Joint webinar series with Hans Picht (Linux on System z Lead, IBM). Covered recent release of Red Hat Enterprise Linux 5.4, which had the inclusion of Named Saved Segments (NSS), updated fiber channel, and rebasing of s390utils. Stepped through roadmap for RHEL on System z and gave update on CMM2 development activities.
2009-10-07 IBM zExpo 2009, Current & Future Linux on System zShawn Wells
This document summarizes the current and future Linux on System z technology presented by Shawn Wells of Red Hat. For RHEL 5.4, it highlights updates like support for Named Saved Segments and fiber channel drivers. It also provides a tentative roadmap for RHEL 6 and discusses ongoing CMM development. For future technology, it will cover areas like storage, networking, usability, and crypto that IBM and Red Hat are working on for Linux on System z.
Live patching technology allows updating the Linux kernel without downtime. Ksplice was an early live patching solution released in 2009 but was limited and had licensing issues. kGraft and Kpatch were later developed by SUSE and Red Hat respectively as open source live patching solutions. Both use object code comparison and replacement at runtime, but kGraft can patch without stopping processes while Kpatch uses stop_machine to ensure safe replacement. Live patching is useful for critical bugs but has limitations around data structure and common function changes.
2010-01-28 NSA Open Source User Group Meeting, Current & Future Linux on Syst...Shawn Wells
RHEL 5.4 focused on virtualization improvements like full support for KVM hypervisor on x86_64, network performance enhancements through GRO, and storage updates including Ext4 bug fixes and a technology preview of XFS file system support. For System z, RHEL 5.4 included features like support for large volumes, FCP performance monitoring, shutdown action tools, and improved installation workflow.
Long-term Maintenance Model of Embedded Industrial Linux DistributionSZ Lin
To introduce a robust, secure and reliable platform for the industrial environments is a key challenge; moreover, the platform needs to survive for a long time (more than 10+ years). There are many good solutions aiming to meet these requirements, such as LTSI (Long Term Support Initiative) and CIP (Civil Infrastructure Platform). However, it still needs a high amount of maintenance and development costs in handling SoC/ hardware board in-house patch, non-upstream driver and keep source code consistent with different SoC and platform afterwards.
In this presentation, SZ Lin will introduce how to operate long-term maintenance model of embedded industrial Linux distribution. In addition, he will also address the building, deploying and testing architecture and workflow for producing a robust, secure and reliable platform.
Select, manage, and backport the long term stable kernelsSZ Lin
The document discusses selecting and managing Linux kernel versions, including mainline, stable, and long-term kernels. It notes mainline kernels are released every 2-3 months with new features, while stable kernels receive only bug and security fixes. Long-term kernels provide long-term support with backported fixes for older releases. The document recommends using a release version over rolling versions for stability and outlines practices for monitoring kernels and addressing regressions.
2008-11-13 CAVMEN RHEL for System z Deep DiveShawn Wells
Audience was technical Linux on System z practitioners. Steps through the Linux on System z development process, what is included in RHEL for System z (now + future), provisioning and patch management, and broad security updates (SELinux, Auditing, Crypto).
This document discusses methods for reducing Linux boot times, focusing on hardware architecture, the boot process, kernel optimizations, and the init system. It recommends using faster storage like SSDs, optimizing bootloaders like GRUB, improving kernel decompression with LZ4, disabling unnecessary processes, and switching to systemd for network configuration to reduce boot times to as little as 2 seconds.
2009-10-07 IBM zExpo 2009, Current & Future Linux on System zShawn Wells
This document summarizes the current and future Linux on System z technology presented by Shawn Wells of Red Hat. For RHEL 5.4, it highlights updates like support for Named Saved Segments and fiber channel drivers. It also provides a tentative roadmap for RHEL 6 and discusses ongoing CMM development. For future technology, it will cover areas like storage, networking, usability, and crypto that IBM and Red Hat are working on for Linux on System z.
Live patching technology allows updating the Linux kernel without downtime. Ksplice was an early live patching solution released in 2009 but was limited and had licensing issues. kGraft and Kpatch were later developed by SUSE and Red Hat respectively as open source live patching solutions. Both use object code comparison and replacement at runtime, but kGraft can patch without stopping processes while Kpatch uses stop_machine to ensure safe replacement. Live patching is useful for critical bugs but has limitations around data structure and common function changes.
2010-01-28 NSA Open Source User Group Meeting, Current & Future Linux on Syst...Shawn Wells
RHEL 5.4 focused on virtualization improvements like full support for KVM hypervisor on x86_64, network performance enhancements through GRO, and storage updates including Ext4 bug fixes and a technology preview of XFS file system support. For System z, RHEL 5.4 included features like support for large volumes, FCP performance monitoring, shutdown action tools, and improved installation workflow.
Long-term Maintenance Model of Embedded Industrial Linux DistributionSZ Lin
To introduce a robust, secure and reliable platform for the industrial environments is a key challenge; moreover, the platform needs to survive for a long time (more than 10+ years). There are many good solutions aiming to meet these requirements, such as LTSI (Long Term Support Initiative) and CIP (Civil Infrastructure Platform). However, it still needs a high amount of maintenance and development costs in handling SoC/ hardware board in-house patch, non-upstream driver and keep source code consistent with different SoC and platform afterwards.
In this presentation, SZ Lin will introduce how to operate long-term maintenance model of embedded industrial Linux distribution. In addition, he will also address the building, deploying and testing architecture and workflow for producing a robust, secure and reliable platform.
Select, manage, and backport the long term stable kernelsSZ Lin
The document discusses selecting and managing Linux kernel versions, including mainline, stable, and long-term kernels. It notes mainline kernels are released every 2-3 months with new features, while stable kernels receive only bug and security fixes. Long-term kernels provide long-term support with backported fixes for older releases. The document recommends using a release version over rolling versions for stability and outlines practices for monitoring kernels and addressing regressions.
2008-11-13 CAVMEN RHEL for System z Deep DiveShawn Wells
Audience was technical Linux on System z practitioners. Steps through the Linux on System z development process, what is included in RHEL for System z (now + future), provisioning and patch management, and broad security updates (SELinux, Auditing, Crypto).
This document discusses methods for reducing Linux boot times, focusing on hardware architecture, the boot process, kernel optimizations, and the init system. It recommends using faster storage like SSDs, optimizing bootloaders like GRUB, improving kernel decompression with LZ4, disabling unnecessary processes, and switching to systemd for network configuration to reduce boot times to as little as 2 seconds.
Cellular technology with Embedded Linux - COSCUP 2016SZ Lin
This document provides steps and information for building your own Internet of Things (IoT) device using cellular technology. It discusses selecting a cellular module, enabling the device driver and utilities, and understanding cellular network generations and protocols like AT commands, QMI and MBIM. The document also addresses frequently asked questions about establishing connections and troubleshooting issues. Overall it serves as a guide for getting hands-on experience developing cellular-connected IoT devices.
It's a pivotal challenge to update the software in embedded systems due to many restrictions such as unreliable network and power supply, limited bandwidth, harsh environment, etc. This slide aims to provide the background knowledge and the open source tool to achieve the software update in embedded systems.
Introduction to Civil Infrastructure PlatformSZ Lin
CIP is target to establish an open source base layer of industrial grade software to enable the use and implementation of software. This slide will introduce the current status and road map in CIP
Using open source software to build an industrial grade embedded linux platfo...SZ Lin
Building an embedded Linux platform is like a puzzle; placing the suitable software components in the right positions will constitute an optimal platform. However, selecting suitable components is difficult since it depends on different application scenarios. The essential components of an embedded Linux platform include the bootloader, Linux kernel, toolchain, root filesystem; it also needs the tools for image generation, upgrades, and testing. There are abundant resources in the Linux ecosystem with these components and tools; however, selecting the suitable modules and tools is still a key challenge for system designers.
[ELCE] Activities of super long term support kernel workgroup in civil infras...SZ Lin
The document summarizes the activities of the Super Long Term Support Kernel Workgroup in the Civil Infrastructure Platform Project. It discusses the workgroup's maintenance of Linux kernels for over 10 years, including applying real-time patches and maintaining the kernels as the CIP-RT version. Key tasks include participating in the Linux LTS review process, releasing CIP SLTS kernels, tracking CVEs and failed patches for the CIP kernels. The workgroup aims to provide industrial-grade, sustainable and secure kernels for critical infrastructure projects.
Kernel Recipes 2016 - New hwmon device registration API - Jean DelvareAnne Nicolas
The hwmon subsystem originates from the 1998 project lm-sensors. Along the way, there have been a lot of effort done to have all drivers present a standard interface to user-space, and consolidate the common plumbing into an easy-to-use, hard-to-get-wrong API. The final step of this long-running effort is happening right now.
Jean Delvare, SUSE
This document provides an overview and table of contents for the RH401 course on Red Hat Enterprise Linux deployment, virtualization, and systems management. It covers topics such as system management tools, provisioning with DHCP and PXE, installing Red Hat Network satellite servers, building RPM packages, using CVS for configuration management, virtualization with KVM, and Red Hat Network management. The document lists learning objectives, prerequisites, and sequences of exercises for each unit.
This document discusses open source licenses. It begins by introducing open source/free software and different types of intellectual property like copyrights and patents. It then explains key open source licenses like the GPL, LGPL, Apache, MIT and their different permissions and conditions. Popular open source licenses used on GitHub are also shown. The document provides answers to common questions about open source licensing and references for further information.
Design, Build,and Maintain the Embedded Linux PlatformSZ Lin
Using open source software to build an embedded Linux platform from scratch.
Building an embedded Linux platform is like a puzzle; placing the suitable software components in the right positions will constitute an optimal platform. However, selecting suitable components is difficult since it depends on different application scenarios. The essential components of an embedded Linux platform include the bootloader, Linux kernel, toolchain, root filesystem; it also needs the tools for image generation, upgrades, and testing. There are abundant resources in the Linux ecosystem with these components and tools; however, selecting the suitable modules and tools is still a key challenge for system designers.
The document provides instructions for running an Intel DPDK hands-on session to demonstrate packet forwarding using the l3fwd example. It describes downloading and compiling DPDK, getting and applying patches to l3fwd, configuring three VMs with pktgen to generate and receive packets and l3fwd to forward between them, and running l3fwd and pktgen manually or automatically on system startup.
