2011-02-04 Adam Barth <abarth@webkit.org>
[WebKit.git] / Source / WebCore / ChangeLog
1 2011-02-04  Adam Barth  <abarth@webkit.org>
2
3         Reviewed by Maciej Stachowiak.
4
5         Crash in WebCore::TextEncoding::decode below XSSFilter::init
6         https://bugs.webkit.org/show_bug.cgi?id=53837
7
8         Add missing null check.
9
10         Test: http/tests/security/xssAuditor/non-block-javascript-url-frame.html
11
12         * html/parser/XSSFilter.cpp:
13         (WebCore::XSSFilter::init):
14
15 2011-02-04  Simon Fraser  <simon.fraser@apple.com>
16
17         Reviewed by Dan Bernstein.
18
19         Crashes in ShadowBlur via WebKit2 FindController
20         https://bugs.webkit.org/show_bug.cgi?id=53830
21         
22         Fix a crash cause by re-entering ShadowBlur, and add assertions to
23         detect when it happens.
24         
25         The re-entrancy occurred when drawRectShadowWithTiling() filled
26         the interior of the shadow with fillRect() on the context
27         which still had the shadow state set. This would make another ShadowBlur
28         on the stack and call into the code again, potentially blowing away
29         the image buffer.
30         
31         Fix by turning off shadows in the destination context while we're
32         drawing the tiled shadow. The non-tiled code path already did this.
33
34         Not testable because CSS shadows clip out the inside of the rect
35         being shadowed, and SVG uses fillPath, even for rects.
36
37         * platform/graphics/ShadowBlur.cpp:
38         (WebCore::ScratchBuffer::ScratchBuffer):
39         (WebCore::ScratchBuffer::getScratchBuffer):
40         (WebCore::ScratchBuffer::scheduleScratchBufferPurge):
41         (WebCore::ShadowBlur::ShadowBlur):
42         (WebCore::ShadowBlur::drawRectShadowWithTiling):
43
44 2011-02-04  Carlos Garcia Campos  <cgarcia@igalia.com>
45
46         Reviewed by Martin Robinson.
47
48         [GTK] Don't use a fixed size for search field icons
49         https://bugs.webkit.org/show_bug.cgi?id=50624
50
51         Use the parent input content box to make sure the icon fits in the
52         search field, scaling it down when needed.
53
54         * platform/gtk/RenderThemeGtk.cpp:
55         (WebCore::paintGdkPixbuf):
56         (WebCore::getIconSizeForPixelSize):
57         (WebCore::adjustSearchFieldIconStyle):
58         (WebCore::RenderThemeGtk::adjustSearchFieldResultsDecorationStyle):
59         (WebCore::centerRectVerticallyInParentInputElement):
60         (WebCore::RenderThemeGtk::paintSearchFieldResultsDecoration):
61         (WebCore::RenderThemeGtk::adjustSearchFieldCancelButtonStyle):
62         (WebCore::RenderThemeGtk::paintSearchFieldCancelButton):
63         (WebCore::RenderThemeGtk::paintCapsLockIndicator):
64         (WebCore::RenderThemeGtk::paintMediaButton):
65
66 2011-02-04  Hironori Bono  <hbono@chromium.org>
67
68         Reviewed by Adam Barth.
69
70         [chromium] JPEG corruption
71         https://bugs.webkit.org/show_bug.cgi?id=53250
72
73         Same as gray-scale JPEGs, we convert the colors of CMYK JPEGs with color
74         profiles from CMYK to RGB twice and it causes color corruption. This
75         change suppresses the color profiles for CMYK JPEGs same as gray-scale
76         ones.
77
78         Test: fast/images/cmyk-jpeg-with-color-profile.html
79
80         * platform/image-decoders/jpeg/JPEGImageDecoder.cpp:
81         (WebCore::JPEGImageReader::decode):
82
83 2011-02-04  Xiyuan Xia  <xiyuan@chromium.org>
84
85         Reviewed by Tony Chang.
86
87         [Chromium] Option text in select popup does not align with menulist button text
88         https://bugs.webkit.org/show_bug.cgi?id=53632
89
90         This makes clientPaddingLeft and  clientPaddingRight return
91         the additional m_innerBlock's padding so that the popup item text
92         aligns with the menulist button text.
93
94         * rendering/RenderMenuList.cpp:
95         (WebCore::RenderMenuList::clientPaddingLeft):
96         (WebCore::RenderMenuList::clientPaddingRight):
97
98 2011-02-04  Anders Carlsson  <andersca@apple.com>
99
100         Reviewed by Sam Weinig and Beth Dakin.
101
102         REGRESSION: Horizontal scrollbar thumbs leave artifacts over page content when scrolling vertically
103         <rdar://problem/8962457>
104
105         * platform/ScrollView.cpp:
106         (WebCore::ScrollView::scrollContents):
107         Subtract scrollbars from the scroll view rect if overlay scrollers are enabled.
108         
109         * platform/ScrollableArea.cpp:
110         (WebCore::ScrollableArea::setScrollOffsetFromAnimation):
111         Make sure to invalidate both scrollbars if overlay scrollers are enabled.
112
113 2011-02-04  Adam Barth  <abarth@webkit.org>
114
115         Reviewed by Eric Seidel.
116
117         PluginDocuments don't create widgets for plugins on back/forward
118         https://bugs.webkit.org/show_bug.cgi?id=53474
119
120         Long ago, PluginDocument always caused the HTMLEmbedElement to create
121         its widget synchronously during a post-layout task.  Recently, however,
122         some changes to the HistroyController caused layout on back/forward to
123         become slightly more complicated (and added an extra level of recursion
124         to layout).  This extra level of recursion triggered the "I've recursed
125         too many times" condition in the post-layout task queue, causing the
126         FrameView to run the remainder of the tasks asynchronously.
127         Unfortunately, that broke PluginDocument because it needs its the
128         HTMLEmbedElement's updateWidget task to run synchronously.
129
130         This patch adds a mechanism for "kicking off" the pending post-layout
131         tasks synchronously (instead of waiting for the timer to fire).
132         PluginDocument then uses that facility to ensure that the
133         HTMLEmbedElement's updateWidget task happens.
134
135         Test: plugins/plugin-document-back-forward.html
136
137         * html/PluginDocument.cpp:
138         (WebCore::PluginDocumentParser::appendBytes):
139         * page/FrameView.cpp:
140         (WebCore::FrameView::flushAnyPendingPostLayoutTasks):
141         * page/FrameView.h:
142
143 2011-02-04  Charlie Reis  <creis@chromium.org>
144
145         Reviewed by Mihai Parparita.
146
147         Crash in WebCore::HistoryController::itemsAreClones
148         https://bugs.webkit.org/show_bug.cgi?id=52819
149
150         Avoids deleting the current HistoryItem while it is still in use.
151         Ensures that provisional items are committed for same document navigations.
152         Ensures that error pages are committed on back/forward navigations.
153         Also removes unneeded sanity checks used for diagnosing the problem.
154
155         * loader/HistoryController.cpp:
156         * loader/HistoryController.h:
157
158 2011-02-04  Carol Szabo  <carol.szabo@nokia.com>
159
160         Reviewed by David Hyatt.
161
162         Code Changes.
163
164         CSS 2.1 failure: content-*
165         https://bugs.webkit.org/show_bug.cgi?id=52126
166
167         Test: fast/css/counters/content-021.html
168
169         * rendering/CounterNode.cpp:
170         (showCounterTree):
171         Made parameter const because it is supposed to be so.
172         * rendering/RenderCounter.cpp:
173         (WebCore::previousInPreOrder):
174         (WebCore::previousSiblingOrParent):
175         (WebCore::parentElement):
176         (WebCore::areRenderersElementsSiblings):
177         (WebCore::nextInPreOrder):
178         Added these local helper functions to help navigate the DOM tree
179         enriched with :before and :after pseudo elements.
180         (WebCore::planCounter):
181         Fixed bug that would create a repeat counter for second and
182         subsequent renderers associated with the same DOM element.
183         (WebCore::findPlaceForCounter):
184         (WebCore::makeCounterNode):
185         Changed to use the new tree navigation functions described above
186         instead of the Renderer Tree navigation functions.
187         (WebCore::RenderCounter::rendererSubtreeAttached):
188         (WebCore::RenderCounter::rendererStyleChanged):
189         Optimized to not bother about counters until the renderers are
190         finally attached.
191         (showRendererTree):
192         (showNodeTree):
193         Debug helper functions used to debug Counter bugs.
194
195 2011-02-04  Dan Bernstein  <mitz@apple.com>
196
197         Typo fix.
198
199         * html/parser/XSSFilter.cpp:
200         (WebCore::HTMLNames::containsJavaScriptURL):
201
202 2011-02-04  Dan Bernstein  <mitz@apple.com>
203
204         Reviewed by Anders Carlsson.
205
206         Make an infinite loop introduced in r77454 finite.
207
208         * html/parser/XSSFilter.cpp:
209         (WebCore::HTMLNames::containsJavaScriptURL):
210
211 2011-02-04  Jer Noble  <jer.noble@apple.com>
212
213         Reviewed by Eric Carlson.
214
215         Frame accurate seeking isn't always accurate
216         https://bugs.webkit.org/show_bug.cgi?id=52697
217
218         Test: media/video-frame-accurate-seek.html
219
220         Make seeking slightly more accurate by rounding instead of truncating
221         when converting from seconds-in-float to time/timeScale.
222
223         * platform/graphics/mac/MediaPlayerPrivateQTKit.mm:
224         (WebCore::MediaPlayerPrivateQTKit::createQTTime):
225         * platform/graphics/win/MediaPlayerPrivateQuickTimeVisualContext.cpp:
226         (WebCore::MediaPlayerPrivateQuickTimeVisualContext::mediaTimeForTimeValue):
227         * platform/graphics/win/QTMovie.cpp:
228         (QTMovie::setCurrentTime):
229
230 2011-02-04  Jeremy Orlow  <jorlow@chromium.org>
231
232         Reviewed by Nate Chapin.
233
234         Second IndexedDB events overhaul patch
235         https://bugs.webkit.org/show_bug.cgi?id=53813
236
237         If an IDBRequest has a IDBTransaction, it should propogate
238         events through it. In order to do this, IDBRequest needs to
239         hold a transaction frontend object rather than a backend one.
240
241         Test: storage/indexeddb/request-event-propagation.html
242
243         * storage/IDBCursor.cpp:
244         (WebCore::IDBCursor::IDBCursor):
245         * storage/IDBCursor.h:
246         (WebCore::IDBCursor::create):
247         * storage/IDBDatabase.cpp:
248         (WebCore::IDBDatabase::setSetVersionTransaction):
249         (WebCore::IDBDatabase::createObjectStore):
250         (WebCore::IDBDatabase::deleteObjectStore):
251         * storage/IDBDatabase.h:
252         * storage/IDBIndex.cpp:
253         (WebCore::IDBIndex::IDBIndex):
254         (WebCore::IDBIndex::openCursor):
255         (WebCore::IDBIndex::openKeyCursor):
256         (WebCore::IDBIndex::get):
257         (WebCore::IDBIndex::getKey):
258         * storage/IDBIndex.h:
259         (WebCore::IDBIndex::create):
260         * storage/IDBObjectStore.cpp:
261         (WebCore::IDBObjectStore::IDBObjectStore):
262         (WebCore::IDBObjectStore::get):
263         (WebCore::IDBObjectStore::add):
264         (WebCore::IDBObjectStore::put):
265         (WebCore::IDBObjectStore::deleteFunction):
266         (WebCore::IDBObjectStore::createIndex):
267         (WebCore::IDBObjectStore::deleteIndex):
268         (WebCore::IDBObjectStore::openCursor):
269         * storage/IDBObjectStore.h:
270         (WebCore::IDBObjectStore::create):
271         * storage/IDBRequest.cpp:
272         (WebCore::IDBRequest::create):
273         (WebCore::IDBRequest::IDBRequest):
274         (WebCore::IDBRequest::resetReadyState):
275         (WebCore::IDBRequest::onSuccess):
276         (WebCore::IDBRequest::dispatchEvent):
277         * storage/IDBRequest.h:
278         * storage/IDBTransaction.cpp:
279         (WebCore::IDBTransaction::IDBTransaction):
280         (WebCore::IDBTransaction::objectStore):
281         (WebCore::IDBTransaction::contextDestroyed):
282         (WebCore::IDBTransaction::enqueueEvent):
283         * storage/IDBTransaction.h:
284         * storage/IDBTransaction.idl:
285
286 2011-02-04  Jeremy Orlow  <jorlow@chromium.org>
287
288         Reviewed by Nate Chapin.
289
290         First step towards event propogation within IndexedDB
291         https://bugs.webkit.org/show_bug.cgi?id=53795
292
293         This is the first step towards implementing
294         http://www.w3.org/Bugs/Public/show_bug.cgi?id=11348
295         within IndexedDB. I've created a method that knows how
296         to capture and bubble (based on Node's dispatchGenericEvent).
297         I've then changed IDBRequest to use it.
298
299         The only functional change is that preventDefault now must
300         be called in error events to prevent the transaction from
301         being aborted. The tests reflect this change and there's one
302         specific test to look at this behavior.
303
304         Test: storage/indexeddb/error-causes-abort-by-default.html
305
306         * storage/IDBAbortEvent.cpp:
307         (WebCore::IDBAbortEvent::create):
308         (WebCore::IDBAbortEvent::IDBAbortEvent):
309         * storage/IDBAbortEvent.h:
310         * storage/IDBCompleteEvent.cpp:
311         (WebCore::IDBCompleteEvent::create):
312         (WebCore::IDBCompleteEvent::IDBCompleteEvent):
313         * storage/IDBCompleteEvent.h:
314         * storage/IDBErrorEvent.cpp:
315         (WebCore::IDBErrorEvent::IDBErrorEvent):
316         * storage/IDBEvent.cpp:
317         (WebCore::IDBEvent::IDBEvent):
318         (WebCore::IDBEvent::dispatch):
319         * storage/IDBEvent.h:
320         * storage/IDBRequest.cpp:
321         (WebCore::IDBRequest::dispatchEvent):
322         * storage/IDBRequest.h:
323         * storage/IDBSuccessEvent.cpp:
324         (WebCore::IDBSuccessEvent::IDBSuccessEvent):
325         * storage/IDBTransaction.cpp:
326         (WebCore::IDBTransaction::onAbort):
327         (WebCore::IDBTransaction::onComplete):
328         * storage/IDBTransaction.h:
329         (WebCore::IDBTransaction::backend):
330         * storage/IDBTransactionBackendImpl.cpp:
331         (WebCore::IDBTransactionBackendImpl::taskTimerFired):
332
333 2011-02-04  Daniel Cheng  <dcheng@chromium.org>
334
335         Reviewed by Dmitry Titov.
336
337         Clone WebClipboard to be frame-specific.
338         https://bugs.webkit.org/show_bug.cgi?id=53727
339
340         For drop operations, Chrome currently snapshots the data and copies it
341         into the renderer process. As we add more supported drag data types, the
342         copy will become increasingly expensive. Instead, we'd like to snapshot
343         data in the browser to reduce the amount of data copied and to support
344         Blob in DataTransferItem. In order to allow this, we associated
345         WebClipboard with a frame so it can correctly route its IPCs to the
346         corresponding Chromium host.
347
348         No new tests because no new functionality.
349
350         * platform/chromium/ChromiumDataObject.cpp:
351         (WebCore::ChromiumDataObject::createReadable):
352         * platform/chromium/ChromiumDataObject.h:
353         * platform/chromium/ClipboardChromium.cpp:
354         (WebCore::ClipboardChromium::create):
355         * platform/chromium/PlatformBridge.h:
356         * platform/chromium/ReadableDataObject.cpp:
357         (WebCore::ReadableDataObject::create):
358         (WebCore::ReadableDataObject::ReadableDataObject):
359         (WebCore::ReadableDataObject::getData):
360         (WebCore::ReadableDataObject::urlTitle):
361         (WebCore::ReadableDataObject::htmlBaseUrl):
362         (WebCore::ReadableDataObject::filenames):
363         (WebCore::ReadableDataObject::ensureTypeCacheInitialized):
364         * platform/chromium/ReadableDataObject.h:
365
366 2011-02-04  Jeremy Orlow  <jorlow@chromium.org>
367
368         Revert https://bugs.webkit.org/show_bug.cgi?id=53795
369
370         * storage/IDBAbortEvent.cpp:
371         (WebCore::IDBAbortEvent::create):
372         (WebCore::IDBAbortEvent::IDBAbortEvent):
373         * storage/IDBAbortEvent.h:
374         * storage/IDBCompleteEvent.cpp:
375         (WebCore::IDBCompleteEvent::create):
376         (WebCore::IDBCompleteEvent::IDBCompleteEvent):
377         * storage/IDBCompleteEvent.h:
378         * storage/IDBErrorEvent.cpp:
379         (WebCore::IDBErrorEvent::IDBErrorEvent):
380         * storage/IDBEvent.cpp:
381         (WebCore::IDBEvent::IDBEvent):
382         * storage/IDBEvent.h:
383         * storage/IDBRequest.cpp:
384         (WebCore::IDBRequest::dispatchEvent):
385         * storage/IDBRequest.h:
386         * storage/IDBSuccessEvent.cpp:
387         (WebCore::IDBSuccessEvent::IDBSuccessEvent):
388         * storage/IDBTransaction.cpp:
389         (WebCore::IDBTransaction::onAbort):
390         (WebCore::IDBTransaction::onComplete):
391         * storage/IDBTransaction.h:
392         * storage/IDBTransactionBackendImpl.cpp:
393         (WebCore::IDBTransactionBackendImpl::taskTimerFired):
394
395 2011-02-04  Martin Galpin  <martin@66laps.com>
396
397         Reviewed by David Levin.
398
399         CORS origin header not set on GET when a preflight request is required.
400         https://bugs.webkit.org/show_bug.cgi?id=50773
401         
402         Test: http/tests/xmlhttprequest/cross-origin-preflight-get.html
403
404         * loader/DocumentThreadableLoader.cpp:
405         (WebCore::DocumentThreadableLoader::preflightSuccess): 
406         Explicitly set the request origin after a preflight request succeeds.
407
408 2011-02-04  Jeremy Orlow  <jorlow@chromium.org>
409
410         Reviewed by Nate Chapin.
411
412         First step towards event propogation within IndexedDB
413         https://bugs.webkit.org/show_bug.cgi?id=53795
414
415         This is the first step towards implementing
416         http://www.w3.org/Bugs/Public/show_bug.cgi?id=11348
417         within IndexedDB. I've created a method that knows how
418         to capture and bubble (based on Node's dispatchGenericEvent).
419         I've then changed IDBRequest to use it.
420
421         The only functional change is that preventDefault now must
422         be called in error events to prevent the transaction from
423         being aborted. The tests reflect this change and there's one
424         specific test to look at this behavior.
425
426         Test: storage/indexeddb/error-causes-abort-by-default.html
427
428         * storage/IDBAbortEvent.cpp:
429         (WebCore::IDBAbortEvent::create):
430         (WebCore::IDBAbortEvent::IDBAbortEvent):
431         * storage/IDBAbortEvent.h:
432         * storage/IDBCompleteEvent.cpp:
433         (WebCore::IDBCompleteEvent::create):
434         (WebCore::IDBCompleteEvent::IDBCompleteEvent):
435         * storage/IDBCompleteEvent.h:
436         * storage/IDBErrorEvent.cpp:
437         (WebCore::IDBErrorEvent::IDBErrorEvent):
438         * storage/IDBEvent.cpp:
439         (WebCore::IDBEvent::IDBEvent):
440         (WebCore::IDBEvent::dispatch):
441         * storage/IDBEvent.h:
442         * storage/IDBRequest.cpp:
443         (WebCore::IDBRequest::dispatchEvent):
444         * storage/IDBRequest.h:
445         * storage/IDBSuccessEvent.cpp:
446         (WebCore::IDBSuccessEvent::IDBSuccessEvent):
447         * storage/IDBTransaction.cpp:
448         (WebCore::IDBTransaction::onAbort):
449         (WebCore::IDBTransaction::onComplete):
450         * storage/IDBTransaction.h:
451         (WebCore::IDBTransaction::backend):
452         * storage/IDBTransactionBackendImpl.cpp:
453         (WebCore::IDBTransactionBackendImpl::taskTimerFired):
454
455 2011-02-04  Dimitri Glazkov  <dglazkov@chromium.org>
456
457         Reviewed by Csaba Osztrogonác.
458
459         [Qt]REGRESSION(r76951): media/controls-without-preload.html fails
460         https://bugs.webkit.org/show_bug.cgi?id=53674
461
462         * css/mediaControlsQt.css:
463
464 2011-02-04  Dan Bernstein  <mitz@apple.com>
465
466         Reviewed by Darin Adler and Dave Hyatt.
467
468         <rdar://problem/8902704> Make ruby text size 50% by default
469         https://bugs.webkit.org/show_bug.cgi?id=53723
470
471         * css/html.css:
472         (ruby > rt): Changed the font-size from 60% to 50%.
473
474 2011-02-04  Antti Koivisto  <antti@apple.com>
475
476         Reviewed by Dimitri Glazkov.
477
478         https://bugs.webkit.org/show_bug.cgi?id=53610
479         Regression: adjacent sibling selector not working as expected
480         <rdar://problem/8960033>
481         
482         https://bugs.webkit.org/show_bug.cgi?id=53574
483         REGRESSION (r76012): :last-child:after not working as expected
484         <rdar://problem/8948643>
485         
486         Test for additional conditions in parent style that prevent sharing.
487
488         Tests: fast/selectors/style-sharing-adjacent-selector.html
489                fast/selectors/style-sharing-last-child.html
490
491         * css/CSSStyleSelector.cpp:
492         (WebCore::parentStylePreventsSharing):
493         (WebCore::CSSStyleSelector::locateSharedStyle):
494
495 2011-02-04  Mark Mentovai  <mark@chromium.org>
496
497         Reviewed by Dimitri Glazkov.
498
499         Chromium GYP build fix.
500
501         When various settings were moved to webcore_prerequisites in r66364,
502         things that should have been direct_dependent_settings were not marked
503         as such. GYP 'defines', for example, make no sense on a 'none'-type
504         target such as webcore_prerequisites. It appears that it was intended
505         for these settings to be pushed to direct dependents, which would make
506         direct_dependent_settings correct.
