Diff
Modified: branches/safari-7613.3.1.1-branch/Source/WebCore/ChangeLog (294683 => 294684)
--- branches/safari-7613.3.1.1-branch/Source/WebCore/ChangeLog 2022-05-23 21:36:04 UTC (rev 294683)
+++ branches/safari-7613.3.1.1-branch/Source/WebCore/ChangeLog 2022-05-23 21:40:07 UTC (rev 294684)
@@ -86,103 +86,6 @@
2022-05-23 Alan Coon <[email protected]>
- Cherry-pick r294280. rdar://problem/87980543
-
- REGRESSION(r249162): CanvasRenderingContext2DBase::drawImage() crashes if the image is animated and the first frame cannot be decoded
- https://bugs.webkit.org/show_bug.cgi?id=239113
- rdar://87980543
-
- Reviewed by Simon Fraser.
-
- Source/WebCore:
-
- CanvasRenderingContext2DBase::drawImage() needs to ensure the first frame
- of the animated image can be decoded correctly before creating the temporary
- static image. If the first frame can't be decoded, this function should return
- immediately. This matches the behavior of this function before r249162.
-
- The animated image decodes its frames asynchronously in a work queue. But
- the first frame has to be decoded synchronously in the main run loop. So
- to avoid running the image decoder in two different threads we are going
- to keep the first and the current frame cached when we receive a memory
- pressure warning. This should not increase the memory allocation of the
- animated image because the numbers of cached frames increases quickly and
- we keep all of them till a memory warning is received. But the memory
- pressure warning will be received a little bit more often. This depends
- on the memory size of the first frame.
-
- To make the code more robust, make ImageSource take a Ref<NativeImage>
- instead of taking a RefPtr<NativeImage>.
-
- * html/canvas/CanvasRenderingContext2DBase.cpp:
- (WebCore::CanvasRenderingContext2DBase::drawImage):
- * platform/graphics/BitmapImage.cpp:
- (WebCore::BitmapImage::BitmapImage):
- (WebCore::BitmapImage::destroyDecodedData):
- * platform/graphics/BitmapImage.h:
- * platform/graphics/ImageSource.cpp:
- (WebCore::ImageSource::ImageSource):
- (WebCore::ImageSource::destroyDecodedData):
- (WebCore::ImageSource::setNativeImage):
- * platform/graphics/ImageSource.h:
- (WebCore::ImageSource::create):
- (WebCore::ImageSource::isDecoderAvailable const):
- (WebCore::ImageSource::destroyAllDecodedData): Deleted.
- (WebCore::ImageSource::destroyAllDecodedDataExcludeFrame): Deleted.
- (WebCore::ImageSource::destroyDecodedDataBeforeFrame): Deleted.
-
- Source/WebKit:
-
- * GPUProcess/graphics/RemoteDisplayListRecorder.cpp:
- (WebKit::RemoteDisplayListRecorder::drawSystemImage):
-
- git-svn-id: https://svn.webkit.org/repository/webkit/trunk@294280 268f45cc-cd09-0410-ab3c-d52691b4dbfc
-
- 2022-05-16 Said Abou-Hallawa <[email protected]>
-
- REGRESSION(r249162): CanvasRenderingContext2DBase::drawImage() crashes if the image is animated and the first frame cannot be decoded
- https://bugs.webkit.org/show_bug.cgi?id=239113
- rdar://87980543
-
- Reviewed by Simon Fraser.
-
- CanvasRenderingContext2DBase::drawImage() needs to ensure the first frame
- of the animated image can be decoded correctly before creating the temporary
- static image. If the first frame can't be decoded, this function should return
- immediately. This matches the behavior of this function before r249162.
-
- The animated image decodes its frames asynchronously in a work queue. But
- the first frame has to be decoded synchronously in the main run loop. So
- to avoid running the image decoder in two different threads we are going
- to keep the first and the current frame cached when we receive a memory
- pressure warning. This should not increase the memory allocation of the
- animated image because the numbers of cached frames increases quickly and
- we keep all of them till a memory warning is received. But the memory
- pressure warning will be received a little bit more often. This depends
- on the memory size of the first frame.
