DC
Uploaded byDavide Cavalca
PDF, PPTX264 views

systemd @ Facebook in 2019

The document is a recap of a presentation by Davide Cavalca at Facebook in 2019, discussing the deployment and development of systemd, including new features and case studies. Key topics include updates on systemd versions, integration testing, feature development, and challenges faced with implicit dependencies. The presentation highlights the importance of community involvement and the streamlined release process for internal development at Facebook.

Embed presentation

Download as PDF, PPTX
systemd @ Facebook in 2019 Davide Cavalca Production Engineer
• Recap • Deployment and development • New features • Case studies Agenda
Recap
• CentOS 7, starting to prep for CentOS 8 • ~3 yrs using systemd • systemd is everywhere! • Community involvement • Building and leveraging new features Recap Where were we again?
Deployment and development
• Systemd 239 241 242 ( 243...)→ → → • RPM backports automatically synced to facebookincubator/rpm-backports • The long tail (~2%) continues to be a pain point • Broken hosts are broken • Old release pins to workaround bugs Deployment and development Staying up to date
• Prepping an internal systemd release takes a while • Last minute surprises, SMEs reliance, bus factor • Developing on master testing on release↔ • Integration testing • Faster feedback Deployment and development Streamlining the release process
• Modified Fedora packaging • Replace source tarball with one from git master • Daily builds deployed to a small number of hosts • Integration testing for containers infra • Soon: Red Hat testsuite, bare metal integration testing Deployment and development CI/CD
Deployment and development Feature development • Support fast iteration development • Leverage internal code review / CI / etc tooling • Apply learnings from the kernel devel process
• Internal systemd repo, with a read-only mirror of github branches and tags • Feature branches off master for initial development • Feature branches synced with PRs submitted upstream • Release branches off tags for internal releases • Easier patch tracking, integration with rpm build tooling Deployment and development Development plan
New features
• A cross between Condition* and ExecStartPre • Can pass, skip or fail unit based on the exit code • General purpose sanity-checks for services [Service] ExecCondition=/usr/bin/checker /usr/bin/foo ExecStart=/usr/bin/foo New features ExecCondition
• See Tejun and Dan’s talk for all things cgroup2 • See Daniel and Anita’s talk for oomd • See Johannes talk for senpai • DisableControllers= for transient units (#12336) • OOMPolicy= for cgroup2 (#12037) New features Resource management
New features • GitHub: facebookincubator/pystemd • Thin Cython wrapper on top of sd-bus • Extended to support almost all dbus properties now • Sockets too! In [1]: from pystemd.examples.start_multiple_transient_unit import start_webserver In [2]: start_webserver(listen_stream="0.0.0.0:7055") started myservice.86.1567623644.3155806 as socket and service pystemd
New features • Config generation improvements in fb_systemd • Override management fb_systemd_override 'run-as-nobody' do unit_name 'foo.service' content({ 'Service' => { 'User' => 'nobody', }, }) end Chef
New features • Linter for systemd units • Surface good/bad practices • Customizable policy and ruleset • Internal testing and integration • Planning to opensource by end of year Coming soon: systemd unit linter
Case studies
Case studies Implicit dependencies are hard /1 • NTP not starting on boot on some hosts • But only on >239... • PrivateTmp implies a dependency on tmp.mount… • ...which we mask in Chef on firstboot… • ...after it was already started • tmp.mount ends up being active *and* masked sadness→
Case studies Implicit dependencies are hard /2 • Missing directories on hosts tmpfiles not being created→ • systemd-tmpfiles-setup depends on local-fs.target... • ...which depends on swap.target • fb_swap rollout added masked units as dependencies • The whole tree gets pruned no tmpfiles :-(→ • Debugged with systemd-analyze + pid1 debug logging
Questions?
systemd @ Facebook in 2019