507
508         Losing the ChromiumWebCoreObjC defines on the Mac, for example, caused
509         http://crbug.com/71537, which at best causes Mac console log spew, and
510         at worst may result in Chromium's copy of WebCore using system
511         definitions of certain Objective-C classes at runtime, or vice-versa.
512
513         The build now includes a postbuild step to prevent
514         http://crbug.com/71537 from regressing again. The build will fail upon
515         regression.
516
517         https://bugs.webkit.org/show_bug.cgi?id=53630
518
519         * WebCore.gyp/WebCore.gyp: Move things in webcore_prerequisites into
520           direct_dependent_settings as needed, add the check_objc_rename
521           postbuild step.
522         * WebCore.gyp/mac/check_objc_rename.sh: Added.
523
524 2011-02-04  Robert Hogan  <robert@webkit.org>
525
526         Reviewed by Darin Fisher.
527
528         Move chromium iframe shim code to cross-platform file
529         https://bugs.webkit.org/show_bug.cgi?id=52594
530
531         Move Chromium code for identifying and cutting out
532         iframe shims from plugins to cross-platform utility file
533         IFrameShimSupport.cpp.
534         Amend PluginViewQt to use this code to handle shims correctly.
535
536         * WebCore.gypi: Add Chromium support for IFrameShimSupport.cpp
537         * WebCore.pro: Add Qt support for IFrameShimSupport.cpp
538         * plugins/IFrameShimSupport.cpp: Added.
539         (WebCore::getObjectStack):
540         (WebCore::iframeIsAbovePlugin):
541         (WebCore::getPluginOcclusions):
542         * plugins/IFframeShimSupport.h: Added.
543         * plugins/qt/PluginViewQt.cpp:
544         (WebCore::PluginView::setNPWindowIfNeeded):
545
546 2011-02-04  Xiaomei Ji  <xji@chromium.org>
547
548         Reviewed by David Levin.
549
550         Implement "<option> should implement the dir attribute" for chromium port after r76983.
551         https://bugs.webkit.org/show_bug.cgi?id=50969
552
553         Use manual test Source/WebCore/manual-tests/pop-up-alignment-and-direction.html
554         added in r76983.
555
556         * platform/chromium/PopupMenuChromium.cpp: Remove directionality hint from
557         <select> drop-down setting.
558         (WebCore::PopupListBox::paintRow): Use <option>'s directionality to paint
559         items in drop-down and pass-in bidi override flag when creating text run.
560         * platform/chromium/PopupMenuChromium.h: Remove directionalityHint from
561         PopupContainerSettings.
562
563 2011-02-04  Jeremy Orlow  <jorlow@chromium.org>
564
565         Build fix from merge mistake.
566
567         * storage/IDBTransaction.cpp:
568         (WebCore::IDBTransaction::ensureEventTargetData):
569
570 2011-02-04  Levi Weintraub  <leviw@chromium.org>
571
572         Reviewed by Darin Adler.
573
574         Remove unneeded function declarations in comments in EditorClient.h
575         https://bugs.webkit.org/show_bug.cgi?id=53745
576
577         Removing unused commented out function declarations. No tests since this is just cleanup.
578
579         * page/EditorClient.h:
580
581 2011-02-03  Jeremy Orlow  <jorlow@chromium.org>
582
583         Reviewed by Nate Chapin.
584
585         Refactor IDBRequest and IDBTransaction a bit
586         https://bugs.webkit.org/show_bug.cgi?id=53565
587
588         There were a lot of subtle issues with the way IDBTransaction
589         and IDBRequest used to be written. This cleans a lot of them up
590         and largely simplifies the logic. Using EventQueue rather than
591         timers is one example of the simplification.
592
593         * bindings/scripts/CodeGeneratorV8.pm:
594         * dom/EventQueue.cpp:
595         (WebCore::EventQueue::enqueueEvent):
596         (WebCore::EventQueue::dispatchEvent):
597         * storage/IDBCursor.cpp:
598         (WebCore::IDBCursor::continueFunction):
599         * storage/IDBRequest.cpp:
600         (WebCore::IDBRequest::create):
601         (WebCore::IDBRequest::IDBRequest):
602         (WebCore::IDBRequest::resetReadyState):
603         (WebCore::IDBRequest::onError):
604         (WebCore::IDBRequest::onSuccess):
605         (WebCore::IDBRequest::dispatchEvent):
606         (WebCore::IDBRequest::enqueueEvent):
607         (WebCore::IDBRequest::eventTargetData):
608         (WebCore::IDBRequest::ensureEventTargetData):
609         * storage/IDBRequest.h:
610         (WebCore::IDBRequest::dispatchEvent):
611         * storage/IDBTransaction.cpp:
612         (WebCore::IDBTransaction::create):
613         (WebCore::IDBTransaction::IDBTransaction):
614         (WebCore::IDBTransaction::objectStore):
615         (WebCore::IDBTransaction::abort):
616         (WebCore::IDBTransaction::onAbort):
617         (WebCore::IDBTransaction::onComplete):
618         (WebCore::IDBTransaction::onTimeout):
619         (WebCore::IDBTransaction::canSuspend):
620         (WebCore::IDBTransaction::stop):
621         (WebCore::IDBTransaction::enqueueEvent):
622         (WebCore::IDBTransaction::eventTargetData):
623         (WebCore::IDBTransaction::ensureEventTargetData):
624         * storage/IDBTransaction.h:
625
626 2011-02-01  Jeremy Orlow  <jorlow@chromium.org>
627
628         Reviewed by Nate Chapin.
629
630         Remove the timeout event from IndexedDB
631         https://bugs.webkit.org/show_bug.cgi?id=53521
632
633         Remove timeout and ontimeout from IDBTransaction per the spec.
634
635         * WebCore.gypi:
636         * storage/IDBDatabase.cpp:
637         (WebCore::IDBDatabase::transaction):
638         * storage/IDBDatabase.h:
639         (WebCore::IDBDatabase::transaction):
640         * storage/IDBDatabase.idl:
641         * storage/IDBDatabaseBackendImpl.cpp:
642         (WebCore::IDBDatabaseBackendImpl::setVersion):
643         (WebCore::IDBDatabaseBackendImpl::transaction):
644         * storage/IDBDatabaseBackendImpl.h:
645         * storage/IDBDatabaseBackendInterface.h:
646         * storage/IDBTimeoutEvent.cpp: Removed.
647         * storage/IDBTimeoutEvent.h: Removed.
648         * storage/IDBTransaction.cpp:
649         (WebCore::IDBTransaction::IDBTransaction):
650         (WebCore::IDBTransaction::onAbort):
651         (WebCore::IDBTransaction::onComplete):
652         * storage/IDBTransaction.h:
653         * storage/IDBTransaction.idl:
654         * storage/IDBTransactionBackendImpl.cpp:
655         (WebCore::IDBTransactionBackendImpl::create):
656         (WebCore::IDBTransactionBackendImpl::IDBTransactionBackendImpl):
657         * storage/IDBTransactionBackendImpl.h:
658         * storage/IDBTransactionCallbacks.h:
659
660 2011-02-04  Chris Fleizach  <cfleizach@apple.com>
661
662         Reviewed by Darin Adler.
663
664         AX: Can't set accessibility overridden attributes on web objects
665         https://bugs.webkit.org/show_bug.cgi?id=53725
666
667         accessibilitySetOverriddenValue does not work on AX objects from WebCore because 
668         the right method needed to be overridden (accessibilitySupportsOverriddenAttributes).
669         Unfortunately, there's no way to test this from DRT, since AppKit returns the overridden
670         attribute only when an AX client asks for it through the AX frameworks.
671
672         * accessibility/mac/AccessibilityObjectWrapper.mm:
673         (-[AccessibilityObjectWrapper accessibilitySupportsOverriddenAttributes]):
674
675 2011-02-03  Dimitri Glazkov  <dglazkov@chromium.org>
676
677         Reviewed by Kent Tamura.
678
679         REGRESSION(r76147): Slider thumb is not repainted when let go outside of the slider track.
680         https://bugs.webkit.org/show_bug.cgi?id=53691
681
682         Test: fast/repaint/slider-thumb-drag-release.html
683
684         * html/shadow/SliderThumbElement.cpp:
685         (WebCore::SliderThumbElement::stopDragging): Added dirtying the layout bit to ensure
686             that the thumb is repainted.
687
688 2011-02-04  Mikhail Naganov  <mnaganov@chromium.org>
689
690         Reviewed by Pavel Feldman.
691
692         Web Inspector: Add "show more" data grid node and waiting message UI components.
693         https://bugs.webkit.org/show_bug.cgi?id=53763
694
695         - "show more" data grid node is used for on-demand population of
696         data grid contents (similar to DOM tree capability for limiting
697         displayed nodes count);
698
699         - waiting message is used for informing user about long lasting
700         operations (with a possibility to cancel them).
701
702         * English.lproj/localizedStrings.js:
703         * WebCore.gypi:
704         * WebCore.vcproj/WebCore.vcproj:
705         * inspector/front-end/PleaseWaitMessage.js: Added.
706         (WebInspector.PleaseWaitMessage):
707         * inspector/front-end/ShowMoreDataGridNode.js: Added.
708         (WebInspector.ShowMoreDataGridNode):
709         * inspector/front-end/WebKit.qrc:
710         * inspector/front-end/inspector.css:
711         (.data-grid button):
712         (.please-wait-msg):
713         * inspector/front-end/inspector.html:
714
715 2011-02-04  Adele Peterson  <adele@apple.com>
716
717         Reviewed by Dan Bernstein.
718
719         Fix for https://bugs.webkit.org/show_bug.cgi?id=53740
720         <rdar://problem/8503629> Allow platforms to specify if the placeholder should be visible when text controls are focused
721
722         Tests:
723         fast/forms/textarea-placeholder-visibility-1.html
724         fast/forms/textarea-placeholder-visibility-2.html
725         fast/forms/input-placeholder-visibility-1.html
726         fast/forms/input-placeholder-visibility-2.html
727         fast/forms/input-placeholder-visibility-3.html
728
729         * html/HTMLFormControlElement.cpp: (WebCore::HTMLTextFormControlElement::placeholderShouldBeVisible):
730         Add a check for shouldShowPlaceholderWhenFocused.
731         * html/HTMLTextAreaElement.cpp: (WebCore::HTMLTextAreaElement::updateValue):
732         Whenever the value is updated, we should also update placeholder visibility.
733         * rendering/RenderTheme.h: (WebCore::RenderTheme::shouldShowPlaceholderWhenFocused):
734         Make the default the same as the existing behavior.
735         * rendering/RenderThemeMac.h:
736         * rendering/RenderThemeMac.mm: (WebCore::RenderThemeMac::shouldShowPlaceholderWhenFocused):
737         Show placeholder when appropriate. 
738
739 2011-02-04  Pavel Podivilov  <podivilov@chromium.org>
740
741         Reviewed by Pavel Feldman.
742
743         Web Inspector: evaluate on hover does not work on a breakpoint.
744         https://bugs.webkit.org/show_bug.cgi?id=53768
745
746         * inspector/front-end/SourceFrame.js:
747         (WebInspector.SourceFrame.prototype._mouseHover):
748
749 2011-02-04  Sheriff Bot  <webkit.review.bot@gmail.com>
750
751         Unreviewed, rolling out r77625 and r77626.
752         http://trac.webkit.org/changeset/77625
753         http://trac.webkit.org/changeset/77626
754         https://bugs.webkit.org/show_bug.cgi?id=53765
755
756         It broke Windows builds (Requested by Ossy_ on #webkit).
757
758         * Android.jscbindings.mk:
759         * CMakeLists.txt:
760         * ForwardingHeaders/pcre/pcre.h: Added.
761         * ForwardingHeaders/yarr/Yarr.h: Removed.
762         * ForwardingHeaders/yarr/YarrInterpreter.h: Removed.
763         * ForwardingHeaders/yarr/YarrPattern.h: Removed.
764         * WebCore.gyp/WebCore.gyp:
765         * WebCore.pro:
766         * WebCore.vcproj/WebCore.vcproj:
767         * WebCore.vcproj/copyForwardingHeaders.cmd:
768         * platform/text/RegularExpression.cpp:
769         (WebCore::RegularExpression::Private::regexp):
770         (WebCore::RegularExpression::Private::compile):
771         (WebCore::RegularExpression::Private::Private):
772         (WebCore::RegularExpression::Private::create):
773         (WebCore::RegularExpression::Private::~Private):
774         (WebCore::RegularExpression::match):
775
776 2011-02-04  Peter Varga  <pvarga@webkit.org>
777
778         Rubber-stamped by Csaba Osztrogonác.
779
780         Replace PCRE with Yarr in WebCore
781         https://bugs.webkit.org/show_bug.cgi?id=53496
782
783         Speculative windows build fix.
784
785         No new tests needed.
786
787         * platform/text/RegularExpression.cpp:
788
789 2011-02-04  Peter Varga  <pvarga@webkit.org>
790
791
792         Reviewed by Gavin Barraclough.
793
794         Replace PCRE with Yarr in WebCore
795         https://bugs.webkit.org/show_bug.cgi?id=53496
796
797         No new tests needed.
798
799         * Android.jscbindings.mk:
800         * CMakeLists.txt:
801         * ForwardingHeaders/pcre/pcre.h: Removed.
802         * ForwardingHeaders/yarr/Yarr.h: Added.
803         * ForwardingHeaders/yarr/YarrInterpreter.h: Added.
804         * ForwardingHeaders/yarr/YarrPattern.h: Added.
805         * WebCore.gyp/WebCore.gyp:
806         * WebCore.pro:
807         * WebCore.vcproj/WebCore.vcproj:
808         * WebCore.vcproj/copyForwardingHeaders.cmd:
809         * platform/text/RegularExpression.cpp:
810         (WebCore::RegularExpression::Private::create):
811         (WebCore::RegularExpression::Private::Private):
812         (WebCore::RegularExpression::Private::compile):
813         (WebCore::RegularExpression::match):
814
815 2011-02-04  Pavel Feldman  <pfeldman@chromium.org>
816
817         Reviewed by Yury Semikhatsky.
818
819         Web Inspector: Network panel filtering is broken.
820         https://bugs.webkit.org/show_bug.cgi?id=53764
821
822         * inspector/front-end/NetworkPanel.js:
823         (WebInspector.NetworkPanel.prototype._sortItems):
824         (WebInspector.NetworkPanel.prototype._sortByTimeline):
825         (WebInspector.NetworkPanel.prototype._filter):
826         (WebInspector.NetworkPanel.prototype._updateOffscreenRows):
827         (WebInspector.NetworkDataGridNode.prototype.isFilteredOut):
828         (WebInspector.NetworkDataGridNode.prototype.get selectable):
829         (WebInspector.NetworkTotalGridNode.prototype.isFilteredOut):
830         (WebInspector.NetworkTotalGridNode.prototype.get selectable):
831
832 2011-02-04  Andrey Kosyakov  <caseq@chromium.org>
833
834         Reviewed by Pavel Feldman.
835
836         Web Inspector: support overriding user agent strings
837         https://bugs.webkit.org/show_bug.cgi?id=51485
838
839         Test: http/tests/inspector/extensions-useragent.html
840
841         * inspector/Inspector.idl:
842         * inspector/InspectorController.cpp:
843         (WebCore::InspectorController::disconnectFrontend):
844         (WebCore::InspectorController::setUserAgentOverride):
845         (WebCore::InspectorController::userAgentOverride):
846         * inspector/InspectorController.h:
847         * inspector/front-end/ExtensionAPI.js:
848         (WebInspector.injectedExtensionAPI.InspectedWindow.prototype.reload):
849         * inspector/front-end/ExtensionServer.js:
850         (WebInspector.ExtensionServer.prototype._onReload):
851         * loader/FrameLoader.cpp:
852         (WebCore::FrameLoader::userAgent):
853         (WebCore::FrameLoader::applyUserAgent):
854
855 2011-02-04  Pavel Podivilov  <podivilov@chromium.org>
856
857         Reviewed by Pavel Feldman.
858
859         Web Inspector: scripts panel displays wrong file name after reload.
860         https://bugs.webkit.org/show_bug.cgi?id=53761
861
862         * inspector/front-end/ScriptsPanel.js:
863         (WebInspector.ScriptsPanel.prototype._resourceLoadingFinished):
864
865 2011-02-03  Yury Semikhatsky  <yurys@chromium.org>
866
867         Reviewed by Pavel Feldman.
868
869         Web Inspector: remove settings related methods from InspectorClient
870         https://bugs.webkit.org/show_bug.cgi?id=53686
871
872         * WebCore.exp.in:
873         * inspector/CodeGeneratorInspector.pm:
874         * inspector/InspectorClient.h:
875         * inspector/InspectorFrontendClientLocal.cpp:
876         (WebCore::InspectorFrontendClientLocal::InspectorFrontendClientLocal):
877         (WebCore::InspectorFrontendClientLocal::changeAttachedWindowHeight):
878         (WebCore::InspectorFrontendClientLocal::restoreAttachedWindowHeight):
879         * inspector/InspectorFrontendClientLocal.h: ports that provide in-process implementation of the inspector front-end can
880         provide platform-specific settings accessor.
881         (WebCore::InspectorFrontendClientLocal::Settings::Settings):
882         (WebCore::InspectorFrontendClientLocal::Settings::~Settings):
883         (WebCore::InspectorFrontendClientLocal::Settings::inspectorAttachedHeight):
884         (WebCore::InspectorFrontendClientLocal::Settings::storeInspectorAttachedHeight):
885         * loader/EmptyClients.h:
886
887 2011-02-03  Anton Muhin  <antonm@chromium.org>
888
889         Reviewed by Adam Barth.
890
891         [v8] frame several more JS code invocations into v8::TryCatch
892         https://bugs.webkit.org/show_bug.cgi?id=53594
893
894         This patch is preemptive and adjusts v8 bindings code to forthcoming small change
895         in v8::ThrowException---currently sometimes exceptions thrown by this method
896         do not reach surrounding v8::TryCatch handler (see
897         http://code.google.com/p/v8/issues/detail?id=1072 and
898         http://codereview.chromium.org/6397011/).  Therefore the goal of this patch
899         is to make forthcoming v8 roll as smooth as possible (alas, we'll still need
900         one rebaseline as of now.)
901
902         * bindings/v8/V8Proxy.cpp:
903         (WebCore::V8Proxy::runScript): Do not rely on empty handle as a signal of exception, wrap into v8::TryCatch instead
904         * bindings/v8/V8WindowErrorHandler.cpp:
905         (WebCore::V8WindowErrorHandler::callListenerFunction): Ditto
906
907 2011-02-03  Maciej Stachowiak  <mjs@apple.com>
908
909         Reviewed by Dan Bernstein.
910
911         WebKit2: Need WebKit2 equivalent of WebResourceLoadDelegate::willSendRequest in the Bundle
912         https://bugs.webkit.org/show_bug.cgi?id=52897
913         <rdar://problem/8898294>
914
915         * WebCore.exp.in: Add export now needed by WebKit2
916
917 2011-02-03  Victoria Kirst  <vrk@google.com>
918
919         Reviewed by James Robinson.
920
921         Replaces float literals with uniform values in shader code
922         so that buggy drivers unable to parse float values in different
923         locales will not produce a pink video.
924
925         [chromium] Fix pink video bug with gpu-acceleration enabled
926         https://bugs.webkit.org/show_bug.cgi?id=53568
927
928         * platform/graphics/chromium/VideoLayerChromium.cpp:
929         (WebCore::VideoLayerChromium::SharedValues::SharedValues):
930         (WebCore::VideoLayerChromium::drawYUV):
931         * platform/graphics/chromium/VideoLayerChromium.h:
932         (WebCore::VideoLayerChromium::SharedValues::signAdjLocation):
933
934 2011-02-03  James Kozianski  <koz@chromium.org>
935
936         Reviewed by Dimitri Glazkov.
937
938         Add navigator.registerProtocolHandler behind a flag.
939         https://bugs.webkit.org/show_bug.cgi?id=52609
940
941         This method is described in the HTML5 specification here,
942         http://dev.w3.org/html5/spec/Overview.html#dom-navigator-registerprotocolhandler
943
944         This change is largely cribbed from B. Green's 29651 patches. It is
945         behind a flag so as not to break JS feature detection.
946
947         New layout test fast/dom/registerProtocolHandler.html.
948
949         * Configurations/FeatureDefines.xcconfig:
950         * loader/EmptyClients.h:
951         (WebCore::EmptyChromeClient::registerProtocolHandler):
952         * page/Chrome.cpp:
953         (WebCore::Chrome::registerProtocolHandler):
954         * page/Chrome.h:
955         * page/ChromeClient.h:
956         * page/Navigator.cpp:
957         (WebCore::verifyCustomHandlerURL):
958         (WebCore::verifyProtocolHandlerScheme):
959         (WebCore::Navigator::registerProtocolHandler):
960         * page/Navigator.h:
961         * page/Navigator.idl:
962
963 2011-02-03  Brian Ryner  <bryner@chromium.org>
964
965         Reviewed by Darin Fisher.
966
967         Add a field to the ResourceResponse for tracking the socket address
968         of the host that the resource was fetched from.  Patch was originally
969         by Paul Marks.
