Page MenuHomeVyOS Platform
Create Task
Maniphest T3706

Add proper priorities for systemd daemons
Open, NormalPublicFEATURE REQUEST
Actions

Description

We need to think about setting proper priorities and some limits on resource usage (if necessary) per daemons which are started with systemd.
There are issues when some of the daemons, for example, snmpd can get 100% CPU utilization a lot of time.
This behavior can often lead to the fact that resources for other more important daemons/services (like frr/routing/etc) may simply not be enough.
This can cause daemons/processes to crash.

Details

Version
-
Is it a breaking change?
Perfectly compatible
Issue type
Bug (incorrect behavior)

Related Objects
Search...

StatusSubtypeAssignedTask
OpenFEATURE REQUESTNoneT3706 Add proper priorities for systemd daemons
ResolvedFEATURE REQUESTViacheslavT3709 Snmp: Allow enable MIDs/OIDs ipCidrRouteTable

Event Timeline

Viacheslav created this task.Jul 27 2021, 11:22 AM
Viacheslav updated the task description. (Show Details)Jul 27 2021, 11:27 AM
pasik subscribed.Jul 28 2021, 4:02 PM
Viacheslav added a subtask: T3709: Snmp: Allow enable MIDs/OIDs ipCidrRouteTable.Jul 29 2021, 6:52 AM
Viacheslav changed the status of subtask T3709: Snmp: Allow enable MIDs/OIDs ipCidrRouteTable from Open to Needs testing.Aug 10 2021, 12:14 PM
Viacheslav closed subtask T3709: Snmp: Allow enable MIDs/OIDs ipCidrRouteTable as Resolved.Aug 11 2021, 6:26 AM
syncer assigned this task to Viacheslav.Oct 17 2021, 1:44 PM
syncer triaged this task as Normal priority.
syncer edited projects, added VyOS 1.3 Equuleus (1.3.0-epa3); removed VyOS 1.3 Equuleus.
syncer removed a subscriber: Global Notifications.
syncer edited projects, added VyOS 1.3 Equuleus (1.3.0); removed VyOS 1.3 Equuleus (1.3.0-epa3).Nov 1 2021, 10:11 PM
Viacheslav added a comment.Jan 9 2022, 4:53 PM

https://www.freedesktop.org/software/systemd/man/systemd.resource-control.html

Viacheslav added a comment.EditedJan 9 2022, 5:12 PM

A simple check works fine:
Set 20% quota for snmpd
And check it with script:

#!/usr/bin/env bash

while true
  do
    snmpwalk -v 2c -c public 127.0.0.1
  done

Edit service:

sudo systemctl edit snmpd

Replace:

[Service]
Environment=
Environment="MIBDIRS=/usr/share/snmp/mibs:/usr/share/snmp/mibs/iana:/usr/share/snmp/mibs/ietf:/usr/share/vyos/mibs"
ExecStart=
ExecStart=/usr/sbin/snmpd -LS0-5d -Lf /dev/null -u Debian-snmp -g Debian-snmp -I -ipCidrRouteTable,inetCidrRouteTable -f -p /run/snmpd.pid
Restart=always
RestartSec=10

To:

[Service]
Environment=
Environment="MIBDIRS=/usr/share/snmp/mibs:/usr/share/snmp/mibs/iana:/usr/share/snmp/mibs/ietf:/usr/share/vyos/mibs"
ExecStart=
ExecStart=/usr/sbin/snmpd -LS0-5d -Lf /dev/null -u Debian-snmp -g Debian-snmp -I -ipCidrRouteTable,inetCidrRouteTable -f -p /run/snmpd.pid
Restart=always
RestartSec=10
CPUQuota=20%

CPU before

before.png (290×1 px, 71 KB)

and after
after.png (270×986 px, 65 KB)

Needs to think about all necessary services and their limits

syncer edited projects, added VyOS 1.3 Equuleus (1.3.3); removed VyOS 1.3 Equuleus (1.3.0).Aug 29 2022, 7:04 AM
syncer edited projects, added VyOS 1.3 Equuleus (1.3.4); removed VyOS 1.3 Equuleus (1.3.3).Jul 12 2023, 9:39 PM
syncer edited projects, added VyOS 1.3 Equuleus (1.3.5); removed VyOS 1.3 Equuleus (1.3.4).Aug 25 2023, 9:29 PM
Viacheslav removed a project: VyOS 1.3 Equuleus (1.3.5).Aug 29 2023, 1:50 PM
dmbaturin edited projects, added VyOS 1.5 Circinus; removed VyOS 1.4 Sagitta.Apr 11 2024, 7:27 PM
dmbaturin set Issue type to Unspecified (please specify).
Viacheslav mentioned this in T6230: Implement kernel-mode flow collection and/or dataplane offload collection for high volume systems.Apr 12 2024, 7:17 AM
dmbaturin removed Viacheslav as the assignee of this task.Sep 16 2024, 3:53 PM
dmbaturin added a project: Restricted Project.Sep 16 2024, 4:16 PM
dmbaturin renamed this task from Add properly priorities for systemd daemons to Add proper priorities for systemd daemons.Oct 14 2024, 9:31 AM
dmbaturin edited projects, added VyOS Rolling, VyOS 1.4 Sagitta (1.4.0); removed Restricted Project.
dmbaturin changed Is it a breaking change? from Unspecified (possibly destroys the router) to Perfectly compatible.
dmbaturin changed Issue type from Unspecified (please specify) to Bug (incorrect behavior).
vyosbot added a project: Bugs.Oct 14 2024, 11:32 AM
syncer removed projects: VyOS 1.4 Sagitta (1.4.0), VyOS 1.5 Circinus.Oct 30 2024, 8:27 AM
syncer moved this task from Need Triage to Backlog - Feature Requests on the VyOS Rolling board.
syncer subscribed.

@Viacheslav is this implemented?
if so, mark as resolved

Viacheslav added a comment.EditedOct 30 2024, 9:52 AM

It is not implemented
But it probably will not be implemented
The only affected service was SNMP

syncer added a subscriber: Global Notifications.Nov 1 2024, 9:19 PM