More Related Content

PDF
systemd @ Facebook -- a year later
byDavide Cavalca
 
PPTX
Deep dive networking
byVictor Morales
 
PDF
RunDeck
byBruno Bonfils
 
PDF
Running CentOS on the Facebook fleet
byDavide Cavalca
 
PPTX
Neutron upgrades
byVictor Morales
 
PDF
Puppet Camp Paris 2015: Continuous Integration of Puppet Code (Intermediate)
byPuppet
 
PDF
Puppet Camp Berlin 2015: Andrea Giardini | Configuration Management @ CERN: G...
byNETWAYS
 
PPTX
淺談 Redux Thunk
by胤翔 黃
 
systemd @ Facebook -- a year later
byDavide Cavalca
 
Deep dive networking
byVictor Morales
 
RunDeck
byBruno Bonfils
 
Running CentOS on the Facebook fleet
byDavide Cavalca
 
Neutron upgrades
byVictor Morales
 
Puppet Camp Paris 2015: Continuous Integration of Puppet Code (Intermediate)
byPuppet
 
Puppet Camp Berlin 2015: Andrea Giardini | Configuration Management @ CERN: G...
byNETWAYS
 
淺談 Redux Thunk
by胤翔 黃
 

What's hot

PDF
Openstack trystack
byEueung Mulyana
 
PDF
TryStack: A Sandbox for OpenStack Users and Admins
byAnne Gentle
 
PPTX
Writing Custom Saltstack Execution Modules
byJulian Pacheco
 
PDF
OMD and Check_mk
byArtur Martins
 
PPTX
Basic principles of Git
byphuongvohuy
 
PDF
Minikube Workshop Handout
byAlfie Chen
 
PPTX
SaltConf 2015: Salt stack at web scale: Better, Stronger, Faster
byThomas Jackson
 
PPTX
SharePoint Disaster Recovery in Microsoft Azure
byDavide Benvegnù
 
PPTX
Hostvn ceph in production v1.1 dungtq
byViet Stack
 
PDF
Open stack nova reverse engineer
byVietnam Open Infrastructure User Group
 
PDF
Rundeck Open Source Workflow Automation
byinovex GmbH
 
PDF
Real-time Infrastructure Management with SaltStack - OpenWest 2013
bySaltStack
 
PDF
How Openstack is Built
byAnton Weiss
 
PDF
Making Spinnaker Go @ Stitch Fix
byDiana Tkachenko
 
PDF
[TechTalks] Learning Configuration Management with SaltStack (Advanced Concepts)
byBlazeclan Technologies Private Limited
 
PDF
Improving POD Usage in Labs, CI and Testing
byOPNFV
 
PDF
Techzone 2014 presentation rundeck
byJoel Richard Moya Lupe
 
PDF
Nagios Conference 2014 - David Josephsen - Alert on What You Draw
byNagios
 
PPTX
Open stack neutron and opendaylight
byramgow
 
PPTX
Moving to Nova Cells without Destroying the World
byMike Dorman
 
Openstack trystack
byEueung Mulyana
 
TryStack: A Sandbox for OpenStack Users and Admins
byAnne Gentle
 
Writing Custom Saltstack Execution Modules
byJulian Pacheco
 
OMD and Check_mk
byArtur Martins
 
Basic principles of Git
byphuongvohuy
 
Minikube Workshop Handout
byAlfie Chen
 
SaltConf 2015: Salt stack at web scale: Better, Stronger, Faster
byThomas Jackson
 
SharePoint Disaster Recovery in Microsoft Azure
byDavide Benvegnù
 
Hostvn ceph in production v1.1 dungtq
byViet Stack
 
Open stack nova reverse engineer
byVietnam Open Infrastructure User Group
 
Rundeck Open Source Workflow Automation
byinovex GmbH
 
Real-time Infrastructure Management with SaltStack - OpenWest 2013
bySaltStack
 
How Openstack is Built
byAnton Weiss
 
Making Spinnaker Go @ Stitch Fix
byDiana Tkachenko
 
[TechTalks] Learning Configuration Management with SaltStack (Advanced Concepts)
byBlazeclan Technologies Private Limited
 