970         https://bugs.webkit.org/show_bug.cgi?id=53699
971
972         * platform/network/chromium/ResourceResponse.cpp:
973         (WebCore::ResourceResponse::doPlatformCopyData):
974         (WebCore::ResourceResponse::doPlatformAdopt):
975         * platform/network/chromium/ResourceResponse.h:
976         (WebCore::ResourceResponse::socketAddress):
977         (WebCore::ResourceResponse::setSocketAddress):
978
979 2011-02-03  Adam Langley  <agl@chromium.org>
980
981         Reviewed by Adam Barth.
982
983         Plumb mixed script URL to FrameLoaderClient
984         https://bugs.webkit.org/show_bug.cgi?id=52384
985
986         Regressions covered by http/tests/security/mixedContent/*
987
988         * loader/EmptyClients.h:
989         (WebCore::EmptyFrameLoaderClient::didRunInsecureContent):
990         * loader/FrameLoader.cpp:
991         (WebCore::FrameLoader::checkIfRunInsecureContent):
992         * loader/FrameLoaderClient.h:
993
994 2011-02-03  Simon Fraser  <simon.fraser@apple.com>
995
996         Reviewed by Dan Bernstein.
997
998         REGRESSION: Artifacts on box-shadow corners in some cases
999         https://bugs.webkit.org/show_bug.cgi?id=53731
1000
1001         Fix overdrawing artifacts in ShadowBlur's tiling code path,
1002         which show up in shadows using a color with alpha.
1003         
1004         Test: fast/box-shadow/shadow-tiling-artifact.html
1005
1006         * platform/graphics/ShadowBlur.cpp:
1007         (WebCore::ShadowBlur::drawRectShadowWithTiling): Ensure
1008         that the inner rect that gets filled does not overlap with any
1009         of the eight tiled areas by having the corner and side dimensions
1010         be the same for contiguous areas.
1011
1012 2011-02-03  Adam Barth  <abarth@webkit.org>
1013
1014         Reviewed by Alexey Proskuryakov.
1015
1016         XSS Auditor is spinning inside decodeURLEscapeSequences() if there are
1017         percent signs in large posted data
1018         https://bugs.webkit.org/show_bug.cgi?id=53405
1019
1020         If the input string contains many non-% characters followed by a %
1021         character that is not a valid URL escape sequence, then the old
1022         algorithm would only advance the initial search by one character
1023         (instead of jumping to just after the % character).  That would cause
1024         the algorithm to take N^2 time (in the number of characters before the
1025         first % character).  This patch just advances the search past the first
1026         % character so we can start looking for next % character sooner.
1027
1028         * platform/KURL.cpp:
1029         (WebCore::decodeURLEscapeSequences):
1030
1031 2011-02-03  Pavel Podivilov  <podivilov@chromium.org>
1032
1033         Reviewed by Pavel Feldman.
1034
1035         Web Inspector: click on a breakpoint highlights wrong line in source frame.
1036         https://bugs.webkit.org/show_bug.cgi?id=53692
1037
1038         * inspector/front-end/BreakpointsSidebarPane.js:
1039         (WebInspector.JavaScriptBreakpointsSidebarPane.prototype._setupBreakpointElement):
1040
1041 2011-02-03  Anton Muhin  <antonm@chromium.org>
1042
1043         Reviewed by Adam Barth.
1044
1045         [v8] Bail out if to string conversion returned empty handle
1046         https://bugs.webkit.org/show_bug.cgi?id=53687
1047
1048         This a temporary measure: actually one probably should never get empty handle
1049         if there was no exception.  The root cause is under investigation.
1050         The bailout though allows Chromium not to crash---attempt to convert an empty
1051         v8 hande into WebCore string crashes with invalid memory access.
1052
1053         See http://code.google.com/p/chromium/issues/detail?id=71544
1054
1055         There is no known reduction expressible as a layout test so far.  The crash found with automated testing tools.
1056
1057         * bindings/v8/V8Binding.cpp:
1058         (WebCore::v8NonStringValueToWebCoreString): Bail out on empty handle
1059         * bindings/v8/V8Binding.h:
1060         (WebCore::V8ParameterBase::prepareBase): Ditto
1061
1062 2011-02-03  Adam Barth  <abarth@webkit.org>
1063
1064         Attempt to fix Chromium build.
1065
1066         * html/parser/XSSFilter.cpp:
1067
1068 2011-02-03  Dirk Pranke  <dpranke@chromium.org>
1069
1070         Unreviewed, rolling out r77562.
1071         http://trac.webkit.org/changeset/77562
1072         https://bugs.webkit.org/show_bug.cgi?id=53630
1073
1074         broke chromium mac build
1075
1076         * WebCore.gyp/WebCore.gyp:
1077         * WebCore.gyp/mac/check_objc_rename.sh: Removed.
1078
1079 2011-02-03  Adam Barth  <abarth@webkit.org>
1080
1081         Reviewed by Daniel Bates.
1082
1083         XSS Auditor severely affects loading performance after submitting a large form
1084         https://bugs.webkit.org/show_bug.cgi?id=49845
1085
1086         Switch over from the XSSAuditor to the XSSFilter, improving performance
1087         on this example.
1088
1089         * html/parser/XSSFilter.cpp:
1090         (WebCore::XSSFilter::filterToken):
1091         * page/XSSAuditor.cpp:
1092         (WebCore::XSSAuditor::isEnabled):
1093
1094 2011-02-03  Dirk Pranke  <dpranke@chromium.org>
1095
1096         Unreviewed, rolling out r77567.
1097         http://trac.webkit.org/changeset/77567
1098         https://bugs.webkit.org/show_bug.cgi?id=53468
1099
1100         broke chromium linux svg, canvas tests, possibly win also?
1101
1102         * platform/graphics/skia/ImageBufferSkia.cpp:
1103         (WebCore::getImageData):
1104         (WebCore::ImageBuffer::getUnmultipliedImageData):
1105         (WebCore::ImageBuffer::getPremultipliedImageData):
1106         (WebCore::putImageData):
1107         (WebCore::ImageBuffer::putUnmultipliedImageData):
1108         (WebCore::ImageBuffer::putPremultipliedImageData):
1109
1110 2011-02-02  MORITA Hajime  <morrita@google.com>
1111
1112         Reviewed by Dimitri Glazkov.
1113
1114         Refactoring: <progress> should not use ShadowElement
1115         https://bugs.webkit.org/show_bug.cgi?id=53583
1116
1117         - Introduced RenderIndicatorPart and RenderProgressBarValuePart
1118           to be responsible for bar-part layout,
1119           which adopted layout logic from ShadowBlockElement.
1120         - ProgressBarValueElement is no longer a subclass of ShadowBlockElement.
1121         - Remove dependency from RenderProgress to HTMLProgressElement and
1122           ShadowBlockElement.
1123         - The shadow tree is no longer removed on detach(). It becomes persistent.
1124           This is now possible because the ShadowBlockElement dependency is gone.
1125         - ::-webkit-appearance for -webkit-progress-bar-value is no longer referred.
1126           That didn't make sense.
1127
1128         * html/HTMLProgressElement.cpp:
1129         (WebCore::HTMLProgressElement::createShadowSubtreeIfNeeded):
1130         * html/HTMLProgressElement.h:
1131         * html/shadow/ProgressBarValueElement.h: Added.
1132         (WebCore::ProgressBarValueElement::ProgressBarValueElement):
1133         (WebCore::ProgressBarValueElement::shadowPseudoId):
1134         (WebCore::ProgressBarValueElement::createRenderer):
1135         (WebCore::ProgressBarValueElement::create):
1136         * rendering/RenderIndicator.cpp:
1137         (WebCore::RenderIndicatorPart::RenderIndicatorPart):
1138         (WebCore::RenderIndicatorPart::~RenderIndicatorPart):
1139         (WebCore::RenderIndicatorPart::layout):
1140         (WebCore::RenderIndicatorPart::styleDidChange):
1141         * rendering/RenderIndicator.h: Added RenderIndicatorPart class
1142         (WebCore::RenderIndicatorPart::originalVisibility):
1143         (WebCore::RenderIndicatorPart::requiresForcedStyleRecalcPropagation):
1144         (WebCore::RenderIndicatorPart::canHaveChildren):
1145         * rendering/RenderProgress.cpp:
1146         (WebCore::RenderProgressBarValuePart::preferredFrameRect):
1147         (WebCore::RenderProgressBarValuePart::shouldBeHidden):
1148         (WebCore::RenderProgress::updateFromElement):
1149         (WebCore::RenderProgress::layoutParts):
1150         (WebCore::RenderProgress::shouldHaveParts):
1151         * rendering/RenderProgress.h:
1152         (WebCore::RenderProgressBarValuePart::RenderProgressBarValuePart):
1153
1154 2011-02-03  Jia Pu  <jpu@apple.com>
1155
1156         Reversion should not be marked as misspelled.
1157         https://bugs.webkit.org/show_bug.cgi?id=53255
1158
1159         This patch includes fix for reported bug, and also some housekeeping changes.
1160
1161         To implement desired behavior, we need:
1162         1. Add a new marker type, SpellCheckingExemption, since now we distingusish between text
1163            that shouldn't be spellchecked and text shouldn't be autocorrected.
1164         2. Make sure that there is no pending correction panel when we enter markAllMisspellingsAndBadGrammarInRanges().
1165            Otherwise the spell checking code in that function may interfere with autocorrection. This
1166            is achieved by explicitly applying pending correction when user types space, line break or
1167            paragraph break.
1168
1169         Housekeeping code changes include:
1170         1. Change manual-tests that were broken by relocated WebCore directory.
1171         2. Use TextIterator in various DocumentMarkerController functions instead of using
1172            Node::traverseNextNode() directly.
1173         3. Allow passing multiple marker types into DocumentMarkerController::removeMarkers() and
1174            DocumentMarkerController::hasMarkers() to improve clarity and efficiency.
1175         4. Fixes of minor bugs that were exposed previously.
1176
1177         * WebCore.exp.in: Change signature of DocumentMarkerController::removeMarkers().
1178
1179         * dom/DocumentMarker.h: Added new marker type SpellCheckingExemption.
1180
1181         * dom/DocumentMarkerController.cpp:
1182         (WebCore::DocumentMarkerController::removeMarkers): Use TextIterator to scan the range to be
1183            consistent with addMarker() function. Allow passing in multiple marker types in one call.
1184            Added a boolean argument to specify the behavior when removing markers that partially
1185            overlap the specified range.
1186         (WebCore::DocumentMarkerController::removeMarkersFromMarkerMapVectorPair): Allow passing in
1187            multiple marker types in one call.
1188         (WebCore::DocumentMarkerController::hasMarkers): Use TextIterator to scan the range to be
1189            consistent with addMarker() function. Allow passing in multiple marker types in one call.
1190
1191         * dom/DocumentMarkerController.h: Allow passing in multiple marker types to removeMarkers()
1192            and hasMarkers(). Added a boolean argument to removeMarkers() to specify the behavior when
1193            removing markers that partially overlap the specified range.
1194
1195         * editing/Editor.cpp:
1196         (WebCore::markerTypesForAutocorrection): Add SpellCheckingExemption marker when apply correction.
1197         (WebCore::markerTypesForReplacement): Ditto.
1198         (WebCore::Editor::respondToChangedSelection): Reordered call to dismissCorrectionPanel() and
1199            setSelection() to make sure there is no pending correction when entering
1200            markAllMisspellingsAndBadGrammarInRanges().
1201         (WebCore::Editor::appliedEditing): Only remove CorrectionIndicator markers when the command
1202            is a top level command to improve efficiency.
1203         (WebCore::Editor::insertTextWithoutSendingTextEvent): Added code to applying pending correction.
1204         (WebCore::Editor::insertLineBreak): Ditto.
1205         (WebCore::Editor::insertParagraphSeparator): Ditto.
1206         (WebCore::Editor::markAllMisspellingsAndBadGrammarInRanges): Don't mark mispelling if the
1207            text carries SpellCheckingExemption marker.
1208         (WebCore::Editor::correctionPanelTimerFired): Reset correction panel if the returned suggestion
1209            from spellchecker is an empty string.
1210         (WebCore::Editor::removeSpellAndCorrectionMarkersFromWordsToBeEdited):
1211            Use new DocumentMarkerController::removeMarkers() to replace custom implemenation to improve
1212            efficiency and readability.
1213         (WebCore::Editor::applyCorrectionPanelInfo): Remove the code that set caret position after
1214            applying correction, since it's unnecessary. Also, store pre-correction string together with
1215            the marker for reversion panel to use.
1216         (WebCore::Editor::applyAutocorrectionBeforeTypingIfAppropriate): Apply pending correction.
1217         (WebCore::Editor::changeSelectionAfterCommand): Moved marker removal code to Editor::appliedEditing()
1218            where we have access to EditCommand object.
1219
1220         * editing/Editor.h: Added new function applyAutocorrectionAfterTypingIfAppropriate().
1221
1222         * manual-tests/autocorrection/autocorrection-cancelled-by-ESC.html: Change manual-tests that
1223            were broken by relocated WebCore directory.
1224
1225         * manual-tests/autocorrection/autocorrection-cancelled-by-typing-1.html: Ditto.
1226
1227         * manual-tests/autocorrection/autocorrection-contraction.html: Ditto.
1228
1229         * manual-tests/autocorrection/continue-typing-to-dismiss-reversion.html: Ditto.
1230
1231         * manual-tests/autocorrection/delete-to-dismiss-reversion.html: Ditto.
1232
1233         * manual-tests/autocorrection/delete-to-end-of-word-to-show-reversion.html: Ditto.
1234
1235         * manual-tests/autocorrection/dismiss-multiple-guesses.html: Ditto.
1236
1237         * manual-tests/autocorrection/move-to-end-of-word-to-show-reversion.html: Ditto.
1238
1239         * manual-tests/autocorrection/select-from-multiple-guesses.html: Ditto.
1240
1241         * manual-tests/autocorrection/spell-checking-after-reversion.html: Added.
1242
1243         * manual-tests/autocorrection/type-whitespace-to-dismiss-reversion.html: Change manual-tests that
1244            were broken by relocated WebCore directory.
1245
1246         * rendering/InlineTextBox.cpp:
1247         (WebCore::InlineTextBox::paintDocumentMarkers): Code clean-up to be more concise.
1248
1249 2011-02-03  Abhishek Arya  <inferno@chromium.org>
1250
1251         Unreviewed, qt build fix.
1252
1253         * rendering/RenderBlock.cpp:
1254         (WebCore::RenderBlock::removeFloatingObject):
1255
1256 2011-02-03  Brian Salomon  <bsalomon@google.com>
1257
1258         Reviewed by James Robinson.
1259
1260         Handle non-raster backed images in getUnmultipliedImageData()
1261         https://bugs.webkit.org/show_bug.cgi?id=53468
1262
1263         No new tests. Existing canvas tests sufficient
1264         LayoutTests/canvas/philip/...
1265
1266         * platform/graphics/skia/ImageBufferSkia.cpp:
1267         (WebCore::getImageData):
1268         (WebCore::ImageBuffer::getUnmultipliedImageData):
1269         (WebCore::ImageBuffer::getPremultipliedImageData):
1270         (WebCore::putImageData):
1271         (WebCore::ImageBuffer::putUnmultipliedImageData):
1272         (WebCore::ImageBuffer::putPremultipliedImageData):
1273
1274 2011-02-03  Abhishek Arya  <inferno@chromium.org>
1275
1276         Reviewed by James Robinson.
1277
1278         Enforce more limits on root inline boxes height calculations.
1279         https://bugs.webkit.org/show_bug.cgi?id=53729
1280
1281         Test: fast/overflow/overflow-height-float-not-removed-crash.html
1282
1283         * rendering/RenderBlock.cpp:
1284         (WebCore::RenderBlock::removeFloatingObject): prevent logicalBottom to
1285         become negative when logicalTop is INT_MAX.
1286         (WebCore::RenderBlock::markLinesDirtyInBlockRange): when logicalBottom
1287         is INT_MAX, we should dirty everything. So, we bail out to make
1288         afterLowest equal to the lastRootBox() or lowestDirstLine.
1289
1290 2011-02-03  David Levin  <levin@chromium.org>
1291
1292         Reviewed by Adam Barth and Oliver Hunt.
1293
1294         Worker.importScript() should clean errors for cross origin imports.
1295         https://bugs.webkit.org/show_bug.cgi?id=52871
1296
1297         Test: http/tests/workers/worker-importScriptsOnError.html
1298
1299         * bindings/js/WorkerScriptController.cpp:
1300         (WebCore::WorkerScriptController::evaluate): Use sanitizeScriptError
1301         to determine when to create a clean exception.
1302         * bindings/v8/WorkerContextExecutionProxy.cpp:
1303         (WebCore::WorkerContextExecutionProxy::evaluate): Ditto.
1304         * dom/ScriptExecutionContext.cpp:
1305         (WebCore::ScriptExecutionContext::sanitizeScriptError): Figure out
1306         if the error needs to be cleaned up.
1307         (WebCore::ScriptExecutionContext::dispatchErrorEvent): Extracted
1308         sanitizeScriptError for use by other places.
1309         * dom/ScriptExecutionContext.h:
1310         * workers/WorkerContext.cpp:
1311         (WebCore::WorkerContext::importScripts): Use the reponse url when
1312         telling the evaluate where the script came fro.
1313         * workers/WorkerScriptLoader.cpp:
1314         (WebCore::WorkerScriptLoader::responseURL): Expose the url that
1315         the script was loaded from (which may be different from url() due
1316         to redirects).
1317         (WebCore::WorkerScriptLoader::didReceiveResponse): Capture the reponse url.
1318         * workers/WorkerScriptLoader.h:
1319
1320 2011-02-03  Mark Mentovai  <mark@chromium.org>
1321
1322         Reviewed by Dimitri Glazkov.
1323
1324         Chromium GYP build fix.
1325
1326         When various settings were moved to webcore_prerequisites in r66364,
1327         things that should have been direct_dependent_settings were not marked
1328         as such. GYP 'defines', for example, make no sense on a 'none'-type
1329         target such as webcore_prerequisites. It appears that it was intended
1330         for these settings to be pushed to direct dependents, which would make
1331         direct_dependent_settings correct.
1332
1333         Losing the ChromiumWebCoreObjC defines on the Mac, for example, caused
1334         http://crbug.com/71537, which at best causes Mac console log spew, and
1335         at worst may result in Chromium's copy of WebCore using system
1336         definitions of certain Objective-C classes at runtime, or vice-versa.
1337
1338         The build now includes a postbuild step to prevent
1339         http://crbug.com/71537 from regressing again. The build will fail upon
1340         regression.
1341
1342         https://bugs.webkit.org/show_bug.cgi?id=53630
1343
1344         * WebCore.gyp/WebCore.gyp: Move things in webcore_prerequisites into
1345           direct_dependent_settings as needed, add the check_objc_rename
1346           postbuild step.
1347         * WebCore.gyp/mac/check_objc_rename.sh: Added.
1348
1349 2011-02-03  Adam Barth  <abarth@webkit.org>
1350
1351         Reviewed by Eric Seidel.
1352
1353         Make XSSFilter go fast by adding a SuffixTree
1354         https://bugs.webkit.org/show_bug.cgi?id=53665
1355
1356         The SuffixTree lets us quickly reject snippets if the POST data is
1357         large (because we can avoid a linear scan over the POST data).
1358
1359         * html/parser/XSSFilter.cpp:
1360         (WebCore::XSSFilter::init):
1361         (WebCore::XSSFilter::isContainedInRequest):
1362         * html/parser/XSSFilter.h:
1363
1364 2011-02-03  Mihai Parparita  <mihaip@chromium.org>
1365
1366         Reviewed by Alexey Proskuryakov.
1367
1368         REGRESSION (r77355): Page cache layout tests crash
1369         https://bugs.webkit.org/show_bug.cgi?id=53648
1370
1371         Test: fast/events/pagehide-timeout.html
1372         
1373         Suspend active DOM objects after all pagehide event handlers have run,
1374         otherwise it's possible for them to create more objects that weren't
1375         getting suspended.
1376
1377         * history/CachedFrame.cpp:
1378         (WebCore::CachedFrame::CachedFrame):
1379
1380 2011-02-03  Jeremy Orlow  <jorlow@chromium.org>
1381
1382         Reviewed by Nate Chapin.
1383
1384         SerializedScriptValue should not require v8 to create undefined and null values
1385         https://bugs.webkit.org/show_bug.cgi?id=53730
1386
1387         Instead of creating a v8 type and passing that into the constructor, just use
1388         the writer class directly. While I was at it, I cleaned up the code a bit too
1389         by getting rid of the WireData/StringValue enum as I found that personally
1390         confusing.
1391
1392         This is necessary because these methods are called by IndexedDB in the browser
1393         process where v8 is not spun up.
1394
1395         No functionality changed and not possible to test.
1396
1397         * bindings/v8/SerializedScriptValue.cpp:
1398         (WebCore::SerializedScriptValue::createFromWire):
1399         (WebCore::SerializedScriptValue::create):
1400         (WebCore::SerializedScriptValue::nullValue):
1401         (WebCore::SerializedScriptValue::undefinedValue):
1402         (WebCore::SerializedScriptValue::release):
1403         (WebCore::SerializedScriptValue::SerializedScriptValue):
1404         * bindings/v8/SerializedScriptValue.h:
1405
1406 2011-02-03  Beth Dakin  <bdakin@apple.com>
1407
1408         Reviewed by Sam Weinig.
1409
1410         Fix for <rdar://problem/8944544> Ability to animate track
1411         for WKPainter scrollers
1412
1413         Two new WebKitSystemInterface functions.
1414         * WebCore.exp.in:
1415         * platform/mac/WebCoreSystemInterface.h:
1416         * platform/mac/WebCoreSystemInterface.mm:
1417
1418         Use Scrollbar::convertFromContainingView() to return the right point.
1419         * platform/mac/ScrollAnimatorMac.mm:
1420         (-[ScrollbarPainterControllerDelegate scrollerImpPair:convertContentPoint:toScrollerImp:]):
1421         
1422         ScrollKnobAnimation is now ScrollbarPartAnimation. It can
1423         now be used to animate the knob or the track.
