HTMLStackItem.h:
        (WebCore::isSpecialNode):
        * html/parser/HTMLTreeBuilder.cpp:
        (WebCore::HTMLTreeBuilder::processStartTagForInBody):
        (WebCore::HTMLTreeBuilder::processCloseWhenNestedTag): Deleted.
        (WebCore::createCaseMap): Deleted.
        * html/parser/HTMLTreeBuilder.h:
        * platform/network/FormData.cpp:
        (WebCore::FormData::appendKeyValuePairItems):

2016-09-12  Per Arne Vollan  <pvollan@apple.com>

        [Win] Warning fix.
        https://bugs.webkit.org/show_bug.cgi?id=161858

        Reviewed by Brent Fulgham.

        Use exported constants from CoreText.dll, instead of creating copies.

        * PlatformAppleWin.cmake:
        * platform/spi/win/CoreTextSPIWin.cpp: Removed.
        * platform/spi/win/CoreTextSPIWin.h:

2016-09-12  Youenn Fablet  <youenn@apple.com>

        ScriptElement should use FetchOptions::mode according its crossOrigin attribute
        https://bugs.webkit.org/show_bug.cgi?id=161686

        Reviewed by Darin Adler.

        Setting ScriptElement fetch mode according its crossOrigin attribute.
        Removing LoadableClassicScriptchecking of CORS since this is now done at ResourceLoader/CachedResource level.

        Updating CachedResourceLoader to ensure that a resource that matches an on-going resource load but with different fetch mode/origin,
        always gets its loading started if the resource state is not Cached.

        Tests: fast/dom/script-crossorigin-loads-fail-origin.html
               http/tests/security/cross-origin-cached-images-parallel.html
               http/tests/security/cross-origin-cached-images.html
               http/tests/security/cross-origin-cached-scripts-parallel.html
               http/tests/security/cross-origin-cached-scripts.html
               http/tests/security/script-crossorigin-loads-correctly-credentials.html
               http/tests/security/script-with-dataurl.html

        * dom/LoadableClassicScript.cpp:
        (WebCore::LoadableClassicScript::create):
        (WebCore::LoadableClassicScript::notifyFinished): Checking CORS failures using the resource state.
        (WebCore::LoadableClassicScript::~LoadableClassicScript): Deleted.
        (WebCore::LoadableClassicScript::isLoaded): Deleted.
        * dom/LoadableClassicScript.h:
        * dom/ScriptElement.cpp:
        (WebCore::ScriptElement::requestClassicScript):
        (WebCore::ScriptElement::requestScriptWithCache): Using CachedResourceRequest::setAsPotentiallyCrossOrigin to set fetch mode according crossOrigin attribute.
        * dom/ScriptElement.h:
        * loader/cache/CachedImage.cpp:
        (WebCore::CachedImage::setBodyDataFrom):
        * loader/cache/CachedResourceLoader.cpp:
        (WebCore::CachedResourceLoader::updateCachedResourceWithCurrentRequest): Adding support for script resources.
        (WebCore::CachedResourceLoader::requestResource): Ensuring that 'updated' resources gets actually loaded.
        * loader/cache/CachedScript.cpp:
        (WebCore::CachedScript::setBodyDataFrom): Implementing specific data copy from another CachedScript.
        * loader/cache/CachedScript.h:

2016-09-12  Carlos Garcia Campos  <cgarcia@igalia.com>

        [GTK] Scrollbar  too large
        https://bugs.webkit.org/show_bug.cgi?id=161735

        Reviewed by Michael Catanzaro.

        We were not calculating the total scrollbar size correctly when the theme defines a minimum width/height. In
        that case we need to take the extra size into account (border, margin, padding), but not adding the minimum
        size. We were also adjusting the thumb position when rendering in indicator mode, but we really need to adjust
        the whole rectangle. This worked in Adwaita because it uses a transparent track when in indicator mode. We are
        also now taking into account the text direction when doing this adjustment for the indicator mode.