The document provides an overview of current and future states of Linux on IBM System z. It discusses Red Hat Enterprise Linux 5.3 release which included accelerated in-kernel crypto support for IBM z10, DHCPv6 support, inclusion of OpenJDK 1.6, and root/swap encryption in installer. It also outlines planned features for RHEL 5.4 such as performance improvements from new GCC and integration of hardware crypto instructions. Overall, the document highlights Red Hat's focus on enabling latest IBM System z hardware features in RHEL and improving performance.
DPDK in depth
This document provides an overview of DPDK (Data Plane Development Kit):
1. DPDK is an open source project for data plane programming and network acceleration. It started at Intel in 2010 and is now maintained by the Linux Foundation.
2. DPDK provides poll mode drivers (PMDs), libraries, and sample applications for fast packet processing. It uses hugepages and avoids kernel involvement for high performance.
3. The document outlines several DPDK projects, libraries, PMDs, advantages and disadvantages, development process, and demonstrates a simple DPDK application (l2fwd) and the testpmd tool.
This document provides an overview and introduction to the RH436: Red Hat Enterprise Clustering and Storage Management course. It covers copyright information, welcome and introduction text, details on classroom facilities like restrooms and breaks, and contact information for questions. The document outlines expectations for students attending the course and provides logistical details to set the stage for the technical content to follow.
The document discusses configuring various services on a Red Hat Enterprise Linux system. It includes instructions for setting up a Yum repository, configuring SELinux, modifying cron access, adding a boot parameter, mounting an ISO file, setting up an FTP server allowing anonymous access only from the local network, creating an email alias, and more.
Quieting noisy neighbor with Intel® Resource Director TechnologyMichelle Holley
A typical computer server on the cloud hosted multiple VMs. Each VM hosted an independent application. The operation of a mixture of applications in cloud requires proper resource management and it's critical to QoS, this session is to study the impact of different neighbors on an application’s performance and to show how Intel® RDT can help to detect and mitigate a noisy-neighbor situation.
About the authors: Sunil is senior cloud performance engineer at Intel working on cloud performance and optimization for Oracle cloud. Prior to this he worked on service assurance and orchestration products for Openstack cloud. Sunil has 10+ years of experience working on different software products for server management. He holds Masters in Computer Science from IIT Chicago.
Khun Ban is a cloud performance engineer manager leading a team to optimize cloud performance and TCO. He has over twenty years of enterprise software development experience. His current focus is on providing customer with best cloud experience. He received his B.S. degree in Computer Science and Engineering from the University of Washington in 1995.
Packet processing in the fast path involves looking up bit patterns and deciding on an actions at line rate. The complexity of these functions at Line Rate, have been traditionally handled by ASICs and NPUs. However with the availability of faster and cheaper CPUs and hardware/software accelerations, it is possible to move these functions onto commodity hardware. This tutorial will talk about the various building blocks available to speed up packet processing both hardware based e.g. SR-IOV, RDT, QAT, VMDq, VTD and software based e.g. DPDK, Fd.io/VPP, OVS etc and give hands on lab experience on DPDK and fd.io fast path look up with following sessions. 1: Introduction to Building blocks: Sujata Tibrewala
A talk presented at the Automotive Grade Linux All-Members meeting on September 8, 2015. The focus on why AGL should adopt systemd, and highlights two of the more difficult integration issues that may arise while doing so. The embedded SVG image, courtesy Marko Hoyer of ADIT, is at http://she-devel.com/2015-07-23_amm_demo.svg
The document discusses the benefits of exercise for mental health. Regular physical activity can help reduce anxiety and depression and improve mood and cognitive function. Exercise causes chemical changes in the brain that may help protect against mental illness and improve symptoms for those who already suffer from conditions like anxiety and depression.
The document contains replies from three customers praising the service they received from Sytner Maidenhead dealership employees. Irfan thanks Louise and the team for a seamless car purchase experience, singling out Craig for being welcoming, patient, and helpful. Om echoes Irfan's praise for Craig and Louise. Eduard thanks Craig for his professionalism and friendly approach during a car handover, noting his father was over the moon with the experience and car.
Cellular technology with Embedded Linux - COSCUP 2016SZ Lin
This document provides steps and information for building your own Internet of Things (IoT) device using cellular technology. It discusses selecting a cellular module, enabling the device driver and utilities, and understanding cellular network generations and protocols like AT commands, QMI and MBIM. The document also addresses frequently asked questions about establishing connections and troubleshooting issues. Overall it serves as a guide for getting hands-on experience developing cellular-connected IoT devices.
It's a pivotal challenge to update the software in embedded systems due to many restrictions such as unreliable network and power supply, limited bandwidth, harsh environment, etc. This slide aims to provide the background knowledge and the open source tool to achieve the software update in embedded systems.
Introduction to Civil Infrastructure PlatformSZ Lin
CIP is target to establish an open source base layer of industrial grade software to enable the use and implementation of software. This slide will introduce the current status and road map in CIP
Using open source software to build an industrial grade embedded linux platfo...SZ Lin
Building an embedded Linux platform is like a puzzle; placing the suitable software components in the right positions will constitute an optimal platform. However, selecting suitable components is difficult since it depends on different application scenarios. The essential components of an embedded Linux platform include the bootloader, Linux kernel, toolchain, root filesystem; it also needs the tools for image generation, upgrades, and testing. There are abundant resources in the Linux ecosystem with these components and tools; however, selecting the suitable modules and tools is still a key challenge for system designers.
[ELCE] Activities of super long term support kernel workgroup in civil infras...SZ Lin
The document summarizes the activities of the Super Long Term Support Kernel Workgroup in the Civil Infrastructure Platform Project. It discusses the workgroup's maintenance of Linux kernels for over 10 years, including applying real-time patches and maintaining the kernels as the CIP-RT version. Key tasks include participating in the Linux LTS review process, releasing CIP SLTS kernels, tracking CVEs and failed patches for the CIP kernels. The workgroup aims to provide industrial-grade, sustainable and secure kernels for critical infrastructure projects.
Kernel Recipes 2016 - New hwmon device registration API - Jean DelvareAnne Nicolas
The hwmon subsystem originates from the 1998 project lm-sensors. Along the way, there have been a lot of effort done to have all drivers present a standard interface to user-space, and consolidate the common plumbing into an easy-to-use, hard-to-get-wrong API. The final step of this long-running effort is happening right now.
Jean Delvare, SUSE
This document provides an overview and table of contents for the RH401 course on Red Hat Enterprise Linux deployment, virtualization, and systems management. It covers topics such as system management tools, provisioning with DHCP and PXE, installing Red Hat Network satellite servers, building RPM packages, using CVS for configuration management, virtualization with KVM, and Red Hat Network management. The document lists learning objectives, prerequisites, and sequences of exercises for each unit.
This document discusses open source licenses. It begins by introducing open source/free software and different types of intellectual property like copyrights and patents. It then explains key open source licenses like the GPL, LGPL, Apache, MIT and their different permissions and conditions. Popular open source licenses used on GitHub are also shown. The document provides answers to common questions about open source licensing and references for further information.
Design, Build,and Maintain the Embedded Linux PlatformSZ Lin
Using open source software to build an embedded Linux platform from scratch.
Building an embedded Linux platform is like a puzzle; placing the suitable software components in the right positions will constitute an optimal platform. However, selecting suitable components is difficult since it depends on different application scenarios. The essential components of an embedded Linux platform include the bootloader, Linux kernel, toolchain, root filesystem; it also needs the tools for image generation, upgrades, and testing. There are abundant resources in the Linux ecosystem with these components and tools; however, selecting the suitable modules and tools is still a key challenge for system designers.
The document provides instructions for running an Intel DPDK hands-on session to demonstrate packet forwarding using the l3fwd example. It describes downloading and compiling DPDK, getting and applying patches to l3fwd, configuring three VMs with pktgen to generate and receive packets and l3fwd to forward between them, and running l3fwd and pktgen manually or automatically on system startup.
The document provides an overview of current and future states of Linux on IBM System z. It discusses Red Hat Enterprise Linux 5.3 release which included accelerated in-kernel crypto support for IBM z10, DHCPv6 support, inclusion of OpenJDK 1.6, and root/swap encryption in installer. It also outlines planned features for RHEL 5.4 such as performance improvements from new GCC and integration of hardware crypto instructions. Overall, the document highlights Red Hat's focus on enabling latest IBM System z hardware features in RHEL and improving performance.
DPDK in depth
This document provides an overview of DPDK (Data Plane Development Kit):
1. DPDK is an open source project for data plane programming and network acceleration. It started at Intel in 2010 and is now maintained by the Linux Foundation.
2. DPDK provides poll mode drivers (PMDs), libraries, and sample applications for fast packet processing. It uses hugepages and avoids kernel involvement for high performance.
3. The document outlines several DPDK projects, libraries, PMDs, advantages and disadvantages, development process, and demonstrates a simple DPDK application (l2fwd) and the testpmd tool.
This document provides an overview and introduction to the RH436: Red Hat Enterprise Clustering and Storage Management course. It covers copyright information, welcome and introduction text, details on classroom facilities like restrooms and breaks, and contact information for questions. The document outlines expectations for students attending the course and provides logistical details to set the stage for the technical content to follow.
The document discusses configuring various services on a Red Hat Enterprise Linux system. It includes instructions for setting up a Yum repository, configuring SELinux, modifying cron access, adding a boot parameter, mounting an ISO file, setting up an FTP server allowing anonymous access only from the local network, creating an email alias, and more.
Quieting noisy neighbor with Intel® Resource Director TechnologyMichelle Holley
A typical computer server on the cloud hosted multiple VMs. Each VM hosted an independent application. The operation of a mixture of applications in cloud requires proper resource management and it's critical to QoS, this session is to study the impact of different neighbors on an application’s performance and to show how Intel® RDT can help to detect and mitigate a noisy-neighbor situation.
About the authors: Sunil is senior cloud performance engineer at Intel working on cloud performance and optimization for Oracle cloud. Prior to this he worked on service assurance and orchestration products for Openstack cloud. Sunil has 10+ years of experience working on different software products for server management. He holds Masters in Computer Science from IIT Chicago.
Khun Ban is a cloud performance engineer manager leading a team to optimize cloud performance and TCO. He has over twenty years of enterprise software development experience. His current focus is on providing customer with best cloud experience. He received his B.S. degree in Computer Science and Engineering from the University of Washington in 1995.
