Testing turned up a crash in: Thread 0 Crashed:: Dispatch queue: com.apple.main-thread 0 com.apple.WebCore 0x0000000312612e26 WebCore::DocumentLoader::startLoadingMainResource(WebCore::ShouldContinue) + 598 1 com.apple.WebCore 0x00000003126321d0 WebCore::FrameLoader::continueLoadAfterNavigationPolicy(WebCore::ResourceRequest const&, WebCore::FormState*, WebCore::ShouldContinue, WebCore::AllowNavigationToInvalidURL)::$_14::operator()() const + 352 This corresponds to this source: if (maybeLoadEmpty()) { RELEASE_LOG_IF_ALLOWED("startLoadingMainResource: Returning empty document (frame = %p, main = %d)", m_frame, m_frame ? m_frame->isMainFrame() : false); return; } The problem is that maybeLoadEmpty() can release "this". Fix this by adding a "protectedThis". <rdar://problem/39689263>
Created attachment 339019 [details] Patch
Comment on attachment 339019 [details] Patch Clearing flags on attachment: 339019 Committed r231128: <https://trac.webkit.org/changeset/231128>
All reviewed patches have been landed. Closing bug.