Wikimedia Technology/Annual Plans/FY2019/TEC1: Reliability, Performance, and Maintenance/Goals

=Program Goals and Status for FY18/19=

TEC1: Reliability, Performance, and Maintenance
 * Goal Owners: Mark Bergsma; Kate Chapman; Nuria Ruiz; Bryan Davis
 * Program Goals for FY18/19: We will maintain the availability of Wikimedia’s sites and services for our global audiences and ensure they’re running reliably, securely, and with high performance. We will do this while modernizing our infrastructure and improving current levels of service when it comes to testing, deployments, and maintenance of software and hardware.
 * Annual Plan: TEC1: Reliability, Performance, and Maintenance
 * Primary Goal is Knowledge as a Service: Evolve our systems and structures
 * Tech Goal: Sustaining





=Q1 Goals =

Outcome / Output (Analytics)
We have scalable, reliable and secure systems for data transport and data processing.
 * Analytics stack maintains current level of service. OS Upgrades.

Goal(s)

 * Continue upgrading to Debian Stretch:
 * AQS ✅
 * thorium ✅
 * Archiva ✅
 * bhorium (where piwik resides)
 * Refresh of:
 * hadoop master nodes ✅
 * analytics1003

Status
July 2018
 * one goal

August 22, 2018
 * one goal

September 18, 2018
 * Remaining hosts to be completed before end of quarter

Outcome 1 / Output 1.1 (SRE)
Current levels of service are maintained and/or improved for all production sites, services and underlying infrastructure.
 * Deploy, update, configure, and maintain and improve production services, platforms, tooling, and infrastructure (Traffic infrastructure, databases & storage, MediaWiki application servers, (micro)services, network, Infrastructure Foundations, Analytics infrastructure, developer & release tooling, and miscellaneous sites & services)

Dependencies on: Core Platform (MediaWiki, RESTbase), Performance, Release Engineering, Parsing (Parsoid), Analytics (EventBus),Community Liaisons; Primary team: SRE

Goal(s)
Perform a datacenter switchover
 * Successfully switch backend traffic (MediaWiki, Swift, RESTBase, and Parsoid) to be served from codfw with no downtime and reduced read-only time ✅
 * Serve the site from codfw for at least 3 weeks
 * Refactor the switchdc script into a more re-usable automation library and update it to the newer switchover requirements ✅

Status
July 2018
 * Discussed...

August 14, 2018
 * this is ongoing and looking good, had some minor delays but it's scheduled for Sep for first switchover and back in October.

September 11, 2018
 * The switch to codfw is happening this week. The switchdc refactoring is complete and has been published as a generically re-usable (FOSS) automation library, as and is published as spicerack (FOSS).

Outcome 1 / Output 1.1 (SRE / Traffic)
Current levels of service are maintained and/or improved for all production sites, services and underlying infrastructure.
 * Deploy, update, configure, and maintain and improve production services, platforms, tooling, and infrastructure (Traffic infrastructure, databases & storage, MediaWiki application servers, (micro)services, network, Infrastructure Foundations, Analytics infrastructure, developer & release tooling, and miscellaneous sites & services)

Primary teams: SRE & Traffic

Goal(s)

 * Deploy an ATS backend cache test cluster in core DCs: ✅
 * 2x 4 node clusters
 * Puppetization
 * Application-layer routing
 * Deploy a scalable service for ACME (LetsEncrypt) certificate management:
 * Features:
 * Core DC redundancy
 * Wildcards + SANs
 * Multiple client hosts for each cert
 * Coding + Puppetization
 * Deploy in both DCs
 * Live use for one prod cert
 * Increase network capacity:
 * eqiad: 2 rows with 3*10G racks
 * codfw: 2 rows with 3*10G racks
 * ulsfo: replace routers
 * eqdfw: replace router

Status
July 2018
 * Discussed...

August 14, 2018
 * The ATS testing and creation of packages is going well and some is already in production. This is doing the basic needs so far but nearly done.
 * ACME service is also on track
 * Increasing network capacity goal is moving much slower than expected, due to hardware installation (network switches) on the switch stacks issues with the vendor. This goal is at risk for this quarter due to these hardware and testing issues with the new/old switches. The replacement routers will also be at risk for this quarter.

September 2018
 * ✅ This goal is fully complete; an ATS test cluster has been setup in both core DCs.
 * ACME software has been written, deployment and use is expected by end of the quarter.
 * Increasing network capacity goal has hit a roadblock, due to network switch stack topology incompatibility issues with the vendor, causing network instability in production. This goal is at risk for this quarter, as we can neither take any risks nor move swifty on this very essential and critical infrastructure. The replacement of the routers is expected to complete before EOQ.

