Red Hat Enterprise Linux Roadmap

Denise Dumas, Lars Herrmann and the Platform Engineering Managers Red Hat, Inc. April 15, 2014 DISCLAIMER

The content set forth herein does not constitute in any way a binding or legal agreement or impose any legal obligation or duty on Red Hat.

This information is provided for discussion purposes only and is subject to change for any or no reason.

v0.12 What to Expect in this Presentation

• Life cycle and status of each release • Red Hat Enterprise Linux product direction • Updates on features from RHEL releases available today and “real soon now” • Pointers to other Summit talks and resources for more detail • Meet RHEL engineering management and product management

• We want questions and feedback, but always seem to run out of time for Q&A. So please use the Summit app for questions and we will provide answers.

• Caveats • We only have time to describe a subset of proposed features and themes.

Agenda, Session 1 (1:20 to 2:20)

• Introduction – Denise Dumas • Red Hat Enterprise Linux Product Direction - Lars Herrmann • Kernel - Linda Wang • Networking – Rashid Khan • File Systems and Storage - Tom Coughlan • System Management and Security – Jack Rieden

Agenda, Session 2 (2:30 to 3:30)

• Software Collections and Core Utilities – Ondrej Vasik • Virtualization – Karen Noel • Desktop – Paul Frields • Installation – David Cantrell • Developer Tools – Matt Newsome • Summary, Q & A if time permits

How We Create RHEL •Red Hat's traditional strength – standardize and stabilize the upstreams •Integrate in Fedora •Pick the right components • 2500+ SRPMs make up RHEL 7.0, out of thousands of possibilities •Targeted development •Improve the quality • ~17900 bug reports closed •Stabilize the kernel for complicated hardware

•Validate performance all the way along Red Hat Enterprise Linux Today

RHEL 5 5.10 available now 5.11 in development - last RHEL 5 release RHEL 6 6.5 available now 6.6 in development RHEL 7 Release Candidate (RC) imminent!

RHEL 8 Yes, thinking about it already ;-)

RHEL 7.0 Release Candidate

ComingComing soon!soon!

•Available on Customer Portal https://access.redhat.com/site/products/Red_Hat_Enterprise_Linux/Get-Beta

•And at the Red Hat public ftp site ftp://ftp.redhat.com/redhat/rhel/rc/7/

RED HAT ENTERPRISE LINUX MORE THAN A DECADE OF INNOVATION

RED HAT RED HAT RED HAT ADVANCED SERVER 2.1 ENTERPRISE LINUX 4 ENTERPRISE LINUX 6 BRINGING LINUX AND OPEN DELIVERING RAS, STORAGE, LINUX BECOMES MAINSTREAM FOR SOURCE TO THE ENTERPRISE MILITARY-GRADE SECURITY PHYSICAL, VIRTUAL, AND CLOUD

02 03 04 05 06 07 08 09 10 11 12 13 14

RED HAT ENTERPRISE LINUX 3 RED HAT RED HAT MULTI-ARCHITECTURE SUPPORT, ENTERPRISE LINUX 5 ENTERPRISE LINUX 7 MORE CHOICES WITH A FAMILY OF VIRTUALIZATION, STATELESS LINUX – THE FOUNDATION FOR THE OFFERINGS ANY APPLICATION, ANYWHERE, ANYTIME OPEN HYBRID CLOUD

9 RED HAT CONFIDENTIAL | ADD NAME RETHINK YOUR ENTERPRISE OS

RED HAT ENTERPRISE LINUX 7® RC

PHYSICAL VIRTUAL CONTAINER CLOUD

LIGHTWEIGHT, SIMPLIFIED APPLICATION DELIVERY AND ISOLATION CONSISTENT, STANDARDIZED, PORTABLE 10 3 TYPES OF APPLICATIONS IN LEADING I.T. ORGANIZATIONS

MISSION-CRITICAL, SYSTEMS SUPPORTING SYSTEMS OF BACKOFFICE BUSINESS INNOVATION PROCESSES

● ● ● Maximum performance and throughput Heterogeneous, complex, interconnected Developer-led, high pace of change dependencies ● ● Stable, resilient, and vendor supported High impact (when they work) ● High rate of change ● ● Highest security, data intense Cutting edge, built on latest and greatest ● Requires manageability and automation ● ● Long lifecycle Long lifecycle ● Heavily virtualized, with a smaller but diverse ● ● Physical, with a broad user base Cloud requirements user base ● ● Tuned often, touch with care High touch ● Low touch, little love