Improving POD Usage in Labs, CI and Testing
byOPNFV
 
Techzone 2014 presentation rundeck
byJoel Richard Moya Lupe
 
Nagios Conference 2014 - David Josephsen - Alert on What You Draw
byNagios
 
Open stack neutron and opendaylight
byramgow
 
Moving to Nova Cells without Destroying the World
byMike Dorman
 

Similar to systemd @ Facebook in 2019

PDF
CentOS at Facebook
byPhil Dibowitz
 
PDF
Upgrading CentOS on the Facebook fleet
byDavide Cavalca
 
PDF
CentOS Stream at Facebook
byDavide Cavalca
 
ODP
Deploying systemd at scale
byDavide Cavalca
 
PPTX
Systemd 간략하게 정리하기
bySeungha Son
 
PDF
LISA15: systemd, the Next-Generation Linux System Manager
byAlison Chaiken
 
PDF
Systemd: the modern Linux init system you will learn to love
byAlison Chaiken
 
PDF
Tuning systemd for embedded
byAlison Chaiken
 
PDF
Systemd evolution revolution_regression
bySusant Sahani
 
PDF
Automotive Grade Linux and systemd
byAlison Chaiken
 
PDF
systemd
bynussbauml
 
PDF
SystemD Usage Guide
byVCP Muthukrishna
 
ODP
State of systemd @ Facebook
byDavide Cavalca
 
PDF
What's new with CentOS at Facebook
byDavide Cavalca
 
PPTX
CoreOS Intro
byIsaac Johnston
 
PDF
Systemd for developers
byAlison Chaiken
 
PPTX
First steps on CentOs7
byMarc Cortinas Val
 
PDF
Fedora 15 para sysadmins
byapsegundo
 
PDF
App container rkt
byXiaofeng Guo
 
ODP
CLUG 2010 09 - systemd - the new init system
byPaulWay
 
CentOS at Facebook
byPhil Dibowitz
 
Upgrading CentOS on the Facebook fleet
byDavide Cavalca
 
CentOS Stream at Facebook
byDavide Cavalca
 
Deploying systemd at scale
byDavide Cavalca
 
Systemd 간략하게 정리하기
bySeungha Son
 
LISA15: systemd, the Next-Generation Linux System Manager
byAlison Chaiken
 
Systemd: the modern Linux init system you will learn to love
byAlison Chaiken
 
Tuning systemd for embedded
byAlison Chaiken
 
Systemd evolution revolution_regression
bySusant Sahani
 
Automotive Grade Linux and systemd
byAlison Chaiken
 
systemd
bynussbauml
 
SystemD Usage Guide
byVCP Muthukrishna
 
State of systemd @ Facebook
byDavide Cavalca
 
What's new with CentOS at Facebook
byDavide Cavalca
 
CoreOS Intro
byIsaac Johnston
 
Systemd for developers
byAlison Chaiken
 
First steps on CentOs7
byMarc Cortinas Val
 
Fedora 15 para sysadmins
byapsegundo
 
App container rkt
byXiaofeng Guo
 
CLUG 2010 09 - systemd - the new init system
byPaulWay
 

More from Davide Cavalca

PDF
Building community with CentOS Stream
byDavide Cavalca
 
PDF
Hyperscale SIG Introduction
byDavide Cavalca
 
PDF
Hyperscale SIG update
byDavide Cavalca
 
PDF
Hyperscale SIG update
byDavide Cavalca
 
ODP
Building Better FLOSS Community Relationships @ FB
byDavide Cavalca
 
PDF
Building Better FLOSS Community Relationships @ FB
byDavide Cavalca
 
Building community with CentOS Stream
byDavide Cavalca
 
Hyperscale SIG Introduction
byDavide Cavalca
 
Hyperscale SIG update
byDavide Cavalca
 
Hyperscale SIG update
byDavide Cavalca
 
Building Better FLOSS Community Relationships @ FB
byDavide Cavalca
 
Building Better FLOSS Community Relationships @ FB
byDavide Cavalca
 

Recently uploaded

PPT
Tutorial-security-privacy-cloud intro duction about cloud compting its services
byHEmansuSingh
 
