diff --git a/source/lib/internal/kernel_module/Makefile b/source/lib/internal/kernel_module/Makefile
index 3fec106bbbaa4702def6b4967b77ec75f3ba9d09..61440ba2a41f24c813d9f1180a85ae02603ca53e 100644
--- a/source/lib/internal/kernel_module/Makefile
+++ b/source/lib/internal/kernel_module/Makefile
@@ -30,6 +30,9 @@ endif
 ifneq ($(findstring schedtrace,$(TARGET_LIST)),)
 sysak-objs += modules/schedtrace/schedtrace.o
 endif
+ifneq ($(findstring mmaptrace,$(TARGET_LIST)),)
+sysak-objs += modules/mmaptrace/mmaptrace.o
+endif
 
 obj-m += sysak.o
 
diff --git a/source/lib/internal/kernel_module/modules/mmaptrace/mmaptrace.c b/source/lib/internal/kernel_module/modules/mmaptrace/mmaptrace.c
new file mode 100644
index 0000000000000000000000000000000000000000..6f01d8d96789625e41f593bdd1ab86250048232d
--- /dev/null
+++ b/source/lib/internal/kernel_module/modules/mmaptrace/mmaptrace.c
@@ -0,0 +1,595 @@
+#include <linux/file.h>
+#include <linux/pid_namespace.h>
+#include <linux/mm.h>
+#include <linux/module.h>
+#include <linux/stacktrace.h>
+#include <linux/hrtimer.h>
+#include <linux/kernel.h>
+#include <linux/kallsyms.h>
+#include <linux/sched.h>
+#include <linux/slab.h>
+#include <linux/timex.h>
+#include <linux/proc_fs.h>
+#include <linux/init.h>
+#include <linux/sysctl.h>
+#include <linux/rtc.h>
+#include <linux/time.h>
+#include <linux/version.h>
+#include <linux/tracepoint.h>
+#include <linux/kprobes.h>
+#include <linux/list.h>
+#include <linux/bug.h>
+#include "common/proc.h"
+
+#ifdef CONFIG_X86
+extern struct mm_struct *get_task_mm(struct task_struct *task);
+
+#define DEFINE_PROC_ATTRIBUTE(name, __write)				\
+	static int name##_open(struct inode *inode, struct file *file)	\
+	{								\
+		return single_open(file, name##_show, PDE_DATA(inode));	\
+	}								\
+									\
+	static const struct file_operations name##_fops = {		\
+		.owner		= THIS_MODULE,				\
+		.open		= name##_open,				\
+		.read		= seq_read,				\
+		.write		= __write,				\
+		.llseek		= seq_lseek,				\
+		.release	= single_release,			\
+	}
+
+#define DEFINE_PROC_ATTRIBUTE_RW(name)					\
+	static ssize_t name##_write(struct file *file,			\
+				    const char __user *buf,		\
+				    size_t count, loff_t *ppos)		\
+	{								\
+		return name##_store(PDE_DATA(file_inode(file)), buf,	\
+				    count);				\
+	}								\
+	DEFINE_PROC_ATTRIBUTE(name, name##_write)
+
+#define DEFINE_PROC_ATTRIBUTE_RO(name)	\
+	DEFINE_PROC_ATTRIBUTE(name, NULL)
+
+
+#define MAX_SYMBOL_LEN	64
+#define PATH_LEN 256
+#define STACK_DEPTH 100
+#define STACK_DETAIL_DEPTH 20
+#define PERTASK_STACK 10
+#define LIST_LEN 10
+#define PROC_NUMBUF 128
+#define REGISTER_FAILED 1
+
+static bool enable_mmaptrace = false;
+static unsigned long mmap_len = 246 << 10;
+static pid_t mmap_pid;
+static int brk;
+
+LIST_HEAD(threads_list);
+LIST_HEAD(threadvma_list);
+
+DECLARE_RWSEM(threadslist_sem);
+DECLARE_RWSEM(vmalist_sem);
+
+#if LINUX_VERSION_CODE >= KERNEL_VERSION(4, 19, 0)
+static struct kprobe kp_mmap = {
+	.symbol_name	= "ksys_mmap_pgoff",
+};
+
+static struct kprobe kp_brk = {
+	.symbol_name	= "do_brk_flags",
+};
+#else
+static struct kprobe kp_mmap = {
+	.symbol_name	= "vm_mmap_pgoff",
+};
+
+static struct kprobe kp_brk = {
+	.symbol_name	= "do_brk",
+};
+#endif
+
+struct stack_info {
+	unsigned long bp;
+	char path[PATH_LEN];
+};
+
+struct user_stack_detail {
+	struct list_head list;
+	int is_brk;
+#if defined(DIAG_ARM64)
+	//struct user_pt_regs regs;
+#else
+	//struct pt_regs regs;
+#endif
+	//unsigned long ip;
+	//unsigned long bp;
+	//unsigned long sp;
+	struct stack_info stack[STACK_DETAIL_DEPTH];
+};
+
+struct task_info{
+	pid_t pid;
+	pid_t tgid;
+	struct list_head task_list;	
+    unsigned long mmap_count;
+	struct list_head vma_list;	
+	unsigned long userstack_list_len;
+	struct list_head userstack_list;
+	char comm[TASK_COMM_LEN];
+};
+
+struct vma_info{
+	struct list_head list;
+	pid_t pid;
+	unsigned long start;
+	unsigned long end;
+	int exectue;
+	char path[PATH_LEN];
+};
+
+struct stack_frame_user {
+	const void __user *next_fp;
+	unsigned long ret_addr;
+};
+
+
+static void save_mmapstack_trace_user(struct task_struct *task, struct task_info *tsk)
+{
+	struct list_head *vma_entry;
+	const struct pt_regs *regs = task_pt_regs(current);
+	const void __user *fp = (const void __user *)regs->sp;
+	int stack_len = 0 ;
+	int i;
+
+	struct user_stack_detail *new_stack = kzalloc(sizeof(struct user_stack_detail),GFP_KERNEL);
+	if (!new_stack)
+		return;
+	new_stack->is_brk = brk;
+	for (i = 0; i < STACK_DEPTH; i++){
+		if (stack_len > STACK_DETAIL_DEPTH)
+			break;
+		list_for_each(vma_entry, &threadvma_list){	
+			//struct vma_info *vma = (struct vma_info *)vma_entry;
+			struct vma_info *vma = container_of(vma_entry, struct vma_info, list);
+			unsigned long tmp;
+
+			if (!copy_from_user(&tmp, fp+i*__SIZEOF_LONG__, __SIZEOF_LONG__)) {
+				if ((tmp >= vma->start) && (tmp <= vma->end)) {
+					new_stack->stack[stack_len].bp = tmp;
+					strcpy(new_stack->stack[stack_len].path,vma->path);
+					stack_len++;
+				}
+			}
+		}
+	}
+	list_add_tail(&new_stack->list, &tsk->userstack_list);				