Packet processing in the fast path involves looking up bit patterns and deciding on an actions at line rate. The complexity of these functions at Line Rate, have been traditionally handled by ASICs and NPUs. However with the availability of faster and cheaper CPUs and hardware/software accelerations, it is possible to move these functions onto commodity hardware. This tutorial will talk about the various building blocks available to speed up packet processing both hardware based e.g. SR-IOV, RDT, QAT, VMDq, VTD and software based e.g. DPDK, Fd.io/VPP, OVS etc and give hands on lab experience on DPDK and fd.io fast path look up with following sessions. 1: Introduction to Building blocks: Sujata Tibrewala
A talk presented at the Automotive Grade Linux All-Members meeting on September 8, 2015. The focus on why AGL should adopt systemd, and highlights two of the more difficult integration issues that may arise while doing so. The embedded SVG image, courtesy Marko Hoyer of ADIT, is at http://she-devel.com/2015-07-23_amm_demo.svg
The document discusses the benefits of exercise for mental health. Regular physical activity can help reduce anxiety and depression and improve mood and cognitive function. Exercise causes chemical changes in the brain that may help protect against mental illness and improve symptoms for those who already suffer from conditions like anxiety and depression.
The document contains replies from three customers praising the service they received from Sytner Maidenhead dealership employees. Irfan thanks Louise and the team for a seamless car purchase experience, singling out Craig for being welcoming, patient, and helpful. Om echoes Irfan's praise for Craig and Louise. Eduard thanks Craig for his professionalism and friendly approach during a car handover, noting his father was over the moon with the experience and car.
Properties are available for sale in General Trias, Cavite located in non-flooded and non-fault line areas. The down payment can be paid over 18 months, and financing is available through in-house and bank options. To inquire, call Cora Sacdalan at the provided phone numbers or visit the listed website.
The document advertises properties for sale in General Trias, Cavite, Philippines. It provides contact information for Cora Sacdalan to inquire about available homes that are not in flooded or fault line areas, with a down payment that can be paid over 18 months and financing options available through in-house or bank loans. Properties offered include those that do and do not require the Residential Freehold Ownership Certificate.
Cohen Siegel Investors have three generations of property development experience in the Washington D.C. Area. They are responsible for some of the most attractive and high quality builds that have been constructed in the area over the past fifty decades. What has been integral to their success is their commitment to uphold their visionary aesthetic and quality values, despite growing pressure on costs and efficiency. Their projects have covered a vast range of property development fields.
The document outlines an agenda for a Red Hat security seminar covering emerging technologies like the Xen hypervisor and virtualization, security features in Red Hat like SELinux and its role in building security openly, and questions from attendees about Red Hat's security certifications and standards work. Hands-on labs were also planned to demonstrate technologies discussed.
2009-03-13 Atlanda System z Council MeetingShawn Wells
The document provides an overview of current and future states of Linux on IBM System z. It summarizes Red Hat Enterprise Linux 5.3 updates, including technical highlights for System z such as support for the latest z10 instruction set and cryptographic acceleration. It also outlines works in progress for upcoming RHEL 5.4 and 6 releases, noting plans to integrate additional z/Architecture features and improve performance.
2009-06-18 CAVMEN System z Users Group UpdateShawn Wells
Invited to return to CAVMEN, gave update on RHEL for System z. Was asked to discuss Red Hat Community Contributions and how the upstream->Fedora->RHEL model works. Discussed Libvirt as API capable of communicating to multiple hypervisors.
2009-05-05 A Customer's Perspective on Making Enterprise Linux Deployable, Sc...Shawn Wells
Salt River Project implemented Red Hat Satellite to manage their growing Linux environment across IBM System z mainframes and HP ProLiant blades. Satellite provided centralized management of updates, configurations, and monitoring which improved efficiency and reduced errors. It allowed SRP to deploy new systems twice as fast and make changes to hundreds of systems in minutes. Satellite also improved uptime by reducing human errors and provided detailed inventory and search capabilities. The implementation helped SRP manage more systems with fewer administrators and lower costs.
2009-12-04 New York City System z Executive CouncilShawn Wells
Invited by Len Santalucia (Former CTO, IBM Systems and Technology Group) to brief NYC financial services customers on Red Hat's System z platform capabilities. Stepped through Red Hat's development models, and plans for common management across Xen/PowerVM/zVM/Hyperion/VMWare.
2009-01-28 DOI NBC Red Hat on System z Performance ConsiderationsShawn Wells
Presented with the U.S. Department of the Interior, National Business Center. DOI NBC offered a for-fee Linux on System z to the U.S. Government. This presentation steps through performance management considerations, including: FCP/SCSI single path vs multipath LMV; filesystem striping; crypto express2 accelerator (CEX2A) SSL handshakes; cryptographic performance (WebSEAL SSL Access); and CMM1 & CMMA.
2009-03-03 SHARE Conference, Current & Future State of Linux on System zShawn Wells
Presented at SHARE conference, March 2009. Steps through Red Hat System z updates, RHEL 5.3 release (what's new, what's coming), and talks about upstream development efforts for Linux on System z (s390x). Mentions of accelerated in-kernel cryptography, OSA port updates, SELinux per-package access controls, nf_conntrack subsystem, auditing updates, address space randomization, high resolution timers.
2008-07-30 IBM Teach the Teacher (IBM T3), Red Hat Update for System zShawn Wells
Red Hat Update at IBM Teach the Teacher (IBM T3) Conference in Endicott, NY. Covering Red Hat's community development model, System z announcements, SELinux, SCAP, and Red Hat Network Satellite for Systems Management.
2008 08-12 SELinux: A Key Component in Secure InfrastructuresShawn Wells
Presented at SHARE Conference, "SELinux: A Key Component in Secure Infrastructures"
Covers "what is SELinux?," Type Enforcement, SELinux Usage, and example scenarios.
2008-01-23 Red Hat Overview to CUNY Information Managers ForumShawn Wells
This document appears to be an agenda for a Red Hat information session discussing their products and technologies. It includes:
- Introductions of three Red Hat solutions architects
- An agenda with times for presentations on topics like certificate management, directory services, securing infrastructure, and SELinux
- Overviews of Red Hat as a company and their development model
- Discussions of technologies like virtualization using Xen, security certifications for Red Hat Enterprise Linux, and enhancements in RHEL5 like SELinux
- Explanations of solutions like logical volume management for mirroring, multipath I/O, and the MRG real-time kernel
- An overview of the AMQP open messaging standard
2008-10-15 Red Hat Deep Dive Sessions: SELinuxShawn Wells
This document discusses SELinux and provides details about:
1) The three SELinux policy types - targeted, strict, and multi-level security (MLS). It explains the differences between these policy types.
2) How SELinux works using type enforcement to define security contexts for subjects and objects to enforce access controls.
3) Tools that system administrators can use to manage SELinux policies and troubleshoot issues like semanage, sealert, and audit2allow. It provides examples of using these tools.
4) A scenario where a corporate VPN update broke a user's configuration and how SELinux logs and tools could help fix the issue.
Public call for Red Hat System z partners. Step through current Red Hat/IBM relationship, current System z campaigns, technical review of RHEL roadmap. Introduced several new customer references: (1) City Government of Recife, Brazil; (2) Fratelli Carli in Italy; (3) EDB in the Nordics; (4) Salt River Project in USA; (5) Bank of New Zealand.
2010-03-30 Red Hat Identity Management, Certificate System Technical OverviewShawn Wells
Presented to DoD/IC PKI Users Group. Steps through overview of Red Hat Certificate System, covering issues such as: (1) Token Innovations; (2) Scalability and Performance; (3) High Availability and Disaster Recovery; (4) Tools and SDKs; (5) NSS Crypto Libraries; (6) New features; (7) Roadmap (certificate renewal, SELinux policies, IPv6, TPS roles....).
SHARE.ORG in Boston Aug 2013 RHEL update for IBM System zFilipe Miranda
Red Hat Enterprise Linux update for IBM System z
Presented at SHARE in Aug 23 2013
More information about SHARE can be found here: https://share.confex.com/share/121/webprogram/Session13857.html
www.share.org
(Embedded Linux Conference Europe 2014)
Linux uses many kind of embedded products. The products include not only consumer electronics but also control systems such as programmable logic controllers. There are many type of infrastructure systems and each system has different technical requirements. The requirements include not only real-time performance but also reliability-related functions. The infrastructure systems have to meet all the requirements. This presentation gives a summary of our study and development to adapt the Linux to infrastructure systems. Then we discuss the direction of future development. Please note, this presentation doesn't focus on a specific product.
This document provides an overview of efforts to port Android 10 to inexpensive single board computers like the Orange Pi using only open source components. It discusses the requirements to use the latest Android version, a cheap board, only open source projects, and to have a working solution out of the box. The document outlines the project structure, including mainline kernel with patches, Mesa for graphics, and upstream HWComposer and audio HAL projects. It provides timeline details for graphics and video driver mainlining. Supported boards currently include Orange Pi PC, Plus2e and Raspberry Pi 4, with plans to expand support. Building instructions are provided.
Fedora 15 "Lovelock" introduces several new features for desktop users, developers, and system administrators. For desktop users, it features GNOME 3.0, Btrfs filesystem, improved power management, LibreOffice, and Tryton business applications. Developers will benefit from tools like BoxGrinder for appliance generation, GCC 4.6 improvements, Maven 3, Python 3.2, and Rails 3. System administrators gain consistent network device naming, a dynamic firewall, and improved compression for live images using the xz algorithm. Alternative desktop environments and applications are available in different Fedora Spins.
The Civil Infrastructure Platform (CIP) is creating a super long-term supported (SLTS) open source "base layer" for industrial grade software. We have been working on security fixes and some backported features since the moment we decided that Linux kernel v4.4 would be the first SLTS version. In this talk, we will describe the current development
status of the SLTS kernel and testing environment. First, we'll explain our kernel development policy. Then, we'll describe the functionality that has been backported. Second, we'll talk about testing before using our base-layer on real products. We have been developing a test framework to collect and share test results. To build it, we don't want to duplicate existing work such as KernelCI, Fuego and others. For that reason, we are trying to collaborate and contribute to such projects.
This slideshow gives feedback about using Linux in industrial projects. It is part of a conference held by our company CIO Informatique Industrielle at ERTS 2008, the European Embedded Real Time software Congress in Toulouse
An Essential Relationship between Real-time and Resource PartitioningYoshitake Kobayashi
(ELC Europe 2013)
Running real-time and general purpose applications on a same hardware is normally a crazy idea in most case. However, we strongly focus to run both applications on a hardware without virtualization. Resource Partitioning enables the assignment of hardware resource (e.g.: core, execution time, memory bandwidth or device access) to processes with special requirements (e.g: real-time performance or safety requirements).
