MediaWiki

Core Platform Team/Initiatives/Eliminate Node 6

< Core Platform Team‎ | Initiatives
Eliminate Node 6
Product Owner: Petr Pchelko
Technical Contact: Petr Pchelko
Status: In Progress
Initiative Vision: Read Edit
Initiative Description: Read Edit
Epics, User Stories, and Requirements:
Time and Resource Estimates: Read Edit
Open Questions:
Documentation Links:

Initiative Vision

< Initiatives

Vision:
  • Node version 6 is not installed on WMF cluster
  • All services run on modern nodejs
Stakeholder(s):
  • PETeam
  • SRE
  • Maps/Graphoid/other
 Problem:
  • Node 6 has hit EOL several years ago; it does not receive even security updates
  • Most of the services were moved to node 10 as part of k8s migration
  • A few services like graphoid (being decommissioned) and RESTBase were left out of k8s, and are still running node 6 on bare metal
  • One service, kartotherian/tilerator, was left out of k8s but moved to node 10
  • Needing support for node 6 in shared libraries forces us to use very outdated, potentially insecure dependencies.
 Solution:
  • Move the remaining services to node 10 and drop node 6 from production cluster
 Aligned Goals:
  • Platform stability and security. Running outdated software that does not receive security updates, especially accessible via public internet is a huge security flaw.

Initiative Description

< Initiatives

Summary

All service need to be migrated to node 10 and node 6 eliminated from production

Significance and Motivation

Node 6 is EOL, so it's not supported and not even receiving security updates. Running outdates software is not secure.

Outcomes

Node 6 is removed from the cluster

Baseline Metrics

RESTBase, Kartotherian/Tilerator, Graphoid and possibly small others run node 6

Target Metrics

Nothing runs node 6, node 6 is uninstalled

Stakeholders

Platform Engineering, Reading Infrastructure, SRE

Known Dependencies/Blockers

None given


Time and Resource Estimates

< Initiatives

Estimated Start Date

None given

Actual Start Date

None given

Estimated Completion Date

None given

Actual Completion Date

None given

Resource Estimates

1 sprint 1 ENG/1 SRE

Collaborators

None given


Subpages


50% done

Poll

Team members are invited to voice support or opposition, and give their reasoning. Please use the polling templates, for example: 

* {{support}} I like this example!  ~~~~
* {{weak oppose}} This is not a great example example... ~~~~
  •   Support Removing dependencies on outdated platforms is always a good thing. DKinzler (WMF) (talk) 13:34, 8 September 2020 (UTC)Reply[reply]
  •   Support Upgrading versions to remove security vulnerabilities sounds like not only a good idea but very necessary! NNikkhoui (WMF)
  •   Support 50% Done, plus what Nikki and Daniel said AMooney (WMF)
  •   Support Strongly support. If it were possible to go ahead and decommission anything currently using Node 6 rather than moving it to Node 10, even better. BPirkle (WMF)
  •   Support Agreed removing outdated software is important. CCicalese (WMF) (talk) 19:36, 10 September 2020 (UTC)Reply[reply]
  •   Support Support for the above reasons. NNzali (WMF)
  •   Support Since Node 6 is no longer receiving security updates I agree removing it should should be a priority. CAndrew (WMF) (talk) 13:16, 14 September 2020 (UTC)Reply[reply]
  •   Support Support for reasons above. WDoran (WMF)
Retrieved from "https://www.mediawiki.org/w/index.php?title=Core_Platform_Team/Initiatives/Eliminate_Node_6&oldid=4328749"