11 RED HAT CONFIDENTIAL | ADD NAME PATH TO APPLICATION OPTIMIZED INFRASTRUCTURE

APP ENABLING APP AWARE APP OPTIMIZED

• Lifecycle • Elasticity • Minimal footprint • Security • Software-defined Infra • Atomic updating • Stability • Scheduling • Containers • Management • Orchestration

12 Kernel Linda Wang Red Hat, Inc. RHEL 7 Kernel Architecture Support • Architectures • Support the following 64 bits Architectures •X86_64, Power, and s390 • with 32bit user space compatibility support • Theoretical Limits on X86_64 – Logical CPU – maximum 5120 logical CPUs – Memory – maximum 64T

14 Core Kernel Features & Enhancements • Mission Critical & Back Office Applications • Performance Enhancements • Memory Management, Scheduler, Locks • Dynamic Kernel Updates – Technology Preview • a.k.a. Kpatch • Systems Supporting Business Processes • Performance Tooling Enhancement • Debugging Mechanism Features • Systems of Innovation - Resource Management • Linux Containers

15 Memory Mgt/Scheduler/Locking Enhancements Memory Management Scheduler/Locking Mechanism/Ticks • Switch to SLUB memory allocator • Switch to use ‘deadline’ IO scheduler • Fair Zone Allocator Policy • Autogroup disabled • Trash detection-based feature for file cache • Switch to small granular subsystem locks (2.6.39) from Big Kernel Lock • Fine grained page table locking for huge pages • Micro-optimize smart wake-affinity • TLB flush ranged support on x86 • Dynamic Ticking (dyntick) • Sched/NUMA, NUMA-Balance • Sys V’s IPC, Semaphore scalability • And More.. Improvement • And More.. < Performance Tuning Session I & II : April 16, Wednesday 10:40 am & 1:20 pm >

Memory Mgt/Scheduler/Locking Enhancements Memory Management • Memory allocator – Switch to SLUB allocator for efficient memory allocation, avoid fragmentation, and most importantly provided scalability. • Memory Allocation - Fair Zone Allocator Policy (in conjunction with kswapd) to better even out the memory allocation and reclaim pages across different zones. • Sched/NUMA, NUMA-Balance – feature moves tasks (which can be threads or processes) closer to the memory they are accessing. It also moves application data closer to memory of the numa code that the tasks is referencing it. • Trash detection-based feature for file cache – allows the mm to better serve applications that access large file size such as data streaming and big data set in file cache. • Fine Grained page table locking for huge pages - better performance when many threads access the virtual memory of a process simultaneously • TLB flush ranged support on x86_64 – to improve ‘munmap’ syscall performance

Memory Mgt/Scheduler/Locking Enhancements

Scheduler/Locking Mechanism/Jiffies • IO Scheduler – automatic switch uses ‘deadline’ scheduler for enterprise storage devices • Dynamic Ticking (dyntick) – kvm/HPC long running processes, telcom, financial, (any apps that need fewer interrupts) • Big kernel lock – switch to small granular subsystem locks (2.6.39) • Sys V’s IPC, Semaphore scalability Improvement • Micro-optimize smart wake-affinity • And More...

< Performance Tuning Session I & II : April 16, Wednesday 10:40 am & 1:20 pm >

Performance Enhancements - Kernel

• Jump Labels – significant reduction of overhead of disabled/enabled tracepoints • Event Polls – optimization done removing global 'epmutex' and replace with rcu for traversal. SPECjbb2013 went up from 35k jOps to 125K. • Framepointer Enabled on x86_64 • And More...

< Maximizing RSA with RHEL 7 Beta: April 16, Wednesday 2:30 pm >

Kernel Debugging & Analysis Enhancements RHEL 7 Feature Facilities New Enhancement Core Dump & ● Kexec-Kump ● Support new compression algorithms: LZO and Snappy Analysis ● Crash ● Export mmap support via /proc/vmcore for fast core dump Tuning Tools ● Tuna ●After runtime tuning, ‘tuna’ now saves tuned ● Tuned, Tuned Profiles parameters values, integrated with ‘tuned’ ●Tuned profiles variant based set at install time Error Reporting ● Rasdaemon [HERM] ● Hardware Error Reporting Mechanism Mechanism ● Mcelog (HERM) is new to RHEL 7, refactoring EDAC infrastructure ●‘rasdaemon’ is replacing ‘edac-util’ Performance ● Perf ●Support new software & hardware events Monitoring ● Oprofile ●Support profiling for java applications Dynamic Tracing ● Systemtap [ptrace, ftrace ● Help port Utrace functionalities to Ptrace such uprobe, kprobe, perf] as uretprobe

Static Tracing ● Perf, trace-cmd ●Add new hardware and software events to perf [Tracepoint, Ftrace] tracing