Outcome 1 / Output 1.1 (Performance)
Current levels of service are maintained and/or improved for all production sites, services and underlying infrastructure.
 * Deploy, update, configure, and maintain and improve production services, platforms, tooling, and infrastructure (Traffic infrastructure, databases & storage, MediaWiki application servers, (micro)services, network, Infrastructure Foundations, Analytics infrastructure, developer & release tooling, and miscellaneous sites & services)

Primary team: Performance

Goal(s)

 * Improve synthetic monitoring
 * Monitor more WMF sites, including some in each deploy group
 * Configure alerts such that they're directed to the teams that are able to address them
 * Improve Navigation Timing data
 * Update dashboards to use newer navtiming2 keys
 * Move navtiming data from graphite to prometheus
 * Remove dependency on jQuery from Mediawiki's base Javascript module ✅
 * Support and develop the Mediawiki ResourceLoader component
 * Dependency: Core Platform
 * Support and develop Mediawiki's data access components
 * Dependency: Core Platform

Status
July 2018

August 14, 2018
 * Synthentic monitoring and timing data is in progress but slightly delayed due to summer vacations. Everything else is in progress or done.

September 18, 2018
 * Synthetic monitoring and timing data are in progress and on track. Other goals are ongoing maintenance work that don't have a defined end state.

Outcome 2 / Output 2.1 (Performance)
Better designed systems
 * Assist in the architectural design of new services and making them operate at scale

Primary team: Performance

Goal(s)

 * Research performance perception in order to identify specific metrics that influence user behavior

Status
July 2018
 * Discussed...

August 14, 2018

September 18, 2018
 * Data collection is in progress and continues to go well. Data analysis will continue in to Q2

Outcome 3 / Output 3.1 (WMCS)
Users can leverage a reliable and public Infrastructure as a Service (IaaS) product ecosystem for VPS hosting.
 * Maintain existing OpenStack infrastructure and services

Primary team: WMCS

Goal(s)

 * Develop timeline for Ubuntu Trusty deprecation ✅
 * Communicate deprecation timeline to Cloud VPS community
 * Continue replacing Trusty with Debian Jessie/Stretch in infrastructure layer

Status
July 2018
 * 

August 10, 2018
 *  Discussed: that experiments have been completed but showed some issues ✅, will need to build parallel grids, new puppet code, etc 

September 12, 2018
 *  Brooke has made some progress on Puppet changes that will allow us to build a second grid engine deployment with Debian Stretch. This outcome will carry over into Q2 and progress should accelerate as the parallel Neutron migration project moves from development to implementation.

Outcome 3 / Output 3.2 (WMCS)
Users can leverage a reliable and public Infrastructure as a Service (IaaS) product ecosystem for VPS hosting.
 * Replace the current network topology layer with OpenStack Neutron

Primary team: WMCS

Goal(s)

 * Migrate at least one Cloud VPS project to the eqiad1 region and its Neutron SDN layer ✅

Status
July 2018
 * 

August 10, 2018
 *  discussed working on getting eqiad to play well with MAIN (shared services)

September 12, 2018
 *  * Arturo found a way to transparently route traffic between the legacy Nova Network deployment and the new Neutron deployment. This should make migrating projects to the new deployment significantly easier and more transparent for our end users.
 *  * Also, Progress is currently stalled due to unexpected hardware compatibility issues with Debian Jessie on new cloudvirt servers. We are getting a lot of help from the DC Ops team and Moritz to find solutions for these issues, but until we have a working combination of hardware & software we are holding off on procuring new servers. This in turn will slow the rate at which we can move projects to the new deployment. This is of larger impact for our Q2 continuation of this program than it is to meeting the current Q1 goal of moving at least one project.

 =Q2 Goals =

Outcome / Output (Analytics)
We have scalable, reliable and secure systems for data transport and data processing.


 * Analytics stack maintains current level of service.
 * Completing the OS upgrade to Debian stretch. Prepare the replacement of the Analytics store database.

Goal(s)

 * Continue upgrading to Debian Stretch:
 * bhorium (where piwik resides) ✅
 * Order hardware and set up basic puppet configuration for the dbstore1002's replacement (multi-instance database hosts).
 * STRETCH GOAL: Set up Mysql data replication on the dbstore1002's replacement.
 * STRETCH GOAL: Add prometheus metrics for varnishkafka instances running on caching hosts

Status
October 19, 2018
 * Update to stretch goal is ✅ for piwik machine; hardware orders for dbstore are in place

November 14, 2018
 * Prometheus work is now

December 2018
 * Discussed...

Outcome 1 / Output 1.1 (SRE)
Current levels of service are maintained and/or improved for all production sites, services and underlying infrastructure.


 * Deploy, update, configure, and maintain and improve production services, platforms, tooling, and infrastructure (Traffic infrastructure, databases & storage, MediaWiki application servers, (micro)services, network, Infrastructure Foundations, Analytics infrastructure, developer & release tooling, and miscellaneous sites & services)

Primary team(s): SRE, Dependencies on: Cloud Services, Search, Core Platform

Goal(s)

 * Refresh hardware and perform necessary maintenance
 * Refresh expiring leased hardware with replacements:
 * pc1004-1006
 * pc2004-2006
 * labvirt1010-1011
 * elastic2001-2024
 * restbase2001-2006
 * Refresh of aging (purchased) hardware
 * Refresh and expand Swift cluster in eqiad and codfw
 * Procurement and OS install of db1061-db1073 (refresh)
 * Switch etcd in eqiad to new servers conf100[4-6]

Status
October 2018
 * This is now as hardware is being ordered

November 14, 2018
 * This is still, as hardware has been ordered and is being received and installed. The codfw Parser Cache hosts is and the etcd migration is ✅

December 12, 2018
 * Leased hardware will be sent back by next week, and the refresh will be ✅ in the next two weeks.

