suse linux enterprise technology roadmap - itechgrup · ‒ easily combine sles and sled in one...

SUSE® Linux Enterprise 12

Sebastián MartínezBusiness Developer Manager

[email protected]

mailto:[email protected]

2

SUSE Linux Enterprise Server 12

The advanced foundation for your success

Increase uptime Improve operational efficiency

Accelerate innovation

Lifecycle

4

SUSE® Linux Enterprise Server 12

Lifecyle Model

10 years lifecycle + 3 years Extended Support

General Support Extended Support

Year 1 Year 2 Year 3 Year 4 Year 5 Year 6 Year 7 Year 8 Year 9 Year 10 Year 11 Year 12 Year 13

GA LTSS

SP1 LTSS

SP2 LTSS

SP3 LTSS

SP4 LTSS

• 13-year lifecycle (10 years general support, 3 years extended support)• Long Term Service Pack Support (LTSS) available for all versions, including GA

5

SUSE® Linux Enterprise

Lifecycle & Code Streams

2011 2012 2013 2014 2015 2016

SLE10

SLE 11

SLE 12

SP4

SP2 SP3 SP4

SP1

13-year lifecycleFor SLES 11 and SLES 12,10 years general support,+3 years Long Term Support

Tentative – Dates subject to change

SUSE Linux Enterprise 12Long Term Service Pack Support for every Service Pack

GA

Base SystemProvide more than Unix

7


How We Build It

Source Package Image

OBS user submits sourceto OBS and gets a product

OB

S

OnlineRepository

8

SUSE Linux Enterprise 12

Common Code Base & Architectures

SUSE Linux Enterprise platform

Server Desktop SDK HA Cloud

Binary Code BaseIntel 64 IBM POWER IBM System z

Common (Source) Code Base

• Foundation for all SUSE® products• Fully supported core system • Choose the right architecture for your workload

9


SUSE® Maintenance and Support

Mai

nte

nan

ceP

roce

ss

Su

pp

ort

Pro

cess

ProvidePatch

MaintenanceQA

CertifiedPatches

DeliveryVia NCC

ReceiveRequests

L1 and L2Escalation

L3Resolution

PTFVia NCC

PTF = Program Temporary FixNCC = The webservice where customer interact with the support

organization and get access to packages and patches

10


Technology Highlights

• 64-bit hardware is the future‒ 64-bit kernels only‒ Execution of 32-bit applications fully supported

via 32-bit execution environment on top of 64-bit kernel

• Virtualization‒ Xen and KVM support‒ 64-bit host; 64-bit and 32-bit guests

• Linux Kernel 3.12 based• Systemd replaces SysVInit• Boot process

‒ Grub2 (bootloader)‒ Dracut (initrd building)

11

What is systemd?

• systemd is a system and session manager for Linux, compatible with SysV and LSB init scripts

• systemd‒ Aggressive parallelization capabilities‒ On-demand daemon activation‒ Keeps track of processes using Linux Kernel Control Groups

(cgroups)‒ Able to auto-restart failing daemons‒ Logging not only of syslog messages from services, but also

messages services display on stdout‒ Well documented in manual pages

12


Choice where choice is due

• Virtualization and Hypervisors‒ Xen‒ KVM‒ Linux Containers (libvirt-lxc)‒ Docker (Technology Preview)

• Filesystems‒ btrfs – default for the OS‒ xfs – default for data‒ extX-family

• Hardware Architectures• Open Source Databases

‒ Support for MariaDB

13

btrfs – Functionality – Maturity

Today Future

Copy on Write Inode Cache

Snapshots Auto Defrag

Subvolumes RAID

Metadata Integrity Compression

Data Integrity Send / Receive

Online metadata scrubbing Hot add / remove

Manual Defragmentation Seeding devices

Manual Deduplication Multiple Devices

Quota Groups “Big” Metadata

14


Filesystem recommendations

Type?

New Filesystem?

Purpose?

Snapshots?Snapshots?

ext3|4xfs

btrfs

OS Data

No

Yes

Yes

Convert

No

ext2/3/4

xfs reiserfs

Yes

No

Recommended Filesystems

15


Desktop Highlights

• Standalone Product & Extension toSUSE Linux Enterprise Server 12

‒ Easily combine SLES and SLED in one supported system:SUSE Linux Enterprise Workstation Extension

• One Tool to get the job done

• Modernized User Interface and applications

• Customized GNOME 3 Classic Mode as the desktop environment

17


Security and Compliance

Planned Certifications:• FIPS 140-2

‒ OpenSSL‒ OpenSSH client and server‒ Strongswan (IPSec based VPNs)‒ Kernel Crypto API‒ …

http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140InProcess.pdf

• Common Criteria Certification• IPv6 recertification

18





Increase Uptime ...