20 RED HAT CONFIDENTIAL | Linda Wang Dynamic Kernel Updates – (Tech. Preview)

• Mission critical customers demand zero down time • Requires the need to patch running kernel • Based on ftrace in kernel infrastructure • In-depth analysis of the patch for feasibility • Converts eligible source code patch(s) into kernel module • Insert the kernel module/fixes into the running kernel • Compatible with existing kernel functions: • kexec kdump, crash, ftrace, system tap, kprobe and perf etc. • Preserve kpatch states, persistent across reboots < Maximizing RAS with RHEL7 Beta: April 16, Wednesday 2:30 pm > < Demo Booth, pod#1: April 16, Wednesday 11:00 am >

Resource Management Improvements

•Linux Containers (LXC) – Fully Supported in RHEL 7 RC • Control Groups: cpu, cpuset, memory, block io, network, network prio • Libcgroup has been deprecated, replacing with systemd's scope and slices • Namespaces: mount, UTS, IPC, PID, network • User Namespace – in later releases • SELinux – security protection for containers • SystemD – provide unit file to help setup container’s resources • Docker CLI

Learn more about Kernel

For more information on Kernel topics •Summit Sessions • Faster Issue Resolution and Continuous Up time: Roberts/Wang, April 15, 10:40 am • Performance Analysis Tuning I & II: Shak/Woodman, April 16, Wed., 10:40 am • Linux Container in RHEL 7: Sarathy/Kozdemba/Wang, April 16, Wed., 10:40 am • Maximizing RSA with RHEL 7: Doerbeck/Abbott/Wang, April 16, Wed., 2:30 pm • Auto NUMA balancing for bare-metal workload, Chegu/van Riel, April 16, 3:40 pm •Demo Booth in Partner Pavilion

Learn more about Kernel

For more information on Kernel topics •Engage the Kernel Community • lkml.org, kernelnewbies.org • https://github.com/dynup/kpatch •Latest development information • LWN.net - up-to-date articles on kernel developments • http://rhelblog.redhat.com/

Networking Rashid Khan Red Hat, Inc. Network Manager (much easier to use) • New CLI user interfaces (nmcli) • Intended for use by users who prefer command line access to setup, manage, monitor, or script networking services (includes tremendous usability improvements.) • New curses-based user interface (nmtui) • Replacement for system-config-network-tui that makes it easier to configure networking, bonds, bridges, vlans, etc. • Broad support • Ethernet, IPoIB, VLANs, Bridges, Bonds, Team, WiFi, WiMAX, WWAN, Bluetooth, VPN, and ATM-based DSL. • Enhanced on every level, by incorporating users feedback • e.g Restarting NM will not change addressing, routing, or Layer-2 configurations and will non-destructively take over the interface's existing configuration. • IP Address Aliases support • Support for interface aliases (multiple IP addresses on a single interface).

NM-TUI

Team Driver

• Mechanism to aggregate multiple network devices into a single logical interface at the data link layer (L2.) • Control in user space with data (fast) path kernel space. Thus making it more stable, easier to debug, easier to understand, and much simpler to extend. • Supports IEEE 802.3ad (IEEE 802.1ax) LACP + many proprietary standards. • Same performance, same functionality, as the Linux Bonding driver, added improvements. • Can be managed from NetworkManager or traditional initscripts.

IEEE1588, Precision Time Protocol (PTPv2)

• IEEE 1588 standard defines a method for precisely synchronizing distributed clocks over Ethernet. Provides clock accuracy in the sub-microsecond range making it suitable for measurement and control systems. • 'LinuxPTP' package provides a robust protocol implementation based on the modern API found in the Linux kernel. • Hardware time stamping: • Broadcom; Intel; Mellanox; Solarflare • Software time stamping: • Broadcom; Intel

Open vSwitch • Multi-layer software switch for traffic flow between virtual machines within the server and the physical ControllerController networks. (Open(Open Daylight)Daylight) • Highlights: OpenFlowOpenFlow // OVSDBOVSDB • Updated to 2.0 release. • Multi-threaded user space switching daemon for increased scalability. SwitchSwitch • Support for overlay networks, GRE, VXLAN, VM VM VM VM VLAN, LISP • Support for wildcard flows in kernel data path. Can significantly reduce size of the flow table, avoid unnecessary flow misses and optimize flow setup rate. Switch Switch

Next Generation Networking Hardware Support

• 40G Ethernet • Provides support for 40G Ethernet link speeds enabling faster network communication for systems and applications. • Many 40G devices supported today and additional hardware support coming in future releases

• WiGig IEEE 802.11ad (60 GHz band) • Allows devices to wirelessly communication at multi-gigabit speeds (up to 7 Gbps.)

