sched clock overflows in 208 days (i386 and amd64)

> sched_clock should not wrap virtually forever

Actually it is not wrap but jump from 208.5 days to 584 years. cyc2ns_offset is around -100 secs.

This is probably related to http://thread.gmane.org/gmane.linux.kernel/1132515

Thanks. Both troubles we are having seems mentioned.
Will checking that thread.

Here's the crash message of 61s soft lockup case.

I've confirmed this problem with several 10.04 LTS (amd64) machines VM's running on a VMware vSphere system. Each machine that had an uptime of 211 days suffered a sudden softlockup, triggered by an innocent-looking 'apt-get install libyaml-perl'. The machines were running 2.6.32-30-server.

Some consoles showed the "stuck for 17163091968s" message, others just these "stuck for 61s" and "task ... blocked for more than 120 seconds". I've also seen a variant with the value 17163091988s.

Other machines that were quite identical, but running either a bit older kernel (2.6.32-26-server, uptime 365 days) or a newer one (2.6.32-33-server or newer, uptime less than 115 days) were not affected by this issue.

Is there a way to reproduce the error? Maybe a way to set the problematic clock value to somewhere near the 210 day limit?

(I'm a bit puzzled by why the day limit seems to be approximate. Could it have something to do with clock drifting and adjustments by eg. ntp?)

Sorry to flood, just a minor point: the OP wrote: "Of course the time stamp (18446743993.431771) and 17163091968s (544 years!) are false." But actually the first timestamp is not false - it reveals that the lockup has occurred after 213,5 days of uptime. (18446743993/60/60/24/1000).

This problem has been fixed at mainline/longterm-2.6.32.50 ?

https://www.kernel.org/pub/linux/kernel/v2.6/longterm/ChangeLog-2.6.32.50
| commit e52d3fb7c83d6cb569f343a3db9b45decc801f59
| Author: Salman Qazi <email address hidden>
| Date: Tue Nov 15 14:12:06 2011 -0800
|
| sched, x86: Avoid unnecessary overflow in sched_clock
|
| commit 4cecf6d401a01d054afc1e5f605bcbfe553cb9b9 upstream.
|
| In hundreds of days, the __cycles_2_ns calculation in sched_clock
| has an overflow. cyc * per_cpu(cyc2ns, cpu) exceeds 64 bits, causing
| the final value to become zero. We can solve this without losing
| any precision.
|
| We can decompose TSC into quotient and remainder of division by the
| scale factor, and then use this to convert TSC into nanoseconds.

Here are the branches in lucid that contain 4cecf6d401a01d054afc1e5f605bcbfe553cb9b9:

ubuntu-lucid/master / Ubuntu-2.6.32-38.83 / YES
ubuntu-natty/master / Ubuntu-2.6.38-13.54 / NO
ubuntu-maverick/master / Ubuntu-2.6.35-32.64 / NO

Looks like we need to apply the SRU to natty/maverick.
It is in oneiric.

Cherry picked from commit 4cecf6d401a01d054afc1e5f605bcbfe553cb9b9:
Applies cleanly to Maverick and Natty

Given the time it takes to test this, and with no known or possible way to reproduce the problem faster, it isn't possible to do the verification process in 1 week. I'm marking verification done for both maverick/natty.

This bug was fixed in the package linux - 2.6.35-32.65

---------------
linux (2.6.35-32.65) maverick-proposed; urgency=low

  [Brad Figg]

  * Release Tracking Bug
    - LP: #920677

  [ Upstream Kernel Changes ]

  * fuse: check size of FUSE_NOTIFY_INVAL_ENTRY message, CVE-2011-3353
    - LP: #905058
    - CVE-2011-3353
  * KVM: x86: Prevent starting PIT timers in the absence of irqchip support
    - LP: #911303
    - CVE-2011-4622
  * sched, x86: Avoid unnecessary overflow in sched_clock
    - LP: #805341
  * use cache type functions for arch_get_unmapped_area
    - LP: #861296
  * topdown mmap support
    - LP: #861296
  * xfs: validate acl count
    - LP: #917706
    - CVE-2012-0038
  * xfs: fix acl count validation in xfs_acl_from_disk()
    - LP: #917706
    - CVE-2012-0038
  * drm: integer overflow in drm_mode_dirtyfb_ioctl()
    - LP: #917838
    - CVE-2012-0044
  * x86/PCI: amd: factor out MMCONFIG discovery
    - LP: #647043
  * PNP: work around Dell 1536/1546 BIOS MMCONFIG bug that breaks USB
    - LP: #647043
 -- Brad Figg <email address hidden> Mon, 23 Jan 2012 13:40:13 -0800

This bug was fixed in the package linux - 2.6.38-13.55

---------------
linux (2.6.38-13.55) natty-proposed; urgency=low

  [Brad Figg]

  * Release Tracking Bug
    - LP: #920790

  [ Upstream Kernel Changes ]

  * fuse: check size of FUSE_NOTIFY_INVAL_ENTRY message, CVE-2011-3353
    - LP: #905058
    - CVE-2011-3353
  * KVM: x86: Prevent starting PIT timers in the absence of irqchip support
    - LP: #911303
    - CVE-2011-4622
  * sched, x86: Avoid unnecessary overflow in sched_clock
    - LP: #805341
  * use cache type functions for arch_get_unmapped_area
    - LP: #861296
  * topdown mmap support
    - LP: #861296
  * xfs: validate acl count
    - LP: #917706
    - CVE-2012-0038
  * xfs: fix acl count validation in xfs_acl_from_disk()
    - LP: #917706
    - CVE-2012-0038
  * drm: integer overflow in drm_mode_dirtyfb_ioctl()
    - LP: #917838
    - CVE-2012-0044
  * x86/PCI: amd: factor out MMCONFIG discovery
    - LP: #647043
  * PNP: work around Dell 1536/1546 BIOS MMCONFIG bug that
    - LP: #647043
 -- Brad Figg <email address hidden> Mon, 23 Jan 2012 18:31:33 -0800

When will Lucid 2.6.32 be fixed ?

I have had this occur on a couple production machines. One was 208 days, the other 209 days. Please merge to Lucid.

Same here, please patch Lucid!

@ Steve Fox / Jasey Wang

This was fixed in Lucid already in: 2.6.32.50
According to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/902317
I've also inspected the git log and see this patch is present in the tree.

The report Chris linked to shows the -50 update went out on 2012-01-24, but linux-image-2.6.32-41-server seems to be the latest available on the mirrors (according to aptitude search linux-image-2.6.32). Sorry to pester, but how does one find the -50 update? Thank you.

My mistake. A closer read of Chris' link shows the 'linux-image-2.6.32-38-server' package has the fix. Sorry for the spam and thanks for all the fish.

@ Steve Fox
No problem! Better safe than sorry.
--chris

@Chris J Arges
you mean both the 2.6.32-50 and the 2.6.32-38.83 has the bug fixed ?

@Jasey The 2.6.32.50 version is the one from the upstream kernel (see https://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.32/ChangeLog-2.6.32.50). That kernel is the version that Ubuntu's 2.6.32-38.83 kernel is based on (everything after the dash, -, is Ubuntu's versioning). I think this type of confusion was part of the reason that Linus simplified the version numbering after 3.0.

Really thanks for your patience :-)

When will Oneiric 3.2.0-030200rc4 (http://kernel.ubuntu.com/~kernel-ppa/mainline/v3.2-rc4-oneiric/) be fixed ?