Upgrade to Pro — share decks privately, control downloads, hide ads and more …

systemd: The Good Parts

James Nugent
July 11, 2018
Technology
0
890

systemd: The Good Parts

Even though there is some dissatisfaction with systemd in the sysadmin community, James Nugent, an engineer at Samsung Research, shows why it largely fulfills its primary purposes.

In this talk he takes a tour of the great, and sometimes unappreciated or lesser-known features of systemd. He also explains how it can be paired with Packer and Terraform as a component of self-healing systems, and how it can also be used in a production-grade Consul cluster.

James Nugent

July 11, 2018
Tweet

More Decks by James Nugent

See All by James Nugent
Pkl - A Programming Language for Configuration
jen20
0
61
Terraform Without The Mess
jen20
3
5.7k
CloudInit: The Good Parts
jen20
0
960

Other Decks in Technology

See All in Technology
さくらの夕べ Debianナイト - さくらのVPS編
dictoss
0
180
LangChainとLangGiraphによるRAG・AIエージェント実践入門「10章 要件定義書生成Alエージェントの開発」輪読会スライド
takaakiinada
0
120
MCP Documentation Server @AI Coding Meetup #1
yyoshiki41
2
2.5k
7,000名規模の​ 人材サービス企業における​ プロダクト戦略・戦術と課題​ / Product strategy, tactics and challenges for a 7,000-employee staffing company
techtekt
0
250
ゆるくVPC Latticeについてまとめてみたら、意外と奥深い件
masakiokuda
2
230
Langchain4j y Ollama - Integrando LLMs con programas Java @ Commit Conf 2025
deors
1
130
“パスワードレス認証への道" ユーザー認証の変遷とパスキーの関係
ritou
1
260
似たような課題が何度も蘇ってくるゾンビふりかえりを撲滅するため、ふりかえりのテーマをフォーカスしてもらった話 / focusing on the theme
naitosatoshi
0
370
OPENLOGI Company Profile
hr01
0
62k
2025年春に見直したい、リソース最適化の基本
sogaoh
PRO
0
460
AI Agentを「期待通り」に動かすために:設計アプローチの模索と現在地
kworkdev
PRO
2
350
フロントエンドも盛り上げたい!フロントエンドCBとAmplifyの軌跡
mkdev10
2
230

Featured

See All Featured
Large-scale JavaScript Application Architecture
addyosmani
512
110k
Build The Right Thing And Hit Your Dates
maggiecrowley
35
2.6k
Gamification - CAS2011
davidbonilla
81
5.2k
Scaling GitHub
holman
459
140k
Bash Introduction
62gerente
611
210k
Design and Strategy: How to Deal with People Who Don’t "Get" Design
morganepeng
129
19k
Writing Fast Ruby
sferik
628
61k
Documentation Writing (for coders)
carmenintech
69
4.7k
A designer walks into a library…
pauljervisheath
205
24k
Fantastic passwords and where to find them - at NoRuKo
philnash
51
3.1k
CSS Pre-Processors: Stylus, Less & Sass
bermonpainter
356
30k
4 Signs Your Business is Dying
shpigford
183
22k

Transcript

  1. systemd: The Good Parts James Nugent Samsung Electronics @jen20

  2. None
  3. None
  4. None
  5. None
  6. None

  7. Fedora 15 May 2011 openSUSE 12.2 September 2012 CentOS 7.14.04

    April 2014 Red Hat Enterprise Linux 7.0 June 2014 SUSE Linux Enterprise Server 12 October 2014 Debian 8 April 2015 Ubuntu 15.04 April 2015 systemd Adop+on

  8. Fedora 15 May 2011 openSUSE 12.2 September 2012 CentOS 7.14.04

    April 2014 Red Hat Enterprise Linux 7.0 June 2014 SUSE Linux Enterprise Server 12 October 2014 Debian 8 April 2015 Ubuntu 15.04 April 2015 systemd Adop+on
  9. None
  10. None