TCP Performance Improvements and other features

• TCP Improvements • Overlay Technologies • Fast Open (client and server) • Virtual Extensible LAN (VXLAN) • Tail Loss Probe Algorithm • Generic Routing Encapsulation (GRE) • Early Re-transmit • Layer 2 Tunneling Protocol (L2TP) • Proportional Rate Reduction • Network Namespaces ● Security • SO_REUSEPORT Option • Diagnostics ● Domain Name System Security • Bufferbloat Avoidance • IpTraf-ng Extension (DNSSEC) • Interface option to enable routing • Netsniff-ng • Firewalld of 127.0.0.0/8 • DDOS Attack prevention • Low Latency Sockets using Busy • NF-Tables Poll • IPV6 NAT

Learn more about Networking

For more information on Networking topics: • New networking features & tools for Red Hat Enterprise Linux 7 beta • Wednesday April 16, at 1:20pm • The next-generation firewall for Red Hat Enterprise Linux 7 beta • Thursday at April 17, at 11:00 am

• Demos: • Tuesday April 15, 10am - 12pm • Network Manager in Action • Team Driver fundamentals • Open vSwitch

File Systems & Storage Tom Coughlan Red Hat, Inc. RHEL 7 Areas of Focus

•Expanded file system choices •Storage stack enhancements • Focus on very high performance, low latency devices • Support for higher capacities across the range of file and storage options •Ease of use and management

RHEL 7 Will Provide More Choices

•RHEL 7 will support XFS, ext4, 3, 2, NFS, and GFS2 • Maximum supported filesystem sizes increase • XFS 100TB -> 500TB • ext4 16TB -> 50TB •btrfs is a technology preview feature in RHEL 7 • btrfs going through intense testing and qualification - we set a high bar

RHEL 7 Default File System

•Red Hat Enterprise Linux 7 has XFS as the new default file system • XFS will be the default for boot, root and user data partitions on all supported architectures • Included without additional charge as part of RHEL 7 subscription • Red Hat Enterprise Linux 5 and 6 still have Scalable File System layered products

RHEL 7 NFS Updates

•Red Hat Enterprise Linux 7 completes the server side support for NFS 4.1 • Support for only-once semantics • Port 2049 is now used for callbacks, as well as normal traffic •Labeled NFS provides enhanced support of SELinux over NFS •Parallel NFS (pNFS) client • Full support for file layout • Technical preview support for object and block layouts • We are working with our OEM partners on the pNFS server

38 The GFS2 Cluster File System

•Additional performance enhancements for GFS2 •Continuing work with partners like SAS: • Extensive testing of SAS cluster workloads on GFS2 • Performance work based on results of those tests •Performance Co-Pilot (PCP) support for GFS2 allows for real-time and/or post-event analysis of file system performance

RHEL 7 Storage Enhancements •New protocols and driver support • Shipping NVMe driver for standard PCI-e SSD's • Support for 16Gb/s FC and 12Gb/s SAS-3 • Linux-IO SCSI Target (LIO) • User-specified action on SCSI events, e.g. LUN create/delete, thin provisioning threshold reached, parameter change. •LVM • RAID, thin provisioning and snapshot enhancements • Tiered storage, using LVM/DM cache, in technology preview

Storage Management

Filesystem set-up / monitor

Logical Volume set-up / monitor

Storage Array set-up / monitor

Enhanced Storage Management

CLI API

CLI

Filesystem OpenLMI set-up / monitor System Storage blivet Manager Logical Volume set-up / monitor lvm2app

Storage Array libStorageMgmt set-up / monitor

Learn more about File and Storage

• The new world of NFS Tuesday 2:30 pm • Red Hat Storage Server: Roadmap & integration with OpenStack Tuesday 2:30 pm • Fundamentals of LVM with Red Hat Enterprise Linux 7 beta (Lab) Tuesday, April 15 3:50 pm • Red Hat Enterprise Linux 7 beta file systems: New scale, speed, & features Thursday 9:45 am • Demonstration (Partner Pavilion) of System Storage Manager (SSM) Tuesday 10 am-noon & Wednesday 1-2 pm • Engage the community: • http://lwn.net • Mailing lists: linux-lvm, linux-ext4, linux-btrfs, linux-nfs, linux-xfs, ...

System Management and Security

Jack Rieden Red Hat, Inc.

