array(2) {
  ["docs"]=>
  array(10) {
    [0]=>
    array(10) {
      ["id"]=>
      string(9) "308660876"
      ["text"]=>
      string(45) "安全测试前置实践1-白盒&黑盒扫描"
      ["intro"]=>
      string(411) "本文我们将以围绕系统安全质量提升为目标，讲述在安全前置扫描上实践开展过程。希望通过此篇文章，帮助大家更深入、透彻地了解安全测试，能快速开展安全测试。
    

作者：京东物流 陈维
一、引言
G.J.Myers在《软件测试的艺术》中提出：从心理学角度来说，测试是一个为了寻找错误而运行程序的过程。
"
      ["username"]=>
      string(12) "jingdongkeji"
      ["tagsname"]=>
      string(39) "前端|安全|黑盒测试|白盒测试"
      ["tagsid"]=>
      string(29) "["160","2823","14120","5741"]"
      ["catesname"]=>
      string(0) ""
      ["catesid"]=>
      string(2) "[]"
      ["createtime"]=>
      string(10) "1681206002"
      ["_id"]=>
      string(9) "308660876"
    }
    [1]=>
    array(10) {
      ["id"]=>
      string(9) "308660875"
      ["text"]=>
      string(24) "vulnhub靶场之ORASI: 1"
      ["intro"]=>
      string(256) "准备：

攻击机：虚拟机kali、本机win10。
靶机：Orasi: 1，下载地址：https://download.vulnhub.com/orasi/Orasi.ova，下载后直接vbox打开即可。
知识点：hex编码、ida逆向、AndroidKiller逆向、ffuf爆破、ssti漏洞、s"
      ["username"]=>
      string(6) "upfine"
      ["tagsname"]=>
      string(0) ""
      ["tagsid"]=>
      string(2) "[]"
      ["catesname"]=>
      string(0) ""
      ["catesid"]=>
      string(2) "[]"
      ["createtime"]=>
      string(10) "1681204802"
      ["_id"]=>
      string(9) "308660875"
    }
    [2]=>
    array(10) {
      ["id"]=>
      string(9) "308660874"
      ["text"]=>
      string(92) "C# Kafka重置到最新的偏移量，即从指定的Partition订阅消息使用Assign方法"
      ["intro"]=>
      string(428) "在使用Kafka的过程中，消费者断掉之后，再次开始消费时，消费者会从断掉时的位置重新开始消费。
场景再现：比如昨天消费者晚上断掉了，今天上午我们会发现kafka消费的数据不是最新的，而是昨天晚上的数据，由于数据量比较多，也不会及时的消费到今天上午的数据，这个时候就需要我们对偏移量进行重置为最新的，以"
      ["username"]=>
      string(15) "Poetwithapistol"
      ["tagsname"]=>
      string(10) ".NET|Kafka"
      ["tagsid"]=>
      string(13) "["300","440"]"
      ["catesname"]=>
      string(4) ".NET"
      ["catesid"]=>
      string(7) "["119"]"
      ["createtime"]=>
      string(10) "1681203303"
      ["_id"]=>
      string(9) "308660874"
    }
    [3]=>
    array(10) {
      ["id"]=>
      string(9) "308660873"
      ["text"]=>
      string(129) "迁移学习（）《Attract, Perturb, and Explore: Learning a Feature Alignment Network for Semi-supervised Domain Adaptation》"
      ["intro"]=>
      string(194) "论文信息

