You're on your way to the next level! Join the Kudos program to earn points and save your progress.
Level 1: Seed
25 / 150 points
1 badge earned
Challenges come and go, but your rewards stay with you. Do more to earn more!
What goes around comes around! Share the love by gifting kudos to your peers.
Keep earning points to reach the top of the leaderboard. It resets every quarter so you always have a chance!
Join now to unlock these features and more
As we know last time Atlassian start by design to request CodeCache 512M in setenv.sh. (https://jira.atlassian.com/browse/JRASERVER-66796)
So based on that general picture we can find the code cache one of the main areas of memory.
Simply put, JVM Code Cache is an area where JVM stores its bytecode compiled into native code. We call each block of the executable native code a nmethod. The nmethod might be a complete or inlined Java method.
The just-in-time (JIT) compiler is the biggest consumer of the code cache area. That's why some developers call this memory a JIT code cache.
Just to be clear, why do most of apps are a huge memory and time consumers? Most of answer is new functionality, but functionality is not growing exponentially, as a codebase.
Based on that hypothesis, I investigated the pom.xml in-house apps in my instances and open-source apps, where found a small dependency hell (https://en.wikipedia.org/wiki/Dependency_hell) .
So let’s start. I have almost 400M of installed plugins in Jira’s home.
The output will be like this
As a result, you can investigate the WARNING messages,
to make it periodically it’s helped me https://maven.apache.org/shared/maven-dependency-analyzer/project-info.html
As an example, I have apps 16M, after reviewing the scopes, dependencies it’s starting to be 5.6MB.
2. The same steps you can do with open source apps, e.g. I did with Jira-toolkit app (Atlassian).
As a result you can easier, make a pull request.
Also, jdeps shows interesting points to understand apps are ready for the new Jira or not, if the in-house developer left and you can’t find any source code.
I think in-house developers will do the next easy steps the Atlassian platform will work much efficiently.
Based on the 3 easy steps we can improve performance and security.
P.S. I will be happy if Atlassian will extend requirements (https://developer.atlassian.com/platform/marketplace/dc-apps-submitting-your-app/), by adding the report of OWASP dependency check (https://owasp.org/www-project-dependency-check/) as the required option.
As a result, we can see reduced dependencies which are to improve the performance, because it’s related to the memory, exact functions, up to date dependencies.
Hope it helps.
Gonchik TsymzhitovCommunity Leader