event-driven-servers icon indicating copy to clipboard operation
event-driven-servers copied to clipboard
verified publisher icon MarcJHuber

High RAM Usage

Open myankan opened this issue 11 months ago • 1 comments

Hi Marc

Initially, I used the server to authenticate routers and switches. Later on, we added more devices, including OLTs, and I noticed that RAM usage started to overflow. For now, this issue is temporarily resolved by restarting the tac_plus service, but after some time, memory usage gradually returns to 100%.

@svrtacacsldap-master:~# cat /etc/os-release PRETTY_NAME="Ubuntu 24.04.1 LTS" NAME="Ubuntu" VERSION_ID="24.04" VERSION="24.04.1 LTS (Noble Numbat)" VERSION_CODENAME=noble ID=ubuntu ID_LIKE=debian HOME_URL="https://www.ubuntu.com/" SUPPORT_URL="https://help.ubuntu.com/" BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/" PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy" UBUNTU_CODENAME=noble LOGO=ubuntu-logo root@svrtacacsldap-master:~# lscpu Architecture: x86_64 CPU op-mode(s): 32-bit, 64-bit Address sizes: 40 bits physical, 48 bits virtual Byte Order: Little Endian CPU(s): 4 On-line CPU(s) list: 0-3 Vendor ID: GenuineIntel BIOS Vendor ID: QEMU Model name: Common KVM processor BIOS Model name: pc-i440fx-9.2 CPU @ 2.0GHz BIOS CPU family: 1 CPU family: 15 Model: 6 Thread(s) per core: 1 Core(s) per socket: 4 Socket(s): 1 Stepping: 1 BogoMIPS: 4799.99 Flags: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse 2 ht syscall nx lm constant_tsc nopl xtopology c puid tsc_known_freq pni cx16 x2apic hypervisor l ahf_lm cpuid_fault pti Virtualization features:
Hypervisor vendor: KVM Virtualization type: full Caches (sum of all):
L1d: 128 KiB (4 instances) L1i: 128 KiB (4 instances) L2: 16 MiB (4 instances) L3: 16 MiB (1 instance) NUMA:
NUMA node(s): 1 NUMA node0 CPU(s): 0-3 Vulnerabilities:
Gather data sampling: Not affected Itlb multihit: KVM: Mitigation: VMX unsupported L1tf: Mitigation; PTE Inversion Mds: Vulnerable: Clear CPU buffers attempted, no micr ocode; SMT Host state unknown Meltdown: Mitigation; PTI Mmio stale data: Unknown: No mitigations Reg file data sampling: Not affected Retbleed: Not affected Spec rstack overflow: Not affected Spec store bypass: Vulnerable Spectre v1: Mitigation; usercopy/swapgs barriers and __user pointer sanitization Spectre v2: Mitigation; Retpolines; STIBP disabled; RSB fill ing; PBRSB-eIBRS Not affected; BHI Retpoline Srbds: Not affected Tsx async abort: Not affected root@svrtacacsldap-master:~# free -m total used free shared buff/cache available Mem: 3915 476 3351 0 306 3438 Swap: 3914 55 3859 root@svrtacacsldap-master:~# root@svrtacacsldap-master:~# df -h Filesystem Size Used Avail Use% Mounted on tmpfs 392M 700K 391M 1% /run /dev/mapper/ubuntu--vg-ubuntu--lv 24G 11G 12G 49% / tmpfs 2.0G 0 2.0G 0% /dev/shm tmpfs 5.0M 0 5.0M 0% /run/lock /dev/sda2 2.0G 183M 1.7G 10% /boot tmpfs 392M 12K 392M 1% /run/user/1001 tmpfs 392M 12K 392M 1% /run/user/1000

myankan avatar May 12 '25 23:05 myankan

Hi,

thanks for reporting. Could you provide a minimalist configuration file that would allow me to reproduce this issue? Also, please share the "tac_plus-ng -v" output.

To isolate this issue further, does it also happen without

  • file logging?
  • DNS lookups?
  • MAVIS lookups?

Thanks,

Marc

MarcJHuber avatar May 13 '25 14:05 MarcJHuber

I'm closing this issue, please open a new one if there's still a problem with the current GIT.

MarcJHuber avatar Sep 29 '25 18:09 MarcJHuber