1424         (-[ScrollbarPartAnimation initWithScrollbarPainter:part:WebCore::scrollAnimator:WebCore::animateAlphaTo:duration:]):
1425         (-[ScrollbarPartAnimation setCurrentProgress:]):
1426         (-[ScrollbarPainterDelegate setUpAnimation:scrollerPainter:part:WebCore::animateAlphaTo:duration:]):
1427         (-[ScrollbarPainterDelegate scrollerImp:animateKnobAlphaTo:duration:]):
1428         (-[ScrollbarPainterDelegate scrollerImp:animateTrackAlphaTo:duration:]):
1429
1430         Scrollbars need invalodating after the overlay state changes. 
1431         (-[ScrollbarPainterDelegate scrollerImp:overlayScrollerStateChangedTo:]):
1432
1433 2011-02-03  Sam Weinig  <sam@webkit.org>
1434
1435         Reviewed by Beth Dakin.
1436
1437         Scroll thumb jumps to top when resizing horizontally.
1438
1439         * platform/ScrollView.cpp:
1440         (WebCore::ScrollView::updateScrollbars): Add call to update
1441         the scrollbar's offset in the case where we may have created
1442         a new scrollbar but have not changed the current position.
1443
1444 2011-02-03  Justin Schuh  <jschuh@chromium.org>
1445
1446         Reviewed by Dirk Schulze.
1447
1448         startAnimations should use a local, RefCounted Vector.
1449         https://bugs.webkit.org/show_bug.cgi?id=53458
1450
1451         Test: svg/custom/use-animation-in-fill.html
1452
1453         * svg/SVGDocumentExtensions.cpp:
1454         (WebCore::SVGDocumentExtensions::startAnimations):
1455
1456 2011-02-03  Adam Barth  <abarth@webkit.org>
1457
1458         Reviewed by Daniel Bates.
1459
1460         XSSFilter shouldn't bother to analyze pages without "injection"
1461         characters in the request
1462         https://bugs.webkit.org/show_bug.cgi?id=53664
1463
1464         If the request lacks these "injection" characters, then it's unlikely
1465         that there's a reflective XSS attack happening.  This hueristic lets us
1466         avoid analyzing the vast majority of responses for XSS.  Of course, the
1467         hueristic isn't perfect.  Because of this huerstic, we miss out on
1468         injections into unquoted attributes.  However, it's a trade-off that's
1469         worked well in the XSSAuditor.
1470
1471         * html/parser/XSSFilter.cpp:
1472         (WebCore::HTMLNames::isRequiredForInjection):
1473         (WebCore::XSSFilter::XSSFilter):
1474         (WebCore::XSSFilter::init):
1475         (WebCore::XSSFilter::filterToken):
1476         (WebCore::XSSFilter::isContainedInRequest):
1477         * html/parser/XSSFilter.h:
1478
1479 2011-02-03  Vangelis Kokkevis  <vangelis@chromium.org>
1480
1481         Reviewed by Kenneth Russell.
1482
1483         [chromium] Fixing a compositor crash occurring on layers
1484         without an associated RenderSurface.
1485         https://bugs.webkit.org/show_bug.cgi?id=53679
1486         Regression was introduced by in r77425 
1487
1488         Test: http://webkit.org/blog/386/3d-transforms/ doesn't crash
1489         anymore.
1490
1491         * platform/graphics/chromium/LayerRendererChromium.cpp:
1492         (WebCore::LayerRendererChromium::drawLayer):
1493
1494 2011-02-03  Dan Bernstein  <mitz@apple.com>
1495
1496         Reviewed by Anders Carlsson.
1497
1498         <rdar://problem/8948788> Text emphasis marks have wrong orientation for vertical text
1499         https://bugs.webkit.org/show_bug.cgi?id=53709
1500
1501         Covered by rendering of fast/text/emphasis-vertical.html
1502
1503         * platform/graphics/mac/SimpleFontDataMac.mm:
1504         (WebCore::SimpleFontData::scaledFontData): Give the scaled font the same orientation this font
1505         has.
1506
1507 2011-02-02  Levi Weintraub  <leviw@chromium.org>
1508
1509         Reviewed by Ryosuke Niwa.
1510
1511         Moving cursor down in table cycles at the end of a row
1512         https://bugs.webkit.org/show_bug.cgi?id=50012
1513
1514         Avoids a caret cycling issue with certain content (e.g. tables) found at the very
1515         end of a document due to a bug in nextLeafWithSameEditability.
1516
1517         Test: editing/selection/move-by-line-cycles-in-table.html
1518
1519         * editing/visible_units.cpp:
1520         (WebCore::nextLeafWithSameEditability): Properly avoid descending back into the
1521         original leaf node.
1522
1523 2011-02-03  Pavel Podivilov  <podivilov@chromium.org>
1524
1525         Reviewed by Pavel Feldman.
1526
1527         Web Inspector: remove dead code related to changes panel.
1528         https://bugs.webkit.org/show_bug.cgi?id=53688
1529
1530         * WebCore.gypi:
1531         * WebCore.vcproj/WebCore.vcproj:
1532         * inspector/front-end/ChangesView.js: Removed.
1533         * inspector/front-end/WebKit.qrc:
1534         * inspector/front-end/inspector.css:
1535         (#error-warning-count):
1536         (#error-warning-count:hover):
1537         (#error-count + #warning-count):
1538         * inspector/front-end/inspector.html:
1539         * inspector/front-end/inspector.js:
1540
1541 2011-02-02  Sam Weinig  <sam@webkit.org>
1542
1543         Reviewed by Anders Carlsson.
1544
1545         Add notification of the end of a rubber band.
1546         <rdar://problem/8940648>
1547
1548         * WebCore.exp.in:
1549         Add additional exprots.
1550
1551         * page/ChromeClient.h:
1552         (WebCore::ChromeClient::didCompleteRubberBandForMainFrame):
1553         * page/FrameView.cpp:
1554         (WebCore::FrameView::didCompleteRubberBand):
1555         * page/FrameView.h:
1556         * platform/ScrollView.cpp:
1557         (WebCore::ScrollView::didCompleteRubberBand):
1558         * platform/ScrollView.h:
1559         Add hook.
1560
1561         * platform/ScrollableArea.h:
1562         (WebCore::ScrollableArea::inLiveResize):
1563         (WebCore::ScrollableArea::maximumScrollPosition):
1564         (WebCore::ScrollableArea::visibleWidth):
1565         (WebCore::ScrollableArea::overhangAmount):
1566         (WebCore::ScrollableArea::didCompleteRubberBand):
1567         Reorganize and de-virtualize live resize notifications.
1568
1569         * platform/mac/ScrollAnimatorMac.mm:
1570         (WebCore::ScrollAnimatorMac::snapRubberBandTimerFired):
1571         Call the new hook when the rubberband ends.
1572
1573 2011-02-02  Evan Martin  <evan@chromium.org>
1574
1575         Reviewed by Tony Chang.
1576
1577         [chromium] complex joining characters positioned in wrong place
1578         https://bugs.webkit.org/show_bug.cgi?id=53637
1579
1580         Provide the correct font metrics to Harfbuzz related to the font design space.
1581         There are used in some fonts for GPOS positioning.
1582
1583         Test: platform/chromium-linux/fast/text/international/complex-joining-using-gpos.html
1584
1585         * platform/graphics/chromium/ComplexTextControllerLinux.cpp:
1586         (WebCore::ComplexTextController::setupFontForScriptRun):
1587         (WebCore::ComplexTextController::allocHarfbuzzFont):
1588         * platform/graphics/chromium/FontPlatformDataLinux.cpp:
1589         (WebCore::FontPlatformData::FontPlatformData):
1590         (WebCore::FontPlatformData::emSizeInFontUnits):
1591         (WebCore::FontPlatformData::operator=):
1592         * platform/graphics/chromium/FontPlatformDataLinux.h:
1593         (WebCore::FontPlatformData::FontPlatformData):
1594
1595 2011-02-02  Dimitri Glazkov  <dglazkov@chromium.org>
1596
1597         Reviewed by Kent Tamura.
1598
1599         REGRESSION(r76147): Slider thumb position is not updated when value attribute is changed.
1600         https://bugs.webkit.org/show_bug.cgi?id=53634
1601
1602         Test: fast/dom/HTMLInputElement/input-slider-update.html
1603
1604         * html/HTMLInputElement.cpp:
1605         (WebCore::HTMLInputElement::setValue): Added a call to InputType::valueChanged.
1606         * html/InputType.cpp:
1607         (WebCore::InputType::valueChanged): Added empty implementation.
1608         * html/InputType.h: Added def.
1609         * html/RangeInputType.cpp:
1610         (WebCore::RangeInputType::valueChanged): Added implementation that dirties layout
1611             bit on the thumb.
1612         * html/RangeInputType.h: Added def.
1613
1614 2011-02-02  Pavel Podivilov  <podivilov@chromium.org>
1615
1616         Reviewed by Pavel Feldman.
1617
1618         Web Inspector: do not share source frames between resources panel and scripts panel.
1619         https://bugs.webkit.org/show_bug.cgi?id=53584
1620
1621         Currently, we show error messages only for resources. This change will allow showing error
1622         messages in source frame even when resource is not available (eval scripts, inlined scripts).
1623
1624         * inspector/front-end/ConsoleView.js:
1625         (WebInspector.ConsoleView.prototype.addMessage):
1626         (WebInspector.ConsoleView.prototype.clearMessages):
1627         * inspector/front-end/ResourceView.js:
1628         (WebInspector.ResourceView.recreateResourceView):
1629         * inspector/front-end/ResourcesPanel.js:
1630         (WebInspector.FrameResourceTreeElement.prototype._setBubbleText):
1631         * inspector/front-end/ScriptsPanel.js:
1632         (WebInspector.ScriptsPanel.prototype._scriptSourceChanged):
1633         (WebInspector.ScriptsPanel.prototype.addConsoleMessage):
1634         (WebInspector.ScriptsPanel.prototype.clearConsoleMessages):
1635         (WebInspector.ScriptsPanel.prototype.reset):
1636         (WebInspector.ScriptsPanel.prototype._sourceFrameForScriptOrResource):
1637         (WebInspector.ScriptsPanel.prototype._sourceFrameForResource):
1638         (WebInspector.ScriptsPanel.prototype._sourceFrameForScript):
1639
1640 2011-02-03  Simon Fraser  <simon.fraser@apple.com>
1641
1642         Fix 32-bit builds.
1643
1644         * platform/graphics/ShadowBlur.cpp:
1645         (WebCore::ShadowBlur::blurLayerImage):
1646
1647 2011-02-03  Mikhail Naganov  <mnaganov@chromium.org>
1648
1649         Reviewed by Pavel Feldman.
1650
1651         Web Inspector: Add reporting of JS heap size limit to 'console.memory'.
1652         https://bugs.webkit.org/show_bug.cgi?id=53592
1653
1654         In JSC there is no limit, thus 'undefined' value is returned.
1655         For V8, the limit reported by the VM is returned.
1656
1657         * Android.jscbindings.mk:
1658         * CMakeLists.txt:
1659         * GNUmakefile.am:
1660         * WebCore.gypi:
1661         * WebCore.pro:
1662         * WebCore.vcproj/WebCore.vcproj:
1663         * WebCore.xcodeproj/project.pbxproj:
1664         * bindings/js/JSBindingsAllInOne.cpp:
1665         * bindings/js/JSMemoryInfoCustom.cpp: Added.
1666         * bindings/js/ScriptGCEvent.cpp:
1667         (WebCore::ScriptGCEvent::getHeapSize):
1668         * bindings/js/ScriptGCEvent.h:
1669         * bindings/v8/ScriptGCEvent.cpp:
1670         (WebCore::ScriptGCEvent::getHeapSize):
1671         * bindings/v8/ScriptGCEvent.h:
1672         * inspector/InspectorTimelineAgent.cpp:
1673         (WebCore::InspectorTimelineAgent::setHeapSizeStatistic):
1674         * page/MemoryInfo.cpp:
1675         (WebCore::MemoryInfo::MemoryInfo):
1676         * page/MemoryInfo.h:
1677         (WebCore::MemoryInfo::jsHeapSizeLimit):
1678         * page/MemoryInfo.idl:
1679
1680 2011-01-27  Philippe Normand  <pnormand@igalia.com>
1681
1682         Reviewed by Martin Robinson.
1683
1684         [GTK] LayoutTests/media/audio-mpeg4-supported.html fails
1685         https://bugs.webkit.org/show_bug.cgi?id=53125
1686
1687         * platform/graphics/gstreamer/MediaPlayerPrivateGStreamer.cpp:
1688         (WebCore::mimeTypeCache): Add audio/x-m4a mimetype in the cache.
1689
1690 2011-02-03  Simon Fraser  <simon.fraser@apple.com>
1691
1692         Reviewed by Sam Weinig.
1693
1694         ShadowBlur radius for CSS shadows is slightly too big
1695         https://bugs.webkit.org/show_bug.cgi?id=53660
1696         
1697         If we follow SVG gaussian blur for CSS shadows, we can end up rendering
1698         shadows that extend further than the CSS "blur radius", which results
1699         in the shadows being truncated.
1700         
1701         Fix with a small fudge factor to reduce the kernel diameter slightly
1702         for CSS shadows.
1703         
1704         Also more closely follow the algorithm described in the SVG spec
1705         for computing the kernel size for different diameters, and clean up
1706         some variable naming relating to the shadow bounds.
1707
1708         * platform/graphics/ShadowBlur.cpp:
1709         (WebCore::ShadowBlur::blurLayerImage):
1710         (WebCore::ShadowBlur::drawRectShadowWithTiling):
1711
1712 2011-02-01  Pavel Podivilov  <podivilov@chromium.org>
1713
1714         Reviewed by Pavel Feldman.
1715
1716         Web Inspector: introduce new api for managing JavaScript breakpoints.
1717         https://bugs.webkit.org/show_bug.cgi?id=53235
1718
1719         Single protocol breakpoint (e.g. set by url) is mapped on zero or more VM breakpoints (set by sourceID).
1720         removeJavaScriptBreakpoint(breakpointId) removes breakpoint and all linked VM breakpoints.
1721         Since UI uses VM breakpoint location rather then protocol breakpoint location, all resolved breakpoints locations are passed to frontend.
1722
1723         SourceFrame is now aware of whether breakpoint is resolved or not and may display it accordingly.
1724         JavaScriptBreakpointsSidebarPane filters out breakpoints set on nonexistent scripts to avoid UI cluttering.
1725
1726         * bindings/js/ScriptDebugServer.cpp:
1727         (WebCore::ScriptDebugServer::setBreakpoint):
1728         (WebCore::ScriptDebugServer::removeBreakpoint):
1729         * bindings/js/ScriptDebugServer.h:
1730         * bindings/v8/DebuggerScript.js:
1731         ():
1732         * bindings/v8/ScriptDebugServer.cpp:
1733         (WebCore::ScriptDebugServer::setBreakpoint):
1734         * bindings/v8/ScriptDebugServer.h:
1735         * inspector/Inspector.idl:
1736         * inspector/InspectorAgent.cpp: clear breakpoints from inspector state when new frontend is created
1737         (WebCore::InspectorAgent::restoreInspectorStateFromCookie):
1738         (WebCore::InspectorAgent::populateScriptObjects):
1739         (WebCore::InspectorAgent::restoreDebugger):
1740         (WebCore::InspectorAgent::showAndEnableDebugger):
1741         (WebCore::InspectorAgent::enableDebugger):
1742         * inspector/InspectorAgent.h:
1743         * inspector/InspectorDebuggerAgent.cpp: manage relations between protocol breakpoints and VM breakpoints
1744         (WebCore::InspectorDebuggerAgent::InspectorDebuggerAgent):
1745         (WebCore::InspectorDebuggerAgent::inspectedURLChanged):
1746         (WebCore::InspectorDebuggerAgent::setJavaScriptBreakpoint):
1747         (WebCore::InspectorDebuggerAgent::setJavaScriptBreakpointBySourceId):
1748         (WebCore::InspectorDebuggerAgent::removeJavaScriptBreakpoint):
1749         (WebCore::InspectorDebuggerAgent::continueToLocation):
1750         (WebCore::InspectorDebuggerAgent::resolveBreakpoint):
1751         (WebCore::InspectorDebuggerAgent::getScriptSource):
1752         (WebCore::InspectorDebuggerAgent::didParseSource):
1753         (WebCore::InspectorDebuggerAgent::didPause):
1754         * inspector/InspectorDebuggerAgent.h:
1755         (WebCore::InspectorDebuggerAgent::Script::Script):
1756         * inspector/InspectorValues.cpp:
1757         (WebCore::InspectorValue::asNumber):
1758         (WebCore::InspectorBasicValue::asNumber):
1759         (WebCore::InspectorObject::remove):
1760         * inspector/InspectorValues.h:
1761         (WebCore::InspectorObject::getNumber):
1762         (WebCore::InspectorObject::find):
1763         * inspector/ScriptBreakpoint.h:
1764         (WebCore::ScriptBreakpoint::ScriptBreakpoint):
1765         * inspector/front-end/Breakpoint.js:
1766         (WebInspector.Breakpoint):
1767         (WebInspector.Breakpoint.prototype.addLocation):
1768         * inspector/front-end/BreakpointManager.js: remove all stuff related to JavaScript breakpoints from here
1769         (WebInspector.BreakpointManager):
1770         (WebInspector.BreakpointManager.prototype._projectChanged):
1771         (WebInspector.BreakpointManager.prototype._saveBreakpoints):
1772         (WebInspector.BreakpointManager.prototype._validateBreakpoints):
1773         * inspector/front-end/BreakpointsSidebarPane.js:
1774         (WebInspector.JavaScriptBreakpointsSidebarPane): filter breakpoints set on nonexistent scripts to avoid ui cluttering
1775         * inspector/front-end/DebuggerModel.js:
1776         (WebInspector.DebuggerModel): pull all JavaScript from localStorage and push them to fronted when debugger is enabled, save resolved breakpoints data
1777         * inspector/front-end/Script.js:
1778         (WebInspector.Script.prototype.sourceLine):
1779         * inspector/front-end/ScriptsPanel.js:
1780         (WebInspector.ScriptsPanel.prototype._toggleDebugging):
1781         * inspector/front-end/Settings.js:
1782         (WebInspector.Settings):
1783         * inspector/front-end/SourceFrame.js: handle resolved and unresolved breakpoints differently
1784         * inspector/front-end/inspector.js:
1785
1786 2011-02-03  Nikolas Zimmermann  <nzimmermann@rim.com>
1787
1788         Reviewed by Dirk Schulze.
1789
1790         small text which is scaled to be large renders pixelated
1791         https://bugs.webkit.org/show_bug.cgi?id=12448
1792
1793         SVG <text> with font-size smaller or equal to 1 does not paint correctly
1794         https://bugs.webkit.org/show_bug.cgi?id=14242
1795
1796         misplaced text in SVG
1797         https://bugs.webkit.org/show_bug.cgi?id=17053
1798
1799         Don't render very small (but zoomed) text inside SVG
1800         https://bugs.webkit.org/show_bug.cgi?id=19393
1801
1802         Tiny fonts scaled up end up too large in Safari
1803         https://bugs.webkit.org/show_bug.cgi?id=20192
1804
1805         Stretched SVG Text has awful glyph spacing 
1806         https://bugs.webkit.org/show_bug.cgi?id=21774
1807
1808         REGRESSION (r72141?): svg/batik/text/smallFonts.svg failing on Leopard
1809         https://bugs.webkit.org/show_bug.cgi?id=49846
1810
1811         [Gtk] Text height in zoomed SVG is 1px too high
1812         https://bugs.webkit.org/show_bug.cgi?id=50313
1813
1814         SVG text smaller than 0.5px not displayed properly
1815         https://bugs.webkit.org/show_bug.cgi?id=50528
1816
1817         When rendering text, we're selecting a font with a size, as specified in the markup.
1818         This can lead to problems, if the context, where the text is rendered upon, is scaled. If a parent
1819         element of the <text> defines a transform=".." or the outermost <svg> containing a viewBox the
1820         problem becomes apparent.
1821
1822         Consider following two snippets, which should render exactly the same:
1823         <svg viewBox="0 0 100 100"><text x="25" y="50" font-size="25">test</text></svg>
1824         <svg viewBox="0 0 1 1"><text x="0.25" y="0.5" font-size="0.25">test</text></svg>
1825
1826         When selecting a font size below 0.5, FontCacheMac would request a font with size 0,
1827         which AppKit turns into 12. This lead to huge text rendering, instead of small text on Mac.
1828         Other platforms have different problems (Qt simply scales the font, leading to pixelation etc.)
1829
1830         To fix this in a cross-platform fashion, we now always compute the final font size on screen,
1831         remove any scaling from the context, draw the text using the scaled font size, then reapply
1832         the context scale. This makes the example snippets above render exactly the same and fixes
1833         numerous of bugs, present since years. As we're now heavily using floating-point font sizes
1834         internally, depending on the scale of the document, it's very important to use the new
1835         floating-point text metrics information (floatAscent/floatDescent/floatHeight) everywhere in SVG.
1836
1837         Fixes existing tests: css3/zoom-coords.xhtml (cross-platform inconsistencies should be gone, mac now reports floatHeight values for SVG text height)
1838                               svg/hixie/text/003.html (no more pixelation)
1839                               svg/batik/text/smallFonts.svg (small fonts aren't rendered huge anymore on mac)
1840                               svg/hixie/viewbox/preserveAspectRatio/001.xml (bug 21774, no more awful spacing)
1841                               svg/zoom/page/zoom-zoom-coords.xhtml (cross-platform inconsistencies should be gone, inspired by bug 50313)
1842
1843         Tests: svg/text/font-size-below-point-five-2.svg (reduction from bug 50528)
1844                svg/text/font-size-below-point-five.svg (reduction from bug 50528)
1845                svg/text/scaled-font.svg (reduction from bug 12448)
1846                svg/text/small-fonts-2.svg (reduction from bug 14242)
1847                svg/text/small-fonts-3.svg (reduction from bug 17053)
1848                svg/text/small-fonts-in-html5.html (reduction from bug 19393)
1849                svg/text/small-fonts.svg (reduction from bug 20192))
1850
1851         * rendering/svg/RenderSVGInlineText.cpp: Cache 'float scalingFactor' & 'Font scaledFont', whenever the on-screen representation changes.