论文标题：Attract, Perturb, and Explore: Learning a Feature Alignment Network for Semi-supervised Domain Adaptation论文作者：Taekyung Kim论文来源：2020 ECCV论文地"
      ["username"]=>
      string(12) "BlairGrowing"
      ["tagsname"]=>
      string(0) ""
      ["tagsid"]=>
      string(2) "[]"
      ["catesname"]=>
      string(0) ""
      ["catesid"]=>
      string(2) "[]"
      ["createtime"]=>
      string(10) "1681203302"
      ["_id"]=>
      string(9) "308660873"
    }
    [4]=>
    array(10) {
      ["id"]=>
      string(9) "308660872"
      ["text"]=>
      string(92) "C# Kafka重置到最新的偏移量，即从指定的Partition订阅消息使用Assign方法"
      ["intro"]=>
      string(428) "在使用Kafka的过程中，消费者断掉之后，再次开始消费时，消费者会从断掉时的位置重新开始消费。
场景再现：比如昨天消费者晚上断掉了，今天上午我们会发现kafka消费的数据不是最新的，而是昨天晚上的数据，由于数据量比较多，也不会及时的消费到今天上午的数据，这个时候就需要我们对偏移量进行重置为最新的，以"
      ["username"]=>
      string(10) "goodboydcc"
      ["tagsname"]=>
      string(10) ".NET|Kafka"
      ["tagsid"]=>
      string(13) "["300","440"]"
      ["catesname"]=>
      string(4) ".NET"
      ["catesid"]=>
      string(7) "["119"]"
      ["createtime"]=>
      string(10) "1681202402"
      ["_id"]=>
      string(9) "308660872"
    }
    [5]=>
    array(10) {
      ["id"]=>
      string(9) "308660870"
      ["text"]=>
      string(42) "Django怎么使用原生SQL查询数据库"
      ["intro"]=>
      string(392) "这篇文章主要介绍“Django怎么使用原生SQL查询数据库”，在日常操作中，相信很多人在Django怎么使用原生SQL查询数据库问题上存在疑惑，小编查阅了各式资料，整理出简单好用的操作方法，希望对大家解答”Django怎么使用原生SQL查询数据库”的疑惑有所帮助！接下来，请跟着小编一起来学习吧！
D"
      ["username"]=>
      NULL
      ["tagsname"]=>
      string(20) "django|sql|数据库"
      ["tagsid"]=>
      NULL
      ["catesname"]=>
      string(0) ""
      ["catesid"]=>
      NULL
      ["createtime"]=>
      string(10) "1681201981"
      ["_id"]=>
      string(9) "308660870"
    }
    [6]=>
    array(10) {
      ["id"]=>
      string(9) "308660871"
      ["text"]=>
      string(37) "Express怎么实现定时发送邮件"
      ["intro"]=>
      string(432) "今天小编给大家分享一下Express怎么实现定时发送邮件的相关知识点，内容详细，逻辑清晰，相信大部分人都还太了解这方面的知识，所以分享这篇文章给大家参考一下，希望大家阅读完这篇文章后有所收获，下面我们一起来了解一下吧。
在开发中我们有时候需要每隔 一段时间发送一次电子邮件，或者在某个特定的时间进行发"
      ["username"]=>
      NULL
      ["tagsname"]=>
      string(7) "express"
      ["tagsid"]=>
      NULL
      ["catesname"]=>
      string(0) ""
      ["catesid"]=>
      NULL
      ["createtime"]=>
      string(10) "1681201981"
      ["_id"]=>
      string(9) "308660871"
    }
    [7]=>
    array(10) {
      ["id"]=>
      string(9) "308660869"
      ["text"]=>
      string(29) "mysql运维------分库分表"
      ["intro"]=>
      string(412) "1. 介绍
问题分析:
随着互联网以及移动互联网的发展，应用系统的数据量也是成指数式增长，若采用单数据库进行数据存储，存在以下性能瓶颈：
IO瓶颈：热点数据太多，数据库缓存不足，产生大量磁盘IO，效率较低。请求数据太多，带宽不够，网络IO瓶颈。CPU瓶颈：排序、分组、连接查询、聚合统计等SQL会耗费"
      ["username"]=>
      string(13) "qds1401744017"
      ["tagsname"]=>
      string(5) "mysql"
      ["tagsid"]=>
      string(7) "["237"]"
      ["catesname"]=>
      string(0) ""
      ["catesid"]=>
      string(2) "[]"
      ["createtime"]=>
      string(10) "1681200304"
      ["_id"]=>
      string(9) "308660869"
    }
    [8]=>
    array(10) {
      ["id"]=>
      string(9) "308660868"
      ["text"]=>
      string(41) "ASP.NET Core - 缓存之内存缓存(下)"
      ["intro"]=>
      string(292) "话接上篇 [ASP.NET Core - 缓存之内存缓存(上)]，所以这里的目录从 2.4 开始。

2.4 MemoryCacheEntryOptions
MemoryCacheEntryOptions 是内存缓存配置类，可以通过它配置缓存相关的策略。除了上面讲到的过期时间，我们还能够设置下面这些"
      ["username"]=>
      string(6) "wewant"
      ["tagsname"]=>
      string(12) "asp.net core"
      ["tagsid"]=>
      string(7) "["179"]"
      ["catesname"]=>
      string(25) "APS.NET Core 系列总结"
      ["catesid"]=>
      string(9) "["15288"]"
      ["createtime"]=>
      string(10) "1681200302"
      ["_id"]=>
      string(9) "308660868"
    }
    [9]=>
    array(10) {
      ["id"]=>
      string(9) "308660867"
      ["text"]=>
      string(9) "SPI协议"
      ["intro"]=>
      string(334) "SPI协议是由摩托罗拉公司提出的通讯协议(Serial Peripheral Interface)，即串行外设接口。广泛用在ADC、LCD等设备与MCU间，要求通讯速率较高的场合。区分它与I2C协议差异以及FLASH存储器与EEPROM存储器的区别。下面我们分别对SPI协议的物理层及协议层进行讲解。"
      ["username"]=>
      string(8) "Kaelthas"
      ["tagsname"]=>
      string(5) "STM32"
      ["tagsid"]=>
      string(8) "["1311"]"
      ["catesname"]=>
      string(5) "STM32"
      ["catesid"]=>
      string(8) "["1139"]"
      ["createtime"]=>
      string(10) "1681199702"
      ["_id"]=>
      string(9) "308660867"
    }
  }
  ["count"]=>
  int(5621682)
}
<!DOCTYPE html>
<html lang="zh-CN">
<head>
<meta charset="utf-8" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta http-equiv="content-language" content="zh-CN" />
<meta http-equiv="X-UA-Compatible" content="IE=edge" /> 
    <title>ES内存持续上升问题定位 - 爱码网</title>
     