Outcome 1 / Output 1.1 (SRE/Traffic)
Current levels of service are maintained and/or improved for all production sites, services and underlying infrastructure.


 * Deploy, update, configure, and maintain and improve production services, platforms, tooling, and infrastructure (Traffic infrastructure, databases & storage, MediaWiki application servers, (micro)services, network, Infrastructure Foundations, Analytics infrastructure, developer & release tooling, and miscellaneous sites & services)

Primary team(s): SRE/Traffic

Goal(s)

 * ATS production-ready as a backend cache layer
 * Purging ✅
 * Logging ✅
 * Monitoring ✅
 * Alerting ✅
 * Multi-DC Routing ✅
 * Backend-side request-mangling ✅
 * All the above prepares us for potential ATS live deployment as cache_upload backends in FQ3
 * Audit all Varnish-fronted services for lack of TLS, ping owners ahead of needs in FQ3/4 and beyond


 * Migrate most standard public TLS certificates to CertCentral issuance ✅
 * Replaces previous minimal/legacy LetsEncrypt automation
 * Work out bugs / operational issues that arise as we scale up CertCentral usage
 * Explicitly out of scope public certs: the big unified wildcard, frack, labs


 * Increase Network Capacity
 * Follow-up and Follow-on to same goal from FQ1
 * eqiad: Finish new switches and migration to supported topologies - T187962 - T183585
 * codfw: Finish new switches and migration to supported topologies - T197147
 * Replace cr1-eqord in Chicago
 * Add cr2-eqsin in Singapore

Status
October 2018
 * Discussed...

November 14, 2018
 * This goal is as purging for the ATS goal has been implemented and the cr1-eqord Chicago router replacement has completed.
 * We have a possible ❌ issue as the Network Capacity goal is at risk for FQ2 due to the holidays and critical infrastructure freezes.

December 12, 2018
 * ATS goal will be ✅ shortly and the certificate work will be also ✅ in the next week. Increasing network capacity will be ✅ in Q3, as fundraising is still on-going; the cabling will be done as soon as they are received

December 13, 2018
 * The certificates goal is ✅

Outcome 1 / Output 1.1 (RelEng)
Current levels of service are maintained and/or improved for all production sites, services and underlying infrastructure.


 * Deploy, update, configure, and maintain and improve production services, platforms, tooling, and infrastructure (Traffic infrastructure, databases & storage, MediaWiki application servers, (micro)services, network, Infrastructure Foundations, Analytics infrastructure, developer & release tooling, and miscellaneous sites & services)

Dependencies on: SRE

Goal(s)

 * Determine the procedure and requirements for an automated MediaWiki branch cut.

Status
October 2, 2018
 * This work is still

November 7, 2018
 * Scoping work at https://phabricator.wikimedia.org/T156445

December 6, 2018
 * This goal will be nearly complete by finishing up https://phabricator.wikimedia.org/T208528 and https://phabricator.wikimedia.org/T208529 in the next week or so.

Outcome 1 / Output 1.1 (Performance)
Current levels of service are maintained and/or improved for all production sites, services and underlying infrastructure.


 * Deploy, update, configure, and maintain and improve production services, platforms, tooling, and infrastructure (Traffic infrastructure, databases & storage, MediaWiki application servers, (micro)services, network, Infrastructure Foundations, Analytics infrastructure, developer & release tooling, and miscellaneous sites & services)

Dependencies on: SRE

Goal(s)

 * Train feature developers on the use of performance metrics to detect and address regressions.
 * Create and deliver a training session on the use of synthetic metrics
 * Create and deliver a training session on the use of RUM metrics
 * Deliver high-traffic images as WebP ✅
 * Improve Navigation Timing data, by moving it from Graphite to Prometheus ❌
 * Expand mobile testing
 * Run extended/ongoing tests of performance on mobile phones ✅
 * Expand outreach and engagement with the wider Performance community
 * Attend W3C meeting, as a participant in the Web Performance Working Group ✅
 * Begin publishing a monthly blog post summarizing performance over the prior month ❌
 * Figure out whether it is possible to publish Navigation Timing data sets in some appropriately anonymized form ❌
 * Test the effect of Mediawiki commits on Performance
 * Add a basic performance test as part of the Jenkins pipeline, as a non-voting member ✅
 * Ongoing maintenance of components owned by Performance team or individuals ✅
 * MediaWiki's data access components
 * ResourceLoader
 * WebPageTest and other synthetic testing infrastructure
 * Thumbor/thumbnail generation

Status
October 18, 2018
 * Discussed how things are on track right now for progress for the quarter.