  11. systemd

  12. Aspects of systemd • System and service manager • This

    is what we’ll focus on today • So2ware pla6orm for developing other applica9ons • We’ll touch on this too • “Glue” between the kernel and user applica9ons • Some references at the end

  13. Units

  14. Units

  15. Unit File Paths • /lib/systemd/system • For package-installed units •

    /etc/systemd/system • For Administrator-configured units • /run/systemd/system • For non-persistent run9me modifica9ons

  16. name.type

  17. name.type consul.service

  18. name.type ssh.socket

  19. Service Units

  20. None
  21. None
  22. None

  23. Service Unit Types • Simple (default) - for executables which

    run without daemonising - like Consul. • Forking - for executables which daemonise themselves • Oneshot - usually short-lived programs which run to comple9on and terminate • No+fy - for executables which will no9fy systemd when they are started and available for work. • Consul now supports this - more later!

  24. Unit Commands • systemctl enable consul.service • systemctl start consul.service

    • systemctl stop consul.service • systemctl restart consul.service • systemctl status consul.service

  25. systemctl status consul.service

  26. systemctl status consul.service Unit Name & Descrip9on

  27. systemctl status consul.service Unit Name & Descrip9on Enabled Status

  28. systemctl status consul.service Unit Name & Descrip9on Enabled Status Up9me

  29. systemctl status consul.service Unit Name & Descrip9on Enabled Status Up9me

    All processes

  30. systemctl status consul.service Unit Name & Descrip9on Enabled Status Up9me

    All processes Last 10 log lines

  31. “Drop-in” ConfiguraGon

  32. “Drop-in” Configura+on

  33. “Drop-in” Configura+on Per-Service Drop-In Configura9on Directory

  34. “Drop-in” Configura+on Loaded Drop-in Configura9on Files

  35. systemd-delta

  36. Common Bootstrapping PaGern • Install so2ware from a generic package

    • apt-get install consul • Install bootstrapping script and drop-in configura9on from an environment-specific package • apt-get install consul-bootstrap-aws • apt-get install consul-bootstrap-azure

  37. Working Example

  38. Target Units

  39. None

  40. consul-online.target network-online.target consul.service multi-user.target consul-online.service service-that-depends-on-consul.service

  41. None
  42. None
  43. None

  44. Socket Units

  45. If a service dies, its listening socket stays around, not

    losing a single message. After a restart of the crashed service it can continue right where it left off. If a service is upgraded we can restart the service while keeping around its sockets, thus ensuring the service is continously responsive. Not a single connection is lost during the upgrade. —Lennart Poettering

  46. If a service dies, its listening socket stays around, not

    losing a single message. After a restart of the crashed service it can continue right where it left off. If a service is upgraded we can restart the service while keeping around its sockets, thus ensuring the service is continously responsive. Not a single connection is lost during the upgrade.

  47. If a service dies, its listening socket stays around, not

    losing a single message. After a restart of the crashed service it can continue right where it left off. If a service is upgraded we can restart the service while keeping around its sockets, thus ensuring the service is continously responsive. Not a single connection is lost during the upgrade.

  48. Permissions

  49. Socket Ac+va+on in Go Credit: Vincent Bernat - “IntegraBon of

    a Go Service with systemd” - 2018

  50. Socket Ac+va+on in Go Credit: Vincent Bernat - “IntegraBon of

    a Go Service with systemd” - 2018

  51. $ go build 404.go $ systemd-socket-activate -l 8000 ./404 Listening

    on [::]:8000 as 3 $ curl '[::1]':8000 404 page not found $ curl '[::1]':8000 404 page not found

  52. Service Unit

  53. Socket Unit

  54. Graceful Shutdown

  55. Timer Units

  56. Timer Units

  57. This talk only scratches the surface of the capabiliGes of

    systemd

  58. THANK YOU!

  59. References • https://freedesktop.org/wiki/Software/systemd/ • https://github.com/jen20/hashidays-nyc • https://github.com/hashicorp/consul/pull/3164 • https://vincent.bernat.im/en/blog/2018- systemd-golang-socket-activation