Bug 59299

Summary: Reproducible crash in WebChromeClient::invalidateContentsAndWindow() on simonscat.com
Product: WebKit Reporter: mitz
Component: WebKit2Assignee: mitz
Status: RESOLVED FIXED    
Severity: Normal    
Priority: P2    
Version: 528+ (Nightly build)   
Hardware: Other   
OS: OS X 10.5   
Attachments:
Description Flags
Add null checks mjs: review+

Description mitz 2011-04-24 03:07:12 PDT 
Reproducible crash in WebChromeClient::invalidateContentsAndWindow() on simonscat.com
Comment 1 mitz 2011-04-24 03:09:16 PDT 
Created attachment 90881 [details]
Add null checks
Comment 2 mitz 2011-04-24 03:10:48 PDT 
Comment on attachment 90881 [details]
Add null checks

This requires a manual test because the borderless window used by WebKitTestRunner doesn’t have a grow box, and having one is essential for the crashing code path to be taken.
Comment 3 Maciej Stachowiak 2011-04-24 03:32:17 PDT 
Comment on attachment 90881 [details]
Add null checks

r=me
Comment 4 mitz 2011-04-24 11:31:45 PDT 
Fixed in r84757. <http://trac.webkit.org/changeset/84757>