1852         * rendering/svg/RenderSVGInlineText.h:
1853         * rendering/svg/RenderSVGText.cpp: Update scalingFactor/scaledFont, if necessary.
1854         * rendering/svg/SVGInlineTextBox.cpp: Switch to new font rendering strategy. Always use scaledFont, and remove any context scale before drawing.
1855         * rendering/svg/SVGInlineTextBox.h:
1856         * rendering/svg/SVGTextLayoutEngineBaseline.cpp: Use floating-point metrics everywhere.
1857         * rendering/svg/SVGTextMetrics.cpp: Ditto.
1858         * rendering/svg/SVGTextMetrics.h: Ditto.
1859         * rendering/svg/SVGTextQuery.cpp: Ditto.
1860         * svg/SVGFont.cpp: Adjust stroke thickness, when drawing SVGFonts into a normalized context (no more scale).
1861         * svg/SVGTextContentElement.cpp: Make <text> elements always dependant on window size changes in combination with viewBox set.
1862         * svg/SVGTextPositioningElement.cpp: Remove now unnecessary code to determine wheter relative lengths are used as text attributes.
1863         * svg/SVGTextPositioningElement.h: 
1864
1865 2011-02-03  Pavel Feldman  <pfeldman@chromium.org>
1866
1867         Reviewed by Yury Semikhatsky.
1868
1869         Web Inspector: resources panel doesn't show frames after reload.
1870         https://bugs.webkit.org/show_bug.cgi?id=53430
1871
1872         * inspector/front-end/ResourcesPanel.js:
1873         (WebInspector.ResourcesPanel.prototype.show):
1874         (WebInspector.ResourcesPanel.prototype.loadEventFired):
1875         (WebInspector.ResourcesPanel.prototype._initDefaultSelection):
1876         (WebInspector.ResourcesPanel.prototype.reset):
1877         (WebInspector.ResourcesPanel.prototype.clear):
1878         * inspector/front-end/inspector.js:
1879         (WebInspector.loadEventFired):
1880
1881 2011-02-01  Alexander Pavlov  <apavlov@chromium.org>
1882
1883         Reviewed by Pavel Feldman.
1884
1885         Web Inspector: Remove the *2 suffix from the CSS style-related protocol methods
1886         https://bugs.webkit.org/show_bug.cgi?id=53492
1887
1888         * inspector/Inspector.idl:
1889         * inspector/InspectorCSSAgent.cpp:
1890         (WebCore::InspectorCSSAgent::getStylesForNode):
1891         (WebCore::InspectorCSSAgent::getInlineStyleForNode):
1892         (WebCore::InspectorCSSAgent::getComputedStyleForNode):
1893         (WebCore::InspectorCSSAgent::getAllStyles):
1894         (WebCore::InspectorCSSAgent::getStyleSheet):
1895         (WebCore::InspectorCSSAgent::getStyleSheetText):
1896         (WebCore::InspectorCSSAgent::setStyleSheetText):
1897         (WebCore::InspectorCSSAgent::setPropertyText):
1898         (WebCore::InspectorCSSAgent::toggleProperty):
1899         (WebCore::InspectorCSSAgent::setRuleSelector):
1900         (WebCore::InspectorCSSAgent::addRule):
1901         * inspector/InspectorCSSAgent.h:
1902         * inspector/front-end/AuditRules.js:
1903         (WebInspector.AuditRules.UnusedCssRule.prototype.doRun):
1904         * inspector/front-end/CSSStyleModel.js:
1905         (WebInspector.CSSStyleModel.prototype.getStylesAsync):
1906         (WebInspector.CSSStyleModel.prototype.getComputedStyleAsync):
1907         (WebInspector.CSSStyleModel.prototype.getInlineStyleAsync):
1908         (WebInspector.CSSStyleModel.prototype.setRuleSelector):
1909         (WebInspector.CSSStyleModel.prototype.addRule):
1910         (WebInspector.CSSStyleModel.prototype._styleSheetChanged):
1911         (WebInspector.CSSStyleModel.prototype._onRevert):
1912         (WebInspector.CSSStyleDeclaration.prototype.insertPropertyAt):
1913         (WebInspector.CSSProperty.prototype.setText):
1914         (WebInspector.CSSProperty.prototype.setDisabled):
1915         (WebInspector.CSSStyleSheet.createForId):
1916         (WebInspector.CSSStyleSheet.prototype.setText):
1917
1918 2011-02-03  Adam Barth  <abarth@webkit.org>
1919
1920         Reviewed by Daniel Bates.
1921
1922         Teach XSSFilter about data URLs
1923         https://bugs.webkit.org/show_bug.cgi?id=53662
1924
1925         The XSS filter doesn't really make sense for data URLs because
1926         everything in a "response" from a data URL was part of the request.
1927
1928         Test: http/tests/security/xssAuditor/data-urls-work.html
1929
1930         * html/parser/XSSFilter.cpp:
1931         (WebCore::XSSFilter::init):
1932         (WebCore::XSSFilter::filterToken):
1933
1934 2011-02-02  Chris Evans  <cevans@chromium.org>
1935
1936         Reviewed by Darin Fisher.
1937
1938         window.find() can fail when switching case sensitivity
1939         https://bugs.webkit.org/show_bug.cgi?id=53654
1940
1941         Reset the pattern to a safe one when done, to avoid usearch_reset()
1942         indirectly touching the old, stale text pointer.
1943
1944         Test: fast/text/find-window.html
1945
1946         * editing/TextIterator.cpp:
1947         (WebCore::SearchBuffer::~SearchBuffer): leave a safe pattern buffer when done.
1948
1949 2011-02-02  Adam Barth  <abarth@webkit.org>
1950
1951         Reviewed by Daniel Bates.
1952
1953         Teach XSSFilter that <param> elements can contain URLs
1954         https://bugs.webkit.org/show_bug.cgi?id=53652
1955
1956         When loading plugins for the <object> tag, we're "smart" enough to
1957         reach into the <param> elements and pull out the URL in some cases.
1958         This patch teaches the XSSFilter how to block injections into those
1959         sorts of param elements.
1960
1961         Fixes:
1962             http/tests/security/xssAuditor/object-*
1963
1964         * html/HTMLParamElement.cpp:
1965         (WebCore::HTMLParamElement::isURLParameter):
1966         (WebCore::HTMLParamElement::isURLAttribute):
1967         (WebCore::HTMLParamElement::addSubresourceAttributeURLs):
1968         * html/HTMLParamElement.h:
1969             - Add a helper function so that HTMLParamElement can share the
1970               ground truth for these names with the XSSFilter.
1971         * html/parser/XSSFilter.cpp:
1972         (WebCore::XSSFilter::filterTokenInitial):
1973         (WebCore::XSSFilter::filterParamToken):
1974         * html/parser/XSSFilter.h:
1975
1976 2011-02-02  Dimitri Glazkov  <dglazkov@chromium.org>
1977
1978         Reviewed by David Levin.
1979
1980         GCC compiler on ARM issues bogus warnings and fails to compile.
1981         https://bugs.webkit.org/show_bug.cgi?id=53620
1982
1983         Despite warnings explicitly being disallowed (-Wno-uninitialized),
1984         gcc (Ubuntu 4.4.3-4ubuntu5) 4.4.3 throws up the warnings like:
1985
1986         "error: 'colorTransparent.unstatic.4909' may be used uninitialized in this function"
1987
1988         The fix is to add an extra condition, which somehow pacifies the compiler.
1989
1990         * css/CSSPrimitiveValue.cpp:
1991         (WebCore::CSSPrimitiveValue::createColor): Added workaround conditions.
1992
1993 2011-02-02  Adam Barth  <abarth@webkit.org>
1994
1995         Reviewed by Daniel Bates.
1996
1997         Teach XSSFilter about X-XSS-Protection
1998         https://bugs.webkit.org/show_bug.cgi?id=53640
1999
2000         This patch causes us to pass:
2001             http/tests/security/xssAuditor/full-block-*
2002             http/tests/security/xssAuditor/no-protection-script-tag.html
2003
2004         * html/parser/XSSFilter.cpp:
2005         (WebCore::XSSFilter::XSSFilter):
2006         (WebCore::XSSFilter::init):
2007         (WebCore::XSSFilter::filterToken):
2008         * html/parser/XSSFilter.h:
2009
2010 2011-02-02  Adam Barth  <abarth@webkit.org>
2011
2012         Reviewed by Daniel Bates.
2013
2014         When XSSFilter blocks JavaScript URLs, use a safe JavaScript URL
2015         instead of the empty string
2016         https://bugs.webkit.org/show_bug.cgi?id=53643
2017
2018         In a URL context, the empty string completes to the URL of the current
2019         page, which causes these tests to go into an infinite loop.  Instead,
2020         we should use a "safe" JavaScript URL that does nothing.
2021
2022         Fixes:
2023             http/tests/security/xssAuditor/javascript-link*
2024
2025         * html/parser/XSSFilter.cpp:
2026         (WebCore::XSSFilter::eraseDangerousAttributesIfInjected):
2027
2028 2011-02-02  Dan Bernstein  <mitz@apple.com>
2029
2030         Reviewed by Sam Weinig.
2031
2032         <rdar://problem/8380506> REGRESSION (r61921): RTL text in <b> tag doesn't display in WebKit under certain conditions
2033         https://bugs.webkit.org/show_bug.cgi?id=44942
2034
2035         Test: fast/text/bidi-embedding-pop-and-push-same-2.html
2036
2037         * platform/text/BidiResolver.h:
2038         (WebCore::::commitExplicitEmbedding): Changed to return a boolean indicating whether there was
2039         a change to embedding levels.
2040         (WebCore::::createBidiRunsForLine): If embedding levels did not change as a result of committing
2041         the explicit embedding sequence, then runs were not added, and we should continue normally.
2042
2043 2011-02-02  Sam Weinig  <sam@webkit.org>
2044
2045         Reviewed by Dan Bernstein.
2046
2047         Fix miscalculation of the overhang area used for painting. We were
2048         not correctly accounting for scrollbars resulting in an non-negative
2049         overhang even when we weren't over the edge.
2050
2051         * platform/ScrollView.cpp:
2052         (WebCore::ScrollView::calculateOverhangAreasForPainting):
2053
2054 2011-02-02  Jeremy Orlow  <jorlow@chromium.org>
2055
2056         Reviewed by Nate Chapin.
2057
2058         IDBTransaction and IDBRequest can be deleted while ScriptExecutionContext is iterating....which is bad
2059         https://bugs.webkit.org/show_bug.cgi?id=52722
2060
2061         The solution is to change ScriptExecutionContext's destructor to iterate over
2062         the list in a way that handles the mutations. This new method is destructive,
2063         but that's OK since the object is going away. I've also added a several asserts.
2064
2065         There should be no behavior change.
2066
2067         * dom/ScriptExecutionContext.cpp:
2068         (WebCore::ScriptExecutionContext::ScriptExecutionContext):
2069         (WebCore::ScriptExecutionContext::~ScriptExecutionContext):
2070         (WebCore::ScriptExecutionContext::canSuspendActiveDOMObjects):
2071         (WebCore::ScriptExecutionContext::suspendActiveDOMObjects):
2072         (WebCore::ScriptExecutionContext::resumeActiveDOMObjects):
2073         (WebCore::ScriptExecutionContext::stopActiveDOMObjects):
2074         (WebCore::ScriptExecutionContext::createdActiveDOMObject):
2075         (WebCore::ScriptExecutionContext::destroyedActiveDOMObject):
2076         * dom/ScriptExecutionContext.h:
2077         * storage/IDBTransaction.cpp:
2078         (WebCore::IDBTransaction::contextDestroyed):
2079         * storage/IDBTransaction.h:
2080
2081 2011-02-02  Mark Rowe  <mrowe@apple.com>
2082
2083         Build fix.
2084
2085         * WebCore.exp.in: Remove some bogus symbols from the .exp.in file.
2086         * platform/mac/ScrollbarThemeMac.mm:
2087         (WebCore::ScrollbarThemeMac::unregisterScrollbar): Look the object
2088         up in the HashMap rather than relying on a local variable that doesn't
2089         exist.
2090
2091 2011-02-02  Adam Barth  <abarth@webkit.org>
2092
2093         Reviewed by Daniel Bates.
2094
2095         Teach XSSFilter about JavaScript URLs
2096         https://bugs.webkit.org/show_bug.cgi?id=53635
2097
2098         This patch teaches the XSSFilter to check for JavaScript URLs in
2099         attribute values.  If this approach has too many false positives, we
2100         can restrict which attribute names we examine.
2101
2102         Fixes these tests:
2103             http/tests/security/xssAuditor/anchor-url-dom-write-location-javascript-URL.html
2104             http/tests/security/xssAuditor/dom-write-location-javascript-URL.html
2105             http/tests/security/xssAuditor/iframe-javascript-url*
2106
2107         * html/parser/XSSFilter.cpp:
2108         (WebCore::HTMLNames::containsJavaScriptURL):
2109         (WebCore::XSSFilter::filterTokenInitial):
2110         (WebCore::XSSFilter::eraseDangerousAttributesIfInjected):
2111         * html/parser/XSSFilter.h:
2112
2113 2011-02-02  Dan Bernstein  <mitz@apple.com>
2114
2115         Reviewed by Sam Weinig, even though this is just a...
2116
2117         ...build fix.
2118
2119         * platform/mac/ScrollAnimatorMac.mm:
2120         (WebCore::ScrollAnimatorMac::~ScrollAnimatorMac):
2121
2122 2011-02-02  Mark Rowe  <mrowe@apple.com>
2123
2124         Reviewed by Beth Dakin.
2125
2126         <rdar://problem/8952012> Crash on launch inside scrollbar code.
2127
2128         We need to ensure that we remove ourselves as the delegates of objects when we're going
2129         away as failing to do this can lead to crashes if the lifetime of the other objects
2130         is longer than ours.
2131
2132         * platform/mac/ScrollAnimatorMac.mm:
2133         (WebCore::ScrollAnimatorMac::~ScrollAnimatorMac):
2134         * platform/mac/ScrollbarThemeMac.mm:
2135         (WebCore::ScrollbarThemeMac::unregisterScrollbar):
2136
2137 2011-02-02  Beth Dakin  <bdakin@apple.com>
2138
2139         Build fix.
2140
2141         * WebCore.exp.in:
2142
2143 2011-02-02  Patrick Gansterer  <paroga@webkit.org>
2144
2145         Unreviewed WinCE build fix for r77397.
2146
2147         * page/wince/FrameWinCE.cpp:
2148         (WebCore::computePageRectsForFrame):
2149
2150 2011-02-02  Patrick Gansterer  <paroga@webkit.org>
2151
2152         Unreviewed WinCE build fix for r77398.
2153
2154         * platform/graphics/wince/PlatformPathWinCE.cpp:
2155         (WebCore::containsPoint):
2156         (WebCore::inflateRectToContainPoint):
2157         (WebCore::PlatformPath::addRect):
2158         * platform/graphics/wince/SharedBitmap.cpp:
2159         (WebCore::SharedBitmap::drawPattern):
2160         * rendering/RenderThemeWinCE.cpp:
2161         (WebCore::RenderThemeWinCE::paintMenuListButton):
2162         (WebCore::RenderThemeWinCE::paintSearchFieldCancelButton):
2163         (WebCore::RenderThemeWinCE::paintSliderTrack):
2164         (WebCore::RenderThemeWinCE::paintMediaMuteButton):
2165         (WebCore::RenderThemeWinCE::paintMediaPlayButton):
2166         (WebCore::RenderThemeWinCE::paintMediaSeekBackButton):
2167         (WebCore::RenderThemeWinCE::paintMediaSeekForwardButton):
2168
2169 2011-02-02  Jian Li  <jianli@chromium.org>
2170
2171         Reviewed by Kenneth Russell.
2172
2173         [V8] Accessing DataView with index of -1 returns 0, doesn't throw
2174         https://bugs.webkit.org/show_bug.cgi?id=53559
2175
2176         Added test cases to cover this in fast/canvas/webgl/data-view-test.html.
2177
2178         * html/canvas/DataView.h:
2179         (WebCore::DataView::beyondRange):
2180
2181 2011-02-02  Sam Weinig  <sam@webkit.org>
2182
2183         Reviewed by Beth Dakin.
2184
2185         Add ChromeClient function to paint custom overhang areas.
2186         https://bugs.webkit.org/show_bug.cgi?id=53639
2187
2188         * page/Chrome.cpp:
2189         (WebCore::ChromeClient::paintCustomOverhangArea):
2190         * page/ChromeClient.h:
2191         Add ChromeClient function.
2192
2193         * page/FrameView.cpp:
2194         (WebCore::FrameView::paintOverhangAreas):
2195         * page/FrameView.h:
2196         Call out the the ChromeClient, call ScrollView base implementation
2197         if the ChromeClient returns false.
2198
2199         * platform/ScrollView.cpp:
2200         (WebCore::ScrollView::paintOverhangAreas):
2201         * platform/ScrollView.h:
2202         Add dirty rect for use when painting overhang areas.
2203
2204 2011-02-02  Peter Kasting  <pkasting@google.com>
2205
2206         Not reviewed, build fix.
2207
2208         Fix compile after r77427.
2209         https://bugs.webkit.org/show_bug.cgi?id=53455
2210
2211         * platform/graphics/qt/ImageDecoderQt.cpp:
2212         (WebCore::ImageDecoderQt::internalHandleCurrentImage):
2213         * platform/image-decoders/ImageDecoder.cpp:
2214         (WebCore::ImageFrame::operator=):
2215         * platform/image-decoders/bmp/BMPImageReader.cpp:
2216         (WebCore::BMPImageReader::decodeBMP):
2217         * platform/image-decoders/jpeg/JPEGImageDecoder.cpp:
2218         (WebCore::JPEGImageDecoder::outputScanlines):
2219         * platform/image-decoders/png/PNGImageDecoder.cpp:
2220         (WebCore::PNGImageDecoder::rowAvailable):
2221         * platform/image-decoders/webp/WEBPImageDecoder.cpp:
2222         (WebCore::WEBPImageDecoder::decode):
2223
2224 2011-02-02  Peter Kasting  <pkasting@google.com>
2225
2226         Reviewed by David Levin.
2227
2228         Clean up ImageDecoder's comments (remove/trim/clarify).
2229         https://bugs.webkit.org/show_bug.cgi?id=53455
2230
2231         This also renames or eliminates a couple of functions for clarity, and
2232         switches a couple erroneous strncmp() calls to memcmp().
2233
2234         * platform/image-decoders/ImageDecoder.cpp:
2235         (WebCore::ImageDecoder::create):
2236         (WebCore::ImageFrame::clearPixelData):
2237         (WebCore::ImageFrame::zeroFillPixelData):
2238         (WebCore::ImageFrame::setSize):
2239         * platform/image-decoders/ImageDecoder.h:
2240         (WebCore::ImageFrame::originalFrameRect):
2241         (WebCore::ImageFrame::setOriginalFrameRect):
2242         (WebCore::ImageDecoder::ImageDecoder):
2243         (WebCore::ImageDecoder::~ImageDecoder):
2244         (WebCore::ImageDecoder::isSizeAvailable):
2245         (WebCore::ImageDecoder::size):
2246         (WebCore::ImageDecoder::setIgnoreGammaAndColorProfile):
2247         (WebCore::ImageDecoder::clearFrameBufferCache):
2248         (WebCore::ImageDecoder::isOverSize):
2249         * platform/image-decoders/bmp/BMPImageReader.cpp:
2250         (WebCore::BMPImageReader::processNonRLEData):
2251         * platform/image-decoders/cg/ImageDecoderCG.cpp:
2252         (WebCore::ImageFrame::setSize):
2253         * platform/image-decoders/gif/GIFImageDecoder.cpp:
2254         (WebCore::GIFImageDecoder::clearFrameBufferCache):
2255         (WebCore::GIFImageDecoder::frameComplete):
2256         (WebCore::GIFImageDecoder::initFrameBuffer):
2257         * platform/image-decoders/jpeg/JPEGImageDecoder.h:
2258         * platform/image-decoders/qt/ImageFrameQt.cpp:
2259         (WebCore::ImageFrame::operator=):
2260         (WebCore::ImageFrame::clearPixelData):
2261         (WebCore::ImageFrame::zeroFillPixelData):
2262         (WebCore::ImageFrame::setSize):
2263         * platform/image-decoders/skia/ImageDecoderSkia.cpp:
2264         (WebCore::ImageFrame::operator=):
2265         (WebCore::ImageFrame::clearPixelData):
2266         (WebCore::ImageFrame::zeroFillPixelData):
2267         (WebCore::ImageFrame::setSize):
2268         * platform/image-decoders/webp/WEBPImageDecoder.h:
2269
2270 2011-02-02  Vangelis Kokkevis  <vangelis@chromium.org>
2271
2272         [chromium] Adding support for reflections to the accelerated
2273         compositing path.
2274         https://bugs.webkit.org/show_bug.cgi?id=53179
2275
2276         All layout tests in compositing/reflections generate correct
2277         results with the exception of:
2278         1. nested-reflection-anchor-point.html : There appears to be
2279            some issue with the layer transform math that I haven't been
2280            able to track down yet.
2281         2. reflection-opacity.html : The current implementation applies
2282            opacity before doing the reflection which makes this test
2283            produce incorrect results.  This will affect reflected layers
2284            with opacity that overlap their original layer.  FIXME comment
2285            added in the code.