November 14, 2018
 * Improve Navigation Timing data, by moving it from Graphite to Prometheus is now
 * Attendance at the last W3C meeting is ✅

December 12, 2018
 * Anonymized data publishing deferred to Q3 ❌
 * WebP thumbnails is ✅
 * Improve Navigation Timing data, by moving it from Graphite to Prometheus
 * Proposal for W3C is
 * Summary blog post will be sent out soon
 * Ongoing maintenance of components owned by Performance team or individuals is (always)

Outcome 2 / Output 2.1 (Performance)
Better designed systems
 * Assist in the architectural design of new services and making them operate at scale

Primary team: Performance

Goal(s)

 * Research performance perception in order to identify specific metrics that influence user behavior ✅ (continues in Q3)

Status
October 18, 2018
 * Discussed how this goal is still (was a carry-over from Q1)

December 12, 2018
 * Final milestone is presentation of the research paper internally on December 17th; will hear about acceptance in early 2019 and is mostly ✅ at this point while we wait; Gilles is working with the Research team on this goal and will have follow-on work in 2019.

Outcome 3 / Output 3.1 (WMCS)
Users can leverage a reliable and public Infrastructure as a Service (IaaS) product ecosystem for VPS hosting.


 * Maintain existing OpenStack infrastructure and services

Primary team: WMCS

Goal(s)

 * Continue replacing Trusty with Debian Jessie/Stretch in infrastructure layer
 * Communicate Trusty deprecation timeline to Cloud VPS community ✅
 * Develop Trusty deprecation plan for Toolforge and communicate timeline to community
 * Track progress towards full removal of Trusty from Cloud VPS to encourage migration

Status
November 14, 2018
 * Updated per goal status and added links.

December 12, 2018
 * These goals are still, and we're still a bit stalled on the full plan communication to the community until it's actually done, so that the community can immediately go in and use it — we hope to be fully done by end of Q3.

Outcome 3 / Output 3.2 (WMCS)
Users can leverage a reliable and public Infrastructure as a Service (IaaS) product ecosystem for VPS hosting.


 * Replace the current network topology layer with OpenStack Neutron

Primary team: WMCS

Goal(s)

 * Migrate 50% of Cloud VPS projects to the eqiad1 region and its Neutron SDN layer ✅

Status
November 14, 2018
 * This goal is now, as of this week, we had 72 out of 170 (~42%) migrated.

December 12, 2018
 * We have surpassed this goal and are at ~65% of all projects have been migrated. This effort will continue in Q3, but this goal is considered ✅ for this quarter.

 =Q3 Goals =

Outcome 1 / Output 1.1 (RelEng)
Current levels of service are maintained and/or improved for all production sites, services and underlying infrastructure.


 * Deploy, update, configure, and maintain and improve production services, platforms, tooling, and infrastructure (Traffic infrastructure, databases & storage, MediaWiki application servers, (micro)services, network, Infrastructure Foundations, Analytics infrastructure, developer & release tooling, and miscellaneous sites & services)

Dependencies on: SRE

Goal(s)

 * Automate the generation of change log notes
 * Investigate notification methods for developers with changes that are riding any given train

Status
March 13, 2019
 * Both goals are ✅

Outcome 1 / Output 1.1 (SRE / Traffic)
Current levels of service are maintained and/or improved for all production sites, services and underlying infrastructure.
 * Deploy, update, configure, and maintain and improve production services, platforms, tooling, and infrastructure (Traffic infrastructure, databases & storage, MediaWiki application servers, (micro)services, network, Infrastructure Foundations, Analytics infrastructure, developer & release tooling, and miscellaneous sites & services)

Primary teams: SRE & Traffic

Goal(s)

 * Deploy managed LetsEncrypt certs for all public use-cases:
 * wikiba.se
 * Global unified wildcard
 * Non-canonical domain redirects
 * https://phabricator.wikimedia.org/T213705
 * Increase network capacity:
 * eqiad: Reconfigure Row A
 * eqsin: deploy cr2-eqsin
 * https://phabricator.wikimedia.org/T213122
 * Test and deploy equal prioritization of peering and transit
 * Establish metrics to monitor: performance impact and transit bandwidth
 * Trial the change and gather new metrics
 * Compare and decide whether (and/or where) to keep the new priorities based on perf and cost analysis
 * https://phabricator.wikimedia.org/T204281
 * Implement Ping Offload service in core DCs
 * Finish design issues
 * Deploy offloading service for public ICMP ping traffic to primary service IPs in eqiad and codfw
 * Make a plan for the cache/network PoPs
 * https://phabricator.wikimedia.org/T190090

Status
January 10, 2019
 * Discussed that as we've just gotten back from our vacations, this work is ramping up and is

February 19, 2019
 * Most of these are still : certcentral renaming is nearing completion, cr2-eqsin is on-track to deploy, peering priority change has been done for esams, ping offload still looking at final design issues

March 27, 2019
 * certcentral renaming is and will finish up in Q4
 * network capacity configuring and deploying is ✅
 * prioritization of peering and transit is ✅
 * Ping Offload service in core DCs is and expected to be fully completed by end of March or first week of April.