In this talk, we would like to discuss current limitation on Linux kernel and describe how to solve it.
The Civil Infrastructure Platform (CIP) - launched in April - CIP defined and started to realize a super long-term supported open source "base layer" for industrial grade software. This base layer aims to be used for current and future industrial systems which supports machine-to-machine connectivity for digital future. This kind of systems, being the field for decades, should have long-term support for security and robustness reasons. In this talk, we will show the first steps on CIP development. This includes initial set of components for the base layer and its maintainers. Are you ready? It’s time to start your development with and for the CIP.
2009-01-28 DOI NBC Current & Future State of Linux on System zShawn Wells
Presented with the U.S. Department of the Interior, National Business Center. DOI NBC offered a for-fee Linux on System z to the U.S. Government. This call was to update their customers on the current and future state of Linux on System z.
The document summarizes recent developments in the Linux 2.6 kernel series, including changes to the development model, source code management, new features like kobject events and inotify, and new system calls. It also discusses changes and improvements to filesystems, allocators, clustering, timers, namespaces, paravirtualization, and the introduction of ext4.
Red Hat for IBM System z is an overview presentation that covers:
1) Red Hat's business overview including growth, revenues, and collaboration with IBM.
2) The Red Hat Enterprise Linux lifecycle roadmap and features of RHEL7 including new security and file system options.
3) Enhancements in RHEL7 that are specific to IBM System z architectures like improved DASD statistics and crypto adapter support.
The document provides highlights from a Red Hat Enterprise Linux roadmap presentation. It describes the current lifecycle and status of RHEL 5 and 6, with RHEL 5 transitioning to a maintenance phase and RHEL 6 in active development. Upcoming features for RHEL 6 include improved virtualization, storage, and hardware enablement. RHEL 7 development is underway, focusing on efficiency, security, and developer tools. The presentation then covers specific technical topics for virtualization, the kernel, hardware enablement, and other areas.
Building Linux IPv6 DNS Server (Complete Soft Copy)Hari
The document discusses building a Linux IPv6 DNS server. It provides an overview of the project which aims to configure a DNS server in Linux with IPv6 name resolution. It discusses the hardware and software requirements including using Red Hat Linux, kernel version 2.4 or higher, and BIND version 9. It also summarizes the key steps in building the DNS server such as creating a new kernel, making the DNS server support IPv6, and providing a backup of the existing kernel.
The document discusses plans to establish an institutional high performance computing (HPC) facility at North-West University. It outlines the technical goals of building a Beowulf cluster to link existing departmental clusters and integrate with national and international computational grids. It also discusses management principles for the new HPC facility to ensure sustainability, efficiency, reliability, availability and high performance.
Similar to 2009-09-24 Get the Hype on System z Webinar with IBM, Current & Future Linux on System z Technology (20)
The document discusses challenges that ARCYBER faces in deploying numerous applications for their DCO mission using traditional methods and proposes adopting a container strategy using technologies like Docker and Kubernetes to package applications and dependencies to allow for easier and faster deployment. It outlines how a container platform based on these technologies can provide benefits like continuous integration/delivery, rapid scaling, service discovery, and management of the application lifecycle and services. The presentation promotes Red Hat OpenShift as a container application platform that can provide these capabilities along with security features and certifications needed for government use.
2017-07-12 GovLoop: New Era of Digital SecurityShawn Wells
This document discusses the new era of digital security in light of emerging technologies like cloud computing, software-defined infrastructure, and the increased use of applications and devices outside of IT's control. It argues that traditional network-based defenses are no longer enough and that security must evolve to be continuous and integrated throughout the IT lifecycle. It presents containers and container platforms like Kubernetes as an approach that can help achieve both agility and improved security by allowing for easy and secure application deployment across hybrid environments.
2017-07-11 GovLoop: Changing the Open Hybrid Cloud Game (Deploying OpenShift ...Shawn Wells
Microsoft and Red Hat have certified OpenShift Container Platform to run on Microsoft Azure. This talk steps through the reference architecture and ongoing work to accelerate government ATOs.
This document discusses building trust and compliance in cloud environments. It covers hardware and software building blocks like Intel TXT and Linux/KVM that can establish a root of trust from the hardware level. It then discusses how open source projects like OpenCIT can provide visibility into platform trust and enforce compliance. Example reference architectures are provided using solutions from Intel, Red Hat, HyTrust and others. The presentation concludes with a demo of security scanning and OpenCIT capabilities.
This document provides an agenda for an OpenSCAP workshop that will explore scanning, reporting, and remediation using OpenSCAP tools and SCAP content. The workshop will include installing and reviewing compliance profiles in RHEL 7, performing and interpreting compliance scans and remediating findings, and creating a custom configuration baseline. It outlines the tasks to be completed which include installing OpenSCAP and SCAP content, reviewing available profiles and hardening guides, performing a local scan and reviewing results, extracting and reviewing remediation scripts, scanning a VM with the DISA STIG profile, and demonstrating the SCAP Workbench tool.
This document summarizes a presentation about security automation updates for Red Hat Enterprise Linux 7 (RHEL7) Department of Defense Security Technical Implementation Guide (DoD STIG) compliance. The presentation covers RHEL7 STIG and DoD Secure Host Baseline status, demonstrations of deploying systems in STIG compliance and configuration compliance scanning with OpenSCAP, and a discussion of government plans and future profiles.
2016-08-24 FedInsider Webinar with Jennifer Kron - Securing Intelligence in a...Shawn Wells
This document discusses securing intelligence in an open hybrid cloud environment. It covers foundational security practices like testing identity and access management, continuous monitoring, and standardized implementations. It also discusses enabling federated data access across systems while maintaining security and privacy. Finally, it presents examples of projects that map security policies to systems and provide abstracted views of data to allow searching across different agencies' databases.
2016-08-18 Red Hat Partner Security UpdateShawn Wells
The document discusses a security update presentation given by Shawn Wells, Chief Security Strategist. The presentation covered security initiatives like the Common Criteria and FIPS 140-2 standards. It also included a live demo of scanning systems for compliance with configuration guidelines like the Department of Defense STIG using OpenSCAP tools. Wells discussed compliance status and remediation timelines for Red Hat Enterprise Linux versions 5, 6 and 7. The presentation provided an overview of the SCAP standard and how it helps provide standardized security configuration and reporting.
CSCF participates in open source security projects like SELinux and OpenSCAP. It collaborates with Red Hat to integrate these projects into Red Hat Enterprise Linux to create open, secure platforms. Red Hat then commercializes these platforms along with services and certifications, serving over 100,000 customers.
2015-10-05 Fermilabs DevOps Alone in the DarkShawn Wells
This document discusses the differences between DevOps practices in private industry and security practices in government. It notes that private companies can deploy code over 10,000 times per day, whereas government processes involve multiple standardized steps for categorizing, selecting, implementing, assessing, authorizing, and monitoring controls. The document proposes two initiatives - standardizing controls and configuration baselines across the government, and automating assessments using the Security Content Automation Protocol (SCAP). It provides information on engaging with the OpenSCAP community and learning more about SCAP.
2015-06-25 Red Hat Summit 2015 - Security Compliance Made EasyShawn Wells
The document discusses how Security Content Automation Protocol (SCAP) is making security compliance easier. It summarizes that SCAP allows automated compliance checks of systems through profiles that can remediate configurations with a single command. Live demos show using SCAP for installation, scanning systems, and remediating any issues in real-time.
The document argues that IT professionals are manufacturers rather than craftsmen because they share resources through open source and cloud computing to work more quickly and flexibly. It suggests that agility is enabled by sharing code and infrastructure, and that Red Hat acts as a catalyst for this type of collaborative development approach.
2014-12-16 defense news - shutdown the hackersShawn Wells
The document discusses technologies for continuous monitoring and data standardization. It begins with an overview of a presentation on vulnerability management, configuration management, and the DoD Centralized Super Computing Facility story. It then covers various topics related to cybersecurity including reliance on technology over time, the ever-increasing capability and complexity of systems, cybercrime statistics, and the Security Content Automation Protocol (SCAP).
This document outlines a presentation on applying SCAP (Security Content Automation Protocol) to automate security compliance and remediation. The presentation has three main goals: 1) detail security automation technology and initiatives like OpenSCAP, the SCAP Security Guide, and evolving remediation capabilities; 2) provide a live demo of configuration compliance scanning, patch and vulnerability scanning, and generating certification/accreditation paperwork; and 3) discuss the roadmap for government initiatives, SCAP packaging, and future profiles. The document provides an overview of the topics that will be covered in each section of the presentation.
2014-07-30 defense in depth scap workbookShawn Wells
The document provides information about a workshop on SCAP and STIGs. It discusses the SCAP Security Guide project which produces security guidance and baselines using SCAP. It describes how to install the SCAP content for Red Hat Enterprise Linux 6. It then explains the key components of SCAP - XCCDF for security checklists, OVAL for vulnerabilities, and OpenSCAP for interpreting SCAP data. It outlines how to operate SCAP tools to validate rules, generate HTML guides, perform scans, and interpret results. It also covers customizing SCAP content by authoring new rules and profiles.
2014-05-08 IT Craftsmanship to IT ManufacturingShawn Wells
This document discusses Red Hat's transition from IT craftsmanship to IT manufacturing. It notes that any forward-looking statements represent Red Hat's estimates or views as of the date of the presentation only, and are subject to change. The focus of the next 30 minutes will be on how Open Compute fits within Red Hat's strategy, differences between IaaS, PaaS and cloud offerings, and upcoming technology projects. Geard is introduced as a command-line tool for integrating and managing Docker containers in Linux systemd. It allows building, deploying, and monitoring containerized applications from the CLI or API. OpenSCAP is also briefly mentioned as a tool for software supply chain hardening through whitelisting, measurements,
2014-04-28 cloud security frameworks and enforcementShawn Wells
This document discusses cloud security frameworks and enabling technologies. It begins with an overview of the cloud security lifecycle and government certification models. It then discusses the Security Content Automation Protocol (SCAP) and containers as enabling security technologies. The remainder of the document focuses on a case study of Westfield's MADFW/MITE infrastructure as a service platform and how it plans to transition to a platform as a service model using containerization to provide multi-tenancy.
