Branch: refs/heads/webkitglib/2.48
Home: https://github.com/WebKit/WebKit
Commit: 89d8f5eb6178b3075613294c4039ac107aaecb37
https://github.com/WebKit/WebKit/commit/89d8f5eb6178b3075613294c4039ac107aaecb37
Author: Antti Koivisto <[email protected]>
Date: 2025-07-04 (Fri, 04 Jul 2025)
Changed paths:
M Source/WebCore/rendering/style/RenderStyle.cpp
Log Message:
-----------
Cherry-pick 296270@main (6008545337df).
https://bugs.webkit.org/show_bug.cgi?id=294553
Nullptr crash under RenderStyle::cloneIncludingPseudoElements
https://bugs.webkit.org/show_bug.cgi?id=294553
rdar://153113248
Reviewed by Alan Baradlay.
* Source/WebCore/rendering/style/RenderStyle.cpp:
(WebCore::RenderStyle::copyPseudoElementsFrom):
Speculative fix, it is not clear how this becomes null.
Canonical link: https://commits.webkit.org/296270@main
Canonical link: https://commits.webkit.org/290945.267@webkitglib/2.48
Commit: 952a6f29c045c9eedd1adc9732f6454398381339
https://github.com/WebKit/WebKit/commit/952a6f29c045c9eedd1adc9732f6454398381339
Author: Sosuke Suzuki <[email protected]>
Date: 2025-07-04 (Fri, 04 Jul 2025)
Changed paths:
A JSTests/wasm/stress/exnref-global-get-segv.js
M Source/JavaScriptCore/wasm/js/WebAssemblyModuleRecord.cpp
Log Message:
-----------
Cherry-pick 295943@main (bb7181ea246c).
https://bugs.webkit.org/show_bug.cgi?id=294119
[JSC] Prevent SEGV triggered by exceptions from `Wasm::Global::get`
https://bugs.webkit.org/show_bug.cgi?id=294119
Reviewed by Justin Michaud.
Running the test case attached to 293340 on current JSC ends in a
segmentation fault.
That crash is itself a bug, so this patch adds proper handling for
the exception raised by global get and ensures JSC no longer SEGVs.
NOTE: This patch does not fix the functional bug reported in 293340;
it only removes the SEGV.
Canonical link: https://commits.webkit.org/295943@main
Canonical link: https://commits.webkit.org/290945.268@webkitglib/2.48
Commit: fba753c7231ad89497c56f08655fc7da59fd6019
https://github.com/WebKit/WebKit/commit/fba753c7231ad89497c56f08655fc7da59fd6019
Author: Charlie Wolfe <[email protected]>
Date: 2025-07-04 (Fri, 04 Jul 2025)
Changed paths:
M Source/WebKit/WebProcess/WebCoreSupport/WebLocalFrameLoaderClient.cpp
Log Message:
-----------
Cherry-pick 295929@main (7c309254a8c0).
https://bugs.webkit.org/show_bug.cgi?id=294133
http/tests/site-isolation/history/add-iframes-and-navigate-mainframe.html
is a flaky crash
https://bugs.webkit.org/show_bug.cgi?id=294133
rdar://151051687
Reviewed by Pascoe.
It's possible for WebPage to null here, especially with site isolation.
* Source/WebKit/WebProcess/WebCoreSupport/WebLocalFrameLoaderClient.cpp:
(WebKit::WebLocalFrameLoaderClient::transitionToCommittedForNewPage):
Canonical link: https://commits.webkit.org/295929@main
Canonical link: https://commits.webkit.org/290945.269@webkitglib/2.48
Commit: 080270e202508b261934f226d3643350f28f12d4
https://github.com/WebKit/WebKit/commit/080270e202508b261934f226d3643350f28f12d4
Author: Megan Gardner <[email protected]>
Date: 2025-07-04 (Fri, 04 Jul 2025)
Changed paths:
M Source/WebCore/page/Quirks.cpp
M Source/WebCore/page/QuirksData.h
Log Message:
-----------
Cherry-pick 295923@main (0997d278de15).
https://bugs.webkit.org/show_bug.cgi?id=294068
outlook.com: iPadOS: Have to tap twice to change text highlight / color
when composing an email (overeager content change observer)
https://bugs.webkit.org/show_bug.cgi?id=294059
rdar://152277211
Reviewed by Brent Fulgham.
The issue here is that the first tap on the color triggers a Content Change
Observation-based *hover*.
You have to tap on the color again to actually commit to the color change,
and then all is well.
Therefore we should ignore content changed observer for these specific
elements so that their changes
will propagate to the page permanently.
* Source/WebCore/page/Quirks.cpp:
(WebCore::Quirks::shouldDispatchSimulatedMouseEvents const):
(WebCore::Quirks::shouldIgnoreContentObservationForClick const):
(WebCore::handleLiveQuirks):
Canonical link: https://commits.webkit.org/295923@main
Canonical link: https://commits.webkit.org/290945.270@webkitglib/2.48
Compare: https://github.com/WebKit/WebKit/compare/8647e087cbf9...080270e20250
To unsubscribe from these emails, change your notification settings at
https://github.com/WebKit/WebKit/settings/notifications
_______________________________________________
webkit-changes mailing list
[email protected]
https://lists.webkit.org/mailman/listinfo/webkit-changes