+}
+
+static int save_calltrace(struct pt_regs *regs)
+{
+	struct list_head *tsk_entry;
+	struct task_info *new_tsk;
+	pid_t tgid = 0;
+
+	//down_write(&threadslist_sem);
+	list_for_each(tsk_entry, &threads_list){
+		struct task_info *tsk = container_of(tsk_entry, struct task_info, task_list);
+		tgid = tsk->tgid;
+		if (tsk->pid == current->pid){
+			if (tsk->userstack_list_len > LIST_LEN){
+				return 0;
+			}
+			save_mmapstack_trace_user(current,tsk);
+			return 0;
+		}	
+        //save stack
+    }
+	if (tgid == current->tgid){
+		new_tsk = kzalloc(sizeof(struct task_info),GFP_KERNEL);
+		if (!new_tsk)
+			return 0;
+	    new_tsk->pid = current->pid;
+        new_tsk->tgid = tgid;
+	    memcpy(new_tsk->comm,current->comm,sizeof(new_tsk->comm));
+	    new_tsk->mmap_count++;
+		INIT_LIST_HEAD(&new_tsk->userstack_list);
+		save_mmapstack_trace_user(current,new_tsk);
+		list_add_tail(&new_tsk->task_list,&threads_list);
+	}
+	//up_write(&threadslist_sem);
+	return 0;
+}
+
+static int before_mmap_pgoff(struct kprobe *p, struct pt_regs *regs)
+{
+	int ret;
+
+	brk = 0;
+	if (regs->si < mmap_len){
+		return 0;
+	}
+	if (!current || !current->mm)
+		return 0;
+
+	ret = save_calltrace(regs);
+    return 0;
+}
+
+static void after_mmap_pgoff(struct kprobe *p, struct pt_regs *regs,
+                unsigned long flags)
+{
+	return;
+}
+
+static void get_filename(char *buf, const struct path *path, size_t size)
+{
+	//int res = -1;
+	//char *end;
+	if (size) {
+		char *p = d_path(path, buf, size);
+		if (!IS_ERR(p)) {
+			strcpy(buf,p);
+			//end = mangle_path(buf, p, "\n");
+			//if (end)
+				//res = end - buf;
+		}
+	}
+	return;
+}
+
+static int mmaptrace_print_show(struct seq_file *m, void *v)
+{
+	struct list_head *tsk_entry;
+	struct list_head *stack_entry;
+	int loop_count = 0;
+	char *syscall_name;
+	int i;
+
+	//down_read(&threadslist_sem);
+	if (list_empty(&threads_list)){
+		//up_read(&threadslist_sem);
+		seq_printf(m, "task list is empty\n");
+		return 0;
+	}
+
+	list_for_each(tsk_entry, &threads_list){
+		struct task_info *tsk = container_of(tsk_entry, struct task_info, task_list);
+		seq_printf(m, "pid[%d],name[%s]，tgid[%d]\n",
+			tsk->pid, tsk->comm, tsk->tgid);
+		list_for_each(stack_entry, &tsk->userstack_list){
+			struct user_stack_detail *user_stack = (struct user_stack_detail *)stack_entry;
+			loop_count++;
+			syscall_name = user_stack->is_brk ? "brk" : "mmap";
+			seq_printf(m, "%s,用户态堆栈%d：\n", syscall_name,loop_count);
+	    	for (i = 0; i < STACK_DETAIL_DEPTH; i++) {
+		    	if (user_stack->stack[i].bp == 0) {
+			    	continue;
+		    	}
+		    	seq_printf(m,"#~   0x%lx", user_stack->stack[i].bp);
+				seq_printf(m,"   %s\n",user_stack->stack[i].path);
+	    	} 
+		}      
+	}
+	//up_read(&threadslist_sem);
+	return 0;
+}
+
+DEFINE_PROC_ATTRIBUTE_RO(mmaptrace_print);
+
+static int mmaptrace_pid_show(struct seq_file *m, void *v)
+{
+	seq_printf(m, "pid:%d, len:%ld\n", mmap_pid, mmap_len);
+	return 0;
+
+}
+
+static ssize_t mmaptrace_pid_store(void *priv, const char __user *buf, size_t count)
+{
+	struct task_struct *tsk;
+	struct task_info *new_tsk;
+	struct mm_struct *mm;
+	struct file *vma_file;
+	struct vm_area_struct *vma;
+	struct vma_info *new_vma;
+	struct pid *pid;
+	char buffer[PROC_NUMBUF];
+	char buff[PATH_LEN];
+	pid_t pid_i;
+	int err = -1;
+
+	if (!enable_mmaptrace){
+		pr_warn("mmaptrace disabled!");
+		return count;
+	}
+
+
+	memset(buffer, 0, sizeof(buffer));
+	if (count > sizeof(buffer) - 1)
+		count = sizeof(buffer) - 1;
+	if (copy_from_user(buffer, buf, count)) {
+		return -EFAULT;
+	}
+
+	err = kstrtoint(strstrip(buffer), 0, &pid_i);
+	if (err)
+		return -EINVAL;
+
+	if (!list_empty(&threads_list)){
+		struct list_head *entry;
+		list_for_each(entry, &threads_list){
+			struct task_info *pos = (struct task_info *)entry;
+			if (pos->pid == pid_i)
+				return count;
+		}
+	}
+	
+	rcu_read_lock();
+	
+	pid= find_get_pid(pid_i);
+	tsk = pid_task(pid, PIDTYPE_PID);
+    if (!tsk || !(tsk->mm)){
+       	rcu_read_unlock(); 
+		return -EINVAL;
+	}
+	mmap_pid = pid_i;
+
+	if (mmap_pid != 0 ){
+	    new_tsk = kzalloc(sizeof(struct task_info),GFP_KERNEL);
+		if (!new_tsk)
+			goto failed_tsk;
+	    new_tsk->pid = mmap_pid;
+        new_tsk->tgid = tsk->tgid;
+	    memcpy(new_tsk->comm,tsk->comm,sizeof(tsk->comm));
+	    new_tsk->mmap_count++;
+		//INIT_LIST_HEAD(&new_tsk->vma_list);
+		INIT_LIST_HEAD(&new_tsk->userstack_list);
+
+		mm = get_task_mm(tsk);
+
+		if (IS_ERR_OR_NULL(mm)){
+			rcu_read_unlock();
+			return -EINVAL;
+		}
+
+		if (!down_read_trylock(&mm->mmap_sem)){
+			rcu_read_unlock();
+			return -EINTR;
+		}
+		for (vma = mm->mmap; vma; vma = vma->vm_next){
+			//if (vma->vm_file && vma->vm_flags & VM_EXEC && !inode_open_for_write(file_inode(vma->vm_file))){
+			if (vma->vm_file && vma->vm_flags & VM_EXEC){
+				new_vma = kzalloc(sizeof(struct vma_info),GFP_KERNEL);
+				if (!new_vma)
+					goto failed_vma;
+				new_vma->start = vma->vm_start;
+				new_vma->pid = current->pid;
+				new_vma->end = vma->vm_end;
+				vma_file = vma->vm_file;
