Curated topic

dist

Posts tagged with dist

GitHub EngineeringMay 14, 2026

GitHub availability report: April 2026

Why it matters: This report highlights the complexity of maintaining high availability in distributed systems. It provides lessons on the risks of automated infrastructure changes, the importance of correctly scoped rate limiting, and the need for robust DNS management and failover strategies.

GitHub experienced 10 incidents in April 2026, including a major code search outage caused by an aggressive infrastructure upgrade and coordination failure.
A bug in rate-limiting logic caused significant delays for GitHub Copilot, incorrectly applying global limits instead of per-installation scopes.
GitHub Pages suffered an 11% error rate after an automated DNS management tool erroneously deleted a backend storage host record.
Audit log services were briefly unavailable due to a failed credential rotation, highlighting the need for more resilient rotation processes.
Codespaces connectivity issues were traced to failures in VS Code editor integration, while SSH connections remained unaffected.
Remediation efforts focus on implementing availability-zone-tolerant routing, better traffic isolation, and enhanced deployment safeguards.

#sre #dist

Read original

Salesforce EngineeringMay 14, 2026

Creating a Multi-Tenant AI Agent Platform Handling 7K+ Sessions Without Cross-Team Interference

Why it matters: This article provides a blueprint for scaling AI infrastructure by moving from a monolith to a multi-tenant platform. It demonstrates how to maintain low latency and engineering velocity while managing complex state and resource isolation for hundreds of developers.

Salesforce transitioned from a monolithic AI planner to 'Bring Your Own Planner' (BYOP) to eliminate cross-team interference and deployment bottlenecks.
The multi-tenant platform supports over 7,000 active sessions and 15,000 daily requests with a minimal platform overhead of 5ms per request.
BYOP provides standardized infrastructure for session management, Redis-backed state persistence, and tool invocation, enabling team autonomy.
The architecture prevents 'noisy neighbor' effects by isolating compute resources and allowing independent horizontal scaling for different reasoning engines.
The system supports diverse use cases, from read-heavy enterprise search synthesis to write-heavy state machines for data configuration.

#dist #mlp #sre

Read original

Cloudflare BlogMay 14, 2026

Our billing pipeline was suddenly slow. The culprit was a hidden bottleneck in ClickHouse

Why it matters: This case study demonstrates that even logically sound architectural changes can trigger hidden internal bottlenecks at scale. It highlights the importance of profiling query planning and shows how massive part counts in ClickHouse can lead to unexpected lock contention.

Cloudflare migrated a 2PiB+ ClickHouse table to a (namespace, day) partitioning scheme to enable granular per-tenant data retention.
Despite queries filtering by namespace, performance degraded linearly as the total number of data parts in the cluster increased.
Investigation using ClickHouse trace_log and flame graphs revealed that the bottleneck was in the query planning phase, not execution.
The root cause was identified as lock contention during partition pruning, where a global lock was held while iterating over all parts.
Cloudflare engineers developed and contributed patches to ClickHouse to optimize the planning phase and reduce lock duration.
The fix allowed the billing pipeline to meet its deadlines while supporting a new automated storage management system using max-min fairness.

#data #sre #dist

Read original

Airbnb EngineeringMay 13, 2026

Viaduct 1.0 and the future of Airbnb’s data mesh

Why it matters: Viaduct offers a middle ground between monolithic GraphQL and complex Federation by allowing teams to contribute to a shared schema via modules. This reduces operational overhead while maintaining developer autonomy, making it easier to scale data access across large organizations.

Airbnb released Viaduct 1.0, transitioning its internal GraphQL-based data mesh into a community-driven project with a stable public API.
Viaduct enables decentralized development of a central schema by using a multi-tenant runtime where teams contribute modules rather than managing independent servers.
The system abstracts data access and updates from service entry points, providing a unified interface for diverse data sources across the organization.
Unlike GraphQL Federation which distributes development via separate servers, Viaduct distributes development through modules within a shared runtime.
Viaduct can complement federated architectures by acting as a subgraph, reducing the operational overhead of managing hundreds of individual subgraph servers.
The 1.0 release introduces strict API stability measures, including Kotlin binary compatibility validation and automated releases to Maven Central.

#dist #data #sre

Read original

Engineering at MetaMay 13, 2026

Reel Friends: Building Social Discovery that Scales to Billions

Why it matters: This article highlights the hidden complexity of scaling social features. It demonstrates how machine learning and platform-specific user behavior analysis are critical for delivering personalized experiences to billions, proving that simple UI often masks deep engineering challenges.

Explores the engineering behind 'Friend Bubbles,' a social discovery feature for Facebook Reels.
Discusses the iterative evolution of machine learning models used to rank and recommend social content.
Addresses the technical challenges of scaling social discovery features to billions of global users.
Highlights behavioral differences between iOS and Android users that influenced feature development.
Emphasizes that seemingly simple UI features often require significant backend and ML infrastructure.

