Hot Stuff

Operational efficiency is about achieving the same functional result for the same application or service, including performance and resilience, using fewer hardware resources like servers, disks, and CPUs. That means less electricity is required and gets dissipated as heat, less cooling is needed to handle that heat, and less carbon is emitted as part of the creation and disposal of the equipment.

Operational efficiency may not be the most glamorous option. Neither might it have the biggest theoretical potential for reducing energy waste. However, in this chapter we’re going to try to convince you it is a practical and achievable step that almost everyone can take to build greener software. Not only that, but we’ll argue that in many respects, it kicks the butt of the alternatives.

Techniques

As we discussed in the introduction, AWS reckons that good operational efficiency can cut carbon emissions from systems fivefold to tenfold. That’s nothing to sniff at.

“Hang on! Didn’t you say that code efficiency might cut them a hundredfold! That’s 10 times better!”

Indeed. However, the trouble with code efficiency is it can run smack up against something most businesses care a great deal about: developer productivity. And they are correct to care about that.

We agree that operational efficiency is less effective than code efficiency, but it has a significant advantage for most enterprises. For comparatively low effort and using off-the-shelf tools, you can get big improvements in it. It’s much lower-hanging fruit, and it’s where most of us need to start.

Code efficiency is amazing, but its downside is that it is also highly effortful and too often highly customized (hopefully, that is something that’s being addressed, but we’re not there yet). You don’t want to do it unless you are going to have a lot of users. Even then, you need to experiment first to understand your requirements.

In contrast, better operational efficiency is already available from standardized libraries and commodity services. So in this chapter we can include widely applicable examples of good practice, which we couldn’t give you in the previous one.

But before we start doing that, let’s step back. When we talk about modern operational efficiency, what high-level concepts are we leaning on?

We reckon it boils down to a single fundamental notion: machine utilization.

Machine Utilization

Machine utilization, server density, or bin packing. There are loads of names for the idea, and we’ve probably missed some, but the motive behind them all is the same. Machine utilization is about cramming work onto a single machine or a cluster in such a way as to maximize the use of physical resources like CPU, memory, network bandwidth, disk I/O, and power.

Great machine utilization is at least as fundamental to being green as code efficiency.

For example, let’s say you rewrite your application in C and cut its CPU requirements by 99%. Hurray! That was painful, and it took months. Hypothetically, you now run it on exactly the same server you did before. Unfortunately, all that rewriting effort wouldn’t have saved you that much electricity. As we will discuss in Chapter 6, a partially used machine consumes a large proportion of the electricity of a fully utilized one, and the embodied carbon hit from the hardware is the same.

In short, if you don’t shrink your machine (so-called rightsizing) at the same time you shrink your application, then most of your code optimization efforts will have been wasted. The trouble is, rightsizing can be tricky.

Infrastructure as code

Infrastructure as code (IaC) is the principle that you define, configure, and deploy infrastructure using code rather than doing it manually. The idea is to give you better automation and repeatability plus version control. Using domain-specific languages and config files, you describe the way you want your servers, networks, and storage to be. This code-based representation then becomes the single version of truth for your infrastructure.

GitOps is a version of IaC that uses Git as its version control system. Any changes, including provisioning ones like autoscaling, are managed through Git, and your current infrastructure setup is continuously reconciled with the desired state as defined in your repository. The aim is to provide an audit trail of any infrastructure changes, allowing you to track, review, and roll back.

The good news is that the IaC and GitOps communities have started to think about green operations, and so-called GreenOps is already a target of the Cloud Native Computing Foundation’s (CNCF) Environmental Sustainability Group. The foundation ties the concept to cost-cutting techniques (a.k.a. FinOps, which we’ll talk more about in Chapter 11, on the co-benefits of green systems), and the foundation is right (see Figure 4-1). Operationally, greener is cheaper.

Figure 4-1. CNCF definition of GreenOps as GitOps + FinOps

We think the implication here is that you start at the top of the triangle and work down, which seems sensible because the stuff at the bottom is certainly trickier.

Anything that automates rightsizing and autoscaling tasks makes them more likely to happen, and that suggests IaC and GitOps should be a good thing for green. That there is a CNCF IaC community pushing GreenOps is also an excellent sign.

At the time of writing, the authors spoke to Alexis Richardson, CEO at Weaveworks, and some of the wider team. Weaveworks coined the term GitOps in 2017 and set out the main principles together with FluxCD, a Kubernetes-friendly implementation. The company sees a next major challenge for GreenOps being automated GHG emission tracking. We agree, and it is a problem we’ll discuss in Chapter 10.

Cluster scheduling

Standard operational techniques like rightsizing and autoscaling are all very well, but if you really want to be clever about machine utilization, you should also be looking at the more radical concept of cluster scheduling.

The idea behind cluster scheduling is that differently shaped workloads can be programmatically packed onto servers like pieces in a game of DevOps Tetris (see Figure 4-2). The goal is to execute the same quantity of work on the smallest possible cluster of machines. It is, perhaps, the ultimate in automated operational efficiency, and it is a major change from the way we used to provision systems. Traditionally, each application had its own physical machine or VM. With cluster scheduling, those machines are shared between applications.

Figure 4-2. DevOps Tetris

For example, imagine you have an application with a high need for I/O and a low need for a CPU. A cluster scheduler might locate your job on the same server as an application that is processor intensive but doesn’t use much I/O. The scheduler’s aim is always to make the most efficient use of the local resources while guaranteeing your jobs are completed within the required time frame and to the target quality and availability.

The good news is that there are many cluster scheduler tools and services out there—usually as part of orchestration platforms. The most popular is a component of the open source Kubernetes platform, and it is a much simplified version of Google’s internal cluster scheduler, which is called Borg. As we mentioned in the introduction, Borg has been in use at Google for nearly two decades.

To try cluster scheduling, you could use the Kubernetes scheduler or another such as HashiCorp’s Nomad in your on-prem DC. Alternatively, you could use a managed Kubernetes cloud service like EKS, GKS, or AKS (from AWS, Google, and Azure, respectively) or a non-Kubernetes option like the AWS Container Service (ECS). Most cluster schedulers offer similar functionality, so the likelihood is you’ll use the one that comes with the operational platform you have selected—it is unlikely to be a differentiator that makes you choose one platform over another. However, the lack of such machine utilization functionality might indicate the platform you are on is not green enough.

Cluster scheduling sounds great, and it is, maybe delivering up to 80% machine utilization. If these tools don’t save you money/carbon, you probably aren’t using them right. However, there is still a big problem.

Information underload

For these cluster schedulers to move jobs from machine to machine to achieve optimal packing, they require three things:

1. The jobs need to be encapsulated along with all their prerequisite libraries so that they can be shifted about for maximum packing without suddenly stopping working because they are missing a key dependency.

2. The encapsulation tool must support fast instantiation (i.e., it must be possible for the encapsulated job to be switched off on one machine and switched on again on another fast). If that takes an hour (or even a few minutes), then cluster scheduling won’t work—the service would be unavailable for too long.

3. The encapsulated jobs need to be labeled so the scheduler knows what to do with them (letting the scheduler know whether they have high availability requirements, for example).

The encapsulation and fast instantiation parts can be done by wrapping them in a container such as Docker or Containerd, and that technology is now widely available. Hurray!

Note

Internally, many of the AWS services use lightweight VMs as the wrapper around jobs, rather than containers. That’s fine. The concept remains the same.

However, all this clever tech still runs up against the need for information. When a scheduler understands the workloads it is scheduling, it can use resources more effectively. If it’s in the dark, it can’t do a good job.

For Kubernetes, the scheduler can act based on the constraints specified in the workload’s pod definition, particularly the CPU and memory requests (minima) and limits (maxima), but that means you need to specify them. The trouble is, that can be tricky.

According to longtime GreenOps practitioner Ross Fairbanks, “The problem with both autoscaling and constraint definition is that setting these constraints is hard.” Fortunately, there are now some tools to make it easier. Fairbanks reckons, “The Kubernetes Vertical Pod Autoscaler can be of help. It has a recommender mode so you can get used to using it, as well as an automated mode. It is a good place to start if you are using Kubernetes and want to improve machine utilization.”¹

What about the cloud?

If your systems are hosted in the cloud, then even if you are not running a container orchestrator like Kubernetes, you will usually be getting the benefit of some cluster scheduling because the cloud providers operate their own schedulers.

You can communicate the characteristics of your workload by picking the right cloud instance type, and the cloud’s schedulers will use your choice to optimize their machine utilization. That is why, from a green perspective, you must not overspecify your resource or availability requirements (e.g., by asking for a dedicated instance when a burstable one or even just a nondedicated one would suffice).

Again, this requires thought, planning, and observation. The public clouds are quite good at spotting when you have overprovisioned and are sneakily using some of those resources for other users (a.k.a. oversubscription), but the most efficient way to use a platform is always as it was intended. If a burstable instance is what you need, the most efficient way to use the cloud is to choose one.

Mixed workloads

Cluster scheduling is at its most effective (you can get really dense packing) if it has a wide range of different, well-labeled tasks to schedule on a lot of big physical machines. Unfortunately, this means it is less effective—or even completely ineffective—for smaller setups like running Kubernetes on prem for a handful of nodes or for a couple of dedicated VMs in the cloud.

However, it can be great for hyperscalers. They have a wide range of jobs to juggle to achieve optimum packing, and in part, that explains the high server utilization rates they report. The utilization percentages that AWS throws about imply that AWS requires less than a quarter of the hardware you’d use on prem for the same work. The true numbers are hard to come by, but AWS’s figure is more than plausible (it’s likely an underestimate of AWS’s potential savings).

Those smaller numbers of servers mean a lot less electricity used and carbon embodied. As a result, the easiest sustainability step you can take is often to move your systems to the cloud and use their services well, including the full range of instance types. It’s only by using their optimized services and schedulers that you can get those numbers. Don’t lift and shift onto dedicated servers and expect much green value, even if you’re using Kubernetes like a pro.

As we’ve said before, scale and efficiency go hand in hand. Hyperscalers can invest the whopping engineering effort to be hyperefficient because it is their primary business. If your company is selling insurance, you will never have the financial incentive to build a hyperefficient on-prem server room, even if that were possible. In fact, you’d not be acting in your own best interest to do so because it wouldn’t be a differentiator.

Multitenancy

In a chapter on operational efficiency, it would be a travesty if we didn’t mention the concept of multitenancy.

Multitenancy is when a single instance of a server is shared between several users, and it is vital to truly high machine utilization. Fundamentally, the more diverse your users (a.k.a. tenants), the better your utilization will be.

Why is that true? Well, let’s consider the opposite. If all your tenants were ecommerce retailers, they would all want more resources on Black Friday and in the run-up to Christmas. They would also all want to process more requests in the evenings and at lunchtime (peak home shopping time). Correlated demand like that is bad for utilization.

You don’t want to have to provision enough machines to handle Christmas and then have them sitting idle the rest of the year. That’s very ungreen. It would be more machine efficient if the retailer could share its hardware resources with someone who had plenty of work to do that was less time sensitive than shopping (e.g., ML training). It would be even more optimal to share those resources with someone who experienced demand on different dates or at different times of the day. Having a wide mix of customers is another way that the public clouds get their high utilization numbers.

Serverless Services

Serverless services like AWS Lambda, Azure Functions, and Google Cloud Functions are multitenant. They also have encapsulated jobs, care about fast instantiation, and run jobs that are short and simple enough that a scheduler knows what to do with them (execute them as fast as possible and then forget about them). They also have enough scale that it should be worth public cloud providers’ time to put in the effort to hyperoptimize them.

Serverless services therefore have huge potential to be cheap and green. They are doing decently at it, but we believe they have room to get much better. The more folk who use them, the more efficient they are likely to get.

Hyperscalers and Profit

There is no magic secret to being green in tech. It is mostly about being a whole lot more efficient and far less wasteful, which happens to match the desires of anyone who wants to manage their hosting costs.

According to ex-Azure DevRel Adam Jackson, “The not-so-dirty secret of the public cloud providers is that the cheaper a service is, the higher the margins. The cloud providers want you to pick the cheapest option because that’s where they make the most money.”

Those services are cheap because they are efficient and run at high scale. As 17th-century economist Adam Smith pointed out, “It is not from the benevolence of the butcher, the brewer, or the baker that we expect our dinner, but from their regard to their own interest.” In the same vein, the hypercloud providers make their systems efficient for their own benefit. However, in this case it is to our benefit, too, because we know that although efficiency is not an exact proxy for greenness, it isn’t bad.

Reducing your hosting bills by using the cheapest, most efficient and commoditized services you can find is not just in your interest and the planet’s, but it is also in the interest of your host. They will make more money as a result, and that is a good thing. Making money isn’t wrong. Being energy inefficient in the middle of an energy-driven climate crisis is. It also highlights the reason why operational efficiency might be the winning form of efficiency: it can make a load of money for DC operators. It is aligned with their interests, and you should choose ones that have the awareness to see that and the capital to put behind it.

SRE Practices

Site reliability engineering (SRE) is a concept that originally came from another efficiency-obsessed hyperscaler: Google. SREs are responsible for designing, building, and maintaining reliable and robust systems that can handle high traffic and still operate smoothly. The good news is that green operations are aligned with SRE principles, and if you have an SRE organization, being green should be easier.