<meta name="keywords" content="ES内存持续上升问题定位" />
<meta name="description" content="目录ECharts异步加载ECharts
数据可视化在过去几年中取得了巨大进展。开发人员对可视化产品的期望不再是简单的图表创建工具，而是在交互、性能、数据处理等方面有更高的要求。
chart.setOption({
    color: [" />
<meta name="viewport" content="width=device-width, initial-scale=1.0" />
<link rel="stylesheet" type="text/css" href="/statics/css/base.css?v=2.7" />
<script src="/statics/js/detail.min.js?v=2.2"></script>   
<script>
   $(document).ready(function () { 
		$("img").error(function () {
			$(this).hide();
		}); 
	}); 
</script>
</head>
<body class="home-template dtpg">
<nav class="main-nav clearfix">
    <div class="inner">
        <ul class="nav">
            <li class="menu-item menu-item-type-custom menu-item-object-custom current-menu-item current_page_item menu-item-home menu-item-886"><a href="/" title="爱码网">首页</a></li>
                        <li class="menu-item menu-item-type-custom menu-item-object-custom current-menu-item current_page_item menu-item-home menu-item-886"><a href="/nav/1.html" title="前端技术">前端技术</a></li>
                        <li class="menu-item menu-item-type-custom menu-item-object-custom current-menu-item current_page_item menu-item-home menu-item-886"><a href="/nav/9.html" title="编程语言">编程语言</a></li>
                        <li class="menu-item menu-item-type-custom menu-item-object-custom current-menu-item current_page_item menu-item-home menu-item-886"><a href="/nav/31.html" title="人工智能">人工智能</a></li>
                        <li class="menu-item menu-item-type-custom menu-item-object-custom current-menu-item current_page_item menu-item-home menu-item-886"><a href="/nav/41.html" title="运维知识">运维知识</a></li>
                        <li class="menu-item menu-item-type-custom menu-item-object-custom current-menu-item current_page_item menu-item-home menu-item-886"><a href="/nav/52.html" title="资源下载">资源下载</a></li>
                        <li class="menu-item menu-item-type-custom menu-item-object-custom current-menu-item current_page_item menu-item-home menu-item-886"><a href="/nav/68.html" title="常用小工具">常用小工具</a></li>
                        <li class="menu-item menu-item-type-custom menu-item-object-custom current-menu-item current_page_item menu-item-home menu-item-886"><a href="/nav/72.html" title="技术问答">技术问答</a></li>
                    </ul>            
	 
    </div>
</nav><div class="site-wrapper">
 
    <header style="height: auto;padding: 10px 0px;" class="main-header">
        <div style="max-width:910px" class="main-header-content inner">
                        <h1 class="page-title"><a href="/show-306901869.html" title="ES内存持续上升问题定位">ES内存持续上升问题定位</a></h1>
            
        </div>

    </header>
    <main class="content" role="main">
	

        <div class="leftbox">
    <article class="post tag-uifont tag-webview">
        <header class="post-header">
            <footer class="tc">  
                <time class="post-date" datetime="2022-03-05">2022-03-05</time>
            </footer>
        </header>
        <section class="post-content">
            <div class="contentbef">  
                  
                              </div>

            
                                    
<div> </div>
<p class="entry-title"><a href="https://discuss.elastic.co/t/memory-usage-of-the-machine-with-es-is-continuously-increasing/23537/7" target="_blank" rel="nofollow">https://discuss.elastic.co/t/memory-usage-of-the-machine-with-es-is-continuously-increasing/23537/7</a> 里提到ES内存缓慢上升可能是因为小文件过多（ES本身会在index时候建立大量的小文件），linux dentry 和 inode cache会增加。可以通过设置<code>vfs_cache_pressure 让操作系统进行高优先级回收。</code></p>
<p class="entry-title">当然，还可能是因为ES lucene自身内存泄漏bug导致。 Your bug description reminds me of <a href="https://issues.apache.org/jira/browse/LUCENE-7657" rel="nofollow" target="_blank">https://issues.apache.org/jira/browse/LUCENE-7657</a> but this bug is expected to be fixed in 5.5.2.</p>
<p class="entry-title"><br>https://discuss.elastic.co/t/es-vs-lucene-memory/20959<br><br>I've read the recommendations for ES_HEAP_SIZE<br>which<br>basically state to set -Xms and -Xmx to 50% physical RAM.<br>It says the rest should be left for Lucene to use (OS filesystem caching).<br>But I'm confused on how Lucene uses that. Doesn't Lucene run in the same<br>JVM as ES? So they would share the same max heap setting of 50%. <br><br>nik9000 Nik Everett Elastic Team Member<br>Nov '14<br>Lucene runs in the same JVM as Elasticsearch but (by default) it mmaps<br>files and then iterates over their content inteligently. That means most<br>of its actual storage is "off heap" (its a java buzz-phrase). Anyway,<br>Linux will serve reads from mmaped files from its page cache. That is why<br>you want to leave linux a whole bunch of unused memory.<br><br>Nik <br>就是官方人员建议预留一些空闲的内存给ES(lucene)的底层文件系统用于File cache。<br><br><br>pountz Adrien Grand Elastic Team Member<br>Nov '14<br>Indeed the behaviour is the same on Windows and Linux: memory that is not<br>used by processes is used by the operating system in order to cache the<br>hottest parts of the file system. The reason why the docs say that the rest<br>should be left to Lucene is that most disk accesses that elasticsearch<br>performs are done through Lucene. <br><br>I used procexp and VMMap to double check, ya, i think they are file system<br>cache.<br>Is there anyway to control the size of file system cache? Coz now it's<br>easily driving up OS memory consumption. When it's reaching 100%, the node<br>would fail to respond...<br>他们也遇到ES机器的内存（java heap+文件系统）使用达到了100%。<br><br><br>不过该帖子没有给出解决方案。<br><br>类似ES内存问题在：https://discuss.elastic.co/t/jvm-memory-increase-1-time-more-xmx16g-while-elasticsearch-heap-is-stable/55413/4<br>其操作是每天都定期查询。<br><br>Elasticsearch uses not only heap but also out-of-heap memory buffers because of Lucene.<br><br><br>I just read the Lucene blog post and I already know that Lucene/ES start to use the file system cache (with MMapDirectory).<br>That why in my graph memory you can see: Free (in green) + Used memory (in red) + cached memory (the FS cache in blue).<br><br><br>https://discuss.elastic.co/t/memory-usage-of-the-machine-with-es-is-continuously-increasing/23537/2<br><br>提到：ES内存每天都上升200MB，而重启ES则一切又正常了。<br>Note<br>that when I restart the ES it gets cleared(most of it, may be OS clears up<br>this cache once it sees that the parent process has been stopped). <br><br>When the underlying lucene engine interacts with a segment the OS will<br>leverage free system RAM and keep that segment in memory. However<br>Elasticsearch/lucene has no way to control of OS level caches. <br>这个是操作系统的cache，ES本身无法控制。</p>
<p class="entry-title"> </p>