20

RAS SystemRollback

High Availability

Live Patching

Minimize downtimeplanned and unplanned


Increase Uptime

21

Prevent hardware downtime

SystemRollback

Live Kernel Patching

High Availability

RAS

22


RAS - Overview

Reliability, Availability, Serviceability• Interaction of hardware and operating system

→ Traditional UNIX capability• SUSE is leading for RAS capabilities on Linux

‒ Intel 64 architecture‒ IBM POWER architecture

23


RAS

Benefits• Choice of HW vendor• System and applications survive hardware failure• Integration into systems management frameworks• Engineering excellence by early adoption of Kernel 3.x

Future• Migrate processes to more reliable memory/CPUs

24

RAS

High Availability


Reduce Operational Downtime

System Rollback

25

Goal: Go back to well-known system state

Peace of mind for:• Patch installation• System admin tasks

Components‒ ZYpp‒ Btrfs → Default filesystem‒ Snapper‒ Grub2 boot loader integration


System Rollback

26


System Rollback

New in SUSE Linux Enterprise 12• Extended system integration• Support for Service Pack rollback• Support for Kernel Upgrade

→ “Full system rollback”

27

RAS

Maximize service availability

SystemRollback


High Availability

28

• Service failover at any distance – from local to geo

• Up to 99.9999% availability

• Rolling updates for less planned downtime

• Easy setup, administration, management

• Virtualization agnostic

• Leading open source High Availability

• On par with proprietary products

Fighting Murphy's Law

Secure the business!


High Availability – Status

29


High Availability – Differentiators

• Available on any arch‒ From x86 to System Z

• SAP/Oracle integration‒ Cluster file system OCFS2‒ SAP reference HA design

• Virtualization Agnostic‒ Virtual cluster on all hypervisors

• Scale Network Services‒ IPv4 / IPv6 load-balancing

• Disaster tolerance‒ Data replication via IP

(DRBD)‒ Node recovery (ReaR)

• User friendly tools‒ Graphical user interface‒ Unified command line

• Free Resource Agents• Geo Clustering

‒ Cluster across unlimited distance

30

• Keep it most up-to-date• Storage

‒ SCSI reservation handling, GFS2, drbd (data replication)• Usability

‒ HAWK (web console), crm shell, wizards & templates• Extend GEO framework to a full solution stack

‒ GEO reference architecture‒ IP take-over (via dynamic DNS)‒ Multi-tenancy arbitrator (for multi-cluster environments)


High Availability – New in 12

31

RAS

High Availability

Manage without Downtime

SystemRollback


32

SUSE® Linux Enterprise Live Patching

Technology “kGraft”

What?• Kernel Live Patching• Designed and developed by SUSE Labs• Ease of use: Builds on well known update processes

Status?• Currently being discussed and integrated “Upstream”

(=Kernel community)

Competitive Advantage?• Works with zero execution interruption

‒ As opposed to competition who stop the whole system (miliseconds to seconds range) when patching

33

SUSE® Linux Enterprise Live Patching

Kernel Live Patching – Use Cases

• Mission Critical systems‒ Improve general availability‒ Run until the next “maintenance window”

• Help with deployment challenges‒ No need to update all 10000+ systems at one shot, but be able

to run until a specific state is reached• See also:

https://www.suse.com/communities/conversations/need-kgraft-2/

Caveat: Not all issues can be fixed using “kGraft”;in special cases a reboot might be necessary

https://www.suse.com/communities/conversations/need-kgraft-2/

ImproveOperational Efficiency

35


Improve Operational Efficiency

36


Made for Cloud

Available in Public Clouds

KVM & XENContainers

Dual Hypervisor Support

In the CloudsIn Your Data Center

Guest

Host

Cloud Hosts

Perfect Guest

37


Made for Cloud – Open vSwitch

• Open Source Software Defined Networking

• Enables hypervisors to provide networking connectivity to VMs

Picture source: openvswitch.org

38


Made for Cloud – Virtualization – Future

• Keep: Xen and KVM hypervisors + Linux Containers• Bigger: Memory 16TB, CPUs 4096, etc.• More: vfio, vTPM, multiqueue networking, vCPU

hotplug• Complete: V2V tools and documentation• Evaluate: Docker

39


Interoperability

40


Interoperability - IPv6

• Leading OS – IPv6 compatibility and certification (USGv6)– https://www.iol.unh.edu/services/testing/ipv6/usgv6tested.php

• Tested scenarios– DHCP6 server and client– IPv6 support in NFS– Ensure IPv6 capabilities with UEFI network boot