+
+				if (vma_file){
+					get_filename(buff, &vma_file->f_path, PATH_LEN);
+				}
+				strcpy(new_vma->path, buff);
+				//(&vmalist_sem);
+				list_add_tail(&new_vma->list,&threadvma_list);
+				//up_write(&vmalist_sem);
+			}
+		}
+		up_read(&mm->mmap_sem);
+		//down_write(&threadslist_sem);
+		list_add_tail(&new_tsk->task_list, &threads_list);
+		//up_write(&threadslist_sem);
+	}
+	rcu_read_unlock();
+	return count;
+failed_vma:
+	kfree(new_tsk);
+failed_tsk:
+	rcu_read_unlock();
+	return -ENOMEM;
+}
+
+DEFINE_PROC_ATTRIBUTE_RW(mmaptrace_pid);
+
+static ssize_t mmaptrace_len_store(void *priv, const char __user *buf, size_t count)
+{
+	char buffer[PROC_NUMBUF];
+	unsigned long length;
+	int err = -1;
+
+	memset(buffer, 0, sizeof(buffer));
+	if (count > sizeof(buffer) - 1)
+		count = sizeof(buffer) - 1;
+	if (copy_from_user(buffer, buf, count)) {
+		return -EFAULT;
+	}
+
+	err = _kstrtoul(strstrip(buffer), 0, &length);
+	if (err)
+		return -EINVAL;
+	mmap_len = length;
+	return count;
+}
+
+static int mmaptrace_len_show(struct seq_file *m, void *v)
+{
+	seq_printf(m, "monitor len: %ld\n", mmap_len);
+	return 0;
+
+}
+
+DEFINE_PROC_ATTRIBUTE_RW(mmaptrace_len);
+
+static int before_do_brk(struct kprobe *p, struct pt_regs *regs)
+{
+	int ret;
+
+	brk = 1;
+	if (regs->si < mmap_len){
+		return 0;
+	}
+
+	if (!current || !current->mm)
+		return 0;
+	ret = save_calltrace(regs);
+    return 0;
+}
+
+static void after_do_brk(struct kprobe *p, struct pt_regs *regs,
+                unsigned long flags)
+{
+	return;
+}
+
+static int handler_fault(struct kprobe *p, struct pt_regs *regs, int trapnr)
+{
+	pr_info("fault_handler: p->addr = 0x%p, trap #%dn", p->addr, trapnr);
+	return 0;
+}
+
+static int mmaptrace_enable(void)
+{
+	int ret_mmap, ret_brk;
+
+	kp_mmap.pre_handler = before_mmap_pgoff;
+	kp_mmap.post_handler = after_mmap_pgoff;
+	kp_mmap.fault_handler = handler_fault;
+
+	kp_brk.pre_handler = before_do_brk;
+	kp_brk.post_handler = after_do_brk;
+	kp_brk.fault_handler = handler_fault;
+
+	ret_mmap = register_kprobe(&kp_mmap);
+	if (ret_mmap < 0) {
+		pr_err("register_kprobe mmap failed, returned %d\n", ret_mmap);
+		return -REGISTER_FAILED;
+	}
+
+	ret_brk = register_kprobe(&kp_brk);
+	if (ret_brk < 0) {
+		unregister_kprobe(&kp_mmap);
+		pr_err("register_kprobe  brk failed, returned %d\n", ret_brk);
+		return -REGISTER_FAILED;
+	}
+
+	pr_info("Planted kprobe at %p\n", kp_mmap.addr);
+	pr_info("Planted kprobe at %p\n", kp_brk.addr);
+	return 0;
+}
+
+void mmaptrace_disable(void)
+{
+	unregister_kprobe(&kp_mmap);
+	unregister_kprobe(&kp_brk);
+	pr_info("kprobe at %p unregistered\n", kp_mmap.addr);
+	pr_info("kprobe at %p unregistered\n", kp_brk.addr);
+}
+
+static int mmaptrace_enable_show(struct seq_file *m, void *v)
+{
+	seq_printf(m, "%d\n", (int)enable_mmaptrace);
+	return 0;
+}
+
+static ssize_t mmaptrace_enable_store(void *priv, const char __user *buf, size_t count)
+{
+	char buffer[PROC_NUMBUF];
+	int val;
+	int err = -1;
+
+	memset(buffer, 0, sizeof(buffer));
+	if (count > sizeof(buffer) - 1)
+		count = sizeof(buffer) - 1;
+	if (copy_from_user(buffer, buf, count)) {
+		return -EFAULT;
+	}
+	err = kstrtoint(strstrip(buffer), 0, &val);
+
+	if (val == 1){
+		if (!mmaptrace_enable())
+			enable_mmaptrace = true;
+	}else if (val == 0){
+		if (enable_mmaptrace){
+			mmaptrace_disable();
+			enable_mmaptrace = false;
+		}
+	}
+	return count;
+}
+
+DEFINE_PROC_ATTRIBUTE_RW(mmaptrace_enable);
+
+int mmaptrace_init(void)
+{
+	struct proc_dir_entry *parent_dir;
+	struct proc_dir_entry *entry_print;
+	struct proc_dir_entry *entry_pid;
+	struct proc_dir_entry *entry_len;
+	struct proc_dir_entry *entry_enable;
+
+	parent_dir = sysak_proc_mkdir("mmaptrace");
+	if (!parent_dir) {
+		goto failed_root;
+	}
+
+	entry_print = proc_create("mmaptrace_print", 0444, parent_dir, &mmaptrace_print_fops);
+    	if(!entry_print) {
+    		goto failed;
+	}
+
+	entry_pid = proc_create("mmaptrace_pid", 0664, parent_dir, &mmaptrace_pid_fops);
+    	if(!entry_pid) {
+    		goto failed;
+	}
+
+	entry_len = proc_create("mmaptrace_len", 0444, parent_dir, &mmaptrace_len_fops);
+    	if(!entry_len) {
+    		goto failed;
+	}
+
+	entry_enable = proc_create("mmaptrace_enable", 0664, parent_dir, &mmaptrace_enable_fops);
+    	if(!entry_enable) {
+    		goto failed;
+	}
+	return 0;
+
+failed:
+	sysak_remove_proc_entry("mmaptrace");
+failed_root:
+	return -1;
+}
+
+int mmaptrace_exit(void)
+{
+	struct list_head *tsk_entry;
+	struct list_head *vma_entry;
+	struct list_head *tsk_prev;
+	struct list_head *vma_prev;
+
+	if (enable_mmaptrace){
+		mmaptrace_disable();
+	}
+
+	list_for_each(tsk_entry, &threads_list){
+		struct task_info *tsk = container_of(tsk_entry, struct task_info, task_list);
+		tsk_prev = tsk_entry->prev;
+
+		list_del(tsk_entry);
+		kfree(tsk);
+		tsk_entry = tsk_prev;
+	}
+
+	list_for_each(vma_entry, &threadvma_list){
+		struct vma_info *vma = container_of(vma_entry, struct vma_info, list);
+		vma_prev = vma_entry->prev;
+
+		list_del(vma_entry);
+		kfree(vma);
+		vma_entry = vma_prev;
+	}
+	return 0;
+}
+#endif