<div class="entry-content">
<p>转自：http://farll.com/2016/10/high-memory-usage-alarm/</p>
<p>Linux Centos服务器内存使用率过高的报警, 最后得出结论是因为 nss-softokn的bug导致curl 大量请求后, dentry 缓存飙升.</p>
<p>问题的开始是收到云平台发过来的内存使用率平均值超过报警值的短信, 登录云监控后台查看发现从前两天开始内存使用曲线缓慢地呈非常有规律上升趋势.<span></span></p>
<p><img class="aligncenter wp-image-509 size-full" src="/default/index/img?u=L2RlZmF1bHQvaW5kZXgvaW1nP3U9YUhSMGNEb3ZMMlpoY214c0xtTnZiUzkzY0MxamIyNTBaVzUwTDNWd2JHOWhaSE12TWpBeE5pOHhNQzlSVWVXYnZ1ZUpoekl3TVRZeE1ERXpNVFl4T1RRNUxuQnVadz09" alt="ES内存持续上升问题定位" title="ES内存持续上升问题定位"></p>
<p>用top命令, 然后使用M按内存使用大小排序发现并没有特别消耗内存的进程在跑, 用H查询线程情况也正常. 最高的mysql占用6.9%内存. memcached进程telnet后stats并未发现有内存消耗过大等异常情况.</p>
<p><img class="alignnone size-full wp-image-510" src="/default/index/img?u=L2RlZmF1bHQvaW5kZXgvaW1nP3U9YUhSMGNEb3ZMMlpoY214c0xtTnZiUzkzY0MxamIyNTBaVzUwTDNWd2JHOWhaSE12TWpBeE5pOHhNQzh5TG5CdVp3PT0=" alt="ES内存持续上升问题定位" title="ES内存持续上升问题定位"></p>
<p>free -m 查看 -/+ buffers/cache used很高, 可用的free内存只剩下百分之十几, 那么内存消耗究其在哪里去了?</p>
<p>使用cat /proc/meminfo 查看内存分配更详细的信息:  Slab 和 SReclaimable 达几个G,  Slab内存分配管理, SReclaimable看字面意思是可回收内存.</p>
<pre>MemTotal: 8058056 kB
MemFree: 3892464 kB
Buffers: 192016 kB
Cached: 873860 kB
SwapCached: 0 kB
Active: 1141088 kB
Inactive: 690580 kB
Active(anon): 765260 kB
Inactive(anon): 22220 kB
Active(file): 375828 kB
Inactive(file): 668360 kB
Unevictable: 0 kB
Mlocked: 0 kB
SwapTotal: 0 kB
SwapFree: 0 kB
Dirty: 24 kB
Writeback: 0 kB
AnonPages: 765784 kB
Mapped: 58648 kB
Shmem: 21696 kB
<strong>Slab: 2261236 kB</strong>
<strong>SReclaimable: 2236844 kB</strong>
SUnreclaim: 24392 kB
KernelStack: 1448 kB
PageTables: 8404 kB
NFS_Unstable: 0 kB
Bounce: 0 kB
WritebackTmp: 0 kB
CommitLimit: 4029028 kB
Committed_AS: 1500552 kB
VmallocTotal: 34359738367 kB
VmallocUsed: 25952 kB
VmallocChunk: 34359710076 kB
HardwareCorrupted: 0 kB
AnonHugePages: 673792 kB
HugePages_Total: 0
HugePages_Free: 0
HugePages_Rsvd: 0
HugePages_Surp: 0
Hugepagesize: 2048 kB
DirectMap4k: 6144 kB
DirectMap2M: 8382464 kB</pre>
<p>使用slabtop 命令按C按分配slab的size大小排列, dentry (directory entry cache)排最前面高其他很多, 其次是inode_cache 文件缓存. <a href="http://huoding.com/2015/06/10/444" target="_blank" rel="nofollow">一个Laravel队列引发的报警</a>这篇文章提到laravel队列会生成和读写操作大量的小文件导致dentry cache 飙升, 超大目录(一个目录里含有上百万数量的文件)也有可能是原因之一.</p>
<p><img class="alignnone size-full wp-image-511" src="/default/index/img?u=L2RlZmF1bHQvaW5kZXgvaW1nP3U9YUhSMGNEb3ZMMlpoY214c0xtTnZiUzkzY0MxamIyNTBaVzUwTDNWd2JHOWhaSE12TWpBeE5pOHhNQzh6TG5CdVp3PT0=" alt="ES内存持续上升问题定位" title="ES内存持续上升问题定位"></p>
<p>因为最近并没有对服务器配置和程序代码进行变更, 所以第一反应是想是不是AliyunUpdate自动更新程序更改了什么. 但是 strace 依次监控Ali系列的进程并没有发现有大量的文件操作.  crond也发现会读写少量的session等临时文件, 但数量少并不至于到这个程度.</p>
<pre>ps aux | grep "Ali"
strace -fp {pid} -e trace=open,stat,close,unlink</pre>
<p>官方的工单回复是可以考虑升级服务器内存，如果内存不足影响业务，需要临时释放一下slab占用的内存， 参考以下步骤：</p>
<pre>回收dentry cache和inode cache占用的内存
#echo 2 &gt; /proc/sys/vm/drop_caches
等内存回收完毕后再恢复:
#echo 0 &gt; /proc/sys/vm/drop_caches