2014 04-17 Applied SCAP, Red Hat Summit 2014Shawn Wells
The document outlines a 45 minute presentation with 3 goals: 1) detail security automation technology and initiatives including OpenSCAP, configuration compliance using SCAP Security Guides, and evolving remediation capabilities; 2) provide a live demo of configuration compliance scanning, patch and vulnerability scanning, and certification/accreditation paperwork generation; 3) discuss the roadmap for government plans, packaging, and future profiles. It then provides an overview of SCAP, the SCAP Security Guide project and contributors, and remediation capabilities including both bash and puppet approaches.
Top Benefits of Using Salesforce Healthcare CRM for Patient Management.pdfVALiNTRY360
Salesforce Healthcare CRM, implemented by VALiNTRY360, revolutionizes patient management by enhancing patient engagement, streamlining administrative processes, and improving care coordination. Its advanced analytics, robust security, and seamless integration with telehealth services ensure that healthcare providers can deliver personalized, efficient, and secure patient care. By automating routine tasks and providing actionable insights, Salesforce Healthcare CRM enables healthcare providers to focus on delivering high-quality care, leading to better patient outcomes and higher satisfaction. VALiNTRY360's expertise ensures a tailored solution that meets the unique needs of any healthcare practice, from small clinics to large hospital systems.
For more info visit us https://valintry360.com/solutions/health-life-sciences
Consistent toolbox talks are critical for maintaining workplace safety, as they provide regular opportunities to address specific hazards and reinforce safe practices.
These brief, focused sessions ensure that safety is a continual conversation rather than a one-time event, which helps keep safety protocols fresh in employees' minds. Studies have shown that shorter, more frequent training sessions are more effective for retention and behavior change compared to longer, infrequent sessions.
Engaging workers regularly, toolbox talks promote a culture of safety, empower employees to voice concerns, and ultimately reduce the likelihood of accidents and injuries on site.
The traditional method of conducting safety talks with paper documents and lengthy meetings is not only time-consuming but also less effective. Manual tracking of attendance and compliance is prone to errors and inconsistencies, leading to gaps in safety communication and potential non-compliance with OSHA regulations. Switching to a digital solution like Safelyio offers significant advantages.
Safelyio automates the delivery and documentation of safety talks, ensuring consistency and accessibility. The microlearning approach breaks down complex safety protocols into manageable, bite-sized pieces, making it easier for employees to absorb and retain information.
This method minimizes disruptions to work schedules, eliminates the hassle of paperwork, and ensures that all safety communications are tracked and recorded accurately. Ultimately, using a digital platform like Safelyio enhances engagement, compliance, and overall safety performance on site. https://safelyio.com/
Unveiling the Advantages of Agile Software Development.pdfbrainerhub1
Learn about Agile Software Development's advantages. Simplify your workflow to spur quicker innovation. Jump right in! We have also discussed the advantages.
Using Query Store in Azure PostgreSQL to Understand Query PerformanceGrant Fritchey
Microsoft has added an excellent new extension in PostgreSQL on their Azure Platform. This session, presented at Posette 2024, covers what Query Store is and the types of information you can get out of it.
How Can Hiring A Mobile App Development Company Help Your Business Grow?ToXSL Technologies
ToXSL Technologies is an award-winning Mobile App Development Company in Dubai that helps businesses reshape their digital possibilities with custom app services. As a top app development company in Dubai, we offer highly engaging iOS & Android app solutions. https://rb.gy/necdnt
Microservice Teams - How the cloud changes the way we workSven Peters
A lot of technical challenges and complexity come with building a cloud-native and distributed architecture. The way we develop backend software has fundamentally changed in the last ten years. Managing a microservices architecture demands a lot of us to ensure observability and operational resiliency. But did you also change the way you run your development teams?
Sven will talk about Atlassian’s journey from a monolith to a multi-tenanted architecture and how it affected the way the engineering teams work. You will learn how we shifted to service ownership, moved to more autonomous teams (and its challenges), and established platform and enablement teams.
UI5con 2024 - Keynote: Latest News about UI5 and it’s EcosystemPeter Muessig
Learn about the latest innovations in and around OpenUI5/SAPUI5: UI5 Tooling, UI5 linter, UI5 Web Components, Web Components Integration, UI5 2.x, UI5 GenAI.
Recording:
https://www.youtube.com/live/MSdGLG2zLy8?si=INxBHTqkwHhxV5Ta&t=0
WWDC 2024 Keynote Review: For CocoaCoders AustinPatrick Weigel
Overview of WWDC 2024 Keynote Address.
Covers: Apple Intelligence, iOS18, macOS Sequoia, iPadOS, watchOS, visionOS, and Apple TV+.
Understandable dialogue on Apple TV+
On-device app controlling AI.
Access to ChatGPT with a guest appearance by Chief Data Thief Sam Altman!
App Locking! iPhone Mirroring! And a Calculator!!
Hand Rolled Applicative User ValidationCode KataPhilip Schwarz
Could you use a simple piece of Scala validation code (granted, a very simplistic one too!) that you can rewrite, now and again, to refresh your basic understanding of Applicative operators <*>, <*, *>?
The goal is not to write perfect code showcasing validation, but rather, to provide a small, rough-and ready exercise to reinforce your muscle-memory.
Despite its grandiose-sounding title, this deck consists of just three slides showing the Scala 3 code to be rewritten whenever the details of the operators begin to fade away.
The code is my rough and ready translation of a Haskell user-validation program found in a book called Finding Success (and Failure) in Haskell - Fall in love with applicative functors.
UI5con 2024 - Bring Your Own Design SystemPeter Muessig
How do you combine the OpenUI5/SAPUI5 programming model with a design system that makes its controls available as Web Components? Since OpenUI5/SAPUI5 1.120, the framework supports the integration of any Web Components. This makes it possible, for example, to natively embed own Web Components of your design system which are created with Stencil. The integration embeds the Web Components in a way that they can be used naturally in XMLViews, like with standard UI5 controls, and can be bound with data binding. Learn how you can also make use of the Web Components base class in OpenUI5/SAPUI5 to also integrate your Web Components and get inspired by the solution to generate a custom UI5 library providing the Web Components control wrappers for the native ones.
Mobile App Development Company In Noida | Drona InfotechDrona Infotech
Drona Infotech is a premier mobile app development company in Noida, providing cutting-edge solutions for businesses.
Visit Us For : https://www.dronainfotech.com/mobile-application-development/
Preparing Non - Technical Founders for Engaging a Tech AgencyISH Technologies
Preparing non-technical founders before engaging a tech agency is crucial for the success of their projects. It starts with clearly defining their vision and goals, conducting thorough market research, and gaining a basic understanding of relevant technologies. Setting realistic expectations and preparing a detailed project brief are essential steps. Founders should select a tech agency with a proven track record and establish clear communication channels. Additionally, addressing legal and contractual considerations and planning for post-launch support are vital to ensure a smooth and successful collaboration. This preparation empowers non-technical founders to effectively communicate their needs and work seamlessly with their chosen tech agency.Visit our site to get more details about this. Contact us today www.ishtechnologies.com.au
Liberarsi dai framework con i Web Component.pptxMassimo Artizzu
In Italian
Presentazione sulle feature e l'utilizzo dei Web Component nell sviluppo di pagine e applicazioni web. Racconto delle ragioni storiche dell'avvento dei Web Component. Evidenziazione dei vantaggi e delle sfide poste, indicazione delle best practices, con particolare accento sulla possibilità di usare web component per facilitare la migrazione delle proprie applicazioni verso nuovi stack tecnologici.
All you need to know about Spring Boot and GraalVM
2009-09-24 Get the Hype on System z Webinar with IBM, Current & Future Linux on System z Technology
1. Get the Hype on System z
Current & Future Linux on System z Technology
Thursday September 24th
2009
2. 2
Agenda
Part 1: Current Technology
Review of RHEL 5.4, released
Tuesday 2-SEPT
Inclusion of Named Saved
Segments (NSS)
Updated fiber channel drivers
& utilities
Rebasing of s390utils to
version 1.8.1
Tentative roadmap for RHEL 6 for
System z
An update on CMM2 (i.e. CMMA)
development activities via the
CMM-Lite technology
Part 2: Future Technology
What technologies are the joint IBM
and Red Hat Linux on System z
teams working on?
Storage
Networking
Usability
Crypto
Misc
3. 3
Linux Kernel Development: Rate of Change
Average: 6,422 lines added, 3,285 lines removed, and 1,687 lines changed every day for the
past 4 1/2 years.
Source: Linux Foundation
4. 4
Linux on System z specific Kernel Extensions
2.6.18 2.6.19 2.6.20 2.6.21 2.6.22 2.6.23 2.6.24 2.6.25 2.6.26 2.6.27 2.6.28 2.6.29 2.6.30 2.6.31
0
2000
4000
6000
8000
10000
12000
14000
2.6.18 2.6.19 2.6.20 2.6.21 2.6.22 2.6.23 2.6.24 2.6.25 2.6.26 2.6.27 2.6.28 2.6.29 2.6.30 2.6.31
0
50
100
150
200
250
All
s390
6. 6
IBM collaborates with the Linux
community
...has been an active participant since 1999
...is one of the leading commercial contributors to Linux
...has over 600 full-time developers working with Linux and open source
Linux Kernel &
Subsystem
Development
Expanding the
Open Source
Ecosystem
Foster and Protect
the Ecosystem
Promoting Open
Standards
& Community
Collaboration
Software
Freedom
Law Center
Free Software
Foundation (FSF),
and more...
Software
Freedom
Law Center
Free Software
Foundation (FSF),
and more...
The Linux
Foundation
Linux Standards
Base
Common Criteria
certification,
and more...
The Linux
Foundation
Linux Standards
Base
Common Criteria
certification,
and more...
Apache
Eclipse
Mozilla Firefox
OpenOffice.org
,
and more...
Apache
Eclipse
Mozilla Firefox
OpenOffice.org
,
and more...
Kernel Base
Security
Systems Mgmt
Virtualization
Filesystems,
and more...
Kernel Base
Security
Systems Mgmt
Virtualization
Filesystems,
and more...