Software Assurance and Certifications

•Common Criteria – RHEL 6.2 Base OS and KVM •FIPS140-2 - RHEL 6.2

US Government Standard used to accredit cryptographic modules •USGv6 – RHEL 6.2 Standard required for IPv6 networking in the Federal Government (Replaces IPv6 Ready Logo) •US Government Configuration Baseline (USGCB) – RHEL 6 Provides a minimum security configuration for software products •Security Content Automation Protocol (SCAP) 1.2 – RHEL 6.5 Establish and automate security baselines

Red Hat Enterprise Linux 6.5 - Security Update

•NSA Suite B Algorithms • AES, ECDH, ECDSA, SHA256 • FIPS Certification (in process) •Shared System Certificates • System-Wide trust store for Certificates •Transport Layer Security (TLS) 1.2 (OpenSSL, NSS) •Improved SCAP 1.2 scanner

Red Hat Enterprise Linux 7 - Security Features

•Microsoft Active Directory Interoperability •Identity Management (IdM) • Cross Realm Trust with Active Directory • Improved SSSD interoperability with Active Directory •Basic Active Directory integration • Simplified User Auth/Machine join capability • Can be deployed via Kickstart script

•UEFI Secure Boot (support Window 8 logo hardware)

Red Hat Enterprise Linux 7 - Security Features

•SELinux • File Name Transitions • SeTroubleshoot – integrated with Journald • Labeled NFS • Integrated Docker policy •Firewalld - Dynamic management of firewall via D-Bus • Support for IPv4, IPv6, bridges • Dynamic / in-place changes • Built in services (e.g. dns, tftp, https, dhcp) • Network Zone support according to trust levels

Security Content Automation Protocol (SCAP)

Automated approach to verifying compliance with security guidelines

•Security policy customization with scap-workbench •Installer integration with oscap-anaconda-addon •System management integration with Satellite

OpenSCAP has now passed certification for SCAP 1.2 !!!!

Open Linux Management Initiative

Improve manageability of Linux systems

•Provide standardized remote API for system management •Standards based - DMTF/CIM technology stack •Storage, networks, users, system services, power, system configuration •Client interface, LMIShell provides a High level task oriented API

Systemd New system and session manager • Benefits • Integrated with cgroups, udev • Socket and D-Bus activation for starting services • Compatible with SysV init and LSB scripts • Integrated with Docker Journald System service that collects and stores indexed, structured data • Benefits • Addition of meta data to log – i.e. Process id, user/group id • Structured – key/value pairs • Interoperability with rsyslog

Containers

Application isolation mechanism for Light-weight multi-tenancy • Process Isolation -- Namespaces • Resource Management -- Cgroups • Security (confinement) -- SELinux • Management -- Docker Benefits •Fast Startup and shutdown •Easy creation of container environment •Scale out of applications •Manage one RHEL system •Can be launched as a Systemd unit file

Docker

Tool that can package an application and its runtime dependencies for deployment into a Linux Container Docker builds on Linux Containers, adds an API, an image format and a registry/index Docker includes the userspace runtime of an application

Benefits •Simplified Application Delivery •Minimal Application Footprint •Application Isolation •Application Portability

Learn more about System Mgmt & Security

Security in Red Hat Enterprise Linux 7 Beta - Tuesday at 4:50PM Interoperability Update;Red Hat Enterprise Linux and Windows – Tuesday at 3:40pm Linux Containers in Red Hat Enterprise Linux – Wednesday 10:40am Demystifying Systemd – Wednesday at 2:30pm The Next-Generation Firewall for Red Hat Enterprise Linux – Thursday at 11:00am Portable, lightweight and interoperable Docker containers across Red Hat Solutions – Wednesday at 1:20pm Applied SCAP: Automating security compliance & remediation - Wednesday at 1:20PM SELinux for mere mortals - Wednesday at 3:40PM Lab on Containers & resource management in Red Hat Enterprise Linux 7 Beta - Wednesday at 3:50

References

Red Hat Certifications - http://www.redhat.com/solutions/industry/government/certifications.html

OpenSCAP project - http://www.open-scap.org

OpenLMI - http://www.openlmi.org

Polling Time!

A few questions we’d like to ask you...get your mobile app ready! Q1: Kernel updates are currently shipped every 8 weeks for supported releases. Should other packages ship on the same schedule? a) Yes, change to same schedule as kernel b) No, stay as they are now c) Don’t know/don’t care

Q2: For next year, how can we improve this RHEL roadmap presentation? a) More technical detail b) Higher level feature overviews with benefits and use cases c) More product roadmap and strategy d) Keep it as is

Q3: When would a lightweight flexible container infrastructure like RHEL Atomic be useful to your organization a) Immediately b) Within 6 months c) Within 12 months d) No plans for any of this e) What's RHEL Atomic?