        * platform/gtk/ScrollbarThemeGtk.cpp:
        (WebCore::ScrollbarThemeGtk::paint):
        (WebCore::ScrollbarThemeGtk::scrollbarThickness):

2016-09-12  Carlos Garcia Campos  <cgarcia@igalia.com>

        [GTK] Crash of WebProcess on the last WebView disconnect (take two)
        https://bugs.webkit.org/show_bug.cgi?id=161842

        Reviewed by Michael Catanzaro.

        The problem is that when PlatformDisplayX11 is destroyed, the sharing GL context is deleted and its destructor
        makes a downcast of PlatformDisplay to get the native X11 display. We could simply keep a pointer to the native
        X11 display in GLContextGLX, got at construction time from the PlatformDisplay, and ensure the sharing GL
        context is deleted before the native X11 display is closed.

        * platform/graphics/PlatformDisplay.h: Make m_sharingGLContext protected.
        * platform/graphics/glx/GLContextGLX.cpp:
        (WebCore::GLContextGLX::GLContextGLX): Initialize m_x11Display.
        (WebCore::GLContextGLX::~GLContextGLX): Use m_x11Display and remove confusing comment about possible crash with
        nviedia closed drivers.
        (WebCore::GLContextGLX::defaultFrameBufferSize): Use m_x11Display.
        (WebCore::GLContextGLX::makeContextCurrent): Ditto.
        (WebCore::GLContextGLX::swapBuffers): Ditto.
        (WebCore::GLContextGLX::swapInterval): Ditto.
        (WebCore::GLContextGLX::cairoDevice): Ditto.
        * platform/graphics/glx/GLContextGLX.h:
        * platform/graphics/x11/PlatformDisplayX11.cpp:
        (WebCore::PlatformDisplayX11::~PlatformDisplayX11): Delete the sharing GL context before closing the display.

2016-09-12  Chris Dumez  <cdumez@apple.com>

        Fix post-landing review comments after r205787
        https://bugs.webkit.org/show_bug.cgi?id=161885

        Reviewed by Darin Adler.

        Leverage new StringBuilder::append(CFStringRef) overload.

        * html/parser/HTMLParserIdioms.cpp:
        (WebCore::parseHTTPRefreshInternal):
        * page/CaptionUserPreferencesMediaAF.cpp:
        (WebCore::CaptionUserPreferencesMediaAF::captionsDefaultFontCSS):
        (WebCore::buildDisplayStringForTrackBase):
        * platform/network/mac/CookieJarMac.mm:
        (WebCore::cookiesForSession):
        * rendering/RenderThemeIOS.mm:
        (WebCore::RenderThemeIOS::mediaControlsStyleSheet):
        (WebCore::RenderThemeIOS::mediaControlsScript):
        * rendering/RenderThemeMac.mm:
        (WebCore::RenderThemeMac::mediaControlsStyleSheet):
        (WebCore::RenderThemeMac::mediaControlsScript):

2016-09-12  Alex Christensen  <achristensen@webkit.org>

        URLParser: Correctly ignore spaces before relative URLs with no scheme
        https://bugs.webkit.org/show_bug.cgi?id=161889

        Reviewed by Daniel Bates.

        Covered by new API tests.

        * platform/URLParser.cpp:
        (WebCore::URLParser::parse):

2016-09-12  Nan Wang  <n_wang@apple.com>

        AX: Crash at WebCore::Range::compareBoundaryPoints(WebCore::Range::CompareHow, WebCore::Range const&, int&) const + 23
        https://bugs.webkit.org/show_bug.cgi?id=161878

        Reviewed by Chris Fleizach.

        In function characterOffsetsInOrder(const CharacterOffset&, const CharacterOffset&), we are creating two
        ranges based on the nodes that are associated to the passed in CharacterOffsets. When the first node is a doctype
        node, the first range will be a nullptr, and dereferencing it leads to a crash. Fixed this by adding a 
        NULL check.