7. 7
The IBM Linux Development Process
IBM Linux on System z Development contributes in the following areas
Kernel
s390-tools
Open Source Tools (e.g. eclipse, ooprofile)
GCC, GLIBC, Binutils
Developer Works
Website
Developer Works
Website Community
Upstream
Kernel
CustomerCustomer
8. 8
Red Hat Development Model
Community
Development with “upstream” communities
Kernel, glibc, etc
Collaboration with partners, IBM,
open source contributors
9. 9
Red Hat Development Model
Fedora
Rapid innovation
Latest technologies
Community Supported
Released ~6mo cycles
10. 10
Red Hat Development Model
Red Hat Enterprise Linux
Stable, mature, commercial product
Extensive Q&A, performance testing
Hardware & Software Certifications
7-10 year maintenance
Core ABI compatibility
guarantee
Major releases 2-3yr cycle
11. 11
Fedora for System z
Opens Linux on System zOpens Linux on System z
development to entire Opendevelopment to entire Open
Source community, not just IBM,Source community, not just IBM,
Red Hat, and Novell.Red Hat, and Novell.
Linux for System z now followsLinux for System z now follows
same development process assame development process as
every other platform, allowing forevery other platform, allowing for
faster Q&A, faster featurefaster Q&A, faster feature
inclusion, and increased stabilityinclusion, and increased stability
http://fedoraproject.org/wiki/Architectures/s390x
12. 12
Red Hat Enterprise Linux Life Cycle
Fully supported through standard life cycle
of 7 years from GA.
Async bug, enhancement, and security fixes
depending on importance of the issue (e.g.
Critical Impact security).
Production 1 Phase
Minor releases, approx. 2 per year, roughly a
6-month cycle, stretching out at the end:
Hardware enablement.
General bugfixing based on priority.
General features if strong justification
(generally Major releases are the
release vehicle for new Features).
ISO images & media kits.
4 years of Production 1 for RHEL 4, 5 and
later
One year overlap between the Production 1
Phase of two subsequent major releases.
Production 2 Phase
Transition from Production 1 to Production 3
Concluded by final, bugfix-only minor release on
flexible schedule after 2nd subsequent major
release (minimal HW enablement: PCI-IDs).
Scope: defects reported during Production 1
Production 3 Phase
Time between the final update release and the
end of the 7-year standard life cycle.
Critical bug and security fixes only...
Planning based on customer requirements,
hardware life cycles and upstream
development.
This schedule is only a schematic view and will
be adapted over time.
Customers can contact Red Hat sales
regarding details for an optional extension
beyond the regular 7 years.
GA Year 1 Year 2 Year 3 Year 4 Year 5 Year 6 Year 7
Approximately 4 years of Production 1 Phase
At least 1 year of Production 2 Phase.
7 years total standard life cycle
13. 13
Red Hat Enterprise Linux Life Cycle
Current planning snapshot. Exact schedule dates are subject to change.
2006 2007 2008 20112009
U
7
U8...
U
3
U4
U9
4.5 4.6
5.1 5.2
4.7 4.9
5.3 5.4 5.5 5.6
2010
5.8
4.8
5.7
RHEL 6
RHEL 5
RHEL 4
RHEL 2.1 at end of regular 7 year life
cycle on May 31, 2009
RHEL 3 in Production 3 phase until October 31, 2010
RHEL 4 entering Production 2 phase by end of May 2009, after the GA of
RHEL 4.8
RHEL 5 development slowing down
Development focus shifting from RHEL5 to RHEL 6
15. 15
RHEL 5.3: Overview
FasTrack 7%
Early release of low impact fixes
Hardware Enablement - 7%
New chipsets and processor
feature support
New Features - 21%
Feature requests from customers
and partners
Other - 65%
Bugfixes
Documentation
GA on January 20, 2009
~150 additions, ~3,400 BugZillas
FasTrack
Features
Hardware
Other
16. 16
RHEL 5.3: Networking
Provision of several selectable TCP congestion modules (2.6.13)
Ref: http://lwn.net/Articles/128681/
IPV6 - Support several new sockopt / ancillary data in Advanced API (2.6.14)
IPv4/IPv6: UFO (UDP Fragmentation Offload) (2.6.15)
Offloads IP fragmentation functionality of large UDP datagram to hardware
Improves performance
Add nf_conntrack subsystem: (2.6.15)
Common IPv4/IPv6 generic connection tracking subsystem
Allows IPv6 to have a stateful firewall capability (not previously possible)
Increased security
Enables analysis of whole streams of packets, rather than only checking
the headers of individual packets
17. 17
RHEL 5.3: Networking
IPv6
RFC 3484 compliant source address selection (2.6.15)
Add support for Router Preference (RFC4191) (2.6.17)
Add Router Reachability Probing (RFC4191) (2.6.17)
Generic segmentation offload (GSO) (2.6.18)
Available in place of TSO (TCP Segmentation Offload)
Performance improvements for large packet transfers without hardware
assistance
SELinux per-packet access controls
Replaces old packet controls
Add Secmark support to core networking
Allows security subsystems to place security markings on network
packets (2.6.18)
Inclusion of DCCPv6 – Datagram Congestion Control Protocol (2.6.16)
18. 18
RHEL 5.3: Storage Management
RAID 4/5/10 support added to dm-raid.
Full support for software iSCSI target.
Full support for LVM cluster mirror (cmirror).
Add the ability to prioritize paths on HP MSA/HSV active/passive storage
controllers.
Reduce boot time by improving lvmcache, to reduce the amount of device
scanning.
Enhanced disk partition statistics
19. 19
RHEL 5.3: File System / Storage Mgmt
Block device encryption support, including support for /root partition, including
configuration in anaconda installer.
ext4 tech preview
samba: rebased from 3.0.28 to 3.0.32 for bugfixes
Now supports Windows Vista and 2008
fixes for DC functionality (interoperability with Citrix and Domain trusts)
Ecryptfs fixes (tech preview)
20. 20
RHEL 5.3: System Services
Rebased version of CUPS print server, now fully Kerberized
dhcpv6 support
ktune, a service that sets several kernel tuning parameters to values suitable for
specific system profiles. Currently, ktune provides a profile for large-memory
systems running disk-intensive and network-intensive applications. New
package, tech preview.
Package upstream rebases to the following utilities:
ksh, lm-sensors, lftp, net-snmp, openIPMI-tool, openldap, openmotif, python-
urlgrabber, openPegasus, VNC
RPM to Fedora 9 version, which includes numerous bugfixes
yum and yum-utils primarily for speed improvements
totem, rb, and gstreamer rebased to enable modular codecs addition
Numerous wireshark security fixes
21. 21
RHEL 5.3: Security Enhancements
pkinit clients can now be configured to use keys for client certificates which may
not contain Kerberos-specific extensions & interoperability fixes
nss_ldap now configured with support for paged results extension
SELinux: enablement of New NetworkManager and Audit functionality.
SELinux: Hundreds of AVC denial fixes.
Improved Audit and Logging
TTY input audit support
Remote audit logging via unencrypted connection
22. 22
RHEL 5.3: System z Specifics
BugZilla ID Summary
46327 stage1: sshd error loading shared lib: libfipscheck.so.1
184770 LTC18425-62140: (big) xDR system Initialization for LPAR Clients
472788 rhel 5.3 snapshot3 scsi mpath install failed on z9bc lpar
439479 LTC:5.3:201474:Include gcc 4.3 as Add-On for latest z10 instruction set support
439440 LTC:5.3:201160:Long Random Numbers Generation
439441 LTC:5.3:201158:Selective Logging of ECKD DASD devices
439482 LTC:5.3:201542:FCP - Enhanced Trace Facility
447379 LTC:5.3:200994:Linux CPU Node Affinity
463917 unable to find DASD drives to install
439484 LTC:5.3:201490:Libica Library: Integration of Icainfo
43946 LTC:5.3:201360:OSA 2 Ports per CHPID Support - Installer Enhancements
466474 [RHEL5.3] *** glibc detected *** /usr/bin/python: double free or corruption (!prev): 0x000 0000080d55e90 ***
466305 cosmetic error message: failure in nl_set_device_mtu
466291 anaconda silently omits uninitialized disk
BugZilla ID Summary
46327 stage1: sshd error loading shared lib: libfipscheck.so.1
184770 LTC18425-62140: (big) xDR system Initialization for LPAR Clients
472788 rhel 5.3 snapshot3 scsi mpath install failed on z9bc lpar
439479 LTC:5.3:201474:Include gcc 4.3 as Add-On for latest z10 instruction set support
439440 LTC:5.3:201160:Long Random Numbers Generation
439441 LTC:5.3:201158:Selective Logging of ECKD DASD devices
439482 LTC:5.3:201542:FCP - Enhanced Trace Facility
447379 LTC:5.3:200994:Linux CPU Node Affinity
463917 unable to find DASD drives to install
439484 LTC:5.3:201490:Libica Library: Integration of Icainfo
43946 LTC:5.3:201360:OSA 2 Ports per CHPID Support - Installer Enhancements
466474 [RHEL5.3] *** glibc detected *** /usr/bin/python: double free or corruption (!prev): 0x000 0000080d55e90 ***
466305 cosmetic error message: failure in nl_set_device_mtu
466291 anaconda silently omits uninitialized disk
24. 24
RHEL 5.4 : Overview
The official GA release of Red Hat Enterprise Linux 5.4 (*kernel-2.6.18-164.el5*)
was released on 02-Sep-2009
Generic (not s390 specific) updates include
Virtualization: full support for the Kernel-based Virtual Machine (KVM)
hypervisor only on x86_64 while Xen only x86 & Power based virtualization is
still available & supported
Network: Kernel & Userspace update to support Generic Receive Offload
(GRO) which increases the performance of inbound network connections by
reducing the amount of processing done by the CPU. Furthermore Netfilter
Framework & Bind Updates
Storage: Support for the XFS file system has also been added to the kernel
as a Technology Preview.
Tools: SystemTap is now fully supported, and has been re-based to the
latest upstream version.
25. 25
RHEL 5.4: File System / Storage Mgmt
Add integrity check to cryptsetup-luks, in order to meet FIPS-140 requirements.
Ext4 - refreshed the backport for our tech preview to bring in bug fixes and
support for delayed allocation.
File system freeze/quiesce interface added to support hardware snapshots for file
systems.
Full support for FUSE and libfuse to allow end users to more easily install
and use their own user space FUSE file systems.