2286
2287         Tests: Covered by existing layout tests in compositing/reflections.
2288                Please see above for exceptions.
2289
2290         * platform/graphics/chromium/GraphicsLayerChromium.cpp:
2291         (WebCore::GraphicsLayerChromium::setReplicatedByLayer):
2292         (WebCore::GraphicsLayerChromium::updateAnchorPoint):
2293         * platform/graphics/chromium/GraphicsLayerChromium.h:
2294         * platform/graphics/chromium/LayerChromium.cpp:
2295         (WebCore::LayerChromium::LayerChromium):
2296         * platform/graphics/chromium/LayerChromium.h:
2297         (WebCore::LayerChromium::setReplicaLayer):
2298         (WebCore::LayerChromium::replicaLayer):
2299         * platform/graphics/chromium/LayerRendererChromium.cpp:
2300         (WebCore::LayerRendererChromium::updateLayersRecursive):
2301         (WebCore::LayerRendererChromium::drawLayer):
2302         * platform/graphics/chromium/RenderSurfaceChromium.cpp:
2303         (WebCore::RenderSurfaceChromium::drawableContentRect):
2304         (WebCore::RenderSurfaceChromium::drawSurface):
2305         (WebCore::RenderSurfaceChromium::draw):
2306         * platform/graphics/chromium/RenderSurfaceChromium.h:
2307         (WebCore::RenderSurfaceChromium::drawTransform):
2308
2309 2011-02-02  Xiyuan Xia  <xiyuan@chromium.org>
2310
2311         Reviewed by Tony Chang.
2312
2313         [Chromium] Select popup with padding has white strip on right
2314         https://bugs.webkit.org/show_bug.cgi?id=53602
2315
2316         No new tests as this change restores old behavior.
2317
2318         * platform/chromium/PopupMenuChromium.cpp:
2319         (WebCore::PopupListBox::layout):
2320
2321 2011-02-02  Beth Dakin  <bdakin@apple.com>
2322
2323         Reviewed by Mark Rowe.
2324
2325         Fix for <rdar://problem/8950343> CrashTracer: [USER]
2326         1 crash in WebProcess at com.apple.WebCore: 
2327         WebCore::ScrollbarThemeMac::unregisterScrollbar + 22
2328
2329         It is possible for a Scrollbar's ScrollableArea to be null,
2330         so we must null check.
2331         * platform/mac/ScrollbarThemeMac.mm:
2332         (WebCore::ScrollbarThemeMac::registerScrollbar):
2333         (WebCore::ScrollbarThemeMac::unregisterScrollbar):
2334
2335 2011-02-02  Zhenyao Mo  <zmo@google.com>
2336
2337         Reviewed by Kenneth Russell.
2338
2339         bufferData and bufferSubData should generate INVALID_VALUE with negative input
2340         https://bugs.webkit.org/show_bug.cgi?id=53626
2341
2342         * html/canvas/WebGLRenderingContext.cpp:
2343         (WebCore::WebGLRenderingContext::bufferData):
2344         (WebCore::WebGLRenderingContext::bufferSubData):
2345
2346 2011-02-02  Jeff Miller  <jeffm@apple.com>
2347
2348         Reviewed by Darin Adler and Steve Falkenburg.
2349
2350         Add DerivedSources.make to some Visual Studio projects
2351         https://bugs.webkit.org/show_bug.cgi?id=53607
2352
2353         * WebCore.vcproj/WebCoreGenerated.vcproj: Add DerivedSources.make.
2354
2355 2011-02-02  Cris Neckar  <cdn@chromium.org>
2356
2357         Reviewed by James Robinson.
2358
2359         Refcount domwindows when dispatching device orientation events.
2360         https://bugs.webkit.org/show_bug.cgi?id=53623
2361
2362         Test: fast/events/device-orientation-crash.html
2363
2364         * dom/DeviceMotionController.cpp:
2365         (WebCore::DeviceMotionController::timerFired):
2366         (WebCore::DeviceMotionController::didChangeDeviceMotion):
2367         * dom/DeviceMotionController.h:
2368         * dom/DeviceOrientationController.cpp:
2369         (WebCore::DeviceOrientationController::timerFired):
2370         (WebCore::DeviceOrientationController::didChangeDeviceOrientation):
2371         * dom/DeviceOrientationController.h:
2372
2373 2011-02-02  Zhenyao Mo  <zmo@google.com>
2374
2375         Reviewed by Kenneth Russell.
2376
2377         A deleted object should never been bound again
2378         https://bugs.webkit.org/show_bug.cgi?id=53604
2379
2380         * html/canvas/WebGLRenderingContext.cpp:
2381         (WebCore::WebGLRenderingContext::checkObjectToBeBound): Helper function to bind* and useProgram.
2382         (WebCore::WebGLRenderingContext::bindBuffer): Use checkObjectToBeBound.
2383         (WebCore::WebGLRenderingContext::bindFramebuffer): Ditto.
2384         (WebCore::WebGLRenderingContext::bindRenderbuffer): Ditto.
2385         (WebCore::WebGLRenderingContext::bindTexture): Ditto, also check the target matching.
2386         (WebCore::WebGLRenderingContext::deleteObject): Helper funtion to delete*.
2387         (WebCore::WebGLRenderingContext::deleteBuffer): Use deleteObject.
2388         (WebCore::WebGLRenderingContext::deleteFramebuffer): Ditto.
2389         (WebCore::WebGLRenderingContext::deleteProgram): Ditto.
2390         (WebCore::WebGLRenderingContext::deleteRenderbuffer): Ditto.
2391         (WebCore::WebGLRenderingContext::deleteShader): Ditto.
2392         (WebCore::WebGLRenderingContext::deleteTexture): Ditto.
2393         (WebCore::WebGLRenderingContext::useProgram): Use checkObjectToBeBound.
2394         * html/canvas/WebGLRenderingContext.h:
2395         * html/canvas/WebGLTexture.h:
2396         (WebCore::WebGLTexture::getTarget): Accessor to cached target.
2397
2398 2011-02-02  Alejandro G. Castro  <alex@igalia.com>
2399
2400         Unreviewed Efl buildfix after r77399.
2401
2402         * CMakeListsEfl.txt:
2403
2404 2011-02-02  Kenneth Russell  <kbr@google.com>
2405
2406         Reviewed by James Robinson.
2407
2408         Rename Typed Array subset to subarray
2409         https://bugs.webkit.org/show_bug.cgi?id=53618
2410
2411         * html/canvas/Float32Array.cpp:
2412         (WebCore::Float32Array::subarray):
2413         * html/canvas/Float32Array.h:
2414         * html/canvas/Float32Array.idl:
2415         * html/canvas/Int16Array.cpp:
2416         (WebCore::Int16Array::subarray):
2417         * html/canvas/Int16Array.h:
2418         * html/canvas/Int16Array.idl:
2419         * html/canvas/Int32Array.cpp:
2420         (WebCore::Int32Array::subarray):
2421         * html/canvas/Int32Array.h:
2422         * html/canvas/Int32Array.idl:
2423         * html/canvas/Int8Array.cpp:
2424         (WebCore::Int8Array::subarray):
2425         * html/canvas/Int8Array.h:
2426         * html/canvas/Int8Array.idl:
2427         * html/canvas/TypedArrayBase.h:
2428         (WebCore::TypedArrayBase::subarrayImpl):
2429         * html/canvas/Uint16Array.cpp:
2430         (WebCore::Uint16Array::subarray):
2431         * html/canvas/Uint16Array.h:
2432         * html/canvas/Uint16Array.idl:
2433         * html/canvas/Uint32Array.cpp:
2434         (WebCore::Uint32Array::subarray):
2435         * html/canvas/Uint32Array.h:
2436         * html/canvas/Uint32Array.idl:
2437         * html/canvas/Uint8Array.cpp:
2438         (WebCore::Uint8Array::subarray):
2439         * html/canvas/Uint8Array.h:
2440         * html/canvas/Uint8Array.idl:
2441
2442 2011-02-02  Adam Barth  <abarth@webkit.org>
2443
2444         Reviewed by Eric Seidel.
2445
2446         Add an empty file for Content Security Policy
2447         https://bugs.webkit.org/show_bug.cgi?id=53573
2448
2449         Posting this as a separate patch because editing the build files is so
2450         painful.
2451
2452         * Android.mk:
2453         * CMakeLists.txt:
2454         * GNUmakefile.am:
2455         * WebCore.gypi:
2456         * WebCore.pro:
2457         * WebCore.vcproj/WebCore.vcproj:
2458         * WebCore.xcodeproj/project.pbxproj:
2459
2460 2011-02-02  Dan Winship  <danw@gnome.org>
2461
2462         Reviewed by Martin Robinson.
2463
2464         [GTK] remove old data: URI handler, fix the SoupRequest-based one
2465         to pass tests
2466         https://bugs.webkit.org/show_bug.cgi?id=50885
2467
2468         * platform/network/soup/ResourceHandleSoup.cpp:
2469         (WebCore::sendRequestCallback): Do content-type sniffing here for
2470         non-HTTP requests.
2471         (WebCore::startHTTPRequest): Rename to match WebKit style.
2472         (WebCore::ResourceHandle::start): Pass everything except HTTP to
2473         startNonHTTPRequest, letting the SoupRequester decide whether it's
2474         supported or not.
2475         (WebCore::startNonHTTPRequest): Remove some old pre-SoupRequester
2476         code that was a no-op for file: URIs, but would break some data:
2477         URIs.
2478
2479 2011-02-02  Dimitri Glazkov  <dglazkov@chromium.org>
2480
2481         Update even more references to right() and bottom() in Chromium. Sheesh.
2482
2483         * platform/graphics/chromium/LayerRendererChromium.cpp:
2484         (WebCore::LayerRendererChromium::getFramebufferPixels): Replaced bottom/right with maxY/maxX.
2485
2486 2011-02-02  Alejandro G. Castro  <alex@igalia.com>
2487
2488         Unreviewed Gtk3 buildfix after r77286.
2489
2490         https://bugs.webkit.org/show_bug.cgi?id=53520
2491         Remove the physical terminology from IntRect and FloatRect.
2492
2493         * platform/gtk/RenderThemeGtk3.cpp:
2494         (WebCore::RenderThemeGtk::paintMenuList):
2495
2496 2011-02-02  Anders Carlsson  <andersca@apple.com>
2497
2498         Fix build.
2499
2500         * platform/mac/ScrollAnimatorMac.mm:
2501         (WebCore::ScrollAnimatorMac::pinnedInDirection):
2502
2503 2011-02-02  David Hyatt  <hyatt@apple.com>
2504
2505         Reviewed by Dan Bernstein.
2506
2507         https://bugs.webkit.org/show_bug.cgi?id=53619
2508
2509         Floats should not use physical terminology for their rects. Replace left/top with x/y and right/bottom
2510         with maxX/maxY.  This matches IntRect.
2511
2512         * rendering/RenderBlock.cpp:
2513         (WebCore::RenderBlock::addOverflowFromFloats):
2514         (WebCore::RenderBlock::flipFloatForWritingMode):
2515         (WebCore::RenderBlock::paintFloats):
2516         (WebCore::RenderBlock::selectionGaps):
2517         (WebCore::RenderBlock::addOverhangingFloats):
2518         (WebCore::RenderBlock::addIntrudingFloats):
2519         (WebCore::RenderBlock::hitTestFloats):
2520         (WebCore::RenderBlock::adjustForBorderFit):
2521         * rendering/RenderBlock.h:
2522         (WebCore::RenderBlock::FloatingObject::x):
2523         (WebCore::RenderBlock::FloatingObject::maxX):
2524         (WebCore::RenderBlock::FloatingObject::y):
2525         (WebCore::RenderBlock::FloatingObject::maxY):
2526         (WebCore::RenderBlock::FloatingObject::setX):
2527         (WebCore::RenderBlock::FloatingObject::setY):
2528         (WebCore::RenderBlock::logicalTopForFloat):
2529         (WebCore::RenderBlock::logicalBottomForFloat):
2530         (WebCore::RenderBlock::logicalLeftForFloat):
2531         (WebCore::RenderBlock::logicalRightForFloat):
2532         (WebCore::RenderBlock::setLogicalTopForFloat):
2533         (WebCore::RenderBlock::setLogicalLeftForFloat):
2534         (WebCore::RenderBlock::xPositionForFloatIncludingMargin):
2535         (WebCore::RenderBlock::yPositionForFloatIncludingMargin):
2536
2537 2011-02-02  Dimitri Glazkov  <dglazkov@chromium.org>
2538
2539         Update more references to right() and bottom() in Chromium Win.
2540
2541         * platform/graphics/chromium/TransparencyWin.cpp:
2542         (WebCore::TransparencyWin::compositeOpaqueComposite): Replaced bottom/right with maxY/maxX.
2543         (WebCore::TransparencyWin::compositeTextComposite): Ditto.
2544         * rendering/RenderThemeChromiumWin.cpp:
2545         (WebCore::RenderThemeChromiumWin::paintMenuList): Ditto.
2546
2547 2011-02-02  Adam Roben  <aroben@apple.com>
2548
2549         Encode/decode FormData and FormDataElement objects consistently
2550
2551         Fixes <http://webkit.org/b/53615> <rdar://problem/8943346> WebKit2: Restoring session state
2552         that contains form data fails (asserts in Debug build)
2553
2554         To prevent this from interfering with WebKit2 testing, it's useful to get this into a build
2555         now, even though we don't have an automated test for it yet. Writing a test is covered by
2556         <http://webkit.org/b/53616>.
2557
2558         Reviewed by Darin Adler.
2559
2560         * history/HistoryItem.cpp: Bump the encoding version, since this patch changes how we encode
2561         FormData objects.
2562
2563         * platform/network/FormData.cpp:
2564         (WebCore::decode): Decode the type from the Decoder, rather than getting it from the
2565         default-constructed FormDataElement. Failing to do this meant that all future uses of the
2566         Decoder would be reading from an unexpected part of the buffer (i.e., the next decode would
2567         start by reading the uint32_t that we forgot to decode here, and so on). We already had code
2568         to correctly set the FormDataElement's type based on this decoded type later in the
2569         function.
2570         (WebCore::FormData::encodeForBackForward): Encode m_identifier as an int64_t, since that
2571         matches its type and how we decode it.
2572
2573 2011-02-02  Dan Winship  <danw@gnome.org>
2574
2575         Reviewed by Martin Robinson.
2576
2577         [GTK] drop soup cache stuff, which has been moved to libsoup
2578         https://bugs.webkit.org/show_bug.cgi?id=50747
2579
2580         Use libsoup-based cache/requester API and remove the WebCore version
2581         of this functionality. This has been pushed upstream fully.
2582
2583         No new tests because this should not change functionality.
2584
2585         * GNUmakefile.am: Update for removed files.
2586         * platform/network/ResourceHandleInternal.h:
2587         (WebCore::ResourceHandleInternal::ResourceHandleInternal): Update
2588         type names, drop m_requester.
2589         * platform/network/soup/ResourceHandleSoup.cpp:
2590         (WebCore::ensureSessionIsInitialized): Add a SoupRequester to the
2591         session.
2592         (WebCore::parseDataUrl):
2593         (WebCore::startHttp): Get the requester from the session rather
2594         than using m_requester.
2595         (WebCore::sendRequestCallback):
2596         (WebCore::ResourceHandle::platformSetDefersLoading):
2597         (WebCore::readCallback):
2598         (WebCore::startGio): Update type names.
2599         * platform/network/soup/cache/soup-directory-input-stream.c: Removed.
2600         * platform/network/soup/cache/soup-directory-input-stream.h: Removed.
2601         * platform/network/soup/cache/soup-http-input-stream.c: Removed.
2602         * platform/network/soup/cache/soup-http-input-stream.h: Removed.
2603         * platform/network/soup/cache/soup-request-data.c: Removed.
2604         * platform/network/soup/cache/soup-request-data.h: Removed.
2605         * platform/network/soup/cache/soup-request-file.c: Removed.
2606         * platform/network/soup/cache/soup-request-file.h: Removed.
2607         * platform/network/soup/cache/soup-request-http.c: Removed.
2608         * platform/network/soup/cache/soup-request-http.h: Removed.
2609         * platform/network/soup/cache/soup-request.c: Removed.
2610         * platform/network/soup/cache/soup-request.h: Removed.
2611         * platform/network/soup/cache/soup-requester.c: Removed.
2612         * platform/network/soup/cache/soup-requester.h: Removed.
2613         * platform/network/soup/cache/webkit/soup-cache-private.h: Removed.
2614         * platform/network/soup/cache/webkit/soup-cache.c: Removed.
2615         * platform/network/soup/cache/webkit/soup-cache.h: Removed.
2616
2617 2011-02-02  David Hyatt  <hyatt@apple.com>
2618
2619         Reviewed by Darin Adler.
2620
2621         https://bugs.webkit.org/show_bug.cgi?id=53520
2622
2623         Remove physical accessors from IntRect and FloatRect.
2624
2625         * page/FrameView.cpp:
2626         (WebCore::FrameView::adjustPageHeightDeprecated):
2627         * platform/graphics/FloatRect.h:
2628         * platform/graphics/IntRect.h:
2629
2630 2011-02-02  David Hyatt  <hyatt@apple.com>
2631
2632         Reviewed by Dan Bernstein.
2633
2634         https://bugs.webkit.org/show_bug.cgi?id=53614
2635
2636         Remove physical terminology from overflow.  Replace with minX/maxX/minY/maxY.
2637
2638         * rendering/InlineFlowBox.cpp:
2639         (WebCore::InlineFlowBox::addBoxShadowVisualOverflow):
2640         (WebCore::InlineFlowBox::addTextBoxVisualOverflow):
2641         * rendering/InlineFlowBox.h:
2642         (WebCore::InlineFlowBox::minYLayoutOverflow):
2643         (WebCore::InlineFlowBox::maxYLayoutOverflow):
2644         (WebCore::InlineFlowBox::minXLayoutOverflow):
2645         (WebCore::InlineFlowBox::maxXLayoutOverflow):
2646         (WebCore::InlineFlowBox::logicalLeftLayoutOverflow):
2647         (WebCore::InlineFlowBox::logicalRightLayoutOverflow):
2648         (WebCore::InlineFlowBox::logicalTopLayoutOverflow):
2649         (WebCore::InlineFlowBox::logicalBottomLayoutOverflow):
2650         (WebCore::InlineFlowBox::minYVisualOverflow):
2651         (WebCore::InlineFlowBox::maxYVisualOverflow):
2652         (WebCore::InlineFlowBox::minXVisualOverflow):
2653         (WebCore::InlineFlowBox::maxXVisualOverflow):
2654         (WebCore::InlineFlowBox::logicalLeftVisualOverflow):
2655         (WebCore::InlineFlowBox::logicalRightVisualOverflow):
2656         (WebCore::InlineFlowBox::logicalminYVisualOverflow):
2657         (WebCore::InlineFlowBox::logicalmaxYVisualOverflow):
2658         * rendering/RenderBlock.cpp:
2659         (WebCore::RenderBlock::adjustLinePositionForPagination):
2660         * rendering/RenderBlockLineLayout.cpp:
2661         (WebCore::RenderBlock::beforeSideVisualOverflowForLine):
2662         (WebCore::RenderBlock::afterSideVisualOverflowForLine):
2663         (WebCore::RenderBlock::beforeSideLayoutOverflowForLine):
2664         (WebCore::RenderBlock::afterSideLayoutOverflowForLine):
2665         * rendering/RenderBox.cpp:
2666         (WebCore::RenderBox::scrollWidth):
2667         (WebCore::RenderBox::scrollHeight):
2668         * rendering/RenderBox.h:
2669         (WebCore::RenderBox::minYLayoutOverflow):
2670         (WebCore::RenderBox::maxYLayoutOverflow):
2671         (WebCore::RenderBox::minXLayoutOverflow):
2672         (WebCore::RenderBox::maxXLayoutOverflow):
2673         (WebCore::RenderBox::logicalLeftLayoutOverflow):
2674         (WebCore::RenderBox::logicalRightLayoutOverflow):
2675         (WebCore::RenderBox::minYVisualOverflow):
2676         (WebCore::RenderBox::maxYVisualOverflow):
2677         (WebCore::RenderBox::minXVisualOverflow):
2678         (WebCore::RenderBox::maxXVisualOverflow):
2679         (WebCore::RenderBox::logicalLeftVisualOverflow):
2680         (WebCore::RenderBox::logicalRightVisualOverflow):
2681         * rendering/RenderInline.cpp:
2682         (WebCore::RenderInline::linesVisualOverflowBoundingBox):
2683         * rendering/RenderLayerCompositor.cpp:
2684         (WebCore::RenderLayerCompositor::ensureRootPlatformLayer):
2685         * rendering/RenderLineBoxList.cpp:
2686         (WebCore::RenderLineBoxList::anyLineIntersectsRect):
2687         (WebCore::RenderLineBoxList::lineIntersectsDirtyRect):
2688         (WebCore::RenderLineBoxList::paint):
2689         (WebCore::RenderLineBoxList::hitTest):
2690         * rendering/RenderMarquee.cpp:
2691         (WebCore::RenderMarquee::computePosition):
2692         * rendering/RenderOverflow.h:
2693         (WebCore::RenderOverflow::RenderOverflow):
2694         (WebCore::RenderOverflow::minYLayoutOverflow):
2695         (WebCore::RenderOverflow::maxYLayoutOverflow):
2696         (WebCore::RenderOverflow::minXLayoutOverflow):
2697         (WebCore::RenderOverflow::maxXLayoutOverflow):
2698         (WebCore::RenderOverflow::minYVisualOverflow):
2699         (WebCore::RenderOverflow::maxYVisualOverflow):
2700         (WebCore::RenderOverflow::minXVisualOverflow):
2701         (WebCore::RenderOverflow::maxXVisualOverflow):
2702         (WebCore::RenderOverflow::setminYVisualOverflow):
2703         (WebCore::RenderOverflow::visualOverflowRect):
2704         (WebCore::RenderOverflow::move):
2705         (WebCore::RenderOverflow::addVisualOverflow):
2706         (WebCore::RenderOverflow::setVisualOverflow):
2707         * rendering/RenderReplaced.cpp:
2708         (WebCore::RenderReplaced::shouldPaint):
2709         * rendering/RenderTable.cpp:
2710         (WebCore::RenderTable::layout):
2711         (WebCore::RenderTable::paint):
2712         * rendering/RenderTableCell.cpp:
2713         (WebCore::RenderTableCell::clippedOverflowRectForRepaint):
2714         * rendering/RenderTreeAsText.cpp:
2715         (WebCore::writeLayers):
2716         * rendering/RenderView.cpp:
2717         (WebCore::RenderView::docTop):
2718
2719 2011-02-02  Steve Lacey  <sjl@chromium.org>
2720
2721         Reviewed by Eric Carlson.
2722
2723         Implement basic media statistics on media elements.
2724         https://bugs.webkit.org/show_bug.cgi?id=53322
2725
2726         * Configurations/FeatureDefines.xcconfig:
2727         * GNUmakefile.am:
2728         * features.pri:
2729         * html/HTMLMediaElement.cpp:
2730         (WebCore::HTMLMediaElement::webkitAudioBytesDecoded):
2731         (WebCore::HTMLMediaElement::webkitVideoBytesDecoded):
2732         * html/HTMLMediaElement.h:
2733         * html/HTMLMediaElement.idl:
2734         * html/HTMLVideoElement.cpp:
2735         (WebCore::HTMLVideoElement::webkitDecodedFrames):
2736         (WebCore::HTMLVideoElement::webkitDroppedFrames):
2737         * html/HTMLVideoElement.h:
2738         * html/HTMLVideoElement.idl:
2739         * platform/graphics/MediaPlayer.cpp:
2740         (WebCore::MediaPlayer::decodedFrames):
2741         (WebCore::MediaPlayer::droppedFrames):
2742         (WebCore::MediaPlayer::audioBytesDecoded):
2743         (WebCore::MediaPlayer::videoBytesDecoded):
2744         * platform/graphics/MediaPlayer.h:
2745         * platform/graphics/MediaPlayerPrivate.h:
2746         (WebCore::MediaPlayerPrivateInterface::decodedFrames):
2747         (WebCore::MediaPlayerPrivateInterface::droppedFrames):
2748         (WebCore::MediaPlayerPrivateInterface::audioBytesDecoded):
2749         (WebCore::MediaPlayerPrivateInterface::videoBytesDecoded):
2750
2751 2011-02-02  Luiz Agostini  <luiz.agostini@openbossa.org>
2752
2753         Reviewed by David Hyatt.
2754
2755         More conversion from right()/bottom() to maxX()/maxY().
2756
2757         * page/qt/FrameQt.cpp:
2758         (WebCore::Frame::dragImageForSelection):
2759         * platform/graphics/qt/GraphicsContextQt.cpp:
2760         (WebCore::GraphicsContext::roundToDevicePixels):
2761
2762 2011-02-02  Kevin Ollivier  <kevino@theolliviers.com>
2763
2764         [wx] Build fixes for wxWebKit.