• Network services• System Installation & Patching over IPv6Benefit• Deploy and use in pure IPv6 environment• Scale networks beyond IPv4 limitations• Answer compliance needs

https://www.iol.unh.edu/services/testing/ipv6/usgv6tested.php

41


Interoperability – Samba 4

• Better Distributed Filesystem (DFS) capabilities• File Server Remote VSS Protocol (FSRVP)

– Server: integration with btrfs and Snapper– Client

• Server-side copy enhancements (btrfs backend)• Protocol enhancements

– Encryption– SMB 3.0 negotiation

Benefit• Authentication with recent Windows / AD Servers• Linux Server behaves as expected (FSRVP)

42


Samba 4 / Btrfs: Server Side Copy

Read

Write

Read

Write

Traditional Copy

Server-S

ide

Copy

Read

Write

Server-Side Copy

Server-S

ide

Copy

Clone

Range

Btrfs EnhancedServer-Side Copy

43


Local Systems Management

• Leading system installation technology

• Interactive and Unattended major version upgrades

• YaST: the only integrated single system management solution in the Linux world

• Wicked: overhaul of network management‒ Cope with increasingly complex configurations‒ Benefits

‒ Network configuration as a service‒ Smooth adoption & migration

• Future: Advanced Systems Management

44


Installer

• Reduced installation time and effort– Possibility to install directly with updates thanks to early

registration

• Manual Installation– Improved Workflow, no second stage– Early Network configuration – Multiple UI options

• Automated→ AutoYaST

• Customized– Write your own modules in Ruby

45


Installer – Workflow

Reboot


Install without updates

Services

Install with updatesNetwork Register

Reboot

Installation Setup

Installation Setup

Log-in

Log-in


Wait

Wait

Reboot Network UpdateRegister Wait

46


Network Management – “Wicked”

Goal• Cope with increasingly complex configurations• Data Center and End Users• Benefit

– Network configuration as a service– Smooth adoption & migration

Technical Attributes• Architecture-independent• Extensible• Small footprint • Event based

47

“Machinery”

The future of Systems Management

48

SUSE Linux Enterprise 12 – Advanced Systems Management

Use Cases

Physical to Virtual (P2V) or Physical to Cloud (P2C) migrations and server consolidation

OS and/or application modernization

Disaster Recovery; (Backup and Restore)

Building and maintaining a “Golden Image” for the datacenter (but desktop/branch office scenarios as well)

Cluster/Scale-out scenarios

11 12

49


Overview

50


Current Focus

Tech Preview inSUSE LinuxEnterprise 12 GA

51


Automated Deployment Model

System Inspection in Advanced Management Module Various Output Format

Report

Your Project

KIWI

Develop.…...........Build.....................Test................Deploy

YaST / AutoYaST

Accelerate Innovation

53

Consumption of Innovations

54


Modules

• Components of SUSE Linux Enterprise‒ Flexible lifecylce (different from the base product)‒ Delivered on-line‒ Fully supported‒ Included in the SUSE Linux Enterprise Server subscription

→ no extra cost

• List of modules‒ Web and Scripting‒ Legacy‒ Toolchain‒ Public Cloud‒ Advanced Systems Management

55


Modules – a closer look

Module Name Content Lifecycle

Web and Scripting Module

“PHP”, “Python”, “Ruby on Rails” 3 years

Legacy Module Sendmail, old IMAP stack, old Java etc.

3 years

Public Cloud Module Public cloud initialization code and tools

Continuous Integration

Toolchain Module GCC Yearly delivery

Advanced Systems Management Module

the configuration management tools cfengine, puppet and the new "machinery" tool

Continuous Integration

56


Modules

Lifecycle Community Enterprise Modules

Support Commitment

Community Maintained Community SupportedSUSE Monitored

MaintainedNot supported

Maintained Supported

SolidDriver

Program

Supported with Partners

Tool-chain

SDK

LegacyWeb&Script.SLES

CommunityPackages

57

Software Modules

Add-Ons

58

SUSE SolidDriver Program: Same-day Hardware Enablement

Serverfrom 2014

Serverfrom 2012

SUSE Linux Enterprise Server 11 SP3

Applications

kISO

SUSESolidDriverProgram

https://driver.suse.com/

59

Innovation with Enterprise Quality

Kernel 3.12• The 3rd release based on Linux kernel 3.x, since

SUSE Linux Enterprise 11 SP2 in 2012XFS and btrfs: get the best from both worlds: • Support for XFS for the last 10+ years. • Support and recommend xfs for data, • Recommend btrfs as the default file system.Linux Containers• Support Linux Containers since 2012• Better manageability and integration with hypervisors• Docker as Technical Preview