PPTX
Network Security v1.0 - Module 2.pptx
byssuserb1479b
 
PDF
Modeltomodel_Transformation_with_ATL (1).pdf
byISEMENSIAS
 
PPTX
Track & Monitor Preventive Maintenance — Best Practices with MaintWiz CMMS
byMaintWiz Technologies Private Limited
 
PPTX
Network intrusion detection system .pptx
byvenomghost09082000
 
PPTX
Civil_Engineering_Technician_Skill_Assessment_2025_2026_Presentation.pptx
byCDR Australia Engineer
 
PPTX
Industrial Plant Safety – Comprehensive Guide for Workplace Safety & Risk Pre...
byMaintWiz Technologies Private Limited
 
PPTX
Fiber reinforced concrete (FRC) is a composite material made from Portland ce...
bymanojaioe
 
PPTX
22PEOIT4C Session 1 Introduction to AI and intelligent agents.pptx
bymailmegokilavani
 
PPTX
infosecurity & Cyber Sec 2025 September for deep.pptx
bymsrehan
 
PPTX
22PEOIT4C Session 9 Local search in continuous space.pptx
bymailmegokilavani
 
PPT
Intro AI DBATU.ppt ppt useful engineering
bydevinjon990
 
PPTX
Data Science with R Final yrUnit II.pptx
byOsmania University
 
PDF
A Guide to Components and Operation of Refrigeration Plant - Part 1
byMahmoud Moghtaderi
 
PPTX
Transportation Engineering- Modes of Transport, Types of roads, Components of...
byvidyanand kadam
 
PPTX
KTU 2024 SCHEME -PEMET 413 COMPOSITE MATERIALS MODULE 1 LECTURE 1.pptx
byVinayB68
 
PPT
24CYT13 - Chemistry for Electronics and Computer Systems-Unit-V-E Waste & Its...
byKrishnaveniKrishnara1
 
PDF
3rd International Conference on AI & Civil Engineering (AICiViL 2025)
byieijjournal
 
PDF
Bee problems on the basic engineering of electrical
byVinodkumar941730
 
PPTX
Aix-Marseille Université Diploma
by美国加利福尼亚州立理工大学波莫纳分校学位证书补办【Q微号:1954 292 140】CPP毕业证购买
 
Tutorial-security-privacy-cloud intro duction about cloud compting its services
byHEmansuSingh
 
Network Security v1.0 - Module 2.pptx
byssuserb1479b
 
Modeltomodel_Transformation_with_ATL (1).pdf
byISEMENSIAS
 
Track & Monitor Preventive Maintenance — Best Practices with MaintWiz CMMS
byMaintWiz Technologies Private Limited
 
Network intrusion detection system .pptx
byvenomghost09082000
 
Civil_Engineering_Technician_Skill_Assessment_2025_2026_Presentation.pptx
byCDR Australia Engineer
 
Industrial Plant Safety – Comprehensive Guide for Workplace Safety & Risk Pre...
byMaintWiz Technologies Private Limited
 
Fiber reinforced concrete (FRC) is a composite material made from Portland ce...
bymanojaioe
 
22PEOIT4C Session 1 Introduction to AI and intelligent agents.pptx
bymailmegokilavani
 
infosecurity & Cyber Sec 2025 September for deep.pptx
bymsrehan
 
22PEOIT4C Session 9 Local search in continuous space.pptx
bymailmegokilavani
 
Intro AI DBATU.ppt ppt useful engineering
bydevinjon990
 
Data Science with R Final yrUnit II.pptx
byOsmania University
 
A Guide to Components and Operation of Refrigeration Plant - Part 1
byMahmoud Moghtaderi
 
Transportation Engineering- Modes of Transport, Types of roads, Components of...
byvidyanand kadam
 
KTU 2024 SCHEME -PEMET 413 COMPOSITE MATERIALS MODULE 1 LECTURE 1.pptx
byVinayB68
 
24CYT13 - Chemistry for Electronics and Computer Systems-Unit-V-E Waste & Its...
byKrishnaveniKrishnara1
 