diff --git a/source/lib/internal/kernel_module/sysak_mods.c b/source/lib/internal/kernel_module/sysak_mods.c
index 021c9d1216caed0cfd22ee1815834de44ef861c7..5f9fd18f67550478f6877b4565230f0655fadd7c 100644
--- a/source/lib/internal/kernel_module/sysak_mods.c
+++ b/source/lib/internal/kernel_module/sysak_mods.c
@@ -49,6 +49,14 @@ int __attribute__((weak)) schedtrace_exit(void)
 {
 	return 0;
 }
+int __attribute__((weak)) mmaptrace_init(void)
+{
+        return 0;
+}
+int __attribute__((weak)) mmaptrace_exit(void)
+{
+        return 0;
+}
 
 struct sysak_module sysak_modules[] = {
 	{ "trace_sig", trace_sig_init, trace_sig_exit},
@@ -56,6 +64,7 @@ struct sysak_module sysak_modules[] = {
 	{ "trace_irqoff", trace_irqoff_init, trace_irqoff_exit},
 	{ "task_ctl", task_ctl_init, task_ctl_exit},
 	{ "schedtrace", schedtrace_init, schedtrace_exit},
+	{ "mmap_trace", mmaptrace_init, mmaptrace_exit},
 };
 
 const int sysk_module_num = sizeof(sysak_modules) / sizeof(struct sysak_module);
diff --git a/source/tools/detect/sysconf/Makefile b/source/tools/detect/sysconf/Makefile
new file mode 100644
index 0000000000000000000000000000000000000000..3327b9d82bc0b4cd5e939797fb44b02c62836966
--- /dev/null
+++ b/source/tools/detect/sysconf/Makefile
@@ -0,0 +1,3 @@
+target := sysconf
+
+include $(SRC)/mk/sh.mk
diff --git a/source/tools/detect/sysconf/confcheck/Makefile b/source/tools/detect/sysconf/confcheck/Makefile
new file mode 100644
index 0000000000000000000000000000000000000000..859ba9aab33506d0bf65fe0aaa42e178c20aed03
--- /dev/null
+++ b/source/tools/detect/sysconf/confcheck/Makefile
@@ -0,0 +1,5 @@
+target := confcheck
+
+mods += $(target)
+
+include $(SRC)/mk/py.mk
diff --git a/source/tools/detect/sysconf/confcheck/confcheck.py b/source/tools/detect/sysconf/confcheck/confcheck.py
new file mode 100644
index 0000000000000000000000000000000000000000..772720fb1892c315de2485f8cae2f676097aeca2
--- /dev/null
+++ b/source/tools/detect/sysconf/confcheck/confcheck.py
@@ -0,0 +1,137 @@
+#!/usr/bin/python
+#coding:utf-8
+
+import re
+import os.path
+
+uname_command = "uname -r"
+
+kernel_version = ""
+kversion_7u_2016 = "3.10.0-327.ali2016.alios7.x86_64"
+
+kversion_alinux3 = "5.10.60-9.al8.x86_64"
+alinux3_etc_sysctl = "/etc/sysctl.d/50-aliyun.conf"
+dict_paraments = {'kernel.unprivileged_bpf_disabled': 1}
+
+file_max = "/proc/sys/fs/file-max"
+nr_open = "/proc/sys/fs/nr_open" 
+etc_security_limit = "/etc/security/limits.conf"
+
+cgroup_cpu_cfs_quota_us  = "/sys/fs/cgroup/cpuset,cpu,cpuacct/cpu.cfs_quota_us"
+
+pagecache_dirty_bytes = "/proc/sys/vm/dirty_bytes"
+pagecache_dirty_ratio = "/proc/sys/vm/dirty_ratio"
+pagecache_bk_dirty_bytes = "/proc/sys/vm/dirty_background_bytes"
+pagecache_bk_dirty_ratio = "/proc/sys/vm/dirty_background_ratio"
+meminfo = "/proc/meminfo"
+
+def exectue_cmd(command):
+    command=command.replace("\n", "")
+    command_fd = os.popen(command, "r")
+    ret = command_fd.read()
+    command_fd.close()
+    ret.strip('\n')
+    return ret
+
+def get_kernelversion():
+    global kernel_version
+    kernel_version = exectue_cmd(uname_command)
+
+def check_pagecache_config():
+    pagecache_watermask = 0
+    mem_total_val = 0
+    pagecache_bk_watermask = 0
+
+    dirty_bytes_fd = open(pagecache_dirty_bytes,"r")
+    dirty_bytes_val = dirty_bytes_fd.read(30)
+    dirty_bytes_fd.close()
+
+    dirty_ratio_fd = open(pagecache_dirty_ratio,"r")
+    dirty_ratio_val = dirty_ratio_fd.read(30)
+    dirty_ratio_fd.close()
+
+    bk_dirty_bytes_fd = open(pagecache_bk_dirty_bytes,"r")
+    bk_dirty_bytes_val = bk_dirty_bytes_fd.read(30)
+    bk_dirty_bytes_fd.close()
+
+    bk_dirty_ratio_fd = open(pagecache_bk_dirty_ratio,"r")
+    bk_dirty_ratio_val = bk_dirty_ratio_fd.read(30)
+    bk_dirty_ratio_fd.close()
+
+    meminfo_fd= open(meminfo,"r")
+    for line in meminfo_fd.readlines():
+        mem_total= re.search(r'MemTotal: *(\d+) kB', line, re.I)
+        if mem_total:
+            mem_total_val = mem_total.group(1)
+            pagecache_watermask = int(mem_total_val)*1024*20/100
+
+    if dirty_bytes_val:
+        if int(dirty_ratio_val) < 20:
+            print("vm.dirty_ratio=%s 低于20，可能造成pagecache频繁回写，io拥塞" %(dirty_ratio_val))
+    else:
+        if dirty_bytes_val <= pagecache_watermask:
+            print("vm.dirty_bytes=%s 低于20%Mem，可能造成pagecache频繁回写，io拥塞" %(dirty_bytes_val))
+    meminfo_fd.close()
+ 
+    pagecache_bk_watermask = int(mem_total_val)*1024*10/100
+
+    if bk_dirty_bytes_val:
+        if int(bk_dirty_ratio_val) < 10:
+            print("vm.dirty_background_bytes=%s 低于10，可能造成pagecache后台频繁回写，io拥塞" %(bk_dirty_ratio_val))
+    else:
+        if bk_dirty_bytes_val <= pagecache_bk_watermask:
+            print("vm.dirty_bytes=%s 低于10%Mem，可能造成pagecache后台频繁回写，io拥塞" %(bk_dirty_bytes_val))
+    return
+
+def check_bpf_config():
+    return
+
+def check_cgroup_config():
+    if kernel_version == kversion_7u_2016:
+        cgroup_cpu_cfs_fd = open(cgroup_cpu_cfs_quota_us,"r")
+        cgroup_cpu_cfs_val = cgroup_cpu_cfs_fd.read(30)
+        if int(cgroup_cpu_cfs_val) != -1:
