Tested the issue on Mac !0.13 High Sierra using latest stable M61 #61.0.3163.100 and unable to reproduce the issue.

Attached screencast for reference.

@kevinday-- Could you please check attaced screencast and try in latest chrome stable and update us with your observations, if we have missed any steps in reproducing the issue.

Thanks!

Deleted: 767598.mp4 448 KB

	767598.mp4 448 KB View Download

You kinda need to click twice on the "toggle" button. Once for the browser window to take focus back from the picker, then again to actually click it. What you did in the screencast didn't actually click the "toggle" button. When you actually click it, you'll see the div below the button disappear.

Thank you for providing more feedback. Adding requester "hdodda@chromium.org" to the cc list and removing "Needs-Feedback" label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Confirmed the crash on 10.13. Symbolicated crash log attached.

It appears that the color_chooser_mac that set up the color panel is getting dealloced and the color panel still has it as its target.

The dealloc method says

- (void)dealloc {
  NSColorPanel* panel = [NSColorPanel sharedColorPanel];
  if ([panel delegate] == self) {
    [panel setDelegate:nil];
    [panel setTarget:nil];
    [panel setAction:nil];
  }

  [super dealloc];
}

If 10.13 clears or changes the delegate for some reason, that would cause this crash. 

Deleted: crash.symbolicated.txt 117 KB

crash.symbolicated.txt 117 KB View Download

Confirmed that within -dealloc the delegate is set to nil, and that forcing the target to nil at that point prevents the crash. NSColorPanel has no public -target method but it does have a private __target method. Clearing the target on [panel __target] == self fixes the crasher.

Just ran into this too, 10.13 and can reproduce consistently (so can my colleague). Thanks for working on it.

https://jsfiddle.net/ta8j0u8u/

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/6bc9a0797f03a5da66423e6a622c795bfdb5036a

commit 6bc9a0797f03a5da66423e6a622c795bfdb5036a
Author: Jayson Adams <shrike@chromium.org>
Date: Sat Nov 18 00:56:41 2017

[Mac] Fix NSColorPanel crasher on macOS 10.13.

The ColorPanelCocoa sets itself as the target and delegate of the
NSColorPanel, and on dealloc it clears the NSColorPanel's target and
delegate settings if it sees that it is the delegate. On 10.13 it
appears that the NSColorPanel's delegate can get set to nil while
leaving the target intact, preventing -dealloc from clearing the
ColorPanelCocoa target and leading to a Zombie crash.

This cl uses a private method to check the NSColorPanel's target in
-dealloc and clear it if it's still the ColorPanelCocoa.

R=rsesek@chromium.org,avi@chromium.org

Bug:  767598 
Change-Id: I86557f3dadc65b8e0d455156457d960d8f45044e
Reviewed-on: https://chromium-review.googlesource.com/685394
Commit-Queue: Jayson Adams <shrike@chromium.org>
Reviewed-by: Avi Drissman <avi@chromium.org>
Reviewed-by: Robert Sesek <rsesek@chromium.org>
Cr-Commit-Position: refs/heads/master@{#517645}
[modify] https://crrev.com/6bc9a0797f03a5da66423e6a622c795bfdb5036a/chrome/browser/ui/BUILD.gn
[add] https://crrev.com/6bc9a0797f03a5da66423e6a622c795bfdb5036a/chrome/browser/ui/cocoa/color_chooser_mac.h
[modify] https://crrev.com/6bc9a0797f03a5da66423e6a622c795bfdb5036a/chrome/browser/ui/cocoa/color_chooser_mac.mm
[add] https://crrev.com/6bc9a0797f03a5da66423e6a622c795bfdb5036a/chrome/browser/ui/cocoa/color_panel_cocoa_unittest.mm
[modify] https://crrev.com/6bc9a0797f03a5da66423e6a622c795bfdb5036a/chrome/test/BUILD.gn

Should you file a radar for this (as it sounds like a macOS issue, since private methods are not supposed to be used)?