UI process creates a redundant drawing area during initialization. This is only used to pass drawing area type until QWKPagePrivate::createDrawingArea() is called. Side-effect of this is that when web process dies and ui process re-initializes the connection, the new createDrawingArea() call refers to invalid ptr and thus ui process crashes. Introduced in: https://bugs.webkit.org/show_bug.cgi?id=52184
Created attachment 79585 [details] Patch to fix the null pointer deref
Created attachment 79591 [details] Fix 2, contains initialization of the backingstoretype private var
Comment on attachment 79591 [details] Fix 2, contains initialization of the backingstoretype private var D'oh. r=me
Comment on attachment 79591 [details] Fix 2, contains initialization of the backingstoretype private var Clearing flags on attachment: 79591 Committed r76262: <http://trac.webkit.org/changeset/76262>
All reviewed patches have been landed. Closing bug.