-
- To make the code more robust, make ImageSource take a Ref<NativeImage>
- instead of taking a RefPtr<NativeImage>.
-
- * html/canvas/CanvasRenderingContext2DBase.cpp:
- (WebCore::CanvasRenderingContext2DBase::drawImage):
- * platform/graphics/BitmapImage.cpp:
- (WebCore::BitmapImage::BitmapImage):
- (WebCore::BitmapImage::destroyDecodedData):
- * platform/graphics/BitmapImage.h:
- * platform/graphics/ImageSource.cpp:
- (WebCore::ImageSource::ImageSource):
- (WebCore::ImageSource::destroyDecodedData):
- (WebCore::ImageSource::setNativeImage):
- * platform/graphics/ImageSource.h:
- (WebCore::ImageSource::create):
- (WebCore::ImageSource::isDecoderAvailable const):
- (WebCore::ImageSource::destroyAllDecodedData): Deleted.
- (WebCore::ImageSource::destroyAllDecodedDataExcludeFrame): Deleted.
- (WebCore::ImageSource::destroyDecodedDataBeforeFrame): Deleted.
-
-2022-05-23 Alan Coon <[email protected]>
-
Cherry-pick r289713. rdar://problem/93601919
Expose the correct role, subrole and role description properties for the <dialog> element.
Modified: branches/safari-7613.3.1.1-branch/Source/WebCore/html/canvas/CanvasRenderingContext2DBase.cpp (294683 => 294684)
--- branches/safari-7613.3.1.1-branch/Source/WebCore/html/canvas/CanvasRenderingContext2DBase.cpp 2022-05-23 21:36:04 UTC (rev 294683)
+++ branches/safari-7613.3.1.1-branch/Source/WebCore/html/canvas/CanvasRenderingContext2DBase.cpp 2022-05-23 21:40:07 UTC (rev 294684)
@@ -1545,11 +1545,8 @@
if (image->isBitmapImage()) {
// Drawing an animated image to a canvas should draw the first frame (except for a few layout tests)
- if (image->isAnimated() && !document.settings().animatedImageDebugCanvasDrawingEnabled()) {
+ if (image->isAnimated() && !document.settings().animatedImageDebugCanvasDrawingEnabled())
image = BitmapImage::create(image->nativeImage());
- if (!image)
- return { };
- }
downcast<BitmapImage>(*image).updateFromSettings(document.settings());
}
Modified: branches/safari-7613.3.1.1-branch/Source/WebCore/platform/graphics/BitmapImage.cpp (294683 => 294684)
--- branches/safari-7613.3.1.1-branch/Source/WebCore/platform/graphics/BitmapImage.cpp 2022-05-23 21:36:04 UTC (rev 294683)
+++ branches/safari-7613.3.1.1-branch/Source/WebCore/platform/graphics/BitmapImage.cpp 2022-05-23 21:40:07 UTC (rev 294684)
@@ -52,8 +52,9 @@
{
}
-BitmapImage::BitmapImage(Ref<NativeImage>&& image)
- : m_source(ImageSource::create(WTFMove(image)))
+BitmapImage::BitmapImage(RefPtr<NativeImage>&& image, ImageObserver* observer)
+ : Image(observer)
+ , m_source(ImageSource::create(WTFMove(image)))
{
}
@@ -76,15 +77,12 @@
{
LOG(Images, "BitmapImage::%s - %p - url: %s", __FUNCTION__, this, sourceURL().string().utf8().data());
- if (!destroyAll) {
- // Destroy all the frames between frame0 and m_currentFrame.
- m_source->destroyDecodedData(1, m_currentFrame);
- } else if (!canDestroyDecodedData()) {
- // Destroy all the frames except frame0 and m_currentFrame.
