This patch addresses two crashes seen when doing general web browsing on Amazon.com and Apple.com using the FTW build of WebKit: 1. ImageBuffer::sinkIntoImage was attempting to use a render target after WTFMoving it elsewhere. 2. ImageBuffer::copyNativeImage was not properly checking the type of the render target to make sure it was suitable for Bitmap operations. 3. BackingStoreBackendDirect2DImpl::scroll would crash if the scroll offset was outside the bounds of the current view. In that case, it would attempt to allocate a texture of zero size, which triggered a crash.
Created attachment 378268 [details] Patch
Thank you for the review, ap!
Comment on attachment 378268 [details] Patch Clearing flags on attachment: 378268 Committed r249609: <https://trac.webkit.org/changeset/249609>
All reviewed patches have been landed. Closing bug.
<rdar://problem/55140532>