+            print("内核版本低于3.10.0-327.ali2014.alios7.x86_64，不能配置cpu.cfs_quota_us参数")
+    return
+
+def check_etc_config():
+    if kernel_version == kversion_alinux3:
+        alinux3_etc_fd = open(alinux3_etc_sysctl,"r")
+        for line in alinux3_etc_fd.readlines():
+            match_parament= re.search( r'kernel.unprivileged_bpf_disabled = (\d+)', line, re.I)
+            if match_parament:           
+                for parament in dict_paraments.keys():
+                    if dict_paraments[parament] == match_parament.group(1):
+                        print("kernel.unprivileged_bpf_disabled应该配置成1")
+        alinux3_etc_fd.close()
+    return
+
+def check_file_config():
+    file_max_fd = open(file_max,"r")
+    nr_open_fd = open(nr_open,"r")
+    file_max_val = file_max_fd.read(30)
+    nr_open_val = nr_open_fd.read(30)
+
+    if int(file_max_val) <= int(nr_open_val):
+        print("fs.file-max应该大于fs.nr_open")
+    file_max_fd.close()
+    nr_open_fd.close()
+
+    etc_security_limit_fd = open(etc_security_limit,"r")
+    for line in etc_security_limit_fd.readlines():
+        match_parament = re.search( r'\* soft nofile (\d+)', line, re.I)
+        if match_parament:
+            if int(match_parament.group(1)) > int(nr_open_val):
+                print("soft nofile不能超过fs.nr_open" )
+    etc_security_limit_fd.close()
+
+
+def main():
+    get_kernelversion()
+    check_file_config()
+    check_etc_config()
+    check_cgroup_config()
+    check_pagecache_config()
+
+if __name__ == '__main__':
+    main()
\ No newline at end of file
diff --git a/source/tools/detect/sysconf/sysconf.sh b/source/tools/detect/sysconf/sysconf.sh
new file mode 100644
index 0000000000000000000000000000000000000000..0f8f6e75420ea780e2cf4db0ff4cbe30555a30d7
--- /dev/null
+++ b/source/tools/detect/sysconf/sysconf.sh
@@ -0,0 +1,273 @@
+#!/bin/sh
+#****************************************************************#
+# ScriptName: sysconf.sh
+# Author: zhao.hang@alibaba-inc.com
+# Create Date: 2021-08-16 15:22
+# Modify Author: $SHTERM_REAL_USER@alibaba-inc.com
+# Modify Date: 2021-08-16 15:22
+# Function:
+#***************************************************************#
+
+#need modify RESULT_DIR on present system 
+RESULT_DIR="/var/log/sysak"
+CURRENT_VERSION=`uname -r`"-"`date  "+%Y%m%d-%H%M%S"`
+SUBNAME="sysconf"
+DIFF_RESULT="diff_result"
+PID_MAX=`cat /proc/sys/kernel/pid_max`
+CURRENT_TIME=`date  "+%Y%m%d-%H%M%S"`
+
+CURRINFO_DIR="$RESULT_DIR/$SUBNAME/sysconf-$CURRENT_VERSION"
+OLDINFO_DIR="$RESULT_DIR/$SUBNAME/sysconf-$OLD_VERSION"
+DIFF_PATH="$RESULT_DIR/$SUBNAME/$DIFF_RESULT"
+DIFF_CURR="$DIFF_PATH/sysconf-$CURRENT_VERSION"
+#DIFF_OLD="$DIFF_PATH/sysconf-$OLD_VERSION"
+
+procname_arry=(async_load_calc cgroups dma fb mtrr misc partitions mount swaps)
+
+warn() {
+	echo "sysAK:$SUBNAME: $*" >&2
+}
+die() {
+    warn "$*"
+    exit 0
+}
+
+usage() {
+    echo "usage: sys_conf <option> [<args>]"
+	echo "sysak sys_conf: compare the differences between the old and new kernel version"
+    echo "all config file in /var/log/sysak/sysconf"
+	echo "options: -h             help information"
+	echo "         -c <version>   check old version system config"
+	echo "         -g             collect current verion system config"
+	echo "         -d             diff specify config with present system config"
+	echo "         -p             diff two specify config"
+	echo "example: check old version config and output config different"
+	echo "./sys_config -c 4.19.91-007.ali4000.alios7.x86_64 -d "
+	echo "./sys_config -p 4.19.91-007.ali4000.alios7.x86_64  4.19.91-011.ali4000.alios7.x86_64"
+}
+
+check_oldconfig() {
+    if [ ! -e $RESULT_DIR/$SUBNAME/sysconf-$OLD_VERSION.tar.gz ]; then
+        die "not find $RESULT_DIR/$SUBNAME/sysconf-${OLD_VERSION}.tar.gz sysconf file"
+    fi
+}
+
+echo_fmt() {
+	echo "$CURRENT_VERSION        $OLD_VERSION" > $DIFF_PATH/$1
+}
+
+system_info() {
+    if [ -e $CURRINFO_DIR/sysconf_baseinfo ]; then
+        rm $CURRINFO_DIR/sysconf_baseinfo
+    fi
+    echo "######kernel baseinfo######" >> $CURRINFO_DIR/sysconf_baseinfo
+    uname -a >> $CURRINFO_DIR/sysconf_baseinfo
+    cat /proc/cmdline >> $CURRINFO_DIR/sysconf_baseinfo
+
+    if [ $1 -eq 1 ]; then
+        echo_fmt diff_sysconf_baseinfo
+        diff $CURRINFO_DIR/sysconf_baseinfo $DIFF_OLD/sysconf_baseinfo -B >> $DIFF_PATH/diff_sysconf_baseinfo
+    fi
+}
+
+mod_list() {
+    if [ -e $CURRINFO_DIR/sysconf_mod ]; then
+        rm $CURRINFO_DIR/sysconf_mod
+    fi
+    echo "######mod list######" >> $CURRINFO_DIR/sysconf_mod
+    lsmod |awk '{print $1}'| sort >> $CURRINFO_DIR/sysconf_mod
+
+    if [ $1 -eq 1 ]; then
+        echo_fmt diff_sysconf_mod
+        diff $CURRINFO_DIR/sysconf_mod $DIFF_OLD/sysconf_mod -y -W 200 --suppress-common-line -B >> $DIFF_PATH/diff_sysconf_mod
+    fi
+}
+
+compile_config_list() {
+    if [ -e $CURRINFO_DIR/sysconf_compile_config ]; then
+        rm $CURRINFO_DIR/sysconf_compile_config
+    fi
+    echo "######kernel config######" >> $CURRINFO_DIR/sysconf_compile_config
+    zcat /proc/config.gz |grep "=y" | sort >> $CURRINFO_DIR/sysconf_compile_config
