We have crash reports where SocketStreamHandleBase::close() is called on a null object while processing a CLOSE frame from the server. Thread 0 Crashed: 0 WebCore 0x37daf446 WebCore::SocketStreamHandleBase::close() + 6 (SocketStreamHandleBase.cpp:86) 1 WebCore 0x37ee75b2 WebCore::WebSocketChannel::processOutgoingFrameQueue() + 554 (WebSocketChannel.cpp:775) 2 WebCore 0x37ee949a WebCore::WebSocketChannel::processFrame() + 3282 (WebSocketChannel.cpp:660) 3 WebCore 0x37ee8268 WebCore::WebSocketChannel::processBuffer() + 64 (WebSocketChannel.cpp:449) 4 WebCore 0x37ee8218 WebCore::WebSocketChannel::didReceiveSocketStreamData(WebCore::SocketStreamHandle*, char const*, int) + 172 (WebSocketChannel.cpp:312) rdar://problem/20486538
Created attachment 252659 [details] proposed fix
Committed <http://trac.webkit.org/r184005>.