来自<a href="https://www.kernel.org/doc/Documentation/sysctl/vm.txt" target="_blank" rel="nofollow">linux内核文档</a>:
To free pagecache:
	echo 1 &gt; /proc/sys/vm/drop_caches
To free reclaimable slab objects (includes dentries and inodes):
	echo 2 &gt; /proc/sys/vm/drop_caches
To free slab objects and pagecache:
	echo 3 &gt; /proc/sys/vm/drop_caches</pre>
<p>只给了个临时解决方案, 总不能还要开个自动任务定时执行回收dentry cache的任务吧. 不过我们逐渐接近了事情的本质, 即目前看来是过高的slab内存无法回收导致内存不足. 那么我们可以提高slab内存释放的优先级, Linux 提供了 vfs_cache_pressure 这个参数, 默认为100, 设置为高于100的数, 数值越大slab回收优先级越高(root 身份运行):</p>
<pre><code>echo 10000 &gt; /proc/sys/vm/vfs_cache_pressure</code></pre>
<p>注意<a href="http://www.backwardcompatible.net/139-Reducing-dentry-slab-usage-on-machines-with-a-lot-of-RAM" target="_blank" rel="nofollow">有文章</a>提到有时vfs_cache_pressure的设置并不会在系统中马上体现出来, dentry 和inode cache会有一个到高峰后突然下降,然后逐渐正常波动的过程. 因此需要运行个24小时再来下效果定论.</p>
<p><img class="alignnone size-full wp-image-512" src="/default/index/img?u=L2RlZmF1bHQvaW5kZXgvaW1nP3U9YUhSMGNEb3ZMMlpoY214c0xtTnZiUzkzY0MxamIyNTBaVzUwTDNWd2JHOWhaSE12TWpBeE5pOHhNQzlrWlc1MGNua3VjRzVu" alt="ES内存持续上升问题定位" title="ES内存持续上升问题定位"></p>
<p>并不建议通过如上Laravel队列文章最后提到的使用min_free_kbytes 和 extra_free_kbytes参数来实现回收slab缓存的, 内核文档中比较明确地指明了vfs_cache_pressure 适合于控制directory 和inode 缓存的回收:</p>
<pre>vfs_cache_pressure
------------------

This percentage value controls the tendency of the kernel to reclaim
the memory which is used for caching of directory and inode objects.

At the default value of vfs_cache_pressure=100 the kernel will attempt to
reclaim dentries and inodes at a "fair" rate with respect to pagecache and
swapcache reclaim.  Decreasing vfs_cache_pressure causes the kernel to prefer
to retain dentry and inode caches. When vfs_cache_pressure=0, the kernel will
never reclaim dentries and inodes due to memory pressure and this can easily
lead to out-of-memory conditions. Increasing vfs_cache_pressure beyond 100
causes the kernel to prefer to reclaim dentries and inodes.