+
+    if [ $1 -eq 1 ];then
+        echo_fmt diff_sysconf_compile_config
+        diff $CURRINFO_DIR/sysconf_compile_config $DIFF_OLD/sysconf_compile_config -y -W 200 --suppress-common-line -B >> $DIFF_PATH/diff_sysconf_compile_config
+    fi
+}
+
+proc_paraments() {
+    if [ -e $CURRINFO_DIR/sysconf_proc_config ]; then
+        rm $CURRINFO_DIR/sysconf_proc_config
+    fi
+    echo "######proc config######" >> $CURRINFO_DIR/sysconf_proc_config
+
+    let arry_len=${#procname_arry[@]}-1
+    for i in `seq 0 $arry_len`;
+    do
+        if [ -e /proc/${procname_arry[$i]} ]; then
+            echo -e "\n/proc/${procname_arry[$i]}" >> $CURRINFO_DIR/sysconf_proc_config 2>/dev/null;
+            cat /proc/${procname_arry[$i]} >> $CURRINFO_DIR/sysconf_proc_config 2>/dev/null;
+        fi
+    done
+
+    if [ $1 -eq 1 ]; then
+        echo_fmt diff_sysconf_proc_config
+        diff $CURRINFO_DIR/sysconf_proc_config $DIFF_OLD/sysconf_proc_config -y -W 200 --suppress-common-line -B >> $DIFF_PATH/diff_sysconf_proc_config
+    fi
+}
+
+sysctl_paraments() {
+    if [ -e $CURRINFO_DIR/sysconf_sysctl$2_config ]; then
+        rm $CURRINFO_DIR/sysconf_sysctl$2_config
+    fi
+    echo -e "######sysctl $2 config######" >> $CURRINFO_DIR/sysconf_sysctl$2_config
+
+    ##echo -e "\n/proc/sys/$2/$file" >> $CURRINFO_DIR/diff_sysconf_sysctl$2_config 2>/dev/null;
+    sysctl -a | grep "$2"  >> $CURRINFO_DIR/sysconf_sysctl$2_config 2>/dev/null;
+
+    if [ $1 -eq 1 ]; then
+        echo_fmt diff_sysconf_sysctl$2_config
+        diff $CURRINFO_DIR/sysconf_sysctl$2_config $DIFF_OLD/sysconf_sysctl$2_config -y -W 200 --suppress-common-line -B >> $DIFF_PATH/diff_sysconf_sysctl_$2
+    fi
+}
+
+sysctl_all() {
+    if [ -e $CURRINFO_DIR/sysconf_sysctl_config ]; then
+        rm $CURRINFO_DIR/sysconf_sysctl_config
+    fi
+    echo -e "######sysctl config######" >> $CURRINFO_DIR/sysconf_sysctl_config
+    sysctl -a >> $CURRINFO_DIR/sysconf_sysctl_config
+    if [ $1 -eq 1 ]; then
+        echo_fmt diff_sysconf_sysctl_config
+        diff $CURRINFO_DIR/sysconf_sysctl_config $DIFF_OLD/sysconf_sysctl_config -y -W 200 --suppress-common-line -B >> $DIFF_PATH/diff_sysconf_sysctl
+    fi
+
+}
+
+hardware_info(){
+    if [ -e $CURRINFO_DIR/sysconf_hardware_info ]; then
+        rm $CURRINFO_DIR/sysconf_hardware_info
+    fi
+    echo -e "######cpu info######" >> $CURRINFO_DIR/sysconf_hardware_info
+    lscpu  >> $CURRINFO_DIR/sysconf_hardware_info
+
+    if [ $1 -eq 1 ]; then
+        echo_fmt diff_sysconf_hardware_info
+        diff $CURRINFO_DIR/sysconf_hardware_info $DIFF_OLD/sysconf_hardware_info -y -W 200 --suppress-common-line -B >> $DIFF_PATH/diff_sysconf_hardware_info
+    fi
+}
+
+diff_config() {
+    if [ ! -d $RESULT_DIR/$SUBNAME ]; then
+        die "$RESULT_DIR/$SUBNAME is not exist"
+    fi
+    if [ $1 -eq 1 ]; then
+        check_oldconfig
+        if [ -d $RESULT_DIR/$SUBNAME/$DIFF_RESULT ]; then
+            rm -rf $RESULT_DIR/$SUBNAME/$DIFF_RESULT
+        fi
+        mkdir -p $DIFF_PATH
+        tar -zxf $RESULT_DIR/$SUBNAME/sysconf-$OLD_VERSION.tar.gz -C $DIFF_PATH/
+    fi
+
+    mkdir -p $CURRINFO_DIR
+    system_info $1
+    mod_list $1
+    compile_config_list $1
+    proc_paraments $1
+
+    sysctl_all $1
+    hardware_info $1
+
+    for mod in vm kernel fs user net dev debug abi;
+    do
+        sysctl_paraments $1 $mod
+    done
+
+    cd $RESULT_DIR/$SUBNAME/
+    tar -zcf $RESULT_DIR/$SUBNAME/sysconf-$CURRENT_VERSION.tar.gz sysconf-$CURRENT_VERSION/
+    cd -
+    if [ $1 -eq 1 ]; then
+        cp $RESULT_DIR/$SUBNAME/sysconf-$CURRENT_VERSION.tar.gz $DIFF_PATH/
+    fi
+}
+
+collect_curr_config() {
+    if [  ! -d $RESULT_DIR ]; then
+        die "$RESULT_DIR is not exist"
+    fi
+    mkdir -p $RESULT_DIR/$SUBNAME
+    diff_config 0
+    rm -rf $CURRINFO_DIR
+}
+
+diff_check () {
+    diff_config 1 diff
+    rm -rf $CURRINFO_DIR
+    rm -rf $OLDINFO_DIR
+}
+diff_all_config() {
+    if [ ! -d $DIFF_PATH ]; then
+        mkdir -p $DIFF_PATH
+    fi
+    
+    tar -zxf $RESULT_DIR/$SUBNAME/$1.tar.gz -C $DIFF_PATH/
+    tar -zxf $RESULT_DIR/$SUBNAME/$2.tar.gz -C $DIFF_PATH/
+    echo "$1       $2" > $DIFF_PATH/diff_sysconf_baseinfo
+    echo "$1       $2" > $DIFF_PATH/diff_sysconf_mod
+    echo "$1       $2" > $DIFF_PATH/diff_sysconf_compile_config
+    echo "$1       $2" > $DIFF_PATH/diff_sysconf_proc_config
+    echo "$1       $2" > $DIFF_PATH/diff_sysconf_sysctl
+    echo "$1       $2" > $DIFF_PATH/diff_sysconf_hardware_info
+    diff $DIFF_PATH/$1/sysconf_baseinfo $DIFF_PATH/$2/sysconf_baseinfo -B >> $DIFF_PATH/diff_sysconf_baseinfo
+    diff $DIFF_PATH/$1/sysconf_mod $DIFF_PATH/$2/sysconf_mod -y -W 200 --suppress-common-line -B >> $DIFF_PATH/diff_sysconf_mod
+    diff $DIFF_PATH/$1/sysconf_compile_config $DIFF_PATH/$2/sysconf_compile_config -y -W 200 --suppress-common-line -B >> $DIFF_PATH/diff_sysconf_compile_config
+    diff $DIFF_PATH/$1/sysconf_proc_config $DIFF_PATH/$2/sysconf_proc_config -y -W 200 --suppress-common-line -B >> $DIFF_PATH/diff_sysconf_proc_config