Bye bye Unix …

61


Unix to Linux – Approach

From Unix ... … to SUSE Linux Enterprise

Proprietary

One Architecture

Interoperability as AddOn

Vendor specific Communities

Free and Open

Multiple Architectures

Interoperability as a Principle

Partner-, Customer- and Developer Community

62


Unix to Linux – Technology

From Unix ... … to SUSE Linux Enterprise

Architecture specific Virtualization

Separate High Availability solutions

Static Configuration● SysVInit● Network scripts● CoW filesystems

Built-in Virtualization:Xen, KVM, Containers

Integrated High Availability solution

Dynamic Configuration● SystemD● Wicked● Snapper with D-BUS

63

SUSE® – Technology Leadership

Today Tomorrow

Solaris CompeteLeader in SAP & System z

Exceed Unix and other OSsLeader in Mission Critical Infrastructures

64





Thank you.

65

Your Questions!?

Appendix

67


Documentation and Release Notes

• Product Pages– http://www.suse.com/products/server/– http://www.suse.com/products/sles-for-sap/– http://www.suse.com/products/desktop/– http://www.suse.com/products/highavailability/

– http://www.suse.com/products/realtime/

• Unix to Linux Migration– http://www.suse.com/solutions/enterprise-linux-servers/unixtolinux.html

• Documentation– http://www.suse.com/documentation/

• Release Notes– http://www.suse.com/releasenotes/

http://www.suse.com/products/server/

http://www.suse.com/products/sles-for-sap/

http://www.suse.com/products/desktop/

http://www.suse.com/products/highavailability/

http://www.suse.com/products/realtime/

http://www.suse.com/solutions/enterprise-linux-servers/unixtolinux.html

http://www.suse.com/documentation/

http://www.suse.com/releasenotes/

68


Kernel Capabilities

CPU bits 64 64 64

max. # logical CPUs 8192 64 2048

>1PiB/64 TiB 4 TiB/256 GiB 1 PiB/64 TiB

max. user-/ kernelspace 128 TiB/ 128 TiB φ/φ 2 TiB/2 EiB

max. swap space up to 29 * 64 GB (x86_64) or 30 * 64 GB (other arch.)

max. #processes 1048576

max. #threads per process

FD_SETSIZE 1024

max. size per block device Up to 8 EiB on all 64-bit architectures

Supported on certified hardware only

max. RAM(theoretical/certified)

Maximum limit depends on memory and other parameters (Tested with more than 120000).

69


Major Linux (local) Filesystems

Feature ext 2/3 reiserfs xfs ext4 btrfsData/Metadata Journaling •/• •/• •/• CoWJournal internal/external •/• •/• •/• •/• CoWOffline extend/shrink •/• •/• •/• •/•Online extend/shrink •/•Inode-Allocation-Map table u.B*-tree B+-tree table B-treeSparse Files • • • • •Tail Packing ○ • ○ ○ •Defrag ○ ○ • • •ExtAttr / ACLs •/• •/• •/• •/• •/•Quotas • • • • Subvol.max. Filesystemsize 16 TiB 16 TiB 8 EiB 1 EiB 16 EiBmax. Filesize 2 TiB 1 EiB 8 EiB 1 EiB 16 EiB

○/•

○/○

•/○ •/○ •/○ •/○

Default Filesystemfor the data

Default Filesystemfor the OS

Corporate HeadquartersMaxfeldstrasse 590409 NurembergGermany

+49 911 740 53 0 (Worldwide)www.suse.com

Join us on:www.opensuse.org

70

http://www.opensuse.org/

Unpublished Work of SUSE. All Rights Reserved.This work is an unpublished work and contains confidential, proprietary and trade secret information of SUSE. Access to this work is restricted to SUSE employees who have a need to know to perform tasks within the scope of their assignments. No part of this work may be practiced, performed, copied, distributed, revised, modified, translated, abridged, condensed, expanded, collected, or adapted without the prior written consent of SUSE. Any use or exploitation of this work without authorization could subject the perpetrator to criminal and civil liability.

General DisclaimerThis document is not to be construed as a promise by any participating company to develop, deliver, or market a product. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. SUSE makes no representations or warranties with respect to the contents of this document, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. The development, release, and timing of features or functionality described for SUSE products remains at the sole discretion of SUSE. Further, SUSE reserves the right to revise this document and to make changes to its content, at any time, without obligation to notify any person or entity of such revisions or changes. All SUSE marks referenced in this presentation are trademarks or registered trademarks of Novell, Inc. in the United States and other countries. All third-party trademarks are the property of their respective owners.

suse linux enterprise technology roadmap - itechgrup · ‒ easily combine sles and sled in one...

Documents