Increasing vfs_cache_pressure significantly beyond 100 may have negative
performance impact. Reclaim code needs to take various locks to find freeable
directory and inode objects. With vfs_cache_pressure=1000, it will look for
ten times more freeable objects than there are.</pre>
<p>虽然slab占用过多内存得到了有效控制和实时回收, 但实际上我们还是没有找到问题的本质, 按理来说默认的vfs_cache_pressure值应该是能够较好地实现可用内存和slab缓存之间的平衡的.</p>
<p>最后去查该时间节点的网站服务日志才发现, 内存使用率一直升的原因在于从这个时间开始, 有系统crontab任务一直在不断地通过curl请求外部资源api接口, 而他这个api基于https. 罪魁祸首就在于Libcurl附带的Mozilla网络安全服务库NSS(Network Security Services) 的bug, 只有curl请求ssl即https的资源才会引入NSS.</p>
<p>其内部机制是: NSS为了检测访问的临时目录是本地的还是网络资源, 它会访问数百个不存在的文件并统计所需要的时间, 在这过程就会为这些不存在的文件生成大量dentry cache. 当curl请求产生的dentry cache超过系统的内存回收能力时, 内存使用率自然会逐步攀升. <a href="https://www.splyt.com/blog/2014-05-16-optimizing-aws-nss-softoken" target="_blank" rel="nofollow">有篇外文blog有比较详细的介绍</a>, <a href="http://serverfault.com/questions/561350/unusually-high-dentry-cache-usage" target="_blank" rel="nofollow">以及</a>.  NSS从后面的版本开始解决了这个bug:  <a href="https://bugzilla.redhat.com/show_bug.cgi?format=multiple&amp;id=1044666" target="_blank" rel="nofollow">NSS now avoids calls to sdb_measureAccess in lib/softoken/sdb.c s_open if NSS_SDB_USE_CACHE is “yes”</a>. 所以我们得到的最终解决办法是:</p>
<p><strong>第一步: 确保nss-softokn是已经解决了bug的版本</strong></p>
<p>查看是否大于等于3.16.0版本(根据上面的bug修复链接, 大于nss-softokn-3.14.3-12.el6 也可以):<br><code>yum list nss-softokn</code><br>
若版本太低需要升级:<br><code>sudo yum update -y nss-softokn</code></p>
<pre>Resolving Dependencies
 --&gt; Running transaction check
 ---&gt; Package nss-softokn.x86_64 0:3.14.3-10.el6_5 will be updated
 ---&gt; Package nss-softokn.x86_64 0:3.14.3-23.3.el6_8 will be an update
 --&gt; Processing Dependency: nss-softokn-freebl(x86-64) &gt;= 3.14.3-23.3.el6_8 for package: nss-softokn-3.14.3-23.3.el6_8.x86_64
 --&gt; Processing Dependency: libnssutil3.so(NSSUTIL_3.17.1)(64bit) for package: nss-softokn-3.14.3-23.3.el6_8.x86_64
 --&gt; Running transaction check
 ---&gt; Package nss-softokn-freebl.x86_64 0:3.14.3-10.el6_5 will be updated
 ---&gt; Package nss-softokn-freebl.x86_64 0:3.14.3-23.3.el6_8 will be an update
 ---&gt; Package nss-util.x86_64 0:3.16.1-1.el6_5 will be updated
 ---&gt; Package nss-util.x86_64 0:3.21.0-2.el6 will be an update
 --&gt; Processing Dependency: nspr &gt;= 4.11.0-1 for package: nss-util-3.21.0-2.el6.x86_64
 --&gt; Running transaction check
 ---&gt; Package nspr.x86_64 0:4.10.6-1.el6_5 will be updated
 ---&gt; Package nspr.x86_64 0:4.11.0-1.el6 will be an update
 --&gt; Finished Dependency Resolution</pre>
<p><strong>第二步: 设置变量NSS_SDB_USE_CACHE=yes</strong></p>
<pre><strong>Apache</strong>:
<code>echo "export NSS_SDB_USE_CACHE=yes" &gt;&gt; /etc/sysconfig/httpd
service httpd restart</code>
<strong>PHP</strong>:
<code>putenv('NSS_SDB_USE_CACHE=yes');</code>     
//注<a href="http://farll.com/tag/php/" rel="nofollow" target="_blank">php</a>设置环境变量, 如果safe_mode开启的话, 会受 safe_mode_allowed_env_vars 和 safe_mode_protected_env_vars 指令配置的影响.
<a href="http://stackoverflow.com/questions/18098006/setting-php-enviromental-variable-while-running-command-line-script" target="_blank" rel="nofollow">More</a>
<strong>Nginx</strong>:
<code>fastcgi_param NSS_SDB_USE_CACHE yes;</code>
</pre>
<p><strong>第三步: 重启Web服务器</strong><br>
重启Apache 或 重启Nginx和php-fpm. 否则curl_error可能出现 <code>Problem with the SSL CA cert (path? access rights?)</code> 的错误.</p>
<p>设置后dentry cache终于慢慢恢复正常.</p>




	</div>
 
                    
            
                <div style="margin-top: 10px;">
                  </div> 
        </section>
	 
        <footer class="post-footer">
            <section class="author">
                                            </section>
        </footer>
        <p class="mt10">相关文章：</p>
        <div style="width: 100%;" class="contentcard">
      
            <div style="width: 100%;height: auto;" class="carditem litem clearfix"> 
                    <ul style="padding-left: 0rem;" class="cardcont">
                                                    <li>
                                <a  title="NET内存持续增长问题排查" href='/show-203418392.html' target="_blank"></a> 
                                <span>2021-12-31</span>
                            </li>
                                                        <li>
                                <a  title="快速定位线上 Node.js 内存泄漏问题" href='/show-203890755.html' target="_blank"></a> 
                                <span>2022-01-10</span>
                            </li>
                                                        <li>
                                <a  title="pc主站登录接口出现内存持续增长问题案例定位" href='/show-205303600.html' target="_blank"></a> 
                                <span>2022-01-01</span>
                            </li>
                                                        <li>
                                <a  title="MAT内存问题分析定位" href='/show-305442198.html' target="_blank"></a> 
                                <span>2021-07-23</span>
                            </li>
                                                        <li>
                                <a  title="内存问题定位与解决" href='/show-308268074.html' target="_blank"></a> 
                                <span>2022-12-23</span>
                            </li>
                                                        <li>
                                <a  title="iOS11 持续定位" href='/show-203812775.html' target="_blank"></a> 
                                <span>2021-09-26</span>
                            </li>
                                                        <li>
                                <a  title="线上服务内存OOM问题定位三板斧" href='/show-203890506.html' target="_blank"></a> 
                                <span>2021-06-23</span>
                            </li>
                                                </ul>
               </div>   
         </div>
    </article>

  

