https://bugs.webkit.org/show_bug.cgi?id=118042
<rdar://problem/
14272857>
Reviewed by Brent Fulgham.
Since the crash is not reproducible, only test case from Blink r153029 is merged:
https://codereview.chromium.org/
17682003
* fast/images/image-load-event-crash-expected.txt: Added.
* fast/images/image-load-event-crash.html: Added.
git-svn-id: https://svn.webkit.org/repository/webkit/trunk@193969
268f45cc-cd09-0410-ab3c-
d52691b4dbfc
+2015-12-11 Jiewen Tan <jiewen_tan@apple.com>
+
+ Do not fire load events from frames with scripting disabled
+ https://bugs.webkit.org/show_bug.cgi?id=118042
+ <rdar://problem/14272857>
+
+ Reviewed by Brent Fulgham.
+
+ Since the crash is not reproducible, only test case from Blink r153029 is merged:
+ https://codereview.chromium.org/17682003
+
+ * fast/images/image-load-event-crash-expected.txt: Added.
+ * fast/images/image-load-event-crash.html: Added.
+
2015-12-11 Brady Eidson <beidson@apple.com>
Modern IDB: storage/indexeddb/index-count.html fails.
--- /dev/null
+PASS. WebKit didn't crash.
+
--- /dev/null
+<!DOCTYPE html>
+<head>
+<style>
+img {
+ background-image: url("data:image/svg+xml,<svg></svg>");
+}
+</style>
+<script>
+function changeStyleAndLayout() {
+ document.body.style.height = '100px';
+ var forceLayout = document.body.offsetWidth;
+ if (window.testRunner)
+ testRunner.dumpAsText();
+}
+</script>
+</head>
+<body>
+ PASS. WebKit didn't crash.<br/>
+ <img onload="changeStyleAndLayout()" src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAUAAAAFCAYAAACNbyblAAAAHElEQVQI12P4//8/w38GIAXDIBKE0DHxgljNBAAO9TXL0Y4OHwAAAABJRU5ErkJggg==">
+</body>
+</html>
+
git://git.webkit.org / WebKit-https.git / commitdiff