- m_source->destroyDecodedData(1, m_currentFrame);
- m_source->destroyDecodedData(m_currentFrame + 1, frameCount());
- } else {
- m_source->destroyDecodedData(0, frameCount());
+ if (!destroyAll)
+ m_source->destroyDecodedDataBeforeFrame(m_currentFrame);
+ else if (!canDestroyDecodedData())
+ m_source->destroyAllDecodedDataExcludeFrame(m_currentFrame);
+ else {
+ m_source->destroyAllDecodedData();
m_currentFrameDecodingStatus = DecodingStatus::Invalid;
}
@@ -230,6 +228,7 @@
if (destRect.isEmpty() || requestedSrcRect.isEmpty())
return ImageDrawResult::DidNothing;
+
auto srcRect = requestedSrcRect;
auto preferredSize = size();
auto srcSize = sourceSize();
Modified: branches/safari-7613.3.1.1-branch/Source/WebCore/platform/graphics/BitmapImage.h (294683 => 294684)
--- branches/safari-7613.3.1.1-branch/Source/WebCore/platform/graphics/BitmapImage.h 2022-05-23 21:36:04 UTC (rev 294683)
+++ branches/safari-7613.3.1.1-branch/Source/WebCore/platform/graphics/BitmapImage.h 2022-05-23 21:40:07 UTC (rev 294684)
@@ -53,20 +53,14 @@
class BitmapImage final : public Image {
public:
- static RefPtr<BitmapImage> create(PlatformImagePtr&& platformImage)
+ static Ref<BitmapImage> create(PlatformImagePtr&& platformImage, ImageObserver* observer = nullptr)
{
- return create(NativeImage::create(WTFMove(platformImage)));
+ return adoptRef(*new BitmapImage(NativeImage::create(WTFMove(platformImage)), observer));
}
- static RefPtr<BitmapImage> create(RefPtr<NativeImage>&& nativeImage)
+ static Ref<BitmapImage> create(RefPtr<NativeImage>&& nativeImage, ImageObserver* observer = nullptr)
{
- if (!nativeImage)
- return nullptr;
- return create(nativeImage.releaseNonNull());
+ return adoptRef(*new BitmapImage(WTFMove(nativeImage), observer));
}
- static Ref<BitmapImage> create(Ref<NativeImage>&& nativeImage)
- {
- return adoptRef(*new BitmapImage(WTFMove(nativeImage)));
- }
static Ref<BitmapImage> create(ImageObserver* observer = nullptr)
{
return adoptRef(*new BitmapImage(observer));
@@ -160,7 +154,7 @@
void decode(Function<void()>&&);
private:
- WEBCORE_EXPORT BitmapImage(Ref<NativeImage>&&);
+ WEBCORE_EXPORT BitmapImage(RefPtr<NativeImage>&&, ImageObserver* = nullptr);
WEBCORE_EXPORT BitmapImage(ImageObserver* = nullptr);
RefPtr<NativeImage> frameImageAtIndex(size_t index) { return m_source->frameImageAtIndex(index); }
Modified: branches/safari-7613.3.1.1-branch/Source/WebCore/platform/graphics/ImageSource.cpp (294683 => 294684)
--- branches/safari-7613.3.1.1-branch/Source/WebCore/platform/graphics/ImageSource.cpp 2022-05-23 21:36:04 UTC (rev 294683)
+++ branches/safari-7613.3.1.1-branch/Source/WebCore/platform/graphics/ImageSource.cpp 2022-05-23 21:40:07 UTC (rev 294684)
@@ -44,7 +44,7 @@
{
}
-ImageSource::ImageSource(Ref<NativeImage>&& nativeImage)
+ImageSource::ImageSource(RefPtr<NativeImage>&& nativeImage)
: m_runLoop(RunLoop::current())
{
m_frameCount = 1;
@@ -120,17 +120,17 @@
return isDecoderAvailable() ? m_decoder->isAllDataReceived() : frameCount();
}
-void ImageSource::destroyDecodedData(size_t begin, size_t end)
+void ImageSource::destroyDecodedData(size_t frameCount, size_t excludeFrame)
{
- if (begin >= end)
- return;
+ unsigned decodedSize = 0;
- ASSERT(end <= m_frames.size());
+ ASSERT(frameCount <= m_frames.size());
- unsigned decodedSize = 0;
-
- for (size_t index = begin; index < end; ++index)
+ for (size_t index = 0; index < frameCount; ++index) {
