[This is a spin-off of bug 400902 comment 46.] The code in js_TraceContext that checks for the age of the stack pool of arenas contains the following code in js_TraceContext: int64 *timestamp; ... timestamp = (int64 *) a->base; if (JS_Now() - *timestamp > acx->runtime->gcStackPoolLifespan * 1000) JS_FinishArenaPool(&acx->stackPool); Since acx->runtime->gcStackPoolLifespan is uint32, acx->runtime->gcStackPoolLifespan * 1000 overflows whenever it is set to 1 hour 12 minutes or more. Another problem with that code fragment is that it performs the arena cleanup unconditionally even if js_TraceContext is invoked by non-GC tracer.

This is a part of already approved patch from bug 400902 comment 44. It is moved to a separated bug to avoid mixing different issues in the same patch.

Comment on attachment 300823 [details] [diff] [review] v1 a=beltzner for beta 3

I checked in the patch from comment 1 to the trunk: http://bonsai.mozilla.org/cvsquery.cgi?module=PhoenixTinderbox&branch=HEAD&cvsroot=%2Fcvsroot&date=explicit&mindate=1201888501&maxdate=1201888648&who=igor%25mir2.org