+    diff $DIFF_PATH/$1/sysconf_sysctl_config $DIFF_PATH/$2/sysconf_sysctl_config -y -W 200 --suppress-common-line -B >> $DIFF_PATH/diff_sysconf_sysctl
+    diff $DIFF_PATH/$1/sysconf_hardware_info $DIFF_PATH/$2/sysconf_hardware_info -y -W 200 --suppress-common-line -B >> $DIFF_PATH/diff_sysconf_hardware_info
+}
+
+set -- $(getopt -q hc:gp:d "$@")
+
+while [ -n "$1" ]
+do
+    case "$1" in
+    -h) usage
+        exit 0
+        ;;
+    -c) [[ -z $2 ]] && usage
+        OLD_VERSION=$2
+        echo "$OLD_VERSION"
+        let LEN=${#OLD_VERSION}-2
+        OLD_VERSION=${OLD_VERSION:1:$LEN}
+        DIFF_OLD="$DIFF_PATH/sysconf-$OLD_VERSION"
+        check_oldconfig
+        shift
+        ;;
+    -g) collect_curr_config
+        exit 0
+        ;;
+    -d) diff_check 1
+        exit 0
+        ;;
+    -p) [[ -z $2 ]] && die usage
+        [[ -z $3 ]] && die usgae
+        OLD_VERSION_1=$2
+        OLD_VERSION_2=$2
+        echo "$OLD_VERSION"
+        let LEN_1=${#OLD_VERSION_1}-2
+        let LEN_2=${#OLD_VERSION_2}-2
+        OLD_VERSION_1=${OLD_VERSION_1:1:$LEN_1}
+        OLD_VERSION_2=${OLD_VERSION_2:1:$LEN_2}
+        DIFF_OLD="$DIFF_PATH/sysconf-diff"
+        diff_all_config $OLD_VERSION_1 $OLD_VERSION_2
+        exit 0
+        ;;
+    *)  [[ ! -z $1 ]] && shift && continue
+        echo "is not option"
+        usage
+        exit 1
+        ;;
+    esac
+done
diff --git a/source/tools/monitor/mmaptrace/Makefile b/source/tools/monitor/mmaptrace/Makefile
new file mode 100644
index 0000000000000000000000000000000000000000..2a5e73c59a89d1621a53c1feb57bc4f09e1baca2
--- /dev/null
+++ b/source/tools/monitor/mmaptrace/Makefile
@@ -0,0 +1,5 @@
+mods := mmaptrace
+target := mmaptrace
+DEPEND := "prev{-p modin};post{-d modun}"
+include $(SRC)/mk/py.mk
+
diff --git a/source/tools/monitor/mmaptrace/mmaptrace.py b/source/tools/monitor/mmaptrace/mmaptrace.py
new file mode 100644
index 0000000000000000000000000000000000000000..a2241e27063a17eab36727135553075ec67e6049
--- /dev/null
+++ b/source/tools/monitor/mmaptrace/mmaptrace.py
@@ -0,0 +1,225 @@
+#!/usr/bin/python
+#coding:utf-8
+
+import re
+import os.path
+import getopt
+import sys
+import time
+
+list_app = {'systemd', 'syslog-ng', 'docker', 'systemd-network', 'dbus', 'polkit'}
+
+SYSTEMD_NEW_VERSION_ALINUX = "systemd-219-73.3.al7.3.x86_64"
+SYSTEMD_NEW_VERSION_ALIOS = "systemd-219-67.8.alios7.2.alnx.x86_64"
+POLKIT_NEW_VERSION = "polkit-0.112-26.2.al7"
+
+kern_log = "/var/log/kern"
+
+result_dir = "/var/log/sysak/mmaptrace/"
+trace_log = result_dir + "mmaptrace_log"
+analysed_log = result_dir + "analysed_log"
+status_log = result_dir + "status_log"
+app_log = result_dir + "app_log"
+
+proc_dir = "/proc/sysak/mmaptrace/"
+mod_enable = proc_dir + "mmaptrace_enable"
+trace_reslut = proc_dir + "mmaptrace_print"
+monitor_pid = proc_dir + "mmaptrace_pid"
+monitor_size = proc_dir + "mmaptrace_len"
+
+MEM_THRESHOLD = 200*1024
+HALF_CPU = 0.5
+DETECT_DELAY = 5*60
+
+def exectue_cmd(command):
+    command=command.replace("\n", "")
+    command_fd = os.popen(command, "r")
+    ret = command_fd.read()
+    command_fd.close()
+    return ret
+
+def show_result(trace_reslut): 
+    trace_fd = open(trace_reslut,"r")
+    pid_fd = open(monitor_pid,"r")
+    pid_v = 0
+
+    for line_1 in pid_fd.readlines():       
+        pagetype_1 = re.search( r'pid:(\d+),*', line_1, re.I)
+        if pagetype_1:
+            pid_v = pagetype_1.group(1)
+
+    if not os.path.exists(result_dir):
+        os.mkdir(result_dir)
+    log_fd = open(trace_log,"a+")
+    analysed_fd = open(analysed_log,"a+")
+    for line_2 in trace_fd.readlines():
+        log_fd.writelines(line_2)
+        pagetype_2 = re.search( r'#~ +(\S+) *', line_2, re.I)
+        if pagetype_2:
+            command = 'gdb -q --batch  -ex "x /8 ' + pagetype_2.group(1) + ' " --pid ' + pid_v + ' | grep ">" | awk -F ":" \'{print$1}\''
+            utrace = exectue_cmd(command)
+            analysed_fd.writelines(utrace)
+        else:
+            analysed_fd.writelines(line_2)
+    
+    log_fd.writelines("------------------------------")
+    analysed_fd.writelines("-------------------------")
+    trace_fd.close()
+    pid_fd.close()
+    log_fd.close()
+
+def monitor_status():
+    if not os.path.exists(result_dir):
+        os.mkdir(result_dir)
+
+    app_dir = open(app_log,"a+")
+    new_time = time.localtime()
+    date = time.strftime("%Y-%m-%d %H:%M", new_time)
+    date = date + '\n'
+    for app_name in list_app:
+        if app_name != "systemd":
+            command_status = 'systemctl status ' + app_name + '| grep Active | awk -F " " \'{print $2$3}\''
+            status = exectue_cmd(command_status)
+
+        if app_name == "systemd":
+           pid = "1"
+        else:
+            command_pid = 'systemctl status ' + app_name + '| grep "Main PID" |awk -F " " \'{print $3}\''
+            pid = exectue_cmd(command_pid)
+        
+        if not pid:
+            continue
+
+        command_mem = 'cat /proc/' + pid + '/status | grep VmRSS | awk -F " " \'{print$2}\''
+        mem_use_t1 = exectue_cmd(command_mem)
+
