TCP memory leak, slow network (arm64)

Status changed to 'Confirmed' because the bug affects multiple users.

affects 6.2.0-1011-aws -> 6.2.0-1016-aws, 6.2.0-1011-azure -> 6.2.0-1016-azure kernels, did not affect 5.19 and prior kernels in 22.04.2

We tried to downgrade the kernel in Ubuntu 22.04.3 from 6.2 to 5.15 by installing linux-image-{azure|aws}-lts-22.04 and it works, LTS 5.15 kernel is not affected by this problem.

We have confirmed that this issue only related to ARM64 architecture

As another "me too" situation, I'm seeing the same phenomenon, though on Rocky 9 rather than Ubuntu and on older kernels (5.14). Reporting details here on the off chance this provides some insight.

Hardware: Ampere Altra Max 128 cores (aarch64), ConnectX6-DX NICs (2 x dual 100G port)
Kernel versions tested: 5.15 (Rocky 9 native kernel) and 6.8 (elrepo kernel), both configured with 64 KB pages
OS: Rocky Linux 9
Software: nginx serving ~90k HTTPS clients at ~350 GBit/s (a synthetic load test)
Bare-metal (no virtualisation).

In my test environment, ~90k HTTPS connections are opened (and reused via keepalive) and used to stream ~350 GBit/s of traffic to a cluster of load generators. In this scenario, TCP memory gradually creeps up until reaching the memory pressure threshold in /proc/sys/net/ipv4/tcp_mem (243890 pages, or 15.6 GB in this system). At this point memory usage growth actually increases slightly (and increased CPU load and response times are also observed). The system eventually reaches the ultimate limit (365832 pages, or 23.4 GB) at which point most connections fail and all requests receive very slow responses.

Closing all connections or restarting nginx does not free up the memory, only a reboot resolves the situation -- as reported above already.

Leaked memory appears to persist even if all connections are closed prior to hitting any of the above limits.

Unfortunately I don't yet have any ideas on how to fix this but would be glad to hear (and will share) any insights about what might be going on here!

I've been digging into this and this appears to be a regression introduced by the following patch https://github.com/torvalds/linux/commit/3cd3399dd7a84 which was first released in Linux 6.0.0.

The bug is not a memory leak but rather a bug in how memory usage is counted. Excess memory is not actually being consumed, though the bug is still fatal since the counter controls Linux's memory pressure logic.

The (apparently) responsible patch is a performance optimisation which attempts to reduce the frequency of writes to the system-wide counter which (I suspect) is subtly misusing some atomic operation on ARM. If you undo this patch in a recent kernel, the bug disappears.

I am currently working on a detailed bug report for the relevant Kernel maintainers.

NB: It appears that the "5.15" kernel shipped by Rocky (and RHEL) includes a back-port of this bug, hence my seeing the bug in that kernel version on Rocky Linux. A non-RedHat-patched vanilla build of 5.15 does not exhibit the bug in my system either.

Hi Jonathan,

Thanks for all the information and the deep dive into this issue! Please post the link to the kernel bug report here when it's ready.

The bug report can be found here:

https://<email address hidden>/

The subsequently produced patch (not by me!) to fix this can be found here:

https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=3584718cf2ec

I've also verified that the above patch does fix the problem at least in my case!

I've looked at this issue in some detail now. The initial memory leak was introduced in linux kernel version v6.0, and the fix was introduced in the v6.9 kernel version. This means that the 6.5, and 6.8 based ubuntu kernels will contain this memory leak.

I will submit a fix for the generic 6.8, and generic 6.5 kernels so all ubuntu kernels will receive the fix.

For reference: The commit that introduces this issue is 3cd3399dd7a84ada85cb839989cdf7310e302c7d

https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=3cd3399dd7a84ada85cb839989cdf7310e302c7d

And the commit I will be working with to provide the fix is the stable backport to the 6.8.y stable kernel which is: d2fa3493811ecd49f1581940111ccf475fa5cd38

https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=d2fa3493811ecd49f1581940111ccf475fa5cd38

Two patches are actually needed for this fix. From the 6.8.y stable branch, the following two patches cherry-pick and build clean on the generic ubuntu mantic (6.5), and noble (6.8) kernels. I will perform some more testing and send these out for review.

The two patches are:

d2fa3493811ecd49f1581940111ccf475fa5cd38 net: fix sk_memory_allocated_{add|sub} vs softirqs
e830c804e26733fb09219cb9b92f167715c3b8a0 net: make SK_MEMORY_PCPU_RESERV tunable

The review for this change has been sent out. It is: https://lists.ubuntu.com/archives/kernel-team/2024-May/151087.html