+ if (index == excludeFrame)
+ continue;
decodedSize += m_frames[index].clearImage();
+ }
decodedSizeReset(decodedSize);
}
@@ -232,7 +232,7 @@
m_frames.grow(newSize);
}
-void ImageSource::setNativeImage(Ref<NativeImage>&& nativeImage)
+void ImageSource::setNativeImage(RefPtr<NativeImage>&& nativeImage)
{
ASSERT(m_frames.size() == 1);
ImageFrame& frame = m_frames[0];
Modified: branches/safari-7613.3.1.1-branch/Source/WebCore/platform/graphics/ImageSource.h (294683 => 294684)
--- branches/safari-7613.3.1.1-branch/Source/WebCore/platform/graphics/ImageSource.h 2022-05-23 21:36:04 UTC (rev 294683)
+++ branches/safari-7613.3.1.1-branch/Source/WebCore/platform/graphics/ImageSource.h 2022-05-23 21:40:07 UTC (rev 294684)
@@ -51,7 +51,7 @@
return adoptRef(*new ImageSource(image, alphaOption, gammaAndColorProfileOption));
}
- static Ref<ImageSource> create(Ref<NativeImage>&& nativeImage)
+ static Ref<ImageSource> create(RefPtr<NativeImage>&& nativeImage)
{
return adoptRef(*new ImageSource(WTFMove(nativeImage)));
}
@@ -62,7 +62,9 @@
bool isAllDataReceived();
unsigned decodedSize() const { return m_decodedSize; }
- void destroyDecodedData(size_t begin, size_t end);
+ void destroyAllDecodedData() { destroyDecodedData(frameCount(), frameCount()); }
+ void destroyAllDecodedDataExcludeFrame(size_t excludeFrame) { destroyDecodedData(frameCount(), excludeFrame); }
+ void destroyDecodedDataBeforeFrame(size_t beforeFrame) { destroyDecodedData(beforeFrame, beforeFrame); }
void destroyIncompleteDecodedData();
void clearFrameBufferCache(size_t beforeFrame);
@@ -126,7 +128,7 @@
private:
ImageSource(BitmapImage*, AlphaOption = AlphaOption::Premultiplied, GammaAndColorProfileOption = GammaAndColorProfileOption::Applied);
- ImageSource(Ref<NativeImage>&&);
+ ImageSource(RefPtr<NativeImage>&&);
enum class MetadataType {
AccessibilityDescription = 1 << 0,
@@ -151,6 +153,7 @@
bool ensureDecoderAvailable(FragmentedSharedBuffer* data);
bool isDecoderAvailable() const { return m_decoder; }
+ void destroyDecodedData(size_t frameCount, size_t excludeFrame);
void decodedSizeChanged(long long decodedSize);
void didDecodeProperties(unsigned decodedPropertiesSize);
void decodedSizeIncreased(unsigned decodedSize);
@@ -158,7 +161,7 @@
void decodedSizeReset(unsigned decodedSize);
void encodedDataStatusChanged(EncodedDataStatus);
- void setNativeImage(Ref<NativeImage>&&);
+ void setNativeImage(RefPtr<NativeImage>&&);
void cacheMetadataAtIndex(size_t, SubsamplingLevel, DecodingStatus = DecodingStatus::Invalid);
void cachePlatformImageAtIndex(PlatformImagePtr&&, size_t, SubsamplingLevel, const DecodingOptions&, DecodingStatus = DecodingStatus::Invalid);
void cachePlatformImageAtIndexAsync(PlatformImagePtr&&, size_t, SubsamplingLevel, const DecodingOptions&, DecodingStatus);
Modified: branches/safari-7613.3.1.1-branch/Source/WebKit/ChangeLog (294683 => 294684)
--- branches/safari-7613.3.1.1-branch/Source/WebKit/ChangeLog 2022-05-23 21:36:04 UTC (rev 294683)
+++ branches/safari-7613.3.1.1-branch/Source/WebKit/ChangeLog 2022-05-23 21:40:07 UTC (rev 294684)
@@ -1,68 +1,3 @@
-2022-05-23 Alan Coon <[email protected]>
-
- Cherry-pick r294280. rdar://problem/87980543
-
- REGRESSION(r249162): CanvasRenderingContext2DBase::drawImage() crashes if the image is animated and the first frame cannot be decoded
- https://bugs.webkit.org/show_bug.cgi?id=239113
- rdar://87980543
-
- Reviewed by Simon Fraser.
