In multi-process BFCache with Site Isolation, an iframe process's CachedPage has a RemoteFrame as its main frame (no document in this process) with LocalFrame children that do have documents. CachedFrame::destroy() and CachedFrame::clear() both returned early when m_document was null, skipping recursive child cleanup. Child CachedFrames would then be destroyed by their unique_ptr without their own destroy()/clear() being called, triggering ASSERT(!m_document) in the CachedFrameBase destructor (fires non-fatally in WebContent process in Debug). Move the child frame iteration in destroy() and clear() before the early m_document null-check. Child cleanup has no dependency on the parent's document and is safe to call unconditionally. The parent's own m_document teardown remains guarded as before. Covered by existing tests. Subtask of rdar://161762363.