Running build 18541 on Tiger (10.4.8, Intel Core 2 Duo machine), WebKit crashes 100% of the time, during the login process on www.myspace.com. Build 18540 and earlier do not crash. Clearing caches, cookies, etc don't change the behavior. I'll attach a crash log.
Created attachment 12176 [details] Crash log
Confirmed logging into myspace.com.
*** Bug 12088 has been marked as a duplicate of this bug. ***
Pretty sure this is an overreleased ObjC wrapper for a HistoryItem - what I don't know is how that happens...!
Okay, definitely a WebHistoryItem getting overreleased. The problem is that [WebBackForwardList currentItem] returns a WebHistoryItem that has a retain count of 1 less than it used to in the previous implementation. Previously, the WebBackForwardList accessors simply returned items that the list itself was retaining. Now that we have these WebKit, objc wrappers that are "temporary" as far as the underlying WebCore::HistoryItem is concerned, code that relied on the WebBackForwardList retaining the item breaks! The "most correct" fix is... gross. But, may have to be done. Patch is coming shortly...
Created attachment 12181 [details] For sure fixes the problem - but is kinda gross Attached a fix
Comment on attachment 12181 [details] For sure fixes the problem - but is kinda gross This fix seems fine, I just hate using autorelease to solve problems like this. It makes sense, it makes sure the wrapper is retained for the entire scope needed. r=me
This fix was checked in r18544
*** Bug 12094 has been marked as a duplicate of this bug. ***