26. 26
RHEL 5.4: System z Specifics
Other Included Features
For a complete list & current status, please visit http://bugzilla.redhat.com/
Alternatively, this link will bring you to the Red Hat Enterprise Linux 5.4 release
notes
anaconda
blktrace
distribution
kernel
mkinitrd
s390utils
system-config-network
systemtap
0
5
10
15
20
25
CLOSED
POST
ASSIGNED
NEW
Total Bugzilla-Entries: 71
New Features: 31
Open Issues: 16
Total Bugzilla-Entries: 71
New Features: 31
Open Issues: 16
27. 27
RHEL 5.4: System z Specifics
BugZilla ID Summary
475556 [LTC 5.4 FEAT] DS8000 support: Large volume support (userspace) [201738]
475569 [LTC 5.4 FEAT] Shutdown actions tools [201755]
461288 [EMC 5.4 feat] Require kernel support to issue Control I/O to CKD dasd on EMC Symmetrix
arrays
474688 [LTC 5.4 FEAT] Automatic IPL after dump (kernel) [201169]
475346 [LTC 5.4 FEAT] Improve checking mechanisms and workflow of Linux on System z Anaconda
install process [201676]
475670 [LTC 5.4 FEAT] Program directed IPL support - no XML in system dumper [200782]
475552 [LTC 5.4 FEAT] FCP - Performance data reports [201730]
488496 [LTC 5.4 FEAT] 201173:Crypto Hardware Enablement Device Driver Support - toleration
475564 [LTC 5.4 FEAT] Shutdown actions interface (userspace) [201748]
474679 [LTC 5.4 FEAT] Dynamic CPU hotplug daemon for System z [201132]
475345 [LTC 5.4 FEAT] Change list of Anaconda network alternatives to indicate supported devices
on System z [201679]
475551 [LTC 5.4 FEAT] TTY terminal server over IUCV (kernel) [201734]
BugZilla ID Summary
475556 [LTC 5.4 FEAT] DS8000 support: Large volume support (userspace) [201738]
475569 [LTC 5.4 FEAT] Shutdown actions tools [201755]
461288 [EMC 5.4 feat] Require kernel support to issue Control I/O to CKD dasd on EMC Symmetrix
arrays
474688 [LTC 5.4 FEAT] Automatic IPL after dump (kernel) [201169]
475346 [LTC 5.4 FEAT] Improve checking mechanisms and workflow of Linux on System z Anaconda
install process [201676]
475670 [LTC 5.4 FEAT] Program directed IPL support - no XML in system dumper [200782]
475552 [LTC 5.4 FEAT] FCP - Performance data reports [201730]
488496 [LTC 5.4 FEAT] 201173:Crypto Hardware Enablement Device Driver Support - toleration
475564 [LTC 5.4 FEAT] Shutdown actions interface (userspace) [201748]
474679 [LTC 5.4 FEAT] Dynamic CPU hotplug daemon for System z [201132]
475345 [LTC 5.4 FEAT] Change list of Anaconda network alternatives to indicate supported devices
on System z [201679]
475551 [LTC 5.4 FEAT] TTY terminal server over IUCV (kernel) [201734]
28. 28
RHEL 5.4: System z Specifics
BugZilla ID Summary
475556 [LTC 5.4 FEAT] DS8000 support: Large volume support (userspace) [201738]
475569 [LTC 5.4 FEAT] Shutdown actions tools [201755]
461288 [EMC 5.4 feat] Require kernel support to issue Control I/O to CKD dasd on EMC Symmetrix
arrays
474688 [LTC 5.4 FEAT] Automatic IPL after dump (kernel) [201169]
475346 [LTC 5.4 FEAT] Improve checking mechanisms and workflow of Linux on System z Anaconda
install process [201676]
475670 [LTC 5.4 FEAT] Program directed IPL support - no XML in system dumper [200782]
475552 [LTC 5.4 FEAT] FCP - Performance data reports [201730]
488496 [LTC 5.4 FEAT] 201173:Crypto Hardware Enablement Device Driver Support - toleration
475564 [LTC 5.4 FEAT] Shutdown actions interface (userspace) [201748]
474679 [LTC 5.4 FEAT] Dynamic CPU hotplug daemon for System z [201132]
475345 [LTC 5.4 FEAT] Change list of Anaconda network alternatives to indicate supported devices
on System z [201679]
475551 [LTC 5.4 FEAT] TTY terminal server over IUCV (kernel) [201734]
BugZilla ID Summary
475556 [LTC 5.4 FEAT] DS8000 support: Large volume support (userspace) [201738]
475569 [LTC 5.4 FEAT] Shutdown actions tools [201755]
461288 [EMC 5.4 feat] Require kernel support to issue Control I/O to CKD dasd on EMC Symmetrix
arrays
474688 [LTC 5.4 FEAT] Automatic IPL after dump (kernel) [201169]
475346 [LTC 5.4 FEAT] Improve checking mechanisms and workflow of Linux on System z Anaconda
install process [201676]
475670 [LTC 5.4 FEAT] Program directed IPL support - no XML in system dumper [200782]
475552 [LTC 5.4 FEAT] FCP - Performance data reports [201730]
488496 [LTC 5.4 FEAT] 201173:Crypto Hardware Enablement Device Driver Support - toleration
475564 [LTC 5.4 FEAT] Shutdown actions interface (userspace) [201748]
474679 [LTC 5.4 FEAT] Dynamic CPU hotplug daemon for System z [201132]
475345 [LTC 5.4 FEAT] Change list of Anaconda network alternatives to indicate supported devices
on System z [201679]
475551 [LTC 5.4 FEAT] TTY terminal server over IUCV (kernel) [201734]
475563 [LTC 5.4 FEAT] Shutdown actions interface (kernel) [201747]
474664 [LTC 5.4 FEAT] System z support for processor degradation
[200975]
475334 [LTC 5.4 FEAT] FCP - Performance Data collection (kernel)
[201590]
475572 [LTC 5.4 FEAT] HiperSockets Layer3 support for IPv6 [201751]
475548 [LTC 5.4 FEAT] FCP - Performance data collection (blktrace)
[201729]
477189 [LTC 5.4 FEAT] Pick up latest version of s390-tools
475558 [LTC 5.4 FEAT] TTY terminal server over IUCV (userspace)
[201735]
474646 [LTC 5.4 FEAT] Kernel NSS support - kernel part [200790]
475333 [LTC 5.4 FEAT] FCP - Performance Data collection & analysis
(userspace) [201591]
475571 [LTC 5.4 FEAT] Large image dump on DASD [201752]
475563 [LTC 5.4 FEAT] Shutdown actions interface (kernel) [201747]
474664 [LTC 5.4 FEAT] System z support for processor degradation
[200975]
475334 [LTC 5.4 FEAT] FCP - Performance Data collection (kernel)
[201590]
475572 [LTC 5.4 FEAT] HiperSockets Layer3 support for IPv6 [201751]
475548 [LTC 5.4 FEAT] FCP - Performance data collection (blktrace)
[201729]
477189 [LTC 5.4 FEAT] Pick up latest version of s390-tools
475558 [LTC 5.4 FEAT] TTY terminal server over IUCV (userspace)
[201735]
474646 [LTC 5.4 FEAT] Kernel NSS support - kernel part [200790]
475333 [LTC 5.4 FEAT] FCP - Performance Data collection & analysis
(userspace) [201591]
475571 [LTC 5.4 FEAT] Large image dump on DASD [201752]
29. 29
BugZilla ID Summary
475556 [LTC 5.4 FEAT] DS8000 support: Large volume support (userspace) [201738]
475569 [LTC 5.4 FEAT] Shutdown actions tools [201755]
461288 [EMC 5.4 feat] Require kernel support to issue Control I/O to CKD dasd on EMC Symmetrix
arrays
474688 [LTC 5.4 FEAT] Automatic IPL after dump (kernel) [201169]
475346 [LTC 5.4 FEAT] Improve checking mechanisms and workflow of Linux on System z Anaconda
install process [201676]
475670 [LTC 5.4 FEAT] Program directed IPL support - no XML in system dumper [200782]
475552 [LTC 5.4 FEAT] FCP - Performance data reports [201730]
488496 [LTC 5.4 FEAT] 201173:Crypto Hardware Enablement Device Driver Support - toleration
475564 [LTC 5.4 FEAT] Shutdown actions interface (userspace) [201748]
474679 [LTC 5.4 FEAT] Dynamic CPU hotplug daemon for System z [201132]
475345 [LTC 5.4 FEAT] Change list of Anaconda network alternatives to indicate supported devices
on System z [201679]
475551 [LTC 5.4 FEAT] TTY terminal server over IUCV (kernel) [201734]
BugZilla ID Summary
475556 [LTC 5.4 FEAT] DS8000 support: Large volume support (userspace) [201738]
475569 [LTC 5.4 FEAT] Shutdown actions tools [201755]
461288 [EMC 5.4 feat] Require kernel support to issue Control I/O to CKD dasd on EMC Symmetrix
arrays
474688 [LTC 5.4 FEAT] Automatic IPL after dump (kernel) [201169]
475346 [LTC 5.4 FEAT] Improve checking mechanisms and workflow of Linux on System z Anaconda
install process [201676]
475670 [LTC 5.4 FEAT] Program directed IPL support - no XML in system dumper [200782]
475552 [LTC 5.4 FEAT] FCP - Performance data reports [201730]
488496 [LTC 5.4 FEAT] 201173:Crypto Hardware Enablement Device Driver Support - toleration
475564 [LTC 5.4 FEAT] Shutdown actions interface (userspace) [201748]
474679 [LTC 5.4 FEAT] Dynamic CPU hotplug daemon for System z [201132]
475345 [LTC 5.4 FEAT] Change list of Anaconda network alternatives to indicate supported devices
on System z [201679]
475551 [LTC 5.4 FEAT] TTY terminal server over IUCV (kernel) [201734]
475563 [LTC 5.4 FEAT] Shutdown actions interface (kernel) [201747]
474664 [LTC 5.4 FEAT] System z support for processor degradation
[200975]
475334 [LTC 5.4 FEAT] FCP - Performance Data collection (kernel)
[201590]
475572 [LTC 5.4 FEAT] HiperSockets Layer3 support for IPv6 [201751]
475548 [LTC 5.4 FEAT] FCP - Performance data collection (blktrace)
[201729]
477189 [LTC 5.4 FEAT] Pick up latest version of s390-tools
475558 [LTC 5.4 FEAT] TTY terminal server over IUCV (userspace)
[201735]
474646 [LTC 5.4 FEAT] Kernel NSS support - kernel part [200790]
475333 [LTC 5.4 FEAT] FCP - Performance Data collection & analysis
(userspace) [201591]
475571 [LTC 5.4 FEAT] Large image dump on DASD [201752]
475563 [LTC 5.4 FEAT] Shutdown actions interface (kernel) [201747]
474664 [LTC 5.4 FEAT] System z support for processor degradation
[200975]
475334 [LTC 5.4 FEAT] FCP - Performance Data collection (kernel)
[201590]
475572 [LTC 5.4 FEAT] HiperSockets Layer3 support for IPv6 [201751]
475548 [LTC 5.4 FEAT] FCP - Performance data collection (blktrace)
[201729]
477189 [LTC 5.4 FEAT] Pick up latest version of s390-tools
475558 [LTC 5.4 FEAT] TTY terminal server over IUCV (userspace)
[201735]
474646 [LTC 5.4 FEAT] Kernel NSS support - kernel part [200790]
475333 [LTC 5.4 FEAT] FCP - Performance Data collection & analysis
(userspace) [201591]
475571 [LTC 5.4 FEAT] Large image dump on DASD [201752]
475530 [LTC 5.4 FEAT] Extra kernel parameter via VMPARM [201726]
475557 [LTC 5.4 FEAT] DS8000 Disk Encryption [201740]
474942 [LTC 5.4 FEAT] Add vmconvert option to vmur tool [201758]
475570 [LTC 5.4 FEAT] Provide service levels of HW & Hypervisor in
Linux [201753]
468172 FEAT: 201085: cio_ignore entry in generic.prm for LPARs
474700 [LTC 5.4 FEAT] Crypto Device Driver use of Thin Interrupts
[201174]
475350 [LTC 5.4 FEAT] Dialog defaults for Linux on System z specific
Anaconda [201677]
475820 [LTC 5.4 FEAT] Linux to add Call Home data [201167]
484296 [LTC 5.4 FEAT] Automatic IPL after dump (userspace) [201757]
475530 [LTC 5.4 FEAT] Extra kernel parameter via VMPARM [201726]
475557 [LTC 5.4 FEAT] DS8000 Disk Encryption [201740]
474942 [LTC 5.4 FEAT] Add vmconvert option to vmur tool [201758]
475570 [LTC 5.4 FEAT] Provide service levels of HW & Hypervisor in
Linux [201753]
468172 FEAT: 201085: cio_ignore entry in generic.prm for LPARs
474700 [LTC 5.4 FEAT] Crypto Device Driver use of Thin Interrupts
[201174]
475350 [LTC 5.4 FEAT] Dialog defaults for Linux on System z specific
Anaconda [201677]
475820 [LTC 5.4 FEAT] Linux to add Call Home data [201167]
484296 [LTC 5.4 FEAT] Automatic IPL after dump (userspace) [201757]
30. 30
S390-tools package rebased to Version 1.8.1
The s390utils package has been rebased to version 1.8.1.