        Test: accessibility/mac/doctype-node-in-text-marker-crash.html

        * accessibility/AXObjectCache.cpp:
        (WebCore::characterOffsetsInOrder):
        (WebCore::resetNodeAndOffsetForReplacedNode):

2016-09-12  Said Abou-Hallawa  <sabouhallawa@apple.com>

        Move the pixel data of ImageFrame to a separate class named ImageBackingStore
        https://bugs.webkit.org/show_bug.cgi?id=159679

        Reviewed by Simon Fraser.

        Move the pixel data manipulation part in ImageFrame into a separate class
        and allocate it on demand.

        * PlatformEfl.cmake:
        * PlatformGTK.cmake:
        * PlatformWinCairo.cmake:
        * WebCore.xcodeproj/project.pbxproj:
        Add ImageBackingStoreCairo.cpp and remove ImageDecoderCairo.cpp from the
        WebKit projects.

        * platform/graphics/Color.cpp:
        (WebCore::premultipliedChannel): channel = channel * alpha / 255.
        (WebCore::unpremultipliedChannel): channel = channel * 255 / alpha.
        (WebCore::makePremultipliedRGBA): Un-premultiplied channels to premultiplied RGBA32.
        (WebCore::makeUnPremultipliedRGBA): Premultiplied channels to un-premultiplied RGBA32.
        (WebCore::colorFromPremultipliedARGB): Use makeUnPremultipliedRGBA.
        (WebCore::premultipliedARGBFromColor): Use makePremultipliedRGBA.
        * platform/graphics/Color.h:
        (WebCore::fastMultiplyBy255): x * 255 = x * 256 - x = x << 8 - x.

        * platform/graphics/ImageBackingStore.h: Added.
        (WebCore::ImageBackingStore::create): Creates a new ImageBackingStore.
        (WebCore::ImageBackingStore::setSize): Changes the pixels size.
        (WebCore::ImageBackingStore::setFrameRect): This will always just be the entire buffer except for GIF and PNG frames.
        (WebCore::ImageBackingStore::size): Returns the pixels size.
        (WebCore::ImageBackingStore::frameRect): Returns the pixels frame rectangle.
        (WebCore::ImageBackingStore::clear): Clears the entire image.
        (WebCore::ImageBackingStore::clearRect): Clears a rectangle in the image.
        (WebCore::ImageBackingStore::repeatFirstRow): Repeats the first row in a rectangle in the image.
        (WebCore::ImageBackingStore::pixelAt): Returns a pointer to a pixel data.
        (WebCore::ImageBackingStore::setPixel): Sets the color of a pixel in the image.
        (WebCore::ImageBackingStore::blendPixel): Blend a color with a pixel in the image.
        (WebCore::ImageBackingStore::inBounds): Checks if a rectangle is in the bounds of the image.
        (WebCore::ImageBackingStore::isOverSize): Checks whether a size could not be allocated for an image.
        (WebCore::ImageBackingStore::ImageBackingStore):

        * platform/graphics/cg/NativeImageCG.cpp:
        (WebCore::nativeImageHasAlpha): Implement this function. See comments in https://bugs.webkit.org/show_bug.cgi?id=158684.

        * platform/image-decoders/ImageDecoder.cpp:
        (WebCore::ImageFrame::operator=): copyBitmapData() now copies the frameRect of the ImageBackingStore.
        (WebCore::ImageFrame::clearPixelData): The pixels data and the pointer to these pixels are now included in the ImageBackingStore.
        (WebCore::ImageFrame::zeroFillPixelData): Clearing the image pixels are now in ImageBackingStore::clear().
        (WebCore::ImageFrame::zeroFillFrameRect): Clearing the image pixels are now in ImageBackingStore::clearRect().
        (WebCore::ImageFrame::copyBitmapData): We either need to create a new ImageBackingStore or nullify the current one.
        (WebCore::ImageFrame::setSize): ImageFrame::setSize() is supposed to be called once and to create the ImageBackingStore.
        (WebCore::ImageFrame::setOriginalFrameRect): Delegate this call to ImageBackingStore::setFrameRect().
        (WebCore::ImageDecoder::frameBytesAtIndex): ImageFrame::PixelData can be replaced by RGBA32.

        * platform/image-decoders/ImageDecoder.h: