Red Hat Enterprise Linux Roadmap · Red Hat Enterprise Linux Roadmap Denise Dumas, Lars Herrmann...
Transcript of Red Hat Enterprise Linux Roadmap · Red Hat Enterprise Linux Roadmap Denise Dumas, Lars Herrmann...
Red Hat Enterprise Linux Roadmap
Denise Dumas, Lars Herrmann and the Platform Engineering ManagersRed Hat, Inc.April 15, 2014
DISCLAIMER
The content set forth herein does not constitute in any way a binding or legal agreement or impose any legal obligation or duty on Red Hat.
This information is provided for discussion purposes only and is subject to change for any or no reason.
v0.12
What to Expect in this Presentation
• Life cycle and status of each release
• Red Hat Enterprise Linux product direction
• Updates on features from RHEL releases available today and “real soon now”
• Pointers to other Summit talks and resources for more detail
• Meet RHEL engineering management and product management
• We want questions and feedback, but always seem to run out of time for Q&A. So please use the Summit app for questions and we will provide answers.
• Caveats
• We only have time to describe a subset of proposed features and themes.
Agenda, Session 1 (1:20 to 2:20)
• Introduction – Denise Dumas
• Red Hat Enterprise Linux Product Direction - Lars Herrmann
• Kernel - Linda Wang
• Networking – Rashid Khan
• File Systems and Storage - Tom Coughlan
• System Management and Security – Jack Rieden
Agenda, Session 2 (2:30 to 3:30)
• Software Collections and Core Utilities – Ondrej Vasik
• Virtualization – Karen Noel
• Desktop – Paul Frields
• Installation – David Cantrell
• Developer Tools – Matt Newsome
• Summary, Q & A if time permits
How We Create RHEL •Red Hat's traditional strength – standardize and stabilize the upstreams
• Integrate in Fedora
•Pick the right components
•2500+ SRPMs make up RHEL 7.0, out of thousands of possibilities
•Targeted development
• Improve the quality
•~17900 bug reports closed
•Stabilize the kernel for complicated hardware
•Validate performance all the way along
Red Hat Enterprise Linux Today
RHEL 5 5.10 available now5.11 in development - last RHEL 5 release
RHEL 6 6.5 available now6.6 in development
RHEL 7 Release Candidate (RC) imminent!
RHEL 8 Yes, thinking about it already ;-)
RHEL 7.0 Release Candidate
Coming soon!Coming soon!
•Available on Customer Portal https://access.redhat.com/site/products/Red_Hat_Enterprise_Linux/Get-Beta
•And at the Red Hat public ftp site
ftp://ftp.redhat.com/redhat/rhel/rc/7/
RED HAT CONFIDENTIAL | ADD NAME9
RED HAT ENTERPRISE LINUXMORE THAN A DECADE OF INNOVATION
02 03 04 05 06 07 08 09 10 11 12 13 14
RED HAT ADVANCED SERVER 2.1BRINGING LINUX AND OPEN SOURCE TO THE ENTERPRISE
RED HAT ENTERPRISE LINUX 3MULTI-ARCHITECTURE SUPPORT,MORE CHOICES WITH A FAMILY OF OFFERINGS
RED HAT ENTERPRISE LINUX 4DELIVERING RAS, STORAGE, MILITARY-GRADE SECURITY
RED HAT ENTERPRISE LINUX 5 VIRTUALIZATION, STATELESS LINUX – ANY APPLICATION, ANYWHERE, ANYTIME
RED HAT ENTERPRISE LINUX 6LINUX BECOMES MAINSTREAM FORPHYSICAL, VIRTUAL, AND CLOUD
RED HAT ENTERPRISE LINUX 7
THE FOUNDATION FOR THEOPEN HYBRID CLOUD
10
RETHINK YOUR ENTERPRISE OS
PHYSICAL VIRTUAL CLOUDCONTAINER
CONSISTENT, STANDARDIZED, PORTABLE
LIGHTWEIGHT, SIMPLIFIED APPLICATION DELIVERY AND ISOLATION
RED HAT ENTERPRISE LINUX 7® RC
RED HAT CONFIDENTIAL | ADD NAME11
3 TYPES OF APPLICATIONS IN LEADING I.T. ORGANIZATIONS
SYSTEMS OF INNOVATION
● Developer-led, high pace of change● High impact (when they work)● Cutting edge, built on latest and greatest● Long lifecycle● Cloud requirements● High touch
SYSTEMS SUPPORTING BUSINESS
PROCESSES
● Heterogeneous, complex, interconnected dependencies
● High rate of change● Requires manageability and automation● Heavily virtualized, with a smaller but diverse
user base● Low touch, little love
MISSION-CRITICAL, BACKOFFICE
● Maximum performance and throughput● Stable, resilient, and vendor supported● Highest security, data intense● Long lifecycle● Physical, with a broad user base● Tuned often, touch with care
12
PATH TO APPLICATION OPTIMIZED INFRASTRUCTURE
• Elasticity
• Software-defined Infra
• Scheduling
• Management
• Minimal footprint
• Atomic updating
• Containers
• Orchestration
• Lifecycle
• Security
• Stability
APP ENABLING APP AWARE APP OPTIMIZED
Kernel Linda WangRed Hat, Inc.
14
RHEL 7 Kernel Architecture Support• Architectures
• Support the following 64 bits Architectures
•X86_64, Power, and s390• with 32bit user space compatibility support
• Theoretical Limits on X86_64
– Logical CPU – maximum 5120 logical CPUs
– Memory – maximum 64T
15
Core Kernel Features & Enhancements• Mission Critical & Back Office Applications
• Performance Enhancements
• Memory Management, Scheduler, Locks• Dynamic Kernel Updates – Technology Preview
• a.k.a. Kpatch• Systems Supporting Business Processes
• Performance Tooling Enhancement
• Debugging Mechanism Features
• Systems of Innovation - Resource Management
• Linux Containers
Memory Mgt/Scheduler/Locking Enhancements Memory Management
• Switch to SLUB memory allocator
• Fair Zone Allocator Policy
• Trash detection-based feature for file cache
• Fine grained page table locking for huge pages
• TLB flush ranged support on x86
• Sched/NUMA, NUMA-Balance
• And More..
< Performance Tuning Session I & II : April 16, Wednesday 10:40 am & 1:20 pm >
Scheduler/Locking Mechanism/Ticks
• Switch to use ‘deadline’ IO scheduler
• Autogroup disabled
• Switch to small granular subsystem locks (2.6.39) from Big Kernel Lock
• Micro-optimize smart wake-affinity
• Dynamic Ticking (dyntick)
• Sys V’s IPC, Semaphore scalability Improvement
• And More..
Memory Mgt/Scheduler/Locking Enhancements Memory Management
• Memory allocator – Switch to SLUB allocator for efficient memory allocation, avoid fragmentation, and most importantly provided scalability.
• Memory Allocation - Fair Zone Allocator Policy (in conjunction with kswapd) to better even out the memory allocation and reclaim pages across different zones.
• Sched/NUMA, NUMA-Balance – feature moves tasks (which can be threads or processes) closer to the memory they are accessing. It also moves application data closer to memory of the numa code that the tasks is referencing it.
• Trash detection-based feature for file cache – allows the mm to better serve applications that access large file size such as data streaming and big data set in file cache.
• Fine Grained page table locking for huge pages - better performance when many threads access the virtual memory of a process simultaneously
• TLB flush ranged support on x86_64 – to improve ‘munmap’ syscall performance
Memory Mgt/Scheduler/Locking Enhancements Scheduler/Locking Mechanism/Jiffies
• IO Scheduler – automatic switch uses ‘deadline’ scheduler for enterprise storage devices
• Dynamic Ticking (dyntick) – kvm/HPC long running processes, telcom, financial, (any apps that need fewer interrupts)
• Big kernel lock – switch to small granular subsystem locks (2.6.39)
• Sys V’s IPC, Semaphore scalability Improvement
• Micro-optimize smart wake-affinity
• And More...
< Performance Tuning Session I & II : April 16, Wednesday 10:40 am & 1:20 pm >
Performance Enhancements - Kernel
• Jump Labels – significant reduction of overhead of disabled/enabled tracepoints
• Event Polls – optimization done removing global 'epmutex' and replace with rcu for traversal. SPECjbb2013 went up from 35k jOps to 125K.
• Framepointer Enabled on x86_64
• And More...
< Maximizing RSA with RHEL 7 Beta: April 16, Wednesday 2:30 pm >
RED HAT CONFIDENTIAL | Linda Wang20
Kernel Debugging & Analysis Enhancements RHEL 7 Feature Facilities New Enhancement
Core Dump & Analysis
● Kexec-Kump● Crash
● Support new compression algorithms: LZO and Snappy● Export mmap support via /proc/vmcore for fast core dump
Tuning Tools ● Tuna● Tuned, Tuned Profiles
●After runtime tuning, ‘tuna’ now saves tuned parameters values, integrated with ‘tuned’●Tuned profiles variant based set at install time
Error Reporting Mechanism
● Rasdaemon [HERM]● Mcelog
● Hardware Error Reporting Mechanism (HERM) is new to RHEL 7, refactoring EDAC infrastructure●‘rasdaemon’ is replacing ‘edac-util’
Performance Monitoring
● Perf● Oprofile
●Support new software & hardware events●Support profiling for java applications
Dynamic Tracing ● Systemtap [ptrace, ftrace uprobe, kprobe, perf]
● Help port Utrace functionalities to Ptrace such as uretprobe
Static Tracing ● Perf, trace-cmd [Tracepoint, Ftrace]
●Add new hardware and software events to perf tracing
Dynamic Kernel Updates – (Tech. Preview)
• Mission critical customers demand zero down time
• Requires the need to patch running kernel
• Based on ftrace in kernel infrastructure
• In-depth analysis of the patch for feasibility
• Converts eligible source code patch(s) into kernel module
• Insert the kernel module/fixes into the running kernel
• Compatible with existing kernel functions:
• kexec kdump, crash, ftrace, system tap, kprobe and perf etc.
• Preserve kpatch states, persistent across reboots
< Maximizing RAS with RHEL7 Beta: April 16, Wednesday 2:30 pm >
< Demo Booth, pod#1: April 16, Wednesday 11:00 am >
Resource Management Improvements
•Linux Containers (LXC) – Fully Supported in RHEL 7 RC
•Control Groups: cpu, cpuset, memory, block io, network, network prio• Libcgroup has been deprecated, replacing with systemd's scope and slices
•Namespaces: mount, UTS, IPC, PID, network• User Namespace – in later releases
•SELinux – security protection for containers
•SystemD – provide unit file to help setup container’s resources
•Docker CLI
Learn more about Kernel
For more information on Kernel topics
•Summit Sessions• Faster Issue Resolution and Continuous Up time: Roberts/Wang, April 15, 10:40 am
• Performance Analysis Tuning I & II: Shak/Woodman, April 16, Wed., 10:40 am
• Linux Container in RHEL 7: Sarathy/Kozdemba/Wang, April 16, Wed., 10:40 am
• Maximizing RSA with RHEL 7: Doerbeck/Abbott/Wang, April 16, Wed., 2:30 pm
• Auto NUMA balancing for bare-metal workload, Chegu/van Riel, April 16, 3:40 pm
•Demo Booth in Partner Pavilion
Learn more about Kernel
For more information on Kernel topics
•Engage the Kernel Community
• lkml.org, kernelnewbies.org
•https://github.com/dynup/kpatch
•Latest development information
•LWN.net - up-to-date articles on kernel developments
•http://rhelblog.redhat.com/
Networking Rashid KhanRed Hat, Inc.
Network Manager (much easier to use) • New CLI user interfaces (nmcli)
• Intended for use by users who prefer command line access to setup, manage, monitor, or script networking services (includes tremendous usability improvements.)
• New curses-based user interface (nmtui)
• Replacement for system-config-network-tui that makes it easier to configure networking, bonds, bridges, vlans, etc.
• Broad support
• Ethernet, IPoIB, VLANs, Bridges, Bonds, Team, WiFi, WiMAX, WWAN, Bluetooth, VPN, and ATM-based DSL.
• Enhanced on every level, by incorporating users feedback
• e.g Restarting NM will not change addressing, routing, or Layer-2 configurations and will non-destructively take over the interface's existing configuration.
• IP Address Aliases support
• Support for interface aliases (multiple IP addresses on a single interface).
• New CLI user interfaces (nmcli)
• Intended for use by users who prefer command line access to setup, manage, monitor, or script networking services (includes tremendous usability improvements.)
• New curses-based user interface (nmtui)
• Replacement for system-config-network-tui that makes it easier to configure networking, bonds, bridges, vlans, etc.
• Broad support
• Ethernet, IPoIB, VLANs, Bridges, Bonds, Team, WiFi, WiMAX, WWAN, Bluetooth, VPN, and ATM-based DSL.
• Enhanced on every level, by incorporating users feedback
• e.g Restarting NM will not change addressing, routing, or Layer-2 configurations and will non-destructively take over the interface's existing configuration.
• IP Address Aliases support
• Support for interface aliases (multiple IP addresses on a single interface).
NM-TUI
Team Driver
• Mechanism to aggregate multiple network devices into a single logical interface at the data link layer (L2.)
• Control in user space with data (fast) path kernel space. Thus making it more stable, easier to debug, easier to understand, and much simpler to extend.
• Supports IEEE 802.3ad (IEEE 802.1ax) LACP + many proprietary standards.
• Same performance, same functionality, as the Linux Bonding driver, added improvements.
• Can be managed from NetworkManager or traditional initscripts.
IEEE1588, Precision Time Protocol (PTPv2)
• IEEE 1588 standard defines a method for precisely synchronizing distributed clocks over Ethernet. Provides clock accuracy in the sub-microsecond range making it suitable for measurement and control systems.
• 'LinuxPTP' package provides a robust protocol implementation based on the modern API found in the Linux kernel.
• Hardware time stamping:
• Broadcom; Intel; Mellanox; Solarflare
• Software time stamping:
• Broadcom; Intel
Open vSwitch • Multi-layer software switch for traffic flow between
virtual machines within the server and the physical networks.
• Highlights:
• Updated to 2.0 release.
• Multi-threaded user space switching daemon for increased scalability.
• Support for overlay networks, GRE, VXLAN, VLAN, LISP
• Support for wildcard flows in kernel data path. Can significantly reduce size of the flow table, avoid unnecessary flow misses and optimize flow setup rate.
Controller(Open Daylight)
Controller(Open Daylight)
OpenFlow / OVSDBOpenFlow / OVSDB
VM VM VM VM
Switch Switch
Switch Switch
Next Generation Networking Hardware Support
• 40G Ethernet
• Provides support for 40G Ethernet link speeds enabling faster network communication for systems and applications.
• Many 40G devices supported today and additional hardware support coming in future releases
• WiGig IEEE 802.11ad (60 GHz band)
• Allows devices to wirelessly communication at multi-gigabit speeds (up to 7 Gbps.)
TCP Performance Improvements and other features• TCP Improvements
• Fast Open (client and server)
• Tail Loss Probe Algorithm
• Early Re-transmit
• Proportional Rate Reduction
• SO_REUSEPORT Option
• Bufferbloat Avoidance
• Interface option to enable routing of 127.0.0.0/8
• Low Latency Sockets using Busy Poll
● Security● Domain Name System Security
Extension (DNSSEC)
• Firewalld
• DDOS Attack prevention
• NF-Tables
• IPV6 NAT
• Overlay Technologies
• Virtual Extensible LAN (VXLAN)
• Generic Routing Encapsulation (GRE)
• Layer 2 Tunneling Protocol (L2TP)
• Network Namespaces
• Diagnostics
• IpTraf-ng
• Netsniff-ng
Learn more about Networking
For more information on Networking topics:
• New networking features & tools for Red Hat Enterprise Linux 7 beta
• Wednesday April 16, at 1:20pm
• The next-generation firewall for Red Hat Enterprise Linux 7 beta
• Thursday at April 17, at 11:00 am
• Demos:
• Tuesday April 15, 10am - 12pm
• Network Manager in Action
• Team Driver fundamentals
• Open vSwitch
File Systems & Storage Tom CoughlanRed Hat, Inc.
RHEL 7 Areas of Focus
•Expanded file system choices
•Storage stack enhancements
•Focus on very high performance, low latency devices
•Support for higher capacities across the range of file and storage options
•Ease of use and management
RHEL 7 Will Provide More Choices
•RHEL 7 will support XFS, ext4, 3, 2, NFS, and GFS2
•Maximum supported filesystem sizes increase• XFS 100TB -> 500TB
• ext4 16TB -> 50TB
•btrfs is a technology preview feature in RHEL 7
•btrfs going through intense testing and qualification - we set a high bar
RHEL 7 Default File System
•Red Hat Enterprise Linux 7 has XFS as the new default file system
•XFS will be the default for boot, root and user data partitions on all supported architectures
• Included without additional charge as part of RHEL 7 subscription• Red Hat Enterprise Linux 5 and 6 still have Scalable File System layered products
38
RHEL 7 NFS Updates
•Red Hat Enterprise Linux 7 completes the server side support for NFS 4.1
•Support for only-once semantics
•Port 2049 is now used for callbacks, as well as normal traffic
•Labeled NFS provides enhanced support of SELinux over NFS
•Parallel NFS (pNFS) client
•Full support for file layout
•Technical preview support for object and block layouts
•We are working with our OEM partners on the pNFS server
The GFS2 Cluster File System
•Additional performance enhancements for GFS2
•Continuing work with partners like SAS:
•Extensive testing of SAS cluster workloads on GFS2
•Performance work based on results of those tests
•Performance Co-Pilot (PCP) support for GFS2 allows for real-time and/or post-event analysis of file system performance
RHEL 7 Storage Enhancements
•New protocols and driver support
•Shipping NVMe driver for standard PCI-e SSD's
•Support for 16Gb/s FC and 12Gb/s SAS-3
•Linux-IO SCSI Target (LIO)
•User-specified action on SCSI events, e.g. LUN create/delete, thin provisioning threshold reached, parameter change.
•LVM
•RAID, thin provisioning and snapshot enhancements
•Tiered storage, using LVM/DM cache, in technology preview
Storage Management
Storage Array set-up / monitor
Logical Volumeset-up / monitor
Filesystem set-up / monitor
Enhanced Storage Management
Storage Array set-up / monitor
Logical Volumeset-up / monitor
Filesystem set-up / monitor
SystemStorage Manager
libStorageMgmt
lvm2app
blivet
OpenLMI
CLI
CLI API
Learn more about File and Storage
• The new world of NFS Tuesday 2:30 pm
• Red Hat Storage Server: Roadmap & integration with OpenStackTuesday 2:30 pm
• Fundamentals of LVM with Red Hat Enterprise Linux 7 beta (Lab) Tuesday, April 15 3:50 pm
• Red Hat Enterprise Linux 7 beta file systems: New scale, speed, & featuresThursday 9:45 am
• Demonstration (Partner Pavilion) of System Storage Manager (SSM)Tuesday 10 am-noon & Wednesday 1-2 pm
• Engage the community:
• http://lwn.net
• Mailing lists: linux-lvm, linux-ext4, linux-btrfs, linux-nfs, linux-xfs, ...
System Management and Security
Jack RiedenRed Hat, Inc.
Software Assurance and Certifications
•Common Criteria – RHEL 6.2 Base OS and KVM
•FIPS140-2 - RHEL 6.2US Government Standard used to accredit cryptographic modules
•USGv6 – RHEL 6.2Standard required for IPv6 networking in the Federal Government (Replaces IPv6 Ready Logo)
•US Government Configuration Baseline (USGCB) – RHEL 6Provides a minimum security configuration for software products
•Security Content Automation Protocol (SCAP) 1.2 – RHEL 6.5Establish and automate security baselines
Red Hat Enterprise Linux 6.5 - Security Update
•NSA Suite B Algorithms• AES, ECDH, ECDSA, SHA256
• FIPS Certification (in process)
•Shared System Certificates• System-Wide trust store for Certificates
•Transport Layer Security (TLS) 1.2 (OpenSSL, NSS)
• Improved SCAP 1.2 scanner
Red Hat Enterprise Linux 7 - Security Features
•Microsoft Active Directory Interoperability
• Identity Management (IdM) • Cross Realm Trust with Active Directory
• Improved SSSD interoperability with Active Directory
•Basic Active Directory integration• Simplified User Auth/Machine join capability
• Can be deployed via Kickstart script
•UEFI Secure Boot (support Window 8 logo hardware)
Red Hat Enterprise Linux 7 - Security Features
•SELinux• File Name Transitions
• SeTroubleshoot – integrated with Journald
• Labeled NFS
• Integrated Docker policy
•Firewalld - Dynamic management of firewall via D-Bus
• Support for IPv4, IPv6, bridges
• Dynamic / in-place changes
• Built in services (e.g. dns, tftp, https, dhcp)
• Network Zone support according to trust levels
Security Content Automation Protocol (SCAP)
Automated approach to verifying compliance with security guidelines
•Security policy customization with scap-workbench
• Installer integration with oscap-anaconda-addon
•System management integration with Satellite
OpenSCAP has now passed certification for SCAP 1.2 !!!!
Open Linux Management Initiative
Improve manageability of Linux systems
•Provide standardized remote API for system management
•Standards based - DMTF/CIM technology stack
•Storage, networks, users, system services, power, system configuration
•Client interface, LMIShell provides a High level task oriented API
Systemd
New system and session manager
• Benefits• Integrated with cgroups, udev
• Socket and D-Bus activation for starting services
• Compatible with SysV init and LSB scripts
• Integrated with Docker
JournaldSystem service that collects and stores indexed, structured data
• Benefits• Addition of meta data to log – i.e. Process id, user/group id
• Structured – key/value pairs
• Interoperability with rsyslog
Containers
Application isolation mechanism for Light-weight multi-tenancy• Process Isolation -- Namespaces
• Resource Management -- Cgroups
• Security (confinement) -- SELinux
• Management -- Docker
Benefits•Fast Startup and shutdown•Easy creation of container environment•Scale out of applications•Manage one RHEL system•Can be launched as a Systemd unit file
Docker
Tool that can package an application and its runtime dependencies for deployment into a Linux Container
Docker builds on Linux Containers, adds an API, an image format and a registry/index
Docker includes the userspace runtime of an application
Benefits•Simplified Application Delivery•Minimal Application Footprint•Application Isolation•Application Portability
Learn more about System Mgmt & Security Security in Red Hat Enterprise Linux 7 Beta - Tuesday at 4:50PM
Interoperability Update;Red Hat Enterprise Linux and Windows – Tuesday at 3:40pm
Linux Containers in Red Hat Enterprise Linux – Wednesday 10:40am
Demystifying Systemd – Wednesday at 2:30pm
The Next-Generation Firewall for Red Hat Enterprise Linux – Thursday at 11:00am
Portable, lightweight and interoperable Docker containers across Red Hat Solutions – Wednesday at 1:20pm
Applied SCAP: Automating security compliance & remediation - Wednesday at 1:20PM
SELinux for mere mortals - Wednesday at 3:40PM
Lab on Containers & resource management in Red Hat Enterprise Linux 7 Beta - Wednesday at 3:50
References
Red Hat Certifications -
http://www.redhat.com/solutions/industry/government/certifications.html
OpenSCAP project - http://www.open-scap.org
OpenLMI - http://www.openlmi.org
Polling Time!
A few questions we’d like to ask you...get your mobile app ready!
Q1: Kernel updates are currently shipped every 8 weeks for supported releases. Should other packages ship on the same schedule?
a) Yes, change to same schedule as kernel
b) No, stay as they are now
c) Don’t know/don’t care
Q2: For next year, how can we improve this RHEL roadmap presentation?
a) More technical detail
b) Higher level feature overviews with benefits and use cases
c) More product roadmap and strategy
d) Keep it as is
Q3: When would a lightweight flexible container infrastructure like RHEL Atomic be useful to your organization
a) Immediately
b) Within 6 months
c) Within 12 months
d) No plans for any of this
e) What's RHEL Atomic?
Agenda, Session 2 (2:30 to 3:30)
• Software Collections and Core Utilities – Ondrej Vasik
• Virtualization – Karen Noel
• Desktop – Paul Frields
• Installation – David Cantrell
• Developer Tools – Matt Newsome
• Summary, Q & A if time permits
Software Collections & Core Utilities Ondřej VašíkRed Hat, Inc.
Software Collections
•Power to build, install, and use multiple versions of software on the same system
•Developer Toolset (DTS)
•RHSCL 1.1:• languages: Perl 5.16, Ruby 2.0 and Rails 4, Ruby 1.9.3 with Rails, Python 2.7, Python 3.3, PHP 5.4, PHP 5.5
• httpd 2.4, mariadb 5.5, mysql 5.5, mongodb 2.4, postgresql 9.2, thermostat 1
• as tech preview Node.js 0.10, nginx 1.4.3
LAMP Stack
•Apache - httpd 2.4 (in RHEL 7, RHSCL 1.1):
•high performance threaded "event" processing model
•enhanced SSL support: on-line certificate revocation
• run-time configuration for proxy load balancing
•FastCGI support
Databases (RHEL 7, RHSCL 1.1)
•MySQL 5.5 - semi-synchronous replication, performance_schema
•MariaDB 5.5 – RHEL 7 DEFAULT - all of MySQL 5.5 PLUS:• asynchronous client API
• Aria and XtraDB storage engines
• fully compatible with MySQL
•Awesome features in new PostgreSQL 9.2; first steps to NoSQL• range data type, synchronous replication, foreign tables support, performance improvements
• PostgreSQL in-place data migration support from RHEL 6 to RHEL 7
Core daemons
•tuned - automated system tuning:
• NEW automatic profile generation via powertop system scan
• MORE product specific tuned profiles
•dnsmasq small-scale network services, used by libvirt and OpenStack• NEW supports DHCPv6
• ISC DHCP 4.2• better performance: dynamic DNS transactions in asynchronous fashion
•dovecot 2.2:• implemented multiple IMAP extensions, mailbox synchronization utility
Core utilities and shells
•yum: repo-pkgs command allows treating repositories as products
•coreutils :
•code optimization and speedup
• *sum utilities now use libcrypto (2x faster sha512sum)
•SELinux optimizations
Preupgrade Assistant
•critical part of in-place upgrades RHEL 6 RHEL 7
•system compatibility assessment, provides solutions for incompatibilities
•able to help with system migration
•work in progress, modular design, modules under development
•UI with easy to search and filter tree structure
Preupgrade Assistant
ABRT – automated bug reporting tool
•Analyze system at the time of a kernel or application crash (C, C++, kerneloops, Python, Ruby, Java, MCE)
•New GUI with easier reporting
•Better console notifications
•Autoreporting (off by default) - ability to collect anonymous crash reports either on local server or on RH managed server
ABRT – retrace server
Learn more about SCLs, In-place upgrades ...
For more information
• In-place upgrades:
•Session “Migrating Red Hat Enterprise Linux installations to new major versions” - Wed 4:50PM + 3x demo booth session
•Software collections:
•Session “S/W Collection - Keeping pace without sacrificing platform stability” - Tue 3:40 PM
•Session “Deeper understanding of software collections” - Tue 4:50 PM
Virtualization Karen NoelRed Hat, Inc.
KVM - Red Hat's Foundational Virtualization Technology
RHEV Hypervisor
RHEL with KVM
RHEV Hypervisor and RHEL with KVM
#1 Mission Critical, Back Office – performance, scalability, security, stability
#2 Systems Supporting Business Processes – many enhancements
#3 Systems of Innovation – integration with OpenStack, Gluster, etc.
Best SPECvirt_sc2010 Scores by CPU Cores(As of April 3, 2014)
The SPECvirt_sc2010 benchmark has been retired and no new results may be published. SPEC® is a registered trademark of the Standard Performance Evaluation Corporation. For more information about the benchmark and the results, see http://www.spec.org/virt_sc2010/.
Security
Continue SELinux tradition with sVirt
Sandboxing – syscall filtering
Cryptography – virtio-rng (random number generator)
Automatic NUMA Balancing – unbalanced
vcpu 1vcpu 1vcpu 0vcpu 0
NUMA Node A NUMA Node B
Automatic NUMA Balancing - balanced
vcpu 1vcpu 0 vcpu 1vcpu 0
NUMA Node A NUMA Node B
KVM – Performance Improvements
New kernel para-virtualization (PV) features
New Intel processor features
Network and SCSI multi-queue
virtio-blk data-plane (RHEL 6 tech preview)
Hyper-V “Enlightenment”
KVM – Thin Provisioning (virtio-scsi)
ext4, XFS ext4, XFS
gluster*, NFS*
SSD, NAS, dm-thinp,...
qcow2, raw, ...qcow2, raw, ...
qcow2, raw, ...
file, block device, gluster*, iSCSI
gluster*, iSCSI
* Pending
KVM – Live Migration
Live migration from RHEL 6 host to RHEL 7 host
Many live migration improvements
1100101001011110
DestinationhostI/O
Guest OS
QEMU
Migr0 1
KVM – Virtual Function I/O
VFIO - New architecture for device assignment
• Replaces PCI assignment in RHEL 6
• What's new? GPU device assignment
Learn more about Virtualization
Presentations ✔ Automatic NUMA balancing: Wednesday – 3:40 pm✔ Red Hat Enterprise Virtualization hypervisor roadmap: Thursday – 9:45 am✔ RHEV, OpenStack and RH Storage Server talks all include KVM!
Demos✔ Performance booth – meet Red Hat performance engineers✔ Nvidia & Dell: GPU device assignment with RHEL 7 & KVM
Upstream communities
• www.linux-kvm.org * wiki.qemu.org * www.libvirt.org
Desktop Paul W. FrieldsRed Hat, Inc.
RHEL 7 RC Desktop ChangesRHEL 7 RC Desktop Changes
● New GNOME 3 based user interfaceNew GNOME 3 based user interface● Classic Mode default -- familiar interfaceClassic Mode default -- familiar interface• Main menuMain menu
• Window listWindow list
• Desktop iconsDesktop icons
● GNOME 3 standard mode and KDE also installedGNOME 3 standard mode and KDE also installed● Extensible and flexibleExtensible and flexible
GNOME BoxesGNOME Boxes
● Tool for running KVM virtual Tool for running KVM virtual guests and other remote guests and other remote connections on the RHEL 7 connections on the RHEL 7 RC desktopRC desktop
● Ease of use – faster Ease of use – faster deployment of virtual deployment of virtual machinesmachines
● Use with e.g. existing ISOUse with e.g. existing ISO
Online account integrationOnline account integration
● Multiple providers availableMultiple providers available● Accounts can be added by Accounts can be added by
user at first loginuser at first login● Some providers integrate Some providers integrate
search across content search across content stores, chat, etc.stores, chat, etc.
Other Features and EnhancementsOther Features and Enhancements
● IBus integration to improve IBus integration to improve global experienceglobal experience
● Improved Wacom tablet Improved Wacom tablet supportsupport
● Better accessibilityBetter accessibility
Evolution ImprovementsEvolution Improvements
● Improved Exchange and Improved Exchange and Zimbra integrationZimbra integration
● Continue to enhance Continue to enhance Exchange, IMAP support Exchange, IMAP support throughout RHEL 7 lifecyclethroughout RHEL 7 lifecycle
Other Application EnhancementsOther Application Enhancements
● LibreOffice 4.1LibreOffice 4.1•Better MS Office compatibility, including Visio and Publisher importBetter MS Office compatibility, including Visio and Publisher import
● Chromium for future RHEL 7 updatesChromium for future RHEL 7 updates
Learn more about Desktop
•Attend the lab: Experience the Future with Red Hat Enterprise Linux 7 Beta
•Thursday, April 17 – 9:00-11:00am
•Visit the Desktop station at the Red Hat Platform booth in the Partner Pavilion:
•Tuesday, April 15 – 5:30-7:30pm – Pod #2
•Wednesday, April 16 – 10:00-11:00am – Pod #1
•Read more about Desktop changes and administration in the RHEL 7 Beta Desktop Migration and Administration Guide: http://red.ht/1kuN8MT
Installer David CantrellRed Hat, Inc.
Red Hat Enterprise Linux 7 RC Installer Changes
•New GTK+ 3 based user interface
•New text mode interface
•New storage configuration interface
•New firstboot replacement (initial-setup)
•Kickstart is the same
Installer Features and Enhancements
•Automatic default answers when possible
•New hub & spoke interface layout allows more flexible installation experience
•Text mode better suited to serial consoles and other limited display interfaces
•Active Directory host enrollment support in Kickstart
•Plugin architecture allows site-specific extensions to Kickstart, the installer, and initial-setup
Storage Features and Enhancements:
•More automatic layout options, including LVM with thin provisioning, BTRFS, and standard partitions.