2765
2766         * bindings/cpp/WebDOMHTMLDocumentCustom.cpp:
2767         (documentWrite):
2768         * bindings/scripts/CodeGeneratorCPP.pm:
2769         * page/wx/DragControllerWx.cpp:
2770         (WebCore::DragController::dragOperation):
2771         * platform/graphics/wx/FontCustomPlatformData.h:
2772         * platform/graphics/wx/FontPlatformData.h:
2773         (WebCore::FontPlatformData::widthVariant):
2774         * platform/graphics/wx/FontPlatformDataWx.cpp:
2775         (WebCore::FontPlatformData::computeHash):
2776         * platform/graphics/wx/FontWx.cpp:
2777         * platform/graphics/wx/GraphicsContextWx.cpp:
2778         (WebCore::GraphicsContext::fillPath):
2779         (WebCore::GraphicsContext::strokePath):
2780         * platform/wx/RenderThemeWx.cpp:
2781
2782 2011-02-02  David Hyatt  <hyatt@apple.com>
2783
2784         Reviewed by Darin Adler.
2785
2786         More right()/bottom() to maxX()/maxY() conversion.
2787
2788         * page/chromium/FrameChromium.cpp:
2789         (WebCore::Frame::nodeImage):
2790         (WebCore::Frame::dragImageForSelection):
2791
2792 2011-02-02  Sam Weinig  <sam@webkit.org>
2793
2794         Fix windows clean build.
2795
2796         * DerivedSources.make:
2797
2798 2011-02-02  Mikhail Naganov  <mnaganov@chromium.org>
2799
2800         Reviewed by Pavel Feldman.
2801
2802         Web Inspector: [Chromium] Landing detailed heap snapshots, part 2.
2803
2804         https://bugs.webkit.org/show_bug.cgi?id=53606
2805
2806         Display progress while taking a snapshot, and hints while loading
2807         and parsing. This is needed because taking detailed heap snapshots
2808         takes time.
2809
2810         * English.lproj/localizedStrings.js:
2811         * inspector/front-end/DetailedHeapshotView.js:
2812         (WebInspector.DetailedHeapshotProfileType.prototype.buttonClicked):
2813         * inspector/front-end/ProfilesPanel.js:
2814         (WebInspector.ProfilesPanel.prototype._reset):
2815         (WebInspector.ProfilesPanel.prototype._addProfileHeader):
2816         (WebInspector.ProfilesPanel.prototype.getProfiles):
2817         (WebInspector.ProfilesPanel.prototype.loadHeapSnapshot):
2818         (WebInspector.ProfilesPanel.prototype._finishHeapSnapshot.doParse):
2819         (WebInspector.ProfilesPanel.prototype._finishHeapSnapshot):
2820         (WebInspector.ProfilesPanel.prototype.takeHeapSnapshot):
2821         (WebInspector.ProfilesPanel.prototype._reportHeapSnapshotProgress):
2822         * inspector/front-end/SidebarTreeElement.js:
2823         (WebInspector.SidebarTreeElement.prototype.refreshTitles):
2824
2825 2011-02-02  David Hyatt  <hyatt@apple.com>
2826
2827         Reviewed by Darin Adler.
2828
2829         More conversion from right()/bottom() to maxX()/maxY().
2830
2831         * platform/win/PopupMenuWin.cpp:
2832         (WebCore::PopupMenuWin::calculatePositionAndSize):
2833         (WebCore::PopupMenuWin::paint):
2834
2835 2011-02-02  David Hyatt  <hyatt@apple.com>
2836
2837         Reviewed by Darin Adler.
2838
2839         Removal of right()/bottom().  Replace with maxX() and maxY().  Still converting.  Haven't removed yet.
2840
2841         * platform/chromium/PopupMenuChromium.cpp:
2842         (WebCore::PopupContainer::layoutAndCalculateWidgetRect):
2843         (WebCore::PopupListBox::scrollToRevealRow):
2844         (WebCore::PopupListBox::layout):
2845         * platform/graphics/FloatRect.h:
2846         * platform/graphics/IntRect.h:
2847         * platform/graphics/cairo/ImageBufferCairo.cpp:
2848         (WebCore::getImageData):
2849         (WebCore::putImageData):
2850         * platform/graphics/chromium/GLES2Canvas.cpp:
2851         (WebCore::GLES2Canvas::drawTexturedRect):
2852         * platform/graphics/chromium/LayerRendererChromium.cpp:
2853         (WebCore::LayerRendererChromium::verticalScrollbarRect):
2854         (WebCore::LayerRendererChromium::horizontalScrollbarRect):
2855         (WebCore::LayerRendererChromium::setScissorToRect):
2856         (WebCore::LayerRendererChromium::setDrawViewportRect):
2857         * platform/graphics/chromium/LayerTilerChromium.cpp:
2858         (WebCore::LayerTilerChromium::contentRectToTileIndices):
2859         (WebCore::LayerTilerChromium::growLayerToContain):
2860         * platform/graphics/gpu/TilingData.cpp:
2861         (WebCore::TilingData::tileBoundsWithBorder):
2862         (WebCore::TilingData::overlappedTileIndices):
2863         * platform/graphics/qt/ImageBufferQt.cpp:
2864         (WebCore::getImageData):
2865         (WebCore::putImageData):
2866         * platform/graphics/skia/FloatRectSkia.cpp:
2867         (WebCore::FloatRect::operator SkRect):
2868         * platform/graphics/skia/ImageBufferSkia.cpp:
2869         (WebCore::getImageData):
2870         (WebCore::putImageData):
2871         * platform/graphics/skia/IntRectSkia.cpp:
2872         (WebCore::IntRect::operator SkIRect):
2873         (WebCore::IntRect::operator SkRect):
2874         * platform/graphics/skia/PlatformContextSkia.cpp:
2875         (WebCore::PlatformContextSkia::beginLayerClippedToImage):
2876         * platform/graphics/win/GraphicsContextWin.cpp:
2877         (WebCore::GraphicsContextPlatformPrivate::clip):
2878         * platform/graphics/win/IntRectWin.cpp:
2879         (WebCore::IntRect::operator RECT):
2880         * platform/graphics/win/UniscribeController.cpp:
2881         (WebCore::UniscribeController::shapeAndPlaceItem):
2882         * platform/graphics/wince/GraphicsContextWinCE.cpp:
2883         (WebCore::roundRect):
2884         (WebCore::mapRect):
2885         (WebCore::TransparentLayerDC::TransparentLayerDC):
2886         (WebCore::GraphicsContext::drawRect):
2887         (WebCore::GraphicsContext::drawEllipse):
2888         (WebCore::GraphicsContext::strokeArc):
2889         (WebCore::GraphicsContext::clip):
2890         (WebCore::GraphicsContext::clipOut):
2891         (WebCore::GraphicsContext::strokeRect):
2892         * platform/image-decoders/gif/GIFImageDecoder.cpp:
2893         (WebCore::GIFImageDecoder::initFrameBuffer):
2894         * platform/win/PopupMenuWin.cpp:
2895         (WebCore::PopupMenuWin::calculatePositionAndSize):
2896         (WebCore::PopupMenuWin::paint):
2897         * plugins/win/PluginViewWin.cpp:
2898         (WebCore::PluginView::updatePluginWidget):
2899         (WebCore::PluginView::invalidateRect):
2900         * rendering/RenderThemeSafari.cpp:
2901         (WebCore::RenderThemeSafari::paintMenuListButtonGradients):
2902         (WebCore::RenderThemeSafari::paintMenuListButton):
2903         (WebCore::RenderThemeSafari::paintSliderTrack):
2904         * rendering/RenderThemeWin.cpp:
2905         (WebCore::RenderThemeWin::paintInnerSpinButton):
2906         (WebCore::RenderThemeWin::paintMenuListButton):
2907
2908 2011-02-02  Antti Koivisto  <antti@apple.com>
2909
2910         Reviewed by Maciej Stachowiak.
2911
2912         Use Vector instead of a linked list for rules in CSSStyleSelector
2913         https://bugs.webkit.org/show_bug.cgi?id=53581
2914         
2915         - eliminate CSSRuleDataList, replace with Vector<RuleData>
2916         - rename CSSRuleData -> RuleData and CSSRuleSet -> RuleSet 
2917           (these are selector internal classes, CSS prefix is better reserved for public ones).
2918         - constify a bit
2919         - shrink the vectors to fit after collecting the rules
2920
2921         * css/CSSStyleSelector.cpp:
2922         (WebCore::RuleData::RuleData):
2923         (WebCore::RuleData::position):
2924         (WebCore::RuleData::rule):
2925         (WebCore::RuleData::selector):
2926         (WebCore::RuleSet::disableAutoShrinkToFit):
2927         (WebCore::RuleSet::getIDRules):
2928         (WebCore::RuleSet::getClassRules):
2929         (WebCore::RuleSet::getTagRules):
2930         (WebCore::RuleSet::getPseudoRules):
2931         (WebCore::RuleSet::getUniversalRules):
2932         (WebCore::RuleSet::getPageRules):
2933         (WebCore::collectSiblingRulesInDefaultStyle):
2934         (WebCore::CSSStyleSelector::CSSStyleSelector):
2935         (WebCore::loadFullDefaultStyle):
2936         (WebCore::loadSimpleDefaultStyle):
2937         (WebCore::loadViewSourceStyle):
2938         (WebCore::CSSStyleSelector::matchRules):
2939         (WebCore::CSSStyleSelector::matchRulesForList):
2940         (WebCore::operator >):
2941         (WebCore::operator <=):
2942         (WebCore::CSSStyleSelector::sortMatchedRules):
2943         (WebCore::CSSStyleSelector::matchUARules):
2944         (WebCore::RuleSet::RuleSet):
2945         (WebCore::RuleSet::~RuleSet):
2946         (WebCore::RuleSet::addToRuleSet):
2947         (WebCore::RuleSet::addRule):
2948         (WebCore::RuleSet::addPageRule):
2949         (WebCore::RuleSet::addRulesFromSheet):
2950         (WebCore::RuleSet::addStyleRule):
2951         (WebCore::collectIdsAndSiblingRulesFromList):
2952         (WebCore::RuleSet::collectIdsAndSiblingRules):
2953         (WebCore::shrinkMapVectorsToFit):
2954         (WebCore::RuleSet::shrinkToFit):
2955         (WebCore::CSSStyleSelector::matchPageRules):
2956         (WebCore::CSSStyleSelector::matchPageRulesForList):
2957         * css/CSSStyleSelector.h:
2958         (WebCore::CSSStyleSelector::addMatchedRule):
2959
2960 2011-02-02  Andrey Adaikin  <aandrey@google.com>
2961
2962         Reviewed by Pavel Feldman.
2963
2964         Web Inspector: Use DIVs instead of TABLE in TextViewer
2965         https://bugs.webkit.org/show_bug.cgi?id=53299
2966
2967         * inspector/front-end/SourceFrame.js:
2968         (WebInspector.SourceFrame.prototype._createTextViewer):
2969         (WebInspector.SourceFrame.prototype._mouseDown):
2970         * inspector/front-end/TextViewer.js:
2971         (WebInspector.TextViewer):
2972         (WebInspector.TextViewer.prototype.set mimeType):
2973         (WebInspector.TextViewer.prototype.revealLine):
2974         (WebInspector.TextViewer.prototype.addDecoration):
2975         (WebInspector.TextViewer.prototype.removeDecoration):
2976         (WebInspector.TextViewer.prototype.markAndRevealRange):
2977         (WebInspector.TextViewer.prototype.highlightLine):
2978         (WebInspector.TextViewer.prototype.clearLineHighlight):
2979         (WebInspector.TextViewer.prototype.freeCachedElements):
2980         (WebInspector.TextViewer.prototype._handleKeyDown):
2981         (WebInspector.TextViewer.prototype.editLine.finishEditing):
2982         (WebInspector.TextViewer.prototype.editLine):
2983         (WebInspector.TextViewer.prototype.beginUpdates):
2984         (WebInspector.TextViewer.prototype.endUpdates):
2985         (WebInspector.TextViewer.prototype.resize):
2986         (WebInspector.TextViewer.prototype._textChanged):
2987         (WebInspector.TextViewer.prototype._updatePanelOffsets):
2988         (WebInspector.TextViewer.prototype._syncScroll):
2989         (WebInspector.TextViewer.prototype._syncDecorationsForLine):
2990         (WebInspector.TextEditorChunkedPanel):
2991         (WebInspector.TextEditorChunkedPanel.prototype.set syncScrollListener):
2992         (WebInspector.TextEditorChunkedPanel.prototype.get textModel):
2993         (WebInspector.TextEditorChunkedPanel.prototype.addDecoration):
2994         (WebInspector.TextEditorChunkedPanel.prototype.removeDecoration):
2995         (WebInspector.TextEditorChunkedPanel.prototype.revealLine):
2996         (WebInspector.TextEditorChunkedPanel.prototype.makeLineAChunk):
2997         (WebInspector.TextEditorChunkedPanel.prototype.textChanged):
2998         (WebInspector.TextEditorChunkedPanel.prototype.beginUpdates):
2999         (WebInspector.TextEditorChunkedPanel.prototype.endUpdates):
3000         (WebInspector.TextEditorChunkedPanel.prototype.resize):
3001         (WebInspector.TextEditorChunkedPanel.prototype._scroll):
3002         (WebInspector.TextEditorChunkedPanel.prototype._scheduleRepaintAll):
3003         (WebInspector.TextEditorChunkedPanel.prototype._buildChunks):
3004         (WebInspector.TextEditorChunkedPanel.prototype._repaintAll):
3005         (WebInspector.TextEditorChunkedPanel.prototype._chunkNumberForLine):
3006         (WebInspector.TextEditorChunkedPanel.prototype._chunkForLine):
3007         (WebInspector.TextEditorGutterPanel):
3008         (WebInspector.TextEditorGutterPanel.prototype.freeCachedElements):
3009         (WebInspector.TextEditorGutterPanel.prototype._createNewChunk):
3010         (WebInspector.TextEditorGutterPanel.prototype._expandChunks):
3011         (WebInspector.TextEditorGutterChunk):
3012         (WebInspector.TextEditorGutterChunk.prototype.get expanded):
3013         (WebInspector.TextEditorGutterChunk.prototype.set expanded):
3014         (WebInspector.TextEditorGutterChunk.prototype.get height):
3015         (WebInspector.TextEditorGutterChunk.prototype._createRow):
3016         (WebInspector.TextEditorMainPanel):
3017         (WebInspector.TextEditorMainPanel.prototype.set syncDecorationsForLine):
3018         (WebInspector.TextEditorMainPanel.prototype.set mimeType):
3019         (WebInspector.TextEditorMainPanel.prototype.markAndRevealRange):
3020         (WebInspector.TextEditorMainPanel.prototype.highlightLine):
3021         (WebInspector.TextEditorMainPanel.prototype.clearLineHighlight):
3022         (WebInspector.TextEditorMainPanel.prototype.freeCachedElements):
3023         (WebInspector.TextEditorMainPanel.prototype._buildChunks):
3024         (WebInspector.TextEditorMainPanel.prototype._createNewChunk):
3025         (WebInspector.TextEditorMainPanel.prototype._expandChunks):
3026         (WebInspector.TextEditorMainPanel.prototype._highlightDataReady):
3027         (WebInspector.TextEditorMainPanel.prototype._paintLines):
3028         (WebInspector.TextEditorMainPanel.prototype._paintLine):
3029         (WebInspector.TextEditorMainPanel.prototype._releaseLinesHighlight):
3030         (WebInspector.TextEditorMainPanel.prototype._getSelection):
3031         (WebInspector.TextEditorMainPanel.prototype._restoreSelection):
3032         (WebInspector.TextEditorMainPanel.prototype._selectionToPosition):
3033         (WebInspector.TextEditorMainPanel.prototype._positionToSelection):
3034         (WebInspector.TextEditorMainPanel.prototype._appendTextNode):
3035         (WebInspector.TextEditorMainPanel.prototype._handleDomUpdates):
3036         (WebInspector.TextEditorMainChunk):
3037         (WebInspector.TextEditorMainChunk.prototype.addDecoration):
3038         (WebInspector.TextEditorMainChunk.prototype.set expanded):
3039         (WebInspector.TextEditorMainChunk.prototype.get height):
3040         (WebInspector.TextEditorMainChunk.prototype.getExpandedLineRow):
3041         (WebInspector.TextEditorMainChunk.prototype._createRow):
3042         (WebInspector):
3043         * inspector/front-end/textViewer.css:
3044         (.text-editor-lines):
3045         (.text-editor-contents):
3046         (.text-editor-editable):
3047         (.webkit-line-decorations):
3048         (.webkit-line-number):
3049         (.webkit-execution-line.webkit-line-content):
3050         (.diff-container .webkit-added-line.webkit-line-content):
3051         (.diff-container .webkit-removed-line.webkit-line-content):
3052         (.diff-container .webkit-changed-line.webkit-line-content):
3053         (.webkit-highlighted-line.webkit-line-content):
3054
3055 2011-02-02  Hans Wennborg  <hans@chromium.org>
3056
3057         Reviewed by Jeremy Orlow.
3058
3059         IndexedDB: Implement support for cursor updates
3060         https://bugs.webkit.org/show_bug.cgi?id=53421
3061
3062         Implement support for cursor updates using the same pattern as cursor
3063         deletes: forward the calls to the IDBObjectStoreBackend::put().
3064         The put() function's signature needs to be changed to allow for a
3065         "cursor update mode". This makes the signature more clear anyway,
3066         since it replaces the boolean parameter.
3067
3068         Test: storage/indexeddb/cursor-update.html
3069
3070         * storage/IDBCursor.idl:
3071         * storage/IDBCursorBackendImpl.cpp:
3072         (WebCore::IDBCursorBackendImpl::key):
3073         (WebCore::IDBCursorBackendImpl::update):
3074         * storage/IDBCursorBackendImpl.h:
3075         * storage/IDBObjectStore.cpp:
3076         (WebCore::IDBObjectStore::add):
3077         (WebCore::IDBObjectStore::put):
3078         * storage/IDBObjectStoreBackendImpl.cpp:
3079         (WebCore::IDBObjectStoreBackendImpl::put):
3080         (WebCore::IDBObjectStoreBackendImpl::putInternal):
3081         * storage/IDBObjectStoreBackendImpl.h:
3082         * storage/IDBObjectStoreBackendInterface.h:
3083
3084 2011-02-02  Naoki Takano  <takano.naoki@gmail.com>
3085
3086         Reviewed by Kent Tamura.
3087
3088         Fix popup menu RTL bug introduced by Changeset 75982.
3089         https://bugs.webkit.org/show_bug.cgi?id=53567
3090
3091         PopupMenuChromium::layout() calculates X position according to RTL or not. So Change the X position calculation in layoutAndCalculateWidgetRect().
3092
3093         No new tests. However we can check manually with select_dropdown_box_alignment.html, autofill_alignment.html, select_alignment.html, select_dropdown_box_alignment.html, autofill-popup-width-and-item-direction.html
3094
3095         * platform/chromium/PopupMenuChromium.cpp:
3096         (WebCore::PopupContainer::layoutAndCalculateWidgetRect): Fix calculation of x position, because layout() considers RTL. And change the parameter from both X and Y positions to only Y position.
3097         (WebCore::PopupContainer::showPopup): Change the passing parameter.
3098         (WebCore::PopupContainer::refresh): Change the passing parameter.
3099         * platform/chromium/PopupMenuChromium.h: Change the parameter declaration.
