1/27/2023 0 Comments Ami 2016.09 libjanssonThe patch in guards the call to sdb_measureAccess with a check against the environment variable NSS_SDB_USE_CACHE, it would be better if the environment variable check was not performed in more than one place. focal in Ubuntu 20.04 or it's displayed by lsbrelease -sc. Enable 'Only show exact matches:' Change the 'Distribution' to the codename of the version of Ubuntu you're using, e.g. ![]() ![]() This point release includes the 4.4.35 kernel, including the ENA driver 1.1.1 and a number of security fixes. Enter the package which you're trying to install into the 'Keyword' field. The base AMI has been updated to include all bugfix and security updates that have been made available in our repositories since the previous 2016.09.0 release. When the environment variable NSS_SDB_USE_CACHE is set to "yes" or "no" I think the call in s_open in lib/softoken/sdb.c to sdb_measureAccess can be avoided, saving up to 33ms of time and up to 10000 access system calls and corresponding dentry cache entries. Scroll down to 'Search package directories'. There are many access system calls to paths ending in _dOeSnotExist_.db that do not exist, with fast "disks" and many processes calling NSS_InitContext frequently the dentry cache can grow very quickly. Strace -f -e trace=access bin/multinit -lib1_db sql:/etc/pki/nssdb -lib1_readonly I can also reproduce using multinit from RH src RPM for nss-3.15.1 With a version of curl built with NSS on RHEL6 and with the environment variable NSS_SDB_USE_CACHE set to "yes" or "no", strace "access" calls from the command line curl making a HTTPS request:Īlso see for a reproducer that does not use curl, essentially just a mainprog including nss.h and calling NSS_InitContext("sql:/etc/pki/nssdb", "", "", "",
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |