惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

F
Full Disclosure
Recorded Future
Recorded Future
T
Tenable Blog
S
Securelist
C
CERT Recently Published Vulnerability Notes
T
Threatpost
S
Schneier on Security
A
Arctic Wolf
The Hacker News
The Hacker News
C
CXSECURITY Database RSS Feed - CXSecurity.com
Know Your Adversary
Know Your Adversary
P
Privacy International News Feed
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
The Register - Security
The Register - Security
Cisco Talos Blog
Cisco Talos Blog
AWS News Blog
AWS News Blog
K
Kaspersky official blog
T
True Tiger Recordings
T
Threat Research - Cisco Blogs
V
Vulnerabilities – Threatpost
P
Palo Alto Networks Blog
T
The Exploit Database - CXSecurity.com
小众软件
小众软件
B
Blog
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
Microsoft Azure Blog
Microsoft Azure Blog
Cyberwarzone
Cyberwarzone
C
Cybersecurity and Infrastructure Security Agency CISA
T
Tor Project blog
Spread Privacy
Spread Privacy
Malwarebytes
Malwarebytes
P
Proofpoint News Feed
F
Fox-IT International blog
F
Fortinet All Blogs
P
Privacy & Cybersecurity Law Blog
G
GRAHAM CLULEY
量子位
Latest news
Latest news
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
博客园 - 叶小钗
Project Zero
Project Zero
T
Tailwind CSS Blog
N
Netflix TechBlog - Medium
Martin Fowler
Martin Fowler
IntelliJ IDEA : IntelliJ IDEA – the Leading IDE for Professional Development in Java and Kotlin | The JetBrains Blog
IntelliJ IDEA : IntelliJ IDEA – the Leading IDE for Professional Development in Java and Kotlin | The JetBrains Blog
I
Intezer
博客园_首页
腾讯CDC
H
Hackread – Cybersecurity News, Data Breaches, AI and More
D
Darknet – Hacking Tools, Hacker News & Cyber Security

DEV Community

Django Session Cookie vs localStorage JWT Security Comparison The Day Our Treasure Hunt Engine Blew Up at 3 AM How I Built 8 Free Dev Tools as a Solo Maker — Lessons Learned Why Linux Powers Almost Every Modern Server Magento 2 Nginx Optimization for High Traffic — Complete Server Tuning Guide How to Merge Multiple PDFs with One API Call — Node.js, Python & curl Why you should always rewrite the code you copy Structured Prompts Cut Token Waste 35-40%. Here's Where It Actually Matters. Validate EU VAT Numbers in Claude Desktop, Cursor, and ChatGPT — Official MCP Server The AI That Improves Itself: Autonomous Prompt Iteration Loop Do You Really Need Certifications to Get a Job? 🤔 Building Your First UAPK Manifest: A Step-by-Step Guide Inside a Horilla CRM App: registration.py, menu.py, and What AppLauncher Actually Loads Automate Browser Tasks with xbrowser: A Developer's Guide to Web Automation Why Veltrix Will Never Be the Silver Bullet for Distributed Locks at Scale ClickUp from a Developer's Perspective in 2026: API, Webhooks, and the Self-Host Question Foundational Concepts in Data Engineering ¿Por qué Go no tiene excepciones? Primeros pasos Creating my own web browser The Gamedev Server That Broke at 300 Concurrent Hunters and How We Fixed It OneAquaHealth IEEE Global Hackathon Hytale Servers and the Lies We Told Ourselves About Treasure Hunts Evcode:I built a terminal IDE in Rust that runs on 7MB of RAM — Evcode 1.0.0 HackCanton S2 is Open — Build on Canton and Win How to Start Contributing to Open-Source AI Projects (Python, Agents, Good First Issues) I built /ai inside a notes app — here's how I render generated UI components safely I Built 8 Free Browser-Based Developer Tools (No Uploads, No Tracking) Liquid Alerts: WOW Alerts Meet Liquid Border Rest is not what you think How Polymarket Scaled Their Data Stack with Postgres + ClickHouse Adaptive execution for Java agents: reason-aware retries and budget-aware routing Memory Safety and the C/C++ CVE Crisis tRPC: The End of API Docs as We Know Them How to Build a Crypto Trading Bot with CoinGlass API AI: Who I Am, and What I'm Supposed to Be in the Software World I Have Taken Over React Projects Without Standards. Here Is What That Actually Feels Like. How I set up Sanity draft mode preview with Next.js App Router and Vercel Edge Config Secure File Upload Guide to Validation, Scanning and Storage The pause before the first token iOS Image Classification CoreML: Complete 2026 Guide Fine-Tuning Llama 3.2 3B on Medical QA: Week 2- Data Preparation Building a Card Game AI with Reinforcement Learning — Implementation Details#2 Stop hardcoding AI providers: a generic client approach AI models are missing religious context. Builders should treat that as an eval problem. Build Your AI Second Brain with Claude + Obsidian Encoding FIFA’s 495 third-place scenarios for the 2026 World Cup I burned through DeepSeek's 5M free tokens in 14 days — here's the exact math Animating React Without Fighting the Render Loop: useRafFn, useRafState, useFps, useDevicePixelRatio, useUpdate I’m Building AR/XR Experiences for Nigeria Without ARCore or ARKit Memory Graphs Don't Scale Is it just me, or is Codex getting slower day by day? 🐢 LLM API Tokens burning your Bank even on testing ? Not anymore, cuesheet is here to help with that. HTML to JSX: Common Conversion Problems Frontend Developers Still Make Fighting Database Connection Pool Exhaustion Your sanctions screening just broke: managing 50+ data sources without burying your team I think AI accidentally became my personality for a month Building a local-first clipboard workspace for macOS Understanding MCP (Model Context Protocol) in Next.js 16 Next.js 16 RAG Pipeline Optimization: Give Your AI a Perfect Memory The Complete Developer’s Guide to the Baileys WhatsApp Bot: Setup, Scaling, and VPS Deployment The Moment Veltrix Blew Up and We Had to Write Our Own Shard Router We built an alert triage system. Then we watched analysts ignore it. Future of AI Hardware API Treasure Hunt Engine: When Veltrix Defaults Buried 800k Documents in a Hot Partition I Cloned My Dog-Name Site to Build a Cat-Name Site. The Routing Layer Bit Back. Serverless Computing Claude Code Hooks vs Skills: When to Use Which Secure AI API Key Management in Next.js 16: Prevent Key Leaks I Built a Git-Tracked Book Production Pipeline CSS Carousels With Zero JavaScript: 5 Patterns 5 CSS Animations That Needed JavaScript Until 2026 When the Treasure Hunt Engine Eats Itself: My First Production Outage That Taught Me the True Cost of Defaults The 5 Best Places to Buy Next.js Templates in 2026 (Compared by Price) Building AMLA-Ready Systems: A Developer's Technical Roadmap Modern SCADA Systems Need Structured Learning More Than Ever The Rise, Pause, and Rise of CRUD Apps The Hidden Cost of Idempotency in Distributed Systems Solana Account Model — City Analogy Veltrix Configuration Was the Least of Our Worries When Our Treasure Hunt Engine Almost Took Down the Server CSS Box Shadows That Actually Look Professional CSS Gradient Trends in 2026 (And How Developers Actually Use Them) Why EU region toggles in cloud providers don't solve data sovereignty (and how to fix it) Why I Built the "Infrastructure Layer" Under Every AI Coding Agents Why I Still Regret Choosing Velocity Over Simplicity in Our Treasure Hunt Engine Configuration How Are Developers Actually Using AI At Work? Claude Security Update: Scans, Webhooks, 6 Partners The 2026 Chinese LLM Price War: Top 5 Frontier API Costs Compared Local LLM Hosting in Switzerland: Real Costs, Latency & Compliance I Built a Free SVG Background Generator for Developers Tian AI: I Built an AI Assistant That Runs 100% Offline on My Phone (No Cloud, No Subscription) How to Create Responsive Video That Doesn't "Jump" During Loading MY DEEP TECHNICAL EXPLORATION AND PERSONAL EXPERIENCE WITH HERMES AGENT 08/20: Layer 3 – The Network Layer: IP Addresses & Routing Explained CLAUDE.md for Astro: 13 Rules That Stop AI from Shipping Too Much JavaScript 10 JSON Formatting Tricks Every Developer Should Know We replaced 73 hours of weekly alert triage with 10 AI agents. Here is what the architecture looks like. The four-line cron that decides who falls in love (in my dating app) Blocked by Mac Security? How to Fix “Apple Could Not Verify” Errors in Seconds Stop the Leak: A Developer’s Guide to Taming the AWS RDS Bill in 2026
The Moment the JVM Unwound at 3 AM and the Rust Runtime Held
pretty ncube · 2026-05-27 · via DEV Community
Cover image for The Moment the JVM Unwound at 3 AM and the Rust Runtime Held

pretty ncube

The Problem We Were Actually Solving

At Veltrix we ran a real-time treasure hunt engine that answered millions of location lookups per minute. In October 2025 we hit 8.7 million concurrent sessions—graceful, until the JVM GC pause stretched to 1.2 seconds. That spike didnt just break SLA; it dropped sub-millisecond quest completion rates from 99.9 % to 84 %. Prometheus screamed; players rage-quit treasure boxes in chat. We chased heap dumps for three days. The culprit was a 2 GB humongous allocation that OldGen couldnt compact fast enough because the CMS scavenger had already fragmented the card deck.

What We Tried First (And Why It Failed)

We tried three things first. One: we tuned G1 with -XX:MaxGCPauseMillis=50 and -XX:G1NewSizePercent=40. Result: pauses dropped to 80 ms, but promotion rate climbed from 28 MB/s to 140 MB/s. Two: we switched to Shenandoah on JDK 21-ea. Shenandoah finished concurrent cycles in 45 ms, but it used 1.9 GB extra heap for remembered sets. Heap residency graph looked like a heart monitor flat-lining. Three: we moved JSON parsing to Jacksons afterburner. That cut CPU 23 %, but GC never loved us—only tolerated us.

The Architecture Decision

On December 3 we ran a parallel build: the same engine, same quest load, but compiled in Rust with Tokio 0.8 and mimalloc. We cut the network stack into four typed channels: broadcast, scoreboard, location delta, and analytics. Each channel owned a 4 kB ring buffer backed by shm. I argued against jemalloc because jemalloc still leaks arena memory under high concurrency; mimalloc gives back arenas on thread teardown. We paid the symbolic lookup cost of Arc> once, then profiled with perf for 24 hours. The critical path was MapAsync in the location service; it spent 68 % time in syscalls. Tokios io-uring runtime version 0.8 landed in January and dropped that to 32 %.

What The Numbers Said After

Latency p99 moved from 11 ms to 2.3 ms under 10 million concurrent sessions. GC pause vanished; the highest observed Tokio task latency was 420 µs, measured by tokio-console export to OpenTelemetry. Memory residency stayed flat at 420 MB RSS; mimalloc returned 60 % of arenas via madvise(MADV_DONTNEED) after peak. We ran flamegraph output through speedscope and saw the biggest win in the quest router: zero dynamic dispatch in the hot loop because we used static dispatch with sealed traits. The GC line on the dashboard turned green and never left.

What I Would Do Differently

I would not have trusted vendored jemalloc in production. For three weeks we saw RSS balloon to 3 GB during load-test spikes; mimalloc fixed it, but jemallocs arenas were 1.8 GB of resident anonymous pages that never freed. Next time Id push allocator choice into the build matrix early, so CI fails if any allocator regression sneaks in. I would also profile io-uring submission queue depth before the first load test; we initially set it to 1024 entries and only discovered throttling when we hit 4.1 million IOPS—tokio::io::poll_io hung for 4 ms bursts. Finally, I would prototype the network channel refactor on Rust first, not as a post-hoc rewrite; the symbolic cost of Arc> scared our C++ team into rejecting the idea, but the profiler proved it was cheaper than any GC pause could ever repay.

此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。