-
- Source/WebCore:
-
- CanvasRenderingContext2DBase::drawImage() needs to ensure the first frame
- of the animated image can be decoded correctly before creating the temporary
- static image. If the first frame can't be decoded, this function should return
- immediately. This matches the behavior of this function before r249162.
-
- The animated image decodes its frames asynchronously in a work queue. But
- the first frame has to be decoded synchronously in the main run loop. So
- to avoid running the image decoder in two different threads we are going
- to keep the first and the current frame cached when we receive a memory
- pressure warning. This should not increase the memory allocation of the
- animated image because the numbers of cached frames increases quickly and
- we keep all of them till a memory warning is received. But the memory
- pressure warning will be received a little bit more often. This depends
- on the memory size of the first frame.
-
- To make the code more robust, make ImageSource take a Ref<NativeImage>
- instead of taking a RefPtr<NativeImage>.
-
- * html/canvas/CanvasRenderingContext2DBase.cpp:
- (WebCore::CanvasRenderingContext2DBase::drawImage):
- * platform/graphics/BitmapImage.cpp:
- (WebCore::BitmapImage::BitmapImage):
- (WebCore::BitmapImage::destroyDecodedData):
- * platform/graphics/BitmapImage.h:
- * platform/graphics/ImageSource.cpp:
- (WebCore::ImageSource::ImageSource):
- (WebCore::ImageSource::destroyDecodedData):
- (WebCore::ImageSource::setNativeImage):
- * platform/graphics/ImageSource.h:
- (WebCore::ImageSource::create):
- (WebCore::ImageSource::isDecoderAvailable const):
- (WebCore::ImageSource::destroyAllDecodedData): Deleted.
- (WebCore::ImageSource::destroyAllDecodedDataExcludeFrame): Deleted.
- (WebCore::ImageSource::destroyDecodedDataBeforeFrame): Deleted.
-
- Source/WebKit:
-
- * GPUProcess/graphics/RemoteDisplayListRecorder.cpp:
- (WebKit::RemoteDisplayListRecorder::drawSystemImage):
-
- git-svn-id: https://svn.webkit.org/repository/webkit/trunk@294280 268f45cc-cd09-0410-ab3c-d52691b4dbfc
-
- 2022-05-16 Said Abou-Hallawa <[email protected]>
-
- REGRESSION(r249162): CanvasRenderingContext2DBase::drawImage() crashes if the image is animated and the first frame cannot be decoded
- https://bugs.webkit.org/show_bug.cgi?id=239113
- rdar://87980543
-
- Reviewed by Simon Fraser.
-
- * GPUProcess/graphics/RemoteDisplayListRecorder.cpp:
- (WebKit::RemoteDisplayListRecorder::drawSystemImage):
-
2022-05-02 Alan Coon <[email protected]>
Apply patch. rdar://problem/92617943