April 8, 2019
 * All unfinished bits were finished up last week! ✅

Outcome 1 / Output 1.1 (Performance)
Current levels of service are maintained and/or improved for all production sites, services and underlying infrastructure.


 * Deploy, update, configure, and maintain and improve production services, platforms, tooling, and infrastructure (Traffic infrastructure, databases & storage, MediaWiki application servers, (micro)services, network, Infrastructure Foundations, Analytics infrastructure, developer & release tooling, and miscellaneous sites & services)

Dependencies on: SRE

Goals

 * Post quarterly metrics (carried over)
 * Develop a strategy for oversampling NavTiming data from unrepresented countries, in order to better understand performance characteristics in less connected/lower bandwidth geographies
 * Expand use of WebP thumbnails where it makes sense to do so, and actively clean up Swift.
 * Prepare and deliver presentations on both synthetic and RUM metrics, with a specific focus on how to make the data that comes from those metrics actionable.
 * Publish an initial ISP ranking, working with Comms to promote as appropriate
 * Expand performance testing on mobile devices
 * [Ongoing] Support and maintenance of MediaWiki's ResourceLoader and associated components
 * [Ongoing] Support and maintenance of MediaWiki's object caching and data access components
 * [Ongoing] Support and maintenance of Thumbor/thumbnail infrastructure
 * [Ongoing] Support and maintenance of WebPageTest and synthetic testing infrastructure

Status
January 9, 2019
 * discussed and updated above.

February 13, 2019
 * Discussed that everything is still in progress, we're working with Legal and Commons on the ISP ranking

March 13, 2019
 * Discussed that everything is still ; ISP ranking service is but waiting word from Legal before publishing.

Outcome 2 / Output 2.1 (Performance)
Better designed systems
 * Assist in the architectural design of new services and making them operate at scale

Primary team: Performance

Goal(s)

 * Research performance perception in order to identify specific metrics that influence user behavior
 * Testing/operational support for new session store
 * Testing/operational support for ATS migration

Status
January 9, 2019
 * Most of this is in progress, but is reliant on other teams.

February 13, 2019
 * Discussed that the session store work is now

March 13, 2019
 * We are still in a support role for this, but still

Outcome / Output (Analytics)
We have scalable, reliable and secure systems for data transport.
 * Analytics stack maintains current level of service.
 * Dependancies on SRE teams

Goal(s)

 * Replace dbstore1002 before April.  Move people away from dbstore1002 to the new set of hosts, and deprecate it before mid-Q3 (hard deadline, Ubuntu Trusty EOL) ✅
 * STRETCH GOAL: Investigate if it is feasible to deprecate the research user account in favor of a multi-account solution

Status
February 14, 2019
 * Dbstore migration is on track, should be finished by mid March. Users already have access to new 3 machine clusters.

March 14, 2019
 * Cluster db has been migrated with work by Analytics and DBA, we have decided to ❌ any changes with research user account in the light of us wanting to move from MySQL as the main data store for data access.
 * Dbstore migration is now ✅

Outcome 1 / Output 1.1 (SRE)
Current levels of service are maintained and/or improved for all production sites, services and underlying infrastructure.


 * Deploy, update, configure, and maintain and improve production services, platforms, tooling, and infrastructure (Traffic infrastructure, databases & storage, MediaWiki application servers, (micro)services, network, Infrastructure Foundations, Analytics infrastructure, developer & release tooling, and miscellaneous sites & services)

Primary team(s): SRE, Dependencies on: Cloud Services, Analytics

Base system/distribution update

 * Remove remaining Ubuntu deployments from the production cluster
 * Adjust our operating system base layer to work on the forthcoming Debian 10/buster release
 * Install or upgrade 5 systems to buster
 * Draft a policy for operating systems lifecycle and subsequent EOL dates

Status
January 10, 2019
 * Discussed that as we've just gotten back from our vacations, this work is ramping up and is

February 13, 2019
 * Bare-metal buster installations now working, the first production system with Buster (stat1005) is being installed. On track.

March 27, 2019
 * Remove remaining Ubuntu deployments from the production cluster is and will wrap up by April 25, 2019. The rest of this goal is ✅.

Outcome 3 / Output 3.1 (WMCS)
Users can leverage a reliable and public Infrastructure as a Service (IaaS) product ecosystem for VPS hosting.


 * Maintain existing OpenStack infrastructure and services

Primary team: WMCS

Goal(s)

 * Replace Trusty with Debian Jessie/Stretch in Cloud Services infrastructure layer
 * Remove all Ubuntu-based instances from all Cloud VPS projects
 * Evaluate Ceph as a storage service component by building a proof of concept virtualized cluster

Status
January 9, 2019
 * Discussed that as we've just gotten back from our vacations, this work is ramping up and is

February 13, 2019
 * Discussed that the replacing of Trusty is still and probably go into April.
 * Removing all Ubuntu-based instances is and notifications went out last week for the new grid information; we hope to be totally done by end of quarter, one way or another.
 * Evaluating Ceph is still as we work on other more pressing goals.