Agenda, Session 2 (2:30 to 3:30)

• Software Collections and Core Utilities – Ondrej Vasik • Virtualization – Karen Noel • Desktop – Paul Frields • Installation – David Cantrell • Developer Tools – Matt Newsome • Summary, Q & A if time permits

Software Collections & Core Utilities Ondřej Vašík Red Hat, Inc. Software Collections

•Power to build, install, and use multiple versions of software on the same system

• Developer Toolset (DTS) • RHSCL 1.1: • languages: Perl 5.16, Ruby 2.0 and Rails 4, Ruby 1.9.3 with Rails, Python 2.7, Python 3.3, PHP 5.4, PHP 5.5 • httpd 2.4, mariadb 5.5, mysql 5.5, mongodb 2.4, postgresql 9.2, thermostat 1 • as tech preview Node.js 0.10, nginx 1.4.3

LAMP Stack

•Apache - httpd 2.4 (in RHEL 7, RHSCL 1.1): • high performance threaded "event" processing model • enhanced SSL support: on-line certificate revocation • run-time configuration for proxy load balancing • FastCGI support

Databases (RHEL 7, RHSCL 1.1)

•MySQL 5.5 - semi-synchronous replication, performance_schema •MariaDB 5.5 – RHEL 7 DEFAULT - all of MySQL 5.5 PLUS: • asynchronous client API • Aria and XtraDB storage engines • fully compatible with MySQL •Awesome features in new PostgreSQL 9.2; first steps to NoSQL • range data type, synchronous replication, foreign tables support, performance improvements • PostgreSQL in-place data migration support from RHEL 6 to RHEL 7

Core daemons

• tuned - automated system tuning: • NEW automatic profile generation via powertop system scan • MORE product specific tuned profiles • dnsmasq small-scale network services, used by libvirt and OpenStack • NEW supports DHCPv6 • ISC DHCP 4.2 • better performance: dynamic DNS transactions in asynchronous fashion • dovecot 2.2: • implemented multiple IMAP extensions, mailbox synchronization utility

Core utilities and shells

•yum: repo-pkgs command allows treating repositories as products

•coreutils : • code optimization and speedup • *sum utilities now use libcrypto (2x faster sha512sum) • SELinux optimizations

Preupgrade Assistant

•critical part of in-place upgrades RHEL 6 RHEL 7 •system compatibility assessment, provides solutions for incompatibilities •able to help with system migration •work in progress, modular design, modules under development •UI with easy to search and filter tree structure

Preupgrade Assistant

ABRT – automated bug reporting tool

•Analyze system at the time of a kernel or application crash (C, C++, kerneloops, Python, Ruby, Java, MCE) • New GUI with easier reporting • Better console notifications • Autoreporting (off by default) - ability to collect anonymous crash reports either on local server or on RH managed server

ABRT – retrace server

Learn more about SCLs, In-place upgrades ...

For more information •In-place upgrades: • Session “Migrating Red Hat Enterprise Linux installations to new major versions” - Wed 4:50PM + 3x demo booth session •Software collections: • Session “S/W Collection - Keeping pace without sacrificing platform stability” - Tue 3:40 PM • Session “Deeper understanding of software collections” - Tue 4:50 PM

Virtualization Karen Noel Red Hat, Inc. KVM - Red Hat's Foundational Virtualization Technology

RHEV Hypervisor

RHEL with KVM

RHEV Hypervisor and RHEL with KVM

#1 Mission Critical, Back Office – performance, scalability, security, stability #2 Systems Supporting Business Processes – many enhancements #3 Systems of Innovation – integration with OpenStack, Gluster, etc.

Best SPECvirt_sc2010 Scores by CPU Cores

(As of April 3, 2014)

The SPECvirt_sc2010 benchmark has been retired and no new results may be published. SPEC® is a registered trademark of the Standard Performance Evaluation Corporation. For more information about the benchmark and the results, see http://www.spec.org/virt_sc2010/.

Security

Continue SELinux tradition with sVirt Sandboxing – syscall filtering Cryptography – virtio-rng (random number generator)

Automatic NUMA Balancing – unbalanced

vcpu 0 vcpu 0 vcpu 1 vcpu 1

NUMA Node A NUMA Node B

Automatic NUMA Balancing - balanced

vcpu 0 vcpu 1 vcpu 0 vcpu 1

NUMA Node A NUMA Node B

KVM – Performance Improvements New kernel para-virtualization (PV) features New Intel processor features Network and SCSI multi-queue virtio-blk data-plane (RHEL 6 tech preview) Hyper-V “Enlightenment”

KVM – Thin Provisioning (virtio-scsi)

qcow2, raw, ...

file, block device,qcow2, raw, gluster*, ... iSCSI

gluster*, iSCSI gluster*, NFS*

ext4, XFS ext4, XFS

SSD, NAS, dm-thinp,...

