Increase of memory usage by wazuh-modulesd

[MARCOSD4]

Wazuh version	Component	Install type	Install method	Platform
4.8.0-rc1	Wazuh component	Manager	Packages	CentOS

Description

During testing in Release 4.8.0 - RC 1 - Footprint Metrics - ALL it has been detected a high increase of memory usage by wazuh-modulesd. This has been seen in PSS, RSS_MAXMIN, RSS and USS metrics. Increase in wazuh-modulesd is expected as indicated here, but what we are seeing in this case is a much larger increase (more than threefold) so we think it should be investigated.

Plots are compared to https://github.com/wazuh/wazuh/issues/23174.

Release/Stage	RSS	Issue
4.8.0-rc1		https://github.com/wazuh/wazuh/issues/23290
4.7.4-RC2		https://github.com/wazuh/wazuh/issues/23174

Release/Stage	PSS	Issue
4.8.0-rc1		https://github.com/wazuh/wazuh/issues/23290
4.7.4-RC2		https://github.com/wazuh/wazuh/issues/23174

Release/Stage	USS	Issue
4.8.0-rc1		https://github.com/wazuh/wazuh/issues/23290
4.7.4-RC2		https://github.com/wazuh/wazuh/issues/23174

More information can be found on the issue and in this comment.

[Rebits]

Related https://github.com/wazuh/wazuh/issues/22841

[Dwordcito]

Probably related to: https://github.com/wazuh/wazuh/issues/23202

[Dwordcito]

The requirements due for the refactor are different in comparison with 4.7.4, the new implementation uses a different cache for high-speed read access. Explained in https://github.com/wazuh/wazuh/issues/22841

Furthermore, we change in https://github.com/wazuh/wazuh/issues/23202 the write buffer to prevent high memory allocations. this may decrease the values ​​in the results.