March 13, 2019
 * The timeline for replacing Trusty slipped a bit, but is, is expected to be finished in Q4
 * Removing Ubuntu instances is but will also be extended into Q4
 * Eval of Ceph has been ❌ to Q4.

Outcome 3 / Output 3.2 (WMCS)
Users can leverage a reliable and public Infrastructure as a Service (IaaS) product ecosystem for VPS hosting.


 * Replace the current network topology layer with OpenStack Neutron

Primary team: WMCS

Goal(s)

 * Migrate 100% of Cloud VPS projects to the eqiad1 region and its Neutron SDN layer
 * Rebuild "labtest" staging environment as "cloud-dev" staging environment
 * (stretch goal) Upgrade OpenStack deployment to Newton or newer version on Debian Stretch hosts

Status
January 9, 2019
 * Discussed that as we've just gotten back from our vacations, this work is ramping up and is

February 13, 2019
 * Migration is still but ❌ on ToolForge issues - will be completed in April 2019
 * Rebuild is, racking and unracking hardware is fully underway.
 * Our stretch goal is now, as the spike to figure out what we need to do is ✅. Implementation is on the migration to Debian.

March 13, 2019
 * We are currently ❌ on the Trusty issue
 * We are hoping to complete the staging environment,
 * Stretch goal will be pushed to Q4

Outcome 4 / Output 4.1 (WMCS)
Members of the Wikimedia movement are able to develop and deploy technical solutions with a reasonable investment of time and resources on the Wikimedia Cloud Services Platform as a Service (PaaS) product.


 * Maintain existing Grid Engine and Kubernetes web services infrastructure and ecosystems.

Primary team: WMCS

Goal(s)

 * Build Debian Stretch grid engine in Toolforge and assist community in migration ✅
 * Upgrade Toolforge Kubernetes cluster to a well supported version and plan future upgrade cycles

Status
January 9, 2019
 * Discussed that as we've just gotten back from our vacations, this work is ramping up and is

February 13, 2019
 * Debian stretch grid has been built out ✅ and we're migrating and helping the community with any fixes as needed, and
 * Upgrading k8s cluster is also, with lots of work to do be done after the active planning phase is completed.

March 13, 2019
 * Stretch grid is with a revised schedule of tasks, hoping to wrap up by week of March 25th (508 tools still remaining, nearly 50% moved)
 * Upgrading the k8 cluster is and in planning stage currently

<div style="padding:1.125em; display:inline-block; border:1px solid #a2a9b1; vertical-align:top; border-radius:2px; position:relative; box-shadow:0px 2px 2px rgba(0,0,0,0.1);">

=<div class="boxtitle" style="font-size:1.35em; padding-bottom:0.5625em; font-weight:bold; text-align:left; border-bottom: 1px solid #c9c9c9">Q4 Goals =

Outcome 1 / Output 1.1 (SRE)
Current levels of service are maintained and/or improved for all production sites, services and underlying infrastructure.
 * Deploy, update, configure, and maintain and improve production services, platforms, tooling, and infrastructure (Traffic infrastructure, databases & storage, MediaWiki application servers, (micro)services, network, Infrastructure Foundations, Analytics infrastructure, developer & release tooling, and miscellaneous sites & services)

Primary teams: SRE / Infrastructure Foundations Dependencies on:

First steps towards Puppet 5

 * Upgrade Puppet agents to v5.5 across all production jessie & stretch systems
 * Upgrade Facter to v3.11 across all production jessie, stretch and buster systems
 * [stretch] Explore further steps towards the Puppetmaster, Hiera and PuppetDB upgrades

Status
May 8, 2019
 * Both goals are, stretch goal is also

June 7, 2019
 * Goal is ✅, stretch goal is also

Outcome 1 / Output 1.1 (SRE)
Current levels of service are maintained and/or improved for all production sites, services and underlying infrastructure.


 * Deploy, update, configure, and maintain and improve production services, platforms, tooling, and infrastructure (Traffic infrastructure, databases & storage, MediaWiki application servers, (micro)services, network, Infrastructure Foundations, Analytics infrastructure, developer & release tooling, and miscellaneous sites & services)

Primary teams: SRE / Service Operations Dependencies on: WMCS, Community Relations

Discourse

 * Investigate and plan deployment of Discourse in Production

Status
May 8, 2019
 * Prep work is ongoing and in early stages

June 13, 2019
 * This is ❌ for now, we'll revisit next FY

Outcome 1 / Output 1.1 (SRE)
Current levels of service are maintained and/or improved for all production sites, services and underlying infrastructure.


 * Deploy, update, configure, and maintain and improve production services, platforms, tooling, and infrastructure (Traffic infrastructure, databases & storage, MediaWiki application servers, (micro)services, network, Infrastructure Foundations, Analytics infrastructure, developer & release tooling, and miscellaneous sites & services)

Primary teams: SRE / Service Operations Dependencies on: WMCS, Community Relations

Goal(s)
Address Database infrastructure blockers on datacenter switchover & multi-dc deployment


 * Purchase, setup (accelerated) codfw core DB hosts
 * Provision and setup the new 13 eqiad DBs
 * Failover some old eqiad DB masters to new hardware

Status
May 8, 2019
 * This is currently ❌ on the data center ops after purchasing the servers, but overall it is and ongoing.