#mlp #mobile #dist

Read original

Cloudflare BlogMay 13, 2026

Browser Run: now running on Cloudflare Containers, it’s faster and more scalable

Why it matters: This migration demonstrates how moving from eventually consistent stores to transactional databases and specialized container infrastructure can drastically improve performance and scalability for high-concurrency workloads like headless browsers and AI agents.

Browser Run migrated from shared Browser Isolation infrastructure to Cloudflare Containers, increasing usage limits to 60 browsers per minute and 120 concurrent instances.
Quick Action response times improved by over 50% due to better global distribution and reduced container image sizes.
Implemented regional pre-warmed container pools to minimize latency between Durable Objects and browser instances across the global network.
Transitioned state management from Workers KV to D1 to utilize SQL transactions, eliminating race conditions caused by KV's eventual consistency.
Integrated Cloudflare Queues to batch high-frequency heartbeat updates, preventing D1 concurrency bottlenecks during peak demand from AI agents.

#dist #sre #data

Read original

Engineering at MetaMay 12, 2026

Migrating Data Ingestion Systems at Meta Scale

Why it matters: Migrating hyperscale data systems requires rigorous validation to prevent data loss. Meta's approach demonstrates how to automate complex migrations using shadow testing and Migration-as-a-Service to maintain reliability for petabyte-scale social graph analytics and ML workloads.

Meta migrated its massive social graph data ingestion system from customer-owned pipelines to a self-managed data warehouse service.
The migration utilized a multi-phase lifecycle including Shadow and Reverse Shadow phases to ensure data integrity and performance parity.
Validation criteria focused on zero data quality issues via checksums, no landing latency regressions, and improved resource utilization.
To handle thousands of jobs, Meta developed Migration-as-a-Service (MaaS) to automate the lifecycle, monitoring, and rollback processes.
The new architecture enhances reliability and efficiency while supporting hyperscale operations for analytics and ML model training.

#data #sre #dist

Read original

Cloudflare BlogMay 12, 2026

When "idle" isn't idle: how a Linux kernel optimization became a QUIC bug

Why it matters: This bug highlights the risks of porting optimizations between protocols like TCP and QUIC. Understanding congestion control state machines is critical for maintaining high-performance networking and ensuring reliable recovery from congestion collapse in production environments.

Cloudflare engineers identified a bug in the quiche implementation of the CUBIC congestion control algorithm where the congestion window (cwnd) remained pinned at its minimum floor.
The issue originated from a Linux kernel optimization ported to QUIC that prevents cwnd growth during 'app-limited' or idle periods to avoid window inflation.
Under heavy initial packet loss, the cwnd dropped so low that the sender's activity was incorrectly flagged as idle, creating a feedback loop that suppressed recovery.
The bug manifested as rapid oscillations between recovery and congestion avoidance states, occurring in lockstep with the connection's round-trip time (RTT).
A near-one-line fix was implemented to ensure cwnd growth is not suppressed when the sender is actively transmitting data, even at the minimum window size.
The investigation utilized qlog visualizations to identify the 14ms oscillation pattern that matched the simulated network RTT.

#dist #sre

Read original

Engineering at MetaMay 11, 2026

Labyrinth 1.1: Making End-to-End Encrypted Backups Even More Reliable

Why it matters: Labyrinth 1.1 solves a critical availability challenge in E2EE systems by ensuring message persistence even when devices are offline. This improves reliability and user experience in secure messaging without compromising the privacy guarantees of end-to-end encryption.

Meta is rolling out Labyrinth 1.1, an updated protocol for end-to-end encrypted (E2EE) message storage on Messenger.
The update introduces a new sub-protocol that allows messages to be backed up immediately as they are sent.
Senders now place a message encryption key directly into the recipient's encrypted backup, ensuring data persistence.
This mechanism removes the dependency on the recipient's device being online to secure the message history.
The protocol protects against data loss during device switches, hardware loss, or extended periods between sign-ins.
Labyrinth 1.1 maintains strict E2EE standards where only the conversation participants can access the message content.

#security #mobile #dist

Read original

Salesforce EngineeringMay 11, 2026

Building Data 360 Clean Rooms: Zero-Copy Architecture for Privacy-Safe Data Collaboration

Why it matters: Data 360 Clean Rooms enable secure data collaboration without moving raw data. This zero-copy, federated architecture solves the conflict between data utility and strict regulatory compliance like GDPR while maintaining performance across distributed environments.

Implemented a zero-copy federation model that executes queries at the data source, preventing the movement of sensitive raw data.
Designed a privacy-first architecture using PII anonymization, hashing, and aggregation thresholds to comply with GDPR and CCPA.
Utilized use case templates to restrict analysis to pre-approved SQL patterns, preventing unauthorized data probing.
Developed a secure integration layer to bridge Data 360 with external platforms like AWS Clean Rooms using uniform contracts.
Maintained immutable audit logs and granular access controls to ensure transparency and governance across cross-org collaborations.

#data #security #dist

Read original

Page 3 of 34

Prev 1 2 3 4 5...34 Next