3100
3101 2011-02-02  Alejandro G. Castro  <alex@igalia.com>
3102
3103         Reviewed by Martin Robinson.
3104
3105         [GTK] Fix dist compilation
3106         https://bugs.webkit.org/show_bug.cgi?id=53579
3107
3108         * GNUmakefile.am: Added FontWidthVariant.h to the sources, it was
3109         added in r77153.
3110
3111 2011-02-02  Dai Mikurube  <dmikurube@google.com>
3112
3113         Reviewed by David Levin.
3114
3115         Make mime type lookup in File::create(path) thread-safe
3116         https://bugs.webkit.org/show_bug.cgi?id=47700
3117
3118         This patch introduces a new function MIMETypeRegistry::getMIMETypeForExtensionThreadSafe().
3119         The function is to be called as a thread-safe version of getMIMETypeForExtension() when
3120         both FILE_SYSTEM and WORKERS are enabled.
3121
3122         No tests for this patch. This patch itself doesn't change the behaviors.
3123         For Chromium, it runs in the same way with getMIMETypeForExtensionThreadSafe().
3124         For the other platforms, it causes compilation error in case of enabled FILE_SYSTEM and WORKERS.
3125         The compilation error would be a signal to implement getMIMETypeForExtensionThreadSafe() in these
3126         platforms. Currently it doesn't happen since FILE_SYSTEM is not available in the other platforms.
3127
3128         * platform/MIMETypeRegistry.cpp: Defined generic getMIMETypeForExtension() calling getMIMETypeForExtensionThreadSafe() for enabled FILE_SYSTEM and WORKERS.
3129         (WebCore::MIMETypeRegistry::getMIMETypeForExtension):
3130         * platform/MIMETypeRegistry.h: Declared getMIMETypeForExtensionThreadSafe() which should be implemented for each platform.
3131         * platform/android/TemporaryLinkStubs.cpp:
3132         (WebCore::MIMETypeRegistry::getMIMETypeForExtension):
3133         * platform/brew/MIMETypeRegistryBrew.cpp:
3134         (WebCore::MIMETypeRegistry::getMIMETypeForExtension):
3135         * platform/chromium/MIMETypeRegistryChromium.cpp: Defined getMIMETypeForExtensionThreadSafe() for the case when FILE_SYSTEM and WORKERS are enabled.
3136         (WebCore::MIMETypeRegistry::getMIMETypeForExtensionThreadSafe):
3137         * platform/efl/MIMETypeRegistryEfl.cpp:
3138         (WebCore::MIMETypeRegistry::getMIMETypeForExtension):
3139         * platform/gtk/MIMETypeRegistryGtk.cpp:
3140         (WebCore::MIMETypeRegistry::getMIMETypeForExtension):
3141         * platform/haiku/MIMETypeRegistryHaiku.cpp:
3142         (WebCore::MIMETypeRegistry::getMIMETypeForExtension):
3143         * platform/mac/MIMETypeRegistryMac.mm:
3144         (WebCore::MIMETypeRegistry::getMIMETypeForExtension):
3145         * platform/qt/MIMETypeRegistryQt.cpp:
3146         (WebCore::MIMETypeRegistry::getMIMETypeForExtension):
3147         * platform/win/MIMETypeRegistryWin.cpp:
3148         (WebCore::MIMETypeRegistry::getMIMETypeForExtension):
3149         * platform/wince/MIMETypeRegistryWinCE.cpp:
3150         (WebCore::MIMETypeRegistry::getMIMETypeForExtension):
3151         * platform/wx/MimeTypeRegistryWx.cpp:
3152         (WebCore::MIMETypeRegistry::getMIMETypeForExtension):
3153
3154 2011-02-01  Adam Barth  <abarth@webkit.org>
3155
3156         Reviewed by Alexey Proskuryakov.
3157
3158         Improve readability of updateWidget by converting bool parameter to an enum
3159         https://bugs.webkit.org/show_bug.cgi?id=53576
3160
3161         As requested on webkit-dev.
3162
3163         * html/HTMLEmbedElement.cpp:
3164         (WebCore::HTMLEmbedElement::updateWidget):
3165         * html/HTMLEmbedElement.h:
3166         * html/HTMLMediaElement.cpp:
3167         (WebCore::HTMLMediaElement::updateWidget):
3168         * html/HTMLMediaElement.h:
3169         * html/HTMLObjectElement.cpp:
3170         (WebCore::HTMLObjectElement::updateWidget):
3171         * html/HTMLObjectElement.h:
3172         * html/HTMLPlugInImageElement.cpp:
3173         (WebCore::HTMLPlugInImageElement::updateWidgetIfNecessary):
3174         * html/HTMLPlugInImageElement.h:
3175         * page/FrameView.cpp:
3176         (WebCore::FrameView::updateWidget):
3177
3178 2011-02-01  James Robinson  <jamesr@chromium.org>
3179
3180         Reviewed by Adam Barth.
3181
3182         [v8] Increase V8 native->js recursion limit to match document.write() recursion limit
3183         https://bugs.webkit.org/show_bug.cgi?id=53566
3184
3185         A recursion limit of 22 is necessary to pass fast/dom/Document/document-write-recursion.html.
3186         Other than being large enough for this one test case, this limit is arbitrary.
3187
3188         * bindings/v8/V8Proxy.h:
3189
3190 2011-02-01  Adam Barth  <abarth@webkit.org>
3191
3192         Reviewed by Andreas Kling.
3193
3194         Remove useless comment
3195         https://bugs.webkit.org/show_bug.cgi?id=53549
3196
3197         The reason for this parameter is captured in
3198         plugins/netscape-plugin-setwindow-size.html, which is a better place to
3199         capture it than in this comment (which otherwise just re-iterates the
3200         name of the parameter).
3201
3202         * html/HTMLPlugInImageElement.cpp:
3203         (WebCore::HTMLPlugInImageElement::updateWidgetIfNecessary):
3204
3205 2011-02-01  James Simonsen  <simonjam@chromium.org>
3206
3207         Reviewed by Tony Gentilcore.
3208
3209         [WebTiming] Remove asserts that verify timestamp order
3210         https://bugs.webkit.org/show_bug.cgi?id=53548
3211
3212         Covered by existing tests.
3213
3214         * loader/FrameLoader.cpp:
3215         (WebCore::FrameLoader::stopLoading): Remove assert.
3216         * page/DOMWindow.cpp:
3217         (WebCore::DOMWindow::dispatchTimedEvent): Ditto.
3218
3219 2011-02-01  Dimitri Glazkov  <dglazkov@chromium.org>
3220
3221         Add the 'default_targets' enclosure to the flags.
3222
3223         * WebCore.gyp/WebCore.gyp: Did it.
3224
3225 2011-02-01  Mihai Parparita  <mihaip@chromium.org>
3226
3227         Reviewed by James Robinson.
3228
3229         Async event handlers should not fire within a modal dialog
3230         https://bugs.webkit.org/show_bug.cgi?id=53202
3231
3232         Asychronous events that use EventQueue would currently fire while a
3233         modal dialog (e.g. window.alert()) was up. Change EventQueue to use a
3234         SuspendableTimer (which automatically gets suspended while dialogs are
3235         up and in other cases where JS execution is not allowed).
3236         
3237         Test: fast/events/scroll-event-during-modal-dialog.html
3238
3239         * dom/Document.cpp:
3240         (WebCore::Document::Document):
3241         * dom/EventQueue.cpp:
3242         (WebCore::EventQueueTimer::EventQueueTimer):
3243         (WebCore::EventQueueTimer::fired):
3244         (WebCore::EventQueue::EventQueue):
3245         (WebCore::EventQueue::enqueueEvent):
3246         (WebCore::EventQueue::pendingEventTimerFired):
3247         * dom/EventQueue.h:
3248         (WebCore::EventQueue::create):
3249         * page/SuspendableTimer.cpp:
3250         (WebCore::SuspendableTimer::SuspendableTimer):
3251         (WebCore::SuspendableTimer::suspend):
3252         (WebCore::SuspendableTimer::resume):
3253         * page/SuspendableTimer.h:
3254
3255 2011-02-01  Patrick Gansterer  <paroga@webkit.org>
3256
3257         Reviewed by Andreas Kling.
3258
3259         Change wrong PLATFORM(WIN) to USE(WININET)
3260         https://bugs.webkit.org/show_bug.cgi?id=53547
3261
3262         * platform/network/ResourceHandle.h:
3263
3264 2011-02-01  Beth Dakin  <bdakin@apple.com>
3265
3266         32-bit build fix.
3267
3268         * platform/mac/ScrollAnimatorMac.mm:
3269         (-[ScrollbarPainterControllerDelegate contentAreaRectForScrollerImpPair:]):
3270
3271 2011-01-25  Martin Robinson  <mrobinson@igalia.com>
3272
3273         Reviewed by Gustavo Noronha Silva.
3274
3275         [GTK] Two tests crash after r76555
3276         https://bugs.webkit.org/show_bug.cgi?id=53057
3277
3278         Instead of creating synchronous ResourceHandles manually, use the ::create factory.
3279         This ensures that ::start() is not called when there is a scheduled failure and also
3280         reduces code duplication.
3281
3282         * platform/network/soup/ResourceHandleSoup.cpp:
3283         (WebCore::ResourceHandle::loadResourceSynchronously): Use the ::create factory method.
3284
3285 2011-02-01  Martin Robinson  <mrobinson@igalia.com>
3286
3287         Reviewed by Eric Seidel.
3288
3289         [GTK] GObject DOM bindings do no support the CallWith attribute
3290         https://bugs.webkit.org/show_bug.cgi?id=53331
3291
3292         Disable building GObject DOM bindings for IndexedDB because we do not support
3293         the CallWith attribute at this time.
3294
3295         * bindings/gobject/GNUmakefile.am: Disable building bindings for the IndexedDB API.
3296
3297 2011-02-01  Darin Adler  <darin@apple.com>
3298
3299         Reviewed by Brady Eidson.
3300
3301         Fix a couple loose ends from the back/forward tree encode/decode work
3302         https://bugs.webkit.org/show_bug.cgi?id=53537
3303
3304         * history/HistoryItem.cpp:
3305         (WebCore::HistoryItem::encodeBackForwardTreeNode): Remove extra copy of
3306         original URL string; no need to encode it twice.
3307         (WebCore::HistoryItem::decodeBackForwardTree): Ditto.
3308         * history/HistoryItem.h: Removed declaration for function that is no
3309         longer defined nor used.
3310
3311 2011-02-01  Tony Chang  <tony@chromium.org>
3312
3313         Reviewed by Kent Tamura.
3314
3315         [chromium] disable arm uninitialized variable warnings
3316         https://bugs.webkit.org/show_bug.cgi?id=53553
3317
3318         We just got another error:
3319         third_party/WebKit/Source/WebCore/css/CSSPrimitiveValue.cpp:123:error:
3320         'colorTransparent.unstatic.4879' may be used uninitialized in this
3321         function
3322
3323         * WebCore.gyp/WebCore.gyp:
3324
3325 2011-02-01  chris reiss  <christopher.reiss@nokia.com>
3326
3327         Reviewed by Adam Barth.
3328
3329         Self-replicating code makes Safari hang and eventually crash
3330         https://bugs.webkit.org/show_bug.cgi?id=15123
3331
3332        
3333         Here we are replicating the Firefox safeguard against
3334         recursive document.write( ) 's.
3335
3336         See  https://bug197052.bugzilla.mozilla.org/attachment.cgi?id=293907 in bug 
3337         https://bugzilla.mozilla.org/show_bug.cgi?id=197052 .   Firefox does two things - 
3338             a) imposes a recursion limit of 20 on document.write( ) and
3339             b) once that limit is passed, panics all the way the call stack (rather than just returning one level.)
3340         To see why this is necessary, consider the script : 
3341
3342         <script>
3343            var t = document.body.innerHTML;
3344            document.write(t);
3345         </script> 
3346
3347         This will create a tree both broad and deep as the script keeps appending itself to the text.   If
3348         we just return one level after the recursion limit is reached, we still allow millions of copies to 
3349         duplicate (and execute).   
3350
3351         The recursion is fortunately depth-first, so as soon as we cross this limit, we panic up the callstack
3352         to prevent this situation.    (IE apparently does the same thing, with a lower recursion limit.) 
3353
3354         Test: fast/dom/Document/document-write-recursion.html        
3355         Test: fast/dom/Document/document-close-iframe-load.html
3356         Test: fast/dom/Document/document-close-nested-iframe-load.html
3357
3358
3359         * dom/Document.cpp:
3360         (WebCore::Document::Document):
3361         (WebCore::Document::write):
3362         * dom/Document.h:
3363
3364 2011-02-01  Johnny Ding  <jnd@chromium.org>
3365
3366         Reviewed by Darin Adler.
3367
3368         Don't set user gesture in HTMLAnchorElement's click handler because the click handler can be triggered by untrusted event.
3369         https://bugs.webkit.org/show_bug.cgi?id=53424
3370
3371         Test: fast/events/popup-blocked-from-untrusted-click-event-on-anchor.html
3372
3373         * html/HTMLAnchorElement.cpp:
3374         (WebCore::handleLinkClick):
3375
3376 2011-02-01  Csaba Osztrogonác  <ossy@webkit.org>
3377
3378         Unreviewed Qt buildfix after r77286.
3379
3380         https://bugs.webkit.org/show_bug.cgi?id=53520 
3381         Remove the physical terminology from IntRect and FloatRect.
3382
3383         * platform/graphics/TiledBackingStore.cpp:
3384         (WebCore::TiledBackingStore::createTiles):
3385
3386 2011-02-01  Sam Weinig  <sam@webkit.org>
3387
3388         Fix Mac production builds.
3389
3390         * DerivedSources.make:
3391         * WebCore.xcodeproj/project.pbxproj:
3392         * platform/mac/ScrollAnimatorMac.h:
3393         * platform/mac/ScrollbarThemeMac.h:
3394
3395 2011-02-01  Darin Adler  <darin@apple.com>
3396
3397         Reviewed by Chris Fleizach.
3398
3399         REGRESSION: Removing focus from area element causes unwanted scrolling
3400         https://bugs.webkit.org/show_bug.cgi?id=50169
3401
3402         Test: fast/images/imagemap-scroll.html
3403
3404         * html/HTMLAreaElement.cpp:
3405         (WebCore::HTMLAreaElement::setFocus): Added override. Calls the new
3406         RenderImage::areaElementFocusChanged function.
3407         (WebCore::HTMLAreaElement::updateFocusAppearance): Removed the code
3408         here that calls setNeedsLayout on the image's renderer. This was an
3409         attempt to cause repaint of the renderer, but this function does not
3410         need to do that. Also changed this to use the imageElement function
3411         to avoid repeating code.
3412
3413         * html/HTMLAreaElement.h: Updated for above changes.
3414
3415         * rendering/RenderImage.cpp:
3416         (WebCore::RenderImage::paint): Updated for name change.
3417         (WebCore::RenderImage::paintAreaElementFocusRing): Renamed this from
3418         paintFocusRing, because it only paints area focus rings, and should
3419         not be confused with paintFocusRing functions in other classes. Also
3420         removed the unused style argument. Removed the code that used an
3421         HTMLCollection to see if the focused area element is for this image
3422         and instead just call imageElement on the area element.
3423         (WebCore::RenderImage::areaElementFocusChanged): Added. Calls repaint.
3424
3425         * rendering/RenderImage.h: Added a public areaElementFocusChanged
3426         function for HTMLAreaElement to call. Made the paintFocusRing function
3427         private, renamed it to paintAreaElementFocusRing, and removed its
3428         unused style argument.
3429
3430 2011-02-01  Patrick Gansterer  <paroga@webkit.org>
3431
3432         Unreviewed WinCE build fix for r77286.
3433
3434         * platform/graphics/wince/GraphicsContextWinCE.cpp:
3435         (WebCore::TransparentLayerDC::TransparentLayerDC):
3436
3437 2011-02-01  Chris Fleizach  <cfleizach@apple.com>
3438
3439         Reviewed by Darin Adler.
3440
3441         AX: AXPosition of AXScrollArea is wrong
3442         https://bugs.webkit.org/show_bug.cgi?id=53511
3443
3444         AccessibilityScrollView needed to return a valid documentFrameView() object.
3445         At the same time, the code from document() should be consolidated in 
3446         AccessibilityObject, so all objects can use it.
3447
3448         Test: platform/mac/accessibility/webkit-scrollarea-position.html
3449
3450         * accessibility/AccessibilityObject.cpp:
3451         (WebCore::AccessibilityObject::document):
3452         * accessibility/AccessibilityObject.h:
3453         * accessibility/AccessibilityScrollView.cpp:
3454         (WebCore::AccessibilityScrollView::accessibilityHitTest):
3455         (WebCore::AccessibilityScrollView::documentFrameView):
3456         * accessibility/AccessibilityScrollView.h:
3457
3458 2011-02-01  Zhenyao Mo  <zmo@google.com>
3459
3460         Reviewed by Kenneth Russell.
3461
3462         getUniform should support SAMPLER_2D or SAMPLER_CUBE
3463         https://bugs.webkit.org/show_bug.cgi?id=52190
3464
3465         * html/canvas/WebGLRenderingContext.cpp:
3466         (WebCore::WebGLRenderingContext::getUniform):
3467
3468 2011-02-01  Zhenyao Mo  <zmo@google.com>
3469
3470         Reviewed by Darin Adler.
3471
3472         Fix the incorrect usage of RetainPtr cases in GraphicsContext3DCG.cpp
3473         https://bugs.webkit.org/show_bug.cgi?id=53531
3474
3475         With this fix, running WebGL conformance tests should no longer crash randomly.
3476
3477         * platform/graphics/cg/GraphicsContext3DCG.cpp:
3478         (WebCore::GraphicsContext3D::getImageData):
3479
3480 2011-02-01  Dimitri Glazkov  <dglazkov@chromium.org>
3481
3482         One more Chromium build fix after r77286.
3483
3484         * platform/chromium/ScrollbarThemeChromiumMac.mm:
3485         (WebCore::ScrollbarThemeChromiumMac::paint): Changed to not use topLeft().
3486
3487 2011-02-01  Sam Weinig  <sam@webkit.org>
3488
3489         Fix the build for Beth.
3490
3491         * platform/mac/ScrollAnimatorMac.mm:
3492         (-[ScrollbarPainterControllerDelegate inLiveResizeForScrollerImpPair:]):
3493
3494 2011-02-01  Sam Weinig  <sam@webkit.org>
3495
3496         Reviewed by Beth Dakin.
3497
3498         Part 2 for <rdar://problem/8492788>
3499         Adopt WKScrollbarPainterController
3500
3501         Use header detection to define scrollbar painting controller #define.
3502
3503         * WebCore.exp.in:
3504         * platform/mac/ScrollAnimatorMac.h:
3505         * platform/mac/ScrollbarThemeMac.h:
3506         * platform/mac/WebCoreSystemInterface.h:
3507         * platform/mac/WebCoreSystemInterface.mm:
3508
3509 2011-02-01  David Hyatt  <hyatt@apple.com>
3510
3511         Reviewed by Oliver Hunt.
3512
3513         https://bugs.webkit.org/show_bug.cgi?id=53520
3514         
3515         Remove the physical terminology from IntRect and FloatRect.
3516         
3517         Now that we have flipped RenderBlocks for vertical-rl and horizontal-bt writing modes,
3518         we need to update our terminology to be more accurate.
3519
3520         I'm borrowing a page from AppKit here (which also supports flipped NSViews) and
3521         renaming right() and bottom() to maxX() and maxY().  These terms remain accurate
3522         even for flipped rectangles.
3523
3524         * accessibility/AccessibilityRenderObject.cpp:
3525         (WebCore::AccessibilityRenderObject::boundsForVisiblePositionRange):
3526         * accessibility/mac/AccessibilityObjectWrapper.mm:
3527         (-[AccessibilityObjectWrapper position]):
3528         * dom/ClientRect.h:
3529         (WebCore::ClientRect::right):
3530         (WebCore::ClientRect::bottom):
3531         * html/HTMLCanvasElement.cpp:
3532         (WebCore::HTMLCanvasElement::convertLogicalToDevice):
3533         * html/canvas/CanvasRenderingContext2D.cpp:
3534         (WebCore::normalizeRect):
3535         * inspector/InspectorAgent.cpp:
3536         (WebCore::InspectorAgent::drawElementTitle):
3537         * page/DOMWindow.cpp:
3538         (WebCore::DOMWindow::adjustWindowRect):
3539         * page/DragController.cpp:
3540         (WebCore::dragLocForSelectionDrag):
3541         * page/EventHandler.cpp:
3542         (WebCore::EventHandler::sendContextMenuEventForKey):
3543         * page/PrintContext.cpp:
3544         (WebCore::PrintContext::computePageRectsWithPageSizeInternal):
3545         (WebCore::PrintContext::pageNumberForElement):
3546         * page/SpatialNavigation.cpp:
3547         (WebCore::end):
3548         (WebCore::areRectsFullyAligned):
3549         (WebCore::areRectsMoreThanFullScreenApart):
3550         (WebCore::below):
3551         (WebCore::rightOf):
3552         (WebCore::isRectInDirection):
3553         (WebCore::entryAndExitPointsForDirection):
3554         (WebCore::virtualRectForDirection):
3555         * page/WindowFeatures.cpp:
3556         (WebCore::WindowFeatures::WindowFeatures):
3557         * platform/ScrollView.cpp:
3558         (WebCore::ScrollView::wheelEvent):
3559         * platform/Scrollbar.cpp:
3560         (WebCore::Scrollbar::setFrameRect):
3561         * platform/ScrollbarThemeComposite.cpp:
3562         (WebCore::ScrollbarThemeComposite::splitTrack):
3563         * platform/chromium/ScrollbarThemeChromium.cpp:
3564         (WebCore::ScrollbarThemeChromium::paintTickmarks):
3565         * platform/graphics/FloatQuad.h:
3566         (WebCore::FloatQuad::FloatQuad):
3567         * platform/graphics/FloatRect.cpp:
3568         (WebCore::FloatRect::intersects):