June 13, 2019
 * Purchase and setup is ✅, provisioning is ; failover is and on track to finish this quarter. We'd like to failover some of the equid masters and see where it takes us.

Outcome 1 / Output 1.1 (SRE / Traffic)
Current levels of service are maintained and/or improved for all production sites, services and underlying infrastructure.


 * Deploy, update, configure, and maintain and improve production services, platforms, tooling, and infrastructure (Traffic infrastructure, databases & storage, MediaWiki application servers, (micro)services, network, Infrastructure Foundations, Analytics infrastructure, developer & release tooling, and miscellaneous sites & services)

Primary teams: SRE / Traffic

Goal(s)
Deploy TLS 1.3 for main cache clusters Implement secure redirect service for non-canonical domains Convert cache_upload to ATS backends in ulsfo Deploy Bird-lg public looking glass service Deploy Anycast Recursive DNS
 * https://phabricator.wikimedia.org/T170567
 * Determine whether we're implementing this via ATS or nginx
 * Puppetize a solution
 * Test
 * Deploy
 * https://phabricator.wikimedia.org/T133548
 * https://phabricator.wikimedia.org/T219967
 * Puppetize the combination of varnish-frontend + ATS-backend on a single cache node
 * Convert all of cache_upload @ ulsfo to the new combined configuration
 * Stretch: convert more/all datacenters
 * https://phabricator.wikimedia.org/T106056
 * https://phabricator.wikimedia.org/T186550
 * Finish any remaining design / implementation review
 * Test failure scenarios, test service from every DC
 * Enable via resolv.conf for some minimal set of production clients

Status
May 8, 2019
 * We will most likely be doing this in ATS and it is with test/deploy to be done later.
 * Secure redirect has not been started yet
 * Convert cache_upload is ✅ and all hosts are running ATS currently
 * Conversations are to see if we want to deploy Bird-lg public looking glass service, might be declined later on.
 * Deploy Anycast Recursive DNS is

June 13, 2019
 * Deploy TLS 1.3 for main cache clusters might be able to be finished this quarter and is.
 * Implement secure redirect service for non-canonical domains is currently ❌ due to more urgent work
 * Deploy Bird-lg public looking glass service is ❌ and will move to next FY
 * Deploy Anycast Recursive DNS is and should be finished up by the end of the quarter.

Outcome 1 / Output 1.5 (SRE)
Current levels of service are maintained and/or improved for all production sites, services and underlying infrastructure.
 * We have scalable, reliable and secure systems for data transport and storage.

Primary teams: SRE / Infrastructure Foundations Dependencies on: Analytics Engineering

Transition Kafka main ownership from Analytics Engineering to SRE

 * Review current architecture/capacity and establish plan for Kafka main cluster upgrade/refresh to cover needs for next 2-3 years
 * Audit existing Kafka main producers/consumers and document their configuration and use cases
 * Establish guideline documentation for Kafka cluster use cases (main, jumbo, logging, etc.) (note: added to clarify scope of Kafka main cluster going forward)
 * Upgrade and expand Kafka main cluster

Status
May 8,2019
 * This is and we are working on hardware procurement.

June 13, 2019
 * Design and planning is ✅, existing producers, documentation is ✅ and the setup to upgrade and expand is.

Outcome / Output (Analytics)
We have scalable, reliable and secure systems for data transport and data processing.

Dependancies on: SRE

Goal(s)

 * Remove computational bottlenecks in stats machines via modenizing our hardware: addition of a GPU that can be used to train ML models T148843

Status
May 2019
 * GPU is working and tensorflow ML tests are running. We have however, one close source library that contains image processing with openCL that we need to see if we can stub and use.

June 2019
 * Discussed...

Outcome / Output (Analytics)
Current levels of service are maintained and/or improved for all production sites, services and underlying infrastructure.

Goal(s)

 * Upgrade the cloudera distribution of analytics cluster to CDH5.16 T218343

Note this work is contingent in team evaluating wether new version provides enough value in terms of security upgrades.

Status
May 2019

Outcome 1 / Output 1.1 (Performance)
Current levels of service are maintained and/or improved for all production sites, services and underlying infrastructure.


