Reproduction steps: 1. Goto http://www.audiusa.com/models 2. Click on 2015 S3 3. Gesture back Crash trace: > 1 com.apple.WebCore 0x7fff9a3627ed WebCore::CachedFrameBase::restore() + 0x14d 2 com.apple.WebCore 0x7fff9a362610 WebCore::FrameLoader::open(WebCore::CachedFrameBase&) + 0x300 3 com.apple.WebCore 0x7fff9a442b39 WebCore::CachedPage::restore(WebCore::Page&) + 0x19 4 com.apple.WebCore 0x7fff9a0e286c WebCore::FrameLoader::commitProvisionalLoad() + 0x1fc 5 com.apple.WebCore 0x7fff9a67381e WebCore::FrameLoader::continueLoadAfterNavigationPolicy(WebCore::ResourceRequest const&, WTF::PassRefPtr<WebCore::FormState>, bool, WebCore::AllowNavigationToInvalidURL) + 0x34e 6 com.apple.WebCore 0x7fff9a6770df std::__1::__function::__func<WebCore::FrameLoader::loadWithDocumentLoader(WebCore::DocumentLoader*, WebCore::FrameLoadType, WTF::PassRefPtr<WebCore::FormState>, WebCore::AllowNavigationToInvalidURL)::$_4, std::__1::allocator<WebCore::FrameLoader::loadWithDocumentLoader(WebCore::DocumentLoader*, WebCore::FrameLoadType, WTF::PassRefPtr<WebCore::FormState>, WebCore::AllowNavigationToInvalidURL)::$_4>, void (WebCore::ResourceRequest const&, WTF::PassRefPtr<WebCore::FormState>, bool)>::operator()(WebCore::ResourceRequest const&, WTF::PassRefPtr<WebCore::FormState>&&, bool&&) + 0x2f 7 com.apple.WebCore 0x7fff9a135820 WebCore::PolicyCallback::call(bool) + 0x50 8 com.apple.WebCore 0x7fff9a1357a3 WebCore::PolicyChecker::continueAfterNavigationPolicy(WebCore::PolicyAction) + 0x593 9 com.apple.WebKit 0x7fff8d85619c WebKit::WebFrame::didReceivePolicyDecision(unsigned long long, WebCore::PolicyAction, unsigned long long, unsigned long long) + 0xc0 10 com.apple.WebKit 0x7fff8d857d7b WebKit::WebFrameLoaderClient::dispatchDecidePolicyForNavigationAction(WebCore::NavigationAction const&, WebCore::ResourceRequest const&, WTF::PassRefPtr<WebCore::FormState>, std::__1::function<void (WebCore::PolicyAction)>) + 0x491 11 com.apple.WebCore 0x7fff9ac36562 WebCore::PolicyChecker::checkNavigationPolicy(WebCore::ResourceRequest const&, WebCore::DocumentLoader*, WTF::PassRefPtr<WebCore::FormState>, std::__1::function<void (WebCore::ResourceRequest const&, WTF::PassRefPtr<WebCore::FormState>, bool)>) + 0xf02 12 com.apple.WebCore 0x7fff9a672e14 WebCore::FrameLoader::loadWithDocumentLoader(WebCore::DocumentLoader*, WebCore::FrameLoadType, WTF::PassRefPtr<WebCore::FormState>, WebCore::AllowNavigationToInvalidURL) + 0x804 13 com.apple.WebCore 0x7fff9a66f005 WebCore::FrameLoader::loadDifferentDocumentItem(WebCore::HistoryItem&, WebCore::FrameLoadType, WebCore::FrameLoader::FormSubmissionCacheLoadPolicy) + 0x185 14 com.apple.WebCore 0x7fff9a6bf336 WebCore::HistoryController::goToItem(WebCore::HistoryItem&, WebCore::FrameLoadType) + 0xc6 15 com.apple.WebCore 0x7fff9ac02761 WebCore::Page::goToItem(WebCore::HistoryItem&, WebCore::FrameLoadType) + 0x51 16 com.apple.WebKit 0x7fff8d881e16 WebKit::WebPage::goToBackForwardItem(unsigned long long, unsigned long long) + 0x40
rdar://problem/21567343
Created attachment 255712 [details] Patch
Comment on attachment 255712 [details] Patch Clearing flags on attachment: 255712 Committed r186049: <http://trac.webkit.org/changeset/186049>
All reviewed patches have been landed. Closing bug.