* Pending

KVM – Live Migration

Live migration from RHEL 6 host to RHEL 7 host Many live migration improvements

Guest OS

QEMU

Destination 11001010 0 1 I/O Migr 01011110 host

KVM – Virtual Function I/O

VFIO - New architecture for device assignment • Replaces PCI assignment in RHEL 6 • What's new? GPU device assignment

Learn more about Virtualization

Presentations

✔ Automatic NUMA balancing: Wednesday – 3:40 pm

✔ Red Hat Enterprise Virtualization hypervisor roadmap: Thursday – 9:45 am

✔ RHEV, OpenStack and RH Storage Server talks all include KVM! Demos

✔ Performance booth – meet Red Hat performance engineers

✔ Nvidia & Dell: GPU device assignment with RHEL 7 & KVM Upstream communities

• www.linux-kvm.org * wiki.qemu.org * www.libvirt.org

Desktop Paul W. Frields Red Hat, Inc. RHELRHEL 77 RCRC DesktopDesktop ChangesChanges

● NewNew GNOMEGNOME 33 basedbased useruser interfaceinterface ● ClassicClassic ModeMode defaultdefault ---- familiarfamiliar interfaceinterface •MainMain menumenu •WindowWindow listlist •DesktopDesktop iconsicons ● GNOMEGNOME 33 standardstandard modemode andand KDEKDE alsoalso installedinstalled ● ExtensibleExtensible andand flexibleflexible

GNOMEGNOME BoxesBoxes

● ToolTool forfor runningrunning KVMKVM virtualvirtual guestsguests andand otherother remoteremote connectionsconnections onon thethe RHELRHEL 77 RCRC desktopdesktop ● EaseEase ofof useuse –– fasterfaster deploymentdeployment ofof virtualvirtual machinesmachines ● UseUse withwith e.g.e.g. existingexisting ISOISO

OnlineOnline accountaccount integrationintegration

● MultipleMultiple providersproviders availableavailable ● AccountsAccounts cancan bebe addedadded byby useruser atat firstfirst loginlogin ● SomeSome providersproviders integrateintegrate searchsearch acrossacross contentcontent stores,stores, chat,chat, etc.etc.

OtherOther FeaturesFeatures andand EnhancementsEnhancements

● IBusIBus integrationintegration toto improveimprove globalglobal experienceexperience ● ImprovedImproved WacomWacom tablettablet supportsupport ● BetterBetter accessibilityaccessibility

EvolutionEvolution ImprovementsImprovements

● ImprovedImproved ExchangeExchange andand ZimbraZimbra integrationintegration ● ContinueContinue toto enhanceenhance Exchange,Exchange, IMAPIMAP supportsupport throughoutthroughout RHELRHEL 77 lifecyclelifecycle

OtherOther ApplicationApplication EnhancementsEnhancements

● LibreOfficeLibreOffice 4.14.1 •BetterBetter MSMS OfficeOffice compatibility,compatibility, includingincluding VisioVisio andand PublisherPublisher importimport ● ChromiumChromium forfor futurefuture RHELRHEL 77 updatesupdates

Learn more about Desktop

• Attend the lab: Experience the Future with Red Hat Enterprise Linux 7 Beta • Thursday, April 17 – 9:00-11:00am • Visit the Desktop station at the Red Hat Platform booth in the Partner Pavilion: • Tuesday, April 15 – 5:30-7:30pm – Pod #2 • Wednesday, April 16 – 10:00-11:00am – Pod #1 • Read more about Desktop changes and administration in the RHEL 7 Beta Desktop Migration and Administration Guide: http://red.ht/1kuN8MT

Installer David Cantrell Red Hat, Inc. Red Hat Enterprise Linux 7 RC Installer Changes

•New GTK+ 3 based user interface •New text mode interface •New storage configuration interface •New firstboot replacement (initial-setup) •Kickstart is the same

Installer Features and Enhancements

•Automatic default answers when possible •New hub & spoke interface layout allows more flexible installation experience •Text mode better suited to serial consoles and other limited display interfaces •Active Directory host enrollment support in Kickstart •Plugin architecture allows site-specific extensions to Kickstart, the installer, and initial-setup

Storage Features and Enhancements:

•More automatic layout options, including LVM with thin provisioning, BTRFS, and standard partitions. •Detailed control over preserving and resizing existing volumes. •Custom configuration presented in a top-down model starting with the mount point and defining the technology underneath. •Rescan option discovers storage changes.