 * Deploy, update, configure, and maintain and improve production services, platforms, tooling, and infrastructure (Traffic infrastructure, databases & storage, MediaWiki application servers, (micro)services, network, Infrastructure Foundations, Analytics infrastructure, developer & release tooling, and miscellaneous sites & services)

Dependencies on: SRE, Core Platform, Multimedia

Goal(s)

 * Explore/implement concept and curtail use of
 * Evaluate alternatives for image-embedding in ResourceLoader stylesheets.
 * Investigate how to make DB replication lag checks account for secondary datacenters.
 * Get AbuseFilterCachingParser re-enabled
 * Help TimedMediaHandler migration from Kaltura to Video.js
 * Mobile device testing (add documentation for setting up phones and server)
 * Use Docker for WebPageTest.
 * New performance APIs origin trials (Event Timing, Priority Hints, Feature Policy reporting, Element Timing for Images, Layout Stability)
 * Reduce reliance on master-DB writes for file-dependency tracking.
 * Swift cleanup + WebP ramp up.
 * Write two performance topic blog posts.
 * [Ongoing] Support and maintenance of MediaWiki's ResourceLoader and associated components
 * [Ongoing] Support and maintenance of MediaWiki's object caching and data access components
 * [Ongoing] Support and maintenance of Thumbor/thumbnail infrastructure
 * [Ongoing] Support and maintenance of WebPageTest and synthetic testing infrastructure

Status
May 8, 2019
 * Evaluate alternatives for image-embedding in ResourceLoader stylesheets is
 * AbuseFilterCachingParser re-enabled is also as well as TimedMediaHandler migration from Kaltura is
 * Swift cleanup + WebP ramp up has not started yet as well
 * everything else on this list is currently being worked on and is

June 2019
 * Discussed..

Outcome 1 / Output 1.1 (RelEng)
Current levels of service are maintained and/or improved for all production sites, services and underlying infrastructure.

Goal(s)

 * Undeploy the CodeReview extension.

Status
April 8, 2019
 * This is

May 7, 2019
 * James and Core Platform need to chat about this, so ❌ for now

June 4, 2019
 * This is still ❌ for now and probably won't be able to be completed this quarter. We want to clean up the code, but this is not an urgent goal.

Outcome 2 / Output 2.1 (Performance)
Better designed systems
 * Assist in the architectural design of new services and making them operate at scale

Primary team: Performance

Goal(s)

 * Supporting MW sessions in Cassandra for Beta Cluster.

Status
May 8, 2019
 * This is now

June 2019
 * Discussed...

Outcome 3 / Output 3.1 (WMCS)
Users can leverage a reliable and public Infrastructure as a Service (IaaS) product ecosystem for VPS hosting.


 * Maintain existing OpenStack infrastructure and services

Primary team: WMCS

Goal(s)

 * Complete partial goals from past quarters ✅
 * Replace Trusty with Debian Jessie/Stretch in Cloud Services infrastructure layer
 * Remove all Ubuntu-based instances from all Cloud VPS projects
 * Evaluate Ceph as a storage service component by building a proof of concept virtualized cluster

Status
June 6, 2019
 * This is now ✅: Replace Trusty with Debian Jessie/Stretch in Cloud Services
 * Ceph design and evaluation is fully, this work will continue into Q1 as a major goal.

June 27, 2019
 * Evaluating Ceph is still and getting hardware to build up the cluster (discussing things like where and how to rack servers, etc) and this work will continue into next FY as the largest ongoing goal for the year.

Outcome 3 / Output 3.2 (WMCS)
Users can leverage a reliable and public Infrastructure as a Service (IaaS) product ecosystem for VPS hosting.


 * Replace the current network topology layer with OpenStack Neutron

Primary team: WMCS

Goal(s)

 * Complete partial goals from past quarters
 * Migrate 100% of Cloud VPS projects to the eqiad1 region and its Neutron SDN layer ✅
 * Rebuild "labtest" staging environment as "cloud-dev" staging environment ✅
 * Upgrade OpenStack deployment to Newton or newer version on Debian Stretch hosts

Status
June 6, 2019
 * Migrating and rebuilding the new environment are both ✅ and the upgrade of OpenStack deployment is and probably will run into Q1.

June 27, 2019
 * Neutron is ✅ - yay! OpenStack update is still as a stretch goal and will continue into next FY with help from DCOps to get up on bigger network links and switches.

Outcome 4 / Output 4.1 (WMCS)
Members of the Wikimedia movement are able to develop and deploy technical solutions with a reasonable investment of time and resources on the Wikimedia Cloud Services Platform as a Service (PaaS) product.


 * Maintain existing Grid Engine and Kubernetes web services infrastructure and ecosystems.

Primary team: WMCS

Goal(s)

 * Complete partial goals from past quarters
 * Upgrade Toolforge Kubernetes cluster to a well supported version and plan future upgrade cycles

Status
June 6, 2019
 * The upgrade to toolforge is ❌ due to unforeseen staffing issues but we hope to have it done early next FY.

June 27, 2019
 * The upgrade to toolforge is now, but will continue through next FY.

Outcome 6 / Output 6.1 (Core Platform)
Improved MediaWiki availability and reduced read-only impact from data center fail-overs
 * Production deployment of routing of MediaWiki GET/HEAD requests to the secondary data center.

Dependancies on: SRE

Goal(s)

 * Prepare MW and the secondary DC for enabling the ability to serve requests from both DCs
 * Finish comment storage changes
 * Finish actor storage changes

Status
May 8, 2019
 * This is

June 2019
 * Discussed...