3rd International Conference on AI & Civil Engineering (AICiViL 2025)
byieijjournal
 
Bee problems on the basic engineering of electrical
byVinodkumar941730
 
Aix-Marseille Université Diploma
by美国加利福尼亚州立理工大学波莫纳分校学位证书补办【Q微号:1954 292 140】CPP毕业证购买
 

systemd @ Facebook in 2019

  • 2.
    systemd @ Facebookin 2019 Davide Cavalca Production Engineer
  • 3.
    • Recap • Deploymentand development • New features • Case studies Agenda
  • 4.
  • 6.
    • CentOS 7,starting to prep for CentOS 8 • ~3 yrs using systemd • systemd is everywhere! • Community involvement • Building and leveraging new features Recap Where were we again?
  • 7.
  • 8.
    • Systemd 239241 242 ( 243...)→ → → • RPM backports automatically synced to facebookincubator/rpm-backports • The long tail (~2%) continues to be a pain point • Broken hosts are broken • Old release pins to workaround bugs Deployment and development Staying up to date
  • 9.
    • Prepping aninternal systemd release takes a while • Last minute surprises, SMEs reliance, bus factor • Developing on master testing on release↔ • Integration testing • Faster feedback Deployment and development Streamlining the release process
  • 10.
    • Modified Fedorapackaging • Replace source tarball with one from git master • Daily builds deployed to a small number of hosts • Integration testing for containers infra • Soon: Red Hat testsuite, bare metal integration testing Deployment and development CI/CD
  • 11.
    Deployment and development Featuredevelopment • Support fast iteration development • Leverage internal code review / CI / etc tooling • Apply learnings from the kernel devel process
  • 12.
    • Internal systemdrepo, with a read-only mirror of github branches and tags • Feature branches off master for initial development • Feature branches synced with PRs submitted upstream • Release branches off tags for internal releases • Easier patch tracking, integration with rpm build tooling Deployment and development Development plan
  • 13.
  • 14.
    • A crossbetween Condition* and ExecStartPre • Can pass, skip or fail unit based on the exit code • General purpose sanity-checks for services [Service] ExecCondition=/usr/bin/checker /usr/bin/foo ExecStart=/usr/bin/foo New features ExecCondition
  • 15.
    • See Tejunand Dan’s talk for all things cgroup2 • See Daniel and Anita’s talk for oomd • See Johannes talk for senpai • DisableControllers= for transient units (#12336) • OOMPolicy= for cgroup2 (#12037) New features Resource management
  • 16.
    New features • GitHub:facebookincubator/pystemd • Thin Cython wrapper on top of sd-bus • Extended to support almost all dbus properties now • Sockets too! In [1]: from pystemd.examples.start_multiple_transient_unit import start_webserver In [2]: start_webserver(listen_stream="0.0.0.0:7055") started myservice.86.1567623644.3155806 as socket and service pystemd
  • 17.
    New features • Configgeneration improvements in fb_systemd • Override management fb_systemd_override 'run-as-nobody' do unit_name 'foo.service' content({ 'Service' => { 'User' => 'nobody', }, }) end Chef
  • 18.
    New features • Linterfor systemd units • Surface good/bad practices • Customizable policy and ruleset • Internal testing and integration • Planning to opensource by end of year Coming soon: systemd unit linter
  • 19.
  • 20.
    Case studies Implicit dependenciesare hard /1 • NTP not starting on boot on some hosts • But only on >239... • PrivateTmp implies a dependency on tmp.mount… • ...which we mask in Chef on firstboot… • ...after it was already started • tmp.mount ends up being active *and* masked sadness→
  • 21.
    Case studies Implicit dependenciesare hard /2 • Missing directories on hosts tmpfiles not being created→ • systemd-tmpfiles-setup depends on local-fs.target... • ...which depends on swap.target • fb_swap rollout added masked units as dependencies • The whole tree gets pruned no tmpfiles :-(→ • Debugged with systemd-analyze + pid1 debug logging
  • 22.