After the webkit start page loads, I click my bookmarks view to open which works fine. I click it again to close and webkit crashes.
Created attachment 14474 [details] Crash log
Debug build of r21371 gives me the following assertion failure: ASSERTION FAILED: document (WebKit/WebCore/loader/FrameLoader.cpp:3758 saveDocumentState)
CCing Maciej, this assert was just added in r21367.
Note there is both an ASSERT and a crash in a release build due to null deref - updating the title Also, while the effect on Mac seems to be narrow (Bookmarks view only, perhaps?) it has a broader effect x-platform. From #webkit a few moments ago - "zecke: WebKit/Gdk started to crash after mjs's change. Somehow it is managed to call FrameLoader::saveDocumentState with m_frame->document == 0"
*** Bug 13671 has been marked as a duplicate of this bug. ***
<rdar://problem/5197622>
Fixed in r21421.