This package provides the essential tool chain for Linux on System z. It contains everything
from the boot loader to dump related tools for a system crash analysis .
News Features (excerpt)
DASD related tools: Add Large Volume Support for ECKD DASDs
Ipl_tools: Can be used to change the reipl & shutdown behaviour
ziomon tools: Set of tools to collect data for zfcp performance analysis.
lsluns: List available SCSI LUNs depending on adapter or port.
lszcrypt: Show information about zcrypt devices and configuration.
chzcrypt: Modify zcrypt configuration.
cpuplugd: Daemon that manages CPU- and memory-resources based on a set of rules.
Depending on the workload CPUs can be enabled or disabled. The amount of memory
can be increased or decreased exploiting the Cooperative Memory Management
(CMM1) feature.
chchp: Tool to modify channel-path states
lschp: Tool to list information about available channel-paths.
mon_procd: Daemon that writes process information data to the z/VM monitor stream.
vmur: Tool to work with z/VM spool file queues (reader, punch, printer).
zfcpdump_v2: Version 2 of the zfcpdump tool. Now based on the upstream Linux kernel
2.6.23.
Plus various bug fixes
31. 31
Kernel
Control Program Identification (CPI)
If your RHEL5.4 Linux instance runs in LPAR mode, you can now use the extended
control program identification (CPI) module, sclp_cpi and the sysfs interface
/sys/firmware/cpi to assign names to your Linux instance
The names are used, for example, to identify the Linux instance on the HMC.
This feature is only available while running in LPAR
Extra kernel parameter via VMPARM
Modify the IPL records to append extra parameters specified with the z/VM VMPARM
option to the kernel command line.
Support for processor degradation
Adds support for processor degradation, which allows processor speed to be reduced in
some circumstances (i.e. system overheating). This new feature allows automation
software to observe the machine state.
TTY terminal server over IUCV
Provide central access to the Linux console for the different guests of a z/VM.
The terminal server connects to the different guests over IUCV.
The IUCV based console is ASCII based.
Fullscreen applications like vi are usable on the console.
32. 32
Virtual Server
Named Saved Segments (NSS)
Using NSS the z/VM hypervisior makes operating system code in shared real memory
pages available to z/VM guest virtual machines.
With this update, Linux guest operating systems using z/VM can boot from the NSS and
be run from a single copy of the Linux kernel in memory.
z/VM
Expanded Storage
z/VM Central Storage
z/VM Page
Space
Linux
Guest
Virtual
Disk
Linux
Guest
Virtual
Disk
0 MB
Linux
A
Guest
Storage
Linux
B
Guest
Storage
Linux A
mem=xxxx
Linux B
mem=xxxx
Shared Memory
vi
bash
Linux NSS
33. 33
Networking
HiperSockets Layer3 Support for IPv6
How IPv6 support for HiperSockets devices running in layer 3 mode is available
IPv6 is supported on:
Ethernet interfaces of the OSA-Express adapter running in QDIO mode.
HiperSockets layer 2 and layer 3 interfaces
z/VM guest LAN interfaces running in QDIO mode.
IPv6 is not supported on the OSA-Express Token Ring and ATM features.
34. 34
RAS
Multi volume dump support for DASDs
Added the ability to dump on multiple ECKD DASD devices, which can be necessary, if
the system memory size is larger than the size of a single DASD device.
Service Levels of Hardware & Hypervisor
A new Interface which provides service levels of hardware and z/VM service-levels to
the Linux userspace. Interface: /proc/service_levels
Lstape support for SCSI Tapes
With this feature it is now possible to list installed FCP-attached tape devices (SCSI
tapes) besides channel attached tapes using the lstape command
Shutdown Actions Interface
The new shutdown actions interface allows to specify for each shutdown trigger (halt,
power off, reboot, panic) one of the five available shutdown actions (stop, ipl, reipl,
dump, vmcmd).
A sysfs interface under /sys/firmware is provided for that purpose.
Possible use cases are e.g. to specify that a vmdump should be automatically triggered
in case of a kernel panic or the z/VM logoff command should be executed on halt.
Automatic IPL after dump
The new shutdown action dump_reipl is introduced. It combines the actions dump and
re-ipl, first a dump is taken, then a re-ipl of the system is triggered
35. 35
Storage
FCP performance data collection & reports:
Fibre Channel Protocol (FCP) performance data can now be measured. Metrics that are
collected and reported on include:
Performance relevant data on stack components such as Linux devices, Small
Computer System Interface (SCSI) Logical Unit Numbers (LUNs) and Host Bus Adapter
(HBA) storage controller information.
Per stack component: current values of relevant measurements such as throughput,
utilization and other applicable measurements.
Statistical aggregations (minimum, maximum, averages and histogram) of data
associated with I/O requests including size, latency per component and totals.
DS8K Encryption Support
This feature enhances s390-tools to be able to display if the Storage has its disk
encrypted or not.
Kernel support to issue Control I/O to dasd on EMC Symmetrix arrays
Support has been added to the kernel to issue EMC Symmetrix Control I/O. This update
provides the ability to manage EMC Symmetrix storage arrays.
37. 37
Advanced Virtualization
Dynamic Memory Add/Remove (kernel 2.6.27)
Enable to attach and use standby memory that is configured for a logical partition or
z/VM guest.
Memory Attach & Detach requires running Linux on System z as a VM-guest requires
z/VM 5.4 plus the PTF for APAR VM64524.
Standby CPU activation/deactivation (kernel 2.6.25)
Allow standby CPUs to be activated / deactivated
Suspend / Resume (kernel 2.6.31)
With suspend and resume support, you can stop a running Linux on System z
instance and later continue operations.
When Linux is suspended, data is written to a swap partition. The resume process
uses this data to make Linux continue from where it left off when it was suspended.
A suspended Linux instance does not require memory or processor cycles.
38. 38
Storage Support
HyperPav (kernel 2.6.25)
HyperPav is addressing the need to access more data with good performance and high
availability!
This feature, which required a IBM DS8000™ disk storage system in average leads to
a higher utilization, resulting in I/O transfer rates.
Activated automatically when the necessary prerequisites are there (DS8000 with
HyperPAV LIC, z/VM 5.3). Transparent for the Linux on System z guest
DASD Large Volume Support (> kernel 2.6.29)
Large Volume Support is a feature that allows to use ECKD devices with more than
65520 cylinders. This features is available with DS8000 R4.0
High Performance FICON (HPF) (kernel 2.6.29)
Added HPF support to the DASD Device Driver
HPF is an extension to the FICON architecture and is designed to improve the
execution of small block I/O requests.
HPF streamlines the FICON architecture and reduces the overhead on the channel
processors, control unit ports, switch ports, and links by improving the way channel
programs are written and processed.
39. 39
Usability & Serviceability
Automatic IPL After Dump (kernel 2.6.30)
Extension to the shutdown action interface which combines the actions dump and re-
ipl, first a dump is taken, then a re-ipl of the system is triggered
Compiler Improvements (gcc 4.3/4.4)
– The latest compiler enhancements allow a customer to recompile existing applications
which can be optimized for the latest hardware generation without any changes to the
source code.
– This can lead up to a > 10 % performance improvement.
Large Page Support (kernel 2.6.25)
– Support for a new access method to allocate larger chunks of memory, resulting in
performance improvements, especially in Java based environments
– This feature exploits z10 hardware features and provides a software emulation for older
systems.
40. 40
Miscellaneous
STP/ETR Support (kernel 2.6.27)
Support for clock synchronization using the server time protocol (STP) or an external
time reference (ETR).
Kernel vdso support (kernel 2.6.29)
Kernel provided shared library to speed up a few system calls (gettimeofday,
clock_getres, clock_gettime)
42. 42
Contact
Shawn D. Wells
W/W System z Sales, Strategy, Marketing
sdw@redhat.com
Cell: (+1) 443-534-0130 (US EST)
Hans J. Picht
Linux on System z RedHat Liaison
hans@de.ibm.com
Cell (+49) 175-1629-201 (CET)