RESOLVED FIXED312351
Fix crash in FontSelectionAlgorithm when all font faces are penalized 
https://bugs.webkit.org/show_bug.cgi?id=312351
Summary Fix crash in FontSelectionAlgorithm when all font faces are penalized
zak ridouh
Reported 2026-04-14 23:29:20 PDT
styleDistance's axis-mismatch penalty paths returned the requested slope value, but filterCapability eliminates faces whose slope range doesn't include that value. When all faces are penalized (e.g. only italic faces available for an oblique request), every face gets eliminated, and the next pass crashes on an empty set. Fix by returning slope.minimum instead, which is always within the face's own range, so at least one face survives filtering.
Attachments
Add attachment proposed patch, testcase, etc.
zak ridouh
Comment 1 2026-04-14 23:29:51 PDT
<rdar://174644983>
zak ridouh
Comment 2 2026-04-15 00:06:41 PDT
Pull request: https://github.com/WebKit/WebKit/pull/62800
EWS
Comment 3 2026-04-15 20:06:52 PDT
Committed 311341@main (47b07ba22fd8): <https://commits.webkit.org/311341@main> Reviewed commits have been landed. Closing PR #62800 and removing active labels.
Brent Fulgham
Comment 4 2026-04-16 13:26:36 PDT
PR created for the test change: https://github.com/web-platform-tests/wpt/pull/59291
Note You need to log in before you can comment on or make changes to this bug.