</div>

<div class="rigthbox contentcard mt10">
 
          <div style="height: auto;" class="carditem litem">
    <div class="cardtit">猜你喜欢 </div>
        <ul class="cardcont">
                                 <li>
                    <a title="JVM内存问题定位" href="/show-305558545.html" target="_blank"></a> 
                    <span>2021-09-17</span>
                </li>
                                     <li>
                    <a title="线上服务内存OOM问题定位" href="/show-203618118.html" target="_blank"></a> 
                    <span>2021-05-22</span>
                </li>
                                     <li>
                    <a title="rabbitmq 3.6.2 内存持续增长问题" href="/show-308384527.html" target="_blank"></a> 
                    <span>2022-12-23</span>
                </li>
                                     <li>
                    <a title="mysql 定位问题集锦(持续更新...)" href="/show-306305409.html" target="_blank"></a> 
                    <span>2021-10-09</span>
                </li>
                                     <li>
                    <a title="内存溢出线上问题定位案例" href="/show-307716057.html" target="_blank"></a> 
                    <span>2022-12-23</span>
                </li>
                            </ul>
   </div> 

<div style="height: auto;" class="carditem litem">
    <div class="cardtit">相关资源 </div>
        <ul class="cardcont">
              
                                         <li>
                        <a title="Jenkins持续集成引擎 v2.293下载" href="/down-10086.html" target="_blank">下载</a> 
                        <span>2022-12-24</span>
                    </li>
                                             <li>
                        <a title="持续集成引擎 Jenkins v1.0下载" href="/down-48855.html" target="_blank">下载</a> 
                        <span>2021-06-23</span>
                    </li>
                                             <li>
                        <a title="河内塔问题 用js代码实现下载" href="/down-342.html" target="_blank">下载</a> 
                        <span>2021-06-05</span>
                    </li>
                                </ul>
   </div>
   
    <div style="height: auto;" class="carditem litem">
     <div class="cardtit">相似解决方案 </div>
         <ul class="cardcont">
                          </ul>
    </div>
  
   <div style="height: auto;background-color: #ddd;text-align: center;" class="carditem litem">
    <ins class="adsbygoogle" style="display:block" data-ad-client="ca-pub-5446233687289962" data-ad-slot="2607637140"  data-ad-format="auto"  data-full-width-responsive="true"></ins><script>(adsbygoogle = window.adsbygoogle || []).push({});</script>
</div> 
   <div  style="height: auto;" class="carditem litem mt20">
    <div class="cardtit">热门标签  </div>
    <div class="tagbox">
                    <a target="_blank" title="Java" href="/default/index/tags?cid=164&cname=Java" >Java</a>
                        <a target="_blank" title="Python" href="/default/index/tags?cid=367&cname=Python" >Python</a>
                        <a target="_blank" title="linux" href="/default/index/tags?cid=274&cname=linux" >linux</a>
                        <a target="_blank" title="javascript" href="/default/index/tags?cid=169&cname=javascript" >javascript</a>
                        <a target="_blank" title="Mysql" href="/default/index/tags?cid=237&cname=Mysql" >Mysql</a>
                        <a target="_blank" title="C#" href="/default/index/tags?cid=187&cname=C%23" >C#</a>
                        <a target="_blank" title="Docker" href="/default/index/tags?cid=243&cname=Docker" >Docker</a>
                        <a target="_blank" title="算法" href="/default/index/tags?cid=344&cname=%E7%AE%97%E6%B3%95" >算法</a>
                        <a target="_blank" title="前端" href="/default/index/tags?cid=160&cname=%E5%89%8D%E7%AB%AF" >前端</a>
                        <a target="_blank" title="SpringBoot" href="/default/index/tags?cid=168&cname=SpringBoot" >SpringBoot</a>
                        <a target="_blank" title="Redis" href="/default/index/tags?cid=227&cname=Redis" >Redis</a>
                        <a target="_blank" title="Vue" href="/default/index/tags?cid=236&cname=Vue" >Vue</a>
                        <a target="_blank" title="spring" href="/default/index/tags?cid=696&cname=spring" >spring</a>
                        <a target="_blank" title="设计模式" href="/default/index/tags?cid=632&cname=%E8%AE%BE%E8%AE%A1%E6%A8%A1%E5%BC%8F" >设计模式</a>
                        <a target="_blank" title=".net core" href="/default/index/tags?cid=381&cname=.net+core" >.net core</a>
                        <a target="_blank" title=".net" href="/default/index/tags?cid=300&cname=.net" >.net</a>
                        <a target="_blank" title="kubernetes" href="/default/index/tags?cid=2179&cname=kubernetes" >kubernetes</a>
                        <a target="_blank" title="c++" href="/default/index/tags?cid=312&cname=c%2B%2B" >c++</a>
                        <a target="_blank" title="数据库" href="/default/index/tags?cid=284&cname=%E6%95%B0%E6%8D%AE%E5%BA%93" >数据库</a>
                        <a target="_blank" title="数据结构" href="/default/index/tags?cid=247&cname=%E6%95%B0%E6%8D%AE%E7%BB%93%E6%9E%84" >数据结构</a>
                        <a target="_blank" title="大数据" href="/default/index/tags?cid=888&cname=%E5%A4%A7%E6%95%B0%E6%8D%AE" >大数据</a>
                        <a target="_blank" title="js" href="/default/index/tags?cid=159&cname=js" >js</a>
                        <a target="_blank" title="机器学习" href="/default/index/tags?cid=171&cname=%E6%9C%BA%E5%99%A8%E5%AD%A6%E4%B9%A0" >机器学习</a>
                        <a target="_blank" title="微服务" href="/default/index/tags?cid=832&cname=%E5%BE%AE%E6%9C%8D%E5%8A%A1" >微服务</a>
                        <a target="_blank" title="Android" href="/default/index/tags?cid=282&cname=Android" >Android</a>
                        <a target="_blank" title="Go" href="/default/index/tags?cid=839&cname=Go" >Go</a>
                        <a target="_blank" title="程序员" href="/default/index/tags?cid=327&cname=%E7%A8%8B%E5%BA%8F%E5%91%98" >程序员</a>
                        <a target="_blank" title="面试" href="/default/index/tags?cid=637&cname=%E9%9D%A2%E8%AF%95" >面试</a>
                        <a target="_blank" title="JVM" href="/default/index/tags?cid=727&cname=JVM" >JVM</a>
                        <a target="_blank" title="ASP.net core" href="/default/index/tags?cid=179&cname=ASP.net+core" >ASP.net core</a>
                        <a target="_blank" title="云原生" href="/default/index/tags?cid=22056&cname=%E4%BA%91%E5%8E%9F%E7%94%9F" >云原生</a>
                        <a target="_blank" title="人工智能" href="/default/index/tags?cid=270&cname=%E4%BA%BA%E5%B7%A5%E6%99%BA%E8%83%BD" >人工智能</a>
                        <a target="_blank" title="后端" href="/default/index/tags?cid=1089&cname=%E5%90%8E%E7%AB%AF" >后端</a>
                        <a target="_blank" title="PHP" href="/default/index/tags?cid=281&cname=PHP" >PHP</a>
                        <a target="_blank" title="git" href="/default/index/tags?cid=226&cname=git" >git</a>
                        <a target="_blank" title="CSS" href="/default/index/tags?cid=817&cname=CSS" >CSS</a>
                        <a target="_blank" title="golang" href="/default/index/tags?cid=409&cname=golang" >golang</a>
                        <a target="_blank" title="k8s" href="/default/index/tags?cid=5067&cname=k8s" >k8s</a>
                        <a target="_blank" title="Nginx" href="/default/index/tags?cid=373&cname=Nginx" >Nginx</a>
                        <a target="_blank" title="Django" href="/default/index/tags?cid=634&cname=Django" >Django</a>
                        <a target="_blank" title="mybatis" href="/default/index/tags?cid=720&cname=mybatis" >mybatis</a>
                        <a target="_blank" title="深度学习" href="/default/index/tags?cid=345&cname=%E6%B7%B1%E5%BA%A6%E5%AD%A6%E4%B9%A0" >深度学习</a>
                        <a target="_blank" title="多线程" href="/default/index/tags?cid=986&cname=%E5%A4%9A%E7%BA%BF%E7%A8%8B" >多线程</a>
                        <a target="_blank" title="React" href="/default/index/tags?cid=560&cname=React" >React</a>
                        <a target="_blank" title="架构" href="/default/index/tags?cid=2070&cname=%E6%9E%B6%E6%9E%84" >架构</a>
                        <a target="_blank" title="devops" href="/default/index/tags?cid=2662&cname=devops" >devops</a>
                        <a target="_blank" title="爬虫" href="/default/index/tags?cid=905&cname=%E7%88%AC%E8%99%AB" >爬虫</a>
                        <a target="_blank" title="云计算" href="/default/index/tags?cid=361&cname=%E4%BA%91%E8%AE%A1%E7%AE%97" >云计算</a>
                        <a target="_blank" title="Spring Boot" href="/default/index/tags?cid=201&cname=Spring+Boot" >Spring Boot</a>
                        <a target="_blank" title="LeetCode" href="/default/index/tags?cid=342&cname=LeetCode" >LeetCode</a>
                </div>
       