•Detailed control over preserving and resizing existing volumes.
•Custom configuration presented in a top-down model starting with the mount point and defining the technology underneath.
•Rescan option discovers storage changes.
Learn more about the Installer
For more information on Installation topics:•Attend the lab: Experience the Future with Red Hat Enterprise Linux 7 Beta
•Thursday, April 17 – 9:00-11:00am
•Visit the Installer station at the Red Hat Platform booth in the Partner Pavilion
Engage the Community:
•http://fedoraproject.org/wiki/Anaconda
•http://blog.linuxgrrl.com/category/fedora/anaconda/
Developer ToolsMatt NewsomeRed Hat, Inc.
v0.12
98
OpenJDK and Java Today
• Latest OpenJDK6 and 7 in RHEL
• Upstream OpenJDK6 support taken over by Red Hat (after EOL by Oracle) in April 2013
• Latest proprietary JDKs available:
• Oracle Java 6,7
• IBM Java 5, 6, 7
99
OpenJDK and Java Tomorrow
•Planned for Red Hat Enterprise Linux 7
•Thermostat – A new profiling and monitoring tool for OpenJDK7 and higher that will be made available through RHSCL
•Tentatively planned for Red Hat Enterprise Linux 7.x
•OpenJDK8
•Shenandoah: An ultra-low pause-time garbage collector for 100+GB heaps
100
Performance Tools in Red Hat Enterprise Linux 6
•SystemTap – Live application analysis without rebuilding•RHEL 6.5:
•Language improvements: regular expression operators, macros, perfctr reading.•Detailed error diagnostic man pages.•Much faster stack unwinding.
•PAPI - Programmer interface to monitor perf. counter hardware•RHEL 6.5: Support for Intel Ivy Bridge and Sandy Bridge
•OProfile - Unobtrusive, system-wide code profiler
•Valgrind - Runtime analysis (particularly memory)
101
Performance Tools in Red Hat Enterprise Linux 7 RC
•RHEL 7 RC brings performance tools together in a new way:
• Introduces DynInst, a library for manipulating live executables.
•Uses Dyninst to run SystemTap scripts without any kernel privileges.
• Introduces Performance Co-Pilot (PCP), a library and toolkit for storing and analyzing performance measurements of systems on a network.
•Allows performance data, including that from SystemTap, to be fed into PCP and the results be visualized with PCP-GUI.
•Updates valgrind, elfutils, and other interrelated tools to bring the community's latest into a broad-scope and integrated toolset for performance monitoring.
102
Toolchain Updates in RHEL Releases
RHEL 5: Stability emphasis
• gcc-4.1 & 4.4, gdb-7.0 and glibc-2.5
RHEL 6: Stability and performance focused updates
• gcc-4.4 and gdb-7.2 and glibc-2.12
RHEL 7 RC : Major new components and features
• gcc-4.8, gdb-7.6 and glibc-2.17
• C++11 & DWARF4 standards, atomic types and Transactional Memory
• New register allocator, extensive performance improvements
• Built-in memory error detector and data race detector
103
Red Hat Developer Toolset
• Developer Toolset: develop with new tools for multiple RHEL releases
• Available with Developer Subscriptions
• v2.1 [2014]: Status: GA release, C/C++/Fortran, x86/x86_64
• Toolchain: gcc-4.8 development for RHEL 5 and 6
• Debugger: gdb-7.6
• Performance tools: OProfile, Valgrind, SystemTap, Dyninst
• Eclipse “Kepler” Integrated Development Environment
• Build with DTS tools on RHEL 6 and test on RHEL 7 RC
Learn more about Tools and Developer Toolset
More information on Developer Toolset• Developer Toolset Demos:
• Weds 9:15am (Demo Floor)• Weds 1:00pm-2:00pm (Partner Pavilion, Demo Pod #1)
• Developer Toolset Talk:• Weds 4:50pm-5:50pm (Taste of DevNation track, Room 236)
More information on Performance Tools
• Recipes to analyze common perf. issues - Tues 4:50-5:50pm (Room 208)
More from our Developer Program
• developerblog.redhat.com
Summary Denise DumasRed Hat, Inc.
106
Key Takeaways
•Red Hat Enterprise Linux 7.0 “real soon now” ;-)
•Designed as a solid base for an application optimized infrastructure
•From the RHEL Platform team, leading responsible innovation in communities everywhere
107
Thank you for joining us and for running Red Hat Enterprise Linux
•Thank you! Enjoy the Summit!
•Please give us your session feedback
•See session handout for session referrals and resource links.
•Continue to tell us what you think through your Red Hat point of contact and share your thoughts in the customer portal groups at https://access.redhat.com/groups/red-hat-enterprise-linux
•And see the Red Hat Enterprise Linux blog at http://rhelblog.redhat.com/