Learn more about the Installer

For more information on Installation topics: • Attend the lab: Experience the Future with Red Hat Enterprise Linux 7 Beta • Thursday, April 17 – 9:00-11:00am • Visit the Installer station at the Red Hat Platform booth in the Partner Pavilion Engage the Community: • http://fedoraproject.org/wiki/Anaconda • http://blog.linuxgrrl.com/category/fedora/anaconda/

Developer Tools Matt Newsome Red Hat, Inc.

v0.12 OpenJDK and Java Today

• Latest OpenJDK6 and 7 in RHEL • Upstream OpenJDK6 support taken over by Red Hat (after EOL by Oracle) in April 2013 • Latest proprietary JDKs available: • Oracle Java 6,7 • IBM Java 5, 6, 7

98 OpenJDK and Java Tomorrow

•Planned for Red Hat Enterprise Linux 7 •Thermostat – A new profiling and monitoring tool for OpenJDK7 and higher that will be made available through RHSCL

•Tentatively planned for Red Hat Enterprise Linux 7.x •OpenJDK8 •Shenandoah: An ultra-low pause-time garbage collector for 100+GB heaps

99 Performance Tools in Red Hat Enterprise Linux 6

•SystemTap – Live application analysis without rebuilding •RHEL 6.5: •Language improvements: regular expression operators, macros, perfctr reading. •Detailed error diagnostic man pages. •Much faster stack unwinding. •PAPI - Programmer interface to monitor perf. counter hardware •RHEL 6.5: Support for Intel Ivy Bridge and Sandy Bridge •OProfile - Unobtrusive, system-wide code profiler •Valgrind - Runtime analysis (particularly memory)

100 Performance Tools in Red Hat Enterprise Linux 7 RC

• RHEL 7 RC brings performance tools together in a new way: • Introduces DynInst, a library for manipulating live executables. • Uses Dyninst to run SystemTap scripts without any kernel privileges. • Introduces Performance Co-Pilot (PCP), a library and toolkit for storing and analyzing performance measurements of systems on a network. • Allows performance data, including that from SystemTap, to be fed into PCP and the results be visualized with PCP-GUI. • Updates valgrind, elfutils, and other interrelated tools to bring the community's latest into a broad-scope and integrated toolset for performance monitoring.

101 Toolchain Updates in RHEL Releases

RHEL 5: Stability emphasis • gcc-4.1 & 4.4, gdb-7.0 and glibc-2.5 RHEL 6: Stability and performance focused updates • gcc-4.4 and gdb-7.2 and glibc-2.12 RHEL 7 RC : Major new components and features • gcc-4.8, gdb-7.6 and glibc-2.17 • C++11 & DWARF4 standards, atomic types and Transactional Memory • New register allocator, extensive performance improvements • Built-in memory error detector and data race detector

102 Red Hat Developer Toolset

• Developer Toolset: develop with new tools for multiple RHEL releases • Available with Developer Subscriptions • v2.1 [2014]: Status: GA release, C/C++/Fortran, x86/x86_64 • Toolchain: gcc-4.8 development for RHEL 5 and 6 • Debugger: gdb-7.6 • Performance tools: OProfile, Valgrind, SystemTap, Dyninst • Eclipse “Kepler” Integrated Development Environment • Build with DTS tools on RHEL 6 and test on RHEL 7 RC

103 Learn more about Tools and Developer Toolset

More information on Developer Toolset • Developer Toolset Demos: • Weds 9:15am (Demo Floor) • Weds 1:00pm-2:00pm (Partner Pavilion, Demo Pod #1) • Developer Toolset Talk: • Weds 4:50pm-5:50pm (Taste of DevNation track, Room 236) More information on Performance Tools • Recipes to analyze common perf. issues - Tues 4:50-5:50pm (Room 208) More from our Developer Program • developerblog.redhat.com

Summary Denise Dumas Red Hat, Inc. Key Takeaways

•Red Hat Enterprise Linux 7.0 “real soon now” ;-) •Designed as a solid base for an application optimized infrastructure •From the RHEL Platform team, leading responsible innovation in communities everywhere

106 Thank you for joining us and for running Red Hat Enterprise Linux

•Thank you! Enjoy the Summit! •Please give us your session feedback •See session handout for session referrals and resource links. •Continue to tell us what you think through your Red Hat point of contact and share your thoughts in the customer portal groups at https://access.redhat.com/groups/red-hat-enterprise-linux •And see the Red Hat Enterprise Linux blog at http://rhelblog.redhat.com/

107