   </div>
   
        <div id="rightadbox" style="height: 300px;background-color: #ddd;text-align: center;" class="carditem litem">
            <ins class="adsbygoogle" style="display:block" data-ad-client="ca-pub-5446233687289962" data-ad-slot="2607637140"  data-ad-format="auto"  data-full-width-responsive="true"></ins><script>(adsbygoogle = window.adsbygoogle || []).push({});</script>
        </div> 
</div>
<div class="clearfix"></div>
</main>
    
<div class="yllinks alink"></div>
 

<footer class="site-footer clearfix">
<section class="copyright">By &copy; 2026 <a href="/" title="www.likecs.com">likecs</a> 版权所有,<br/>本站所有数据收集于网络如有侵犯到您的权益请联系 进行下架处理1。 </section>
<section class="poweredby">  <a target="_blank" href="https://beian.miit.gov.cn/">粤ICP备22038628号</a>Powered By  WordPress </section>
<script charset="UTF-8" id="LA_COLLECT" src="//sdk.51.la/js-sdk-pro.min.js"></script>
<script>LA.init({id: "Je3PjbvUssp6BbvY",ck: "Je3PjbvUssp6BbvY"})</script>
<script>
var _hmt = _hmt || [];
(function() {
  var hm = document.createElement("script");
  hm.src = "https://hm.baidu.com/hm.js?2eb031e42d29b7c1a1f16948d2ae2a9f";
  var s = document.getElementsByTagName("script")[0]; 
  s.parentNode.insertBefore(hm, s);
})();
</script>
</footer>  
</div>
<script>
    $(function(){
                    $(".post-content").append('<p style="padding: 20px;color: #cacaca;">原文链接：https://www.cnblogs.com/bonelee/p/8066544.html</p>')  
            }) 
</script> 
</body>
</html>