+        command_vmem = 'cat /proc/' + str(pid) + '/status | grep VmSize | awk -F " " \'{print$2}\''
+        vmem_use_t1 = exectue_cmd(command_vmem)
+
+        command_cpu = 'pidstat -p ' + pid + ' | grep ' + app_name + '| awk -F " " \'{print $8}\''
+        cpu = exectue_cmd(command_cpu)
+
+        command_cpu_user = 'pidstat -p ' + pid + ' | grep ' + app_name + '| awk -F " " \'{print $5}\''
+        cpu_user = exectue_cmd(command_cpu_user)
+
+        command_cpu_sys = 'pidstat -p ' + pid + ' | grep ' + app_name + '| awk -F " " \'{print $6}\''
+        cpu_sys = exectue_cmd(command_cpu_sys)
+        app_dir.writelines(date)
+        if app_name != "systemd":
+            app_dir.writelines("%s %s %s %s %s %s %s\n" %(app_name, status, pid, mem_use_t1+"KB", cpu, cpu_user, cpu_sys))
+        else:
+            app_dir.writelines("%s %s %s   %s %s %s\n" %(app_name, pid, mem_use_t1+"KB", cpu, cpu_user, cpu_sys))
+        if float(cpu) >= float(HALF_CPU):
+            if float(cpu) >= float(2*HALF_CPU):
+                if app_name == "systemd-network":
+                    command_version = 'rpm -qa |grep systemd-2'
+                    version = os.system(command_version)
+                    print("%s:cpu使用率%s,超过100%%" %(app_name, cpu.replace("\n", "")))
+                    print("systemd当前版本(%s)较低,建议升级到>=%s" %(version, SYSTEMD_NEW_VERSION_ALINUX))
+                    continue
+            else:
+                print("%s:cpu使用率%s,超过50%%" %(app_name, cpu.replace("\n", "")))
+        
+        mem_use_t2 = exectue_cmd(command_mem)
+        vmem_use_t2 = exectue_cmd(command_vmem)
+        mem_inc = int(mem_use_t2) - int(mem_use_t1)
+        vmem_inc = int(vmem_use_t2) - int(vmem_use_t1)
+
+        time.sleep(DETECT_DELAY)
+        if int(mem_use_t2) > int(MEM_THRESHOLD):
+            print("%s:内存使用超过100M\n" %(app_name))
+            print("5分钟RSS增长:%sKB\n" %(mem_inc))
+            print("5分钟VM增长:%sKB\n" %(vmem_inc))
+            print("可能存在泄漏，可使用-p选项抓取用户态调用栈")
+
+            if app_name == "systemd":
+                command_version = 'rpm -qa |grep systemd-2'
+                version = exectue_cmd(command_version)
+                if version < SYSTEMD_NEW_VERSION_ALINUX:
+                    print("systemd当前版本(%s)较低,建议升级到>=%s" %(version.replace("\n", ""), SYSTEMD_NEW_VERSION_ALINUX))
+                kernlog_fd = open(kern_log,"r")
+                for line in kernlog_fd.readlines():
+                    if line.find("Attempted to kill init!") != -1:
+                        print("系统存在因为systemd异常退出，且panic过")
+                kernlog_fd.close()
+
+            if app_name == "polkit":
+                command_version = 'rpm -qa |grep polkit-0'
+                version = exectue_cmd(command_version)
+                if version < POLKIT_NEW_VERSION:
+                    print("%s当前版本(%s)较低,建议升级到>=%s" %(app_name, version.replace("\n", ""), POLKIT_NEW_VERSION))
+    app_dir.close()
+
+def enable_kernelmod(enable):
+    if not os.path.isfile(mod_enable):
+        print("%s does not exist" %mod_enable)
+        return
+    mod_enable_fd = open(mod_enable,"w")
+    if enable:
+        mod_enable_fd.write("1")
+    else:
+        mod_enable_fd.write("0")
+    mod_enable_fd.close()
+
+def set_parameter(file, value):
+    size_fd = open(file,"w")
+    size_fd.write(str(value))
+    size_fd.close()
+
+def show(file):
+    if not os.path.isfile(file):
+        print("%s does not exist" %file)
+        return
+    fd = open(file,"r")
+    str = fd.read()
+    print(str)
+    fd.close()
+
+def usage():
+    print ('mmaptrace: user mode memory leak monitor tool')
+    print ('Usage: mmaptrace <option> [<args>]')
+    print ('  -h                 help information')
+    print ('  -c                 check main system services status')
+    print ('  -p <pid>           enable memory leak trace')
+    print ('  -l                 set mmaloc/mmap size')
+    print ('  -s                 show user mode trace')
+    print ('  -d                 disable hang check')
+    print ('example:')
+    print ('mmaptrace.py -p 111 -l 1024')
+    return
+
+opts,args = getopt.getopt(sys.argv[1:],'-h-c-p:-s-l:-d')
+
+def main():
+    for opt_name,opt_value in opts:
+        if opt_name in ('-h'):
+            usage()
+            sys.exit()
+        if opt_name in ('-c'):
+            monitor_status()
+            sys.exit()
+        if opt_name in ('-p'):
+            if opt_value:
+                pid = int(opt_value)
+                enable_kernelmod(1)
+                set_parameter(monitor_pid, pid)
+            else:
+                usage()               
+                sys.exit()
+        if opt_name in ('-s'):
+            show_result(trace_reslut)
+            sys.exit()
+        if opt_name in ('-l'):
+            if opt_value:
+                size = int(opt_value)
+                set_parameter(monitor_size, size)
+            else:
+                usage() 
+            sys.exit()
+        if opt_name in ('-d'):
+            enable_kernelmod(0)
+            print("disable kernel module")
+            sys.exit()
+
+if __name__ == '__main__':
+    main()