SREs practice:

• Monitoring (which should include carbon emissions; see Chapter 9 for our views on the subject of the measurement of carbon emissions and Chapter 10 for our views on how to use those measurements)

• Continuous integration and delivery (which can help with delivering and testing carbon emission reductions in a faster and safer fashion)

• Automation (e.g., IaC, which helps with rightsizing)

• Containerization and microservices (which are more automatable and mean your entire system isn’t forced to be on demand and can be more carbon aware)

This is not a book about SRE best practices and principles, so we are not going to go into them in detail, although we discuss them more in Chapter 11. However, there are plenty of books available from O’Reilly that cover these excellently and in depth.

LightSwitchOps

Most of what we have talked about so far has been clever high-tech stuff. However, there are some simple operational efficiency ideas that anyone can implement, and one of the smartest we’ve heard is from Red Hat’s Holly Cummins. It’s called LightSwitchOps (see Figure 4-3).

Figure 4-3. LightSwitchOps as illustrated by Holly

Closing down zombie workloads (Cummins’ term for applications and services that don’t do anything anymore) should be a no-brainer for energy saving.

In a recent real-life experiment, a major VM vendor who relocated one of its DCs discovered two-thirds of its servers were running applications that were hardly used anymore. Effectively, these were zombie workloads.

According to Martin Lippert, Spring Tools Lead & Sustainability Ambassador at VMware, “In 2019, VMware consolidated a data center in Singapore. The team wanted to move the entire data center and therefore investigated what exactly needed a migration. The result was somewhat shocking: 66% of all the host machines were zombies.”³

This kind of waste provides huge potential for carbon saving. The sad reality is that a lot of your machines may also be running applications and services that no longer add value.

The trouble is, which ones are those exactly?

There are several ways to work out whether a service still matters to anyone. The most effective is something called a scream test. We’ll leave it as an exercise for the reader to deduce how that works. Another is for resources to have a fixed shelf life. For example, you could try only provisioning instances that shut themselves down after six months unless someone actively requests that they keep running.

These are great ideas, but there is a reason folk don’t do either of these things. They worry that if they turn a machine off, it might not be so easy to turn it back on again, and that is where LightSwitchOps comes in.

For green operations, it is vital that you can turn off machines as confidently as you turn off the lights in your hall—i.e., safe in the knowledge that when you flick the switch to turn them back on, they will. Holly Cummins’s advice is to ensure you are in a position to turn anything off. If you aren’t, then if your server is not part of the army of the walking dead today, you can be certain that one day it will be.

GreenOps practitioner Ross Fairbanks suggests that a great place to get started with LightSwitchOps is to automatically turn off your test and development systems overnight and on the weekend.

Location, Location, Location

There is one remaining incredibly important thing for us to talk about. It is a move that is potentially even easier than LightSwitchOps, and it might be the right place for you to start—particularly if you are moving to a new data center.

You need to pick the right host and region.

The reality is that in some regions, DCs are easier to power using low-carbon electricity than in others. For example, France has a huge nuclear fleet, and Scandinavia has wind and hydro. DCs in such areas are cleaner.

We say again, choose your regions wisely. If in doubt, ask your host about it.

Oh No! Resistance Fights Back!

Unfortunately, efficiency and resilience have always had an uneasy relationship. Efficiency adds complexity and thus fragility to a system, and that’s a problem.

Green Operational Tools and Techniques

Stepping back, let’s review the key operational-efficiency steps you can take. Some are hard, but the good news is that many are straightforward, especially when compared to code efficiency. Remember, it’s all about machine utilization.

• Turn stuff off if it is hardly used or while it’s not being used, like test systems on the weekend (Holly Cummins’s LightSwitchOps).

• Don’t overprovision (use rightsizing and autoscaling, burstable instances in the cloud). Remember to autoscale down as well as up or it’s only useful the first time!

• Cut your hosting bills as much as possible using, for example, AWS Cost Explorer or Azure’s cost analysis, or a nonhyperscaler service like CloudZero, ControlPlane, or Harness. A simple audit can also often identify zombie services. Cheaper is almost always greener.

• Containerized microservice architectures that recognize low-priority and/or delayable tasks can be operated at higher machine utilization. Note, however, that increasing architectural complexity by going overboard on the number of microservices can also result in overprovisioning. You still need to follow microservices design best practices, so, for example, read Building Microservices (O’Reilly) by Sam Newman.

• If you are in the cloud, dedicated instance types have no carbon awareness and low machine utilization. Choosing instance types that give the host more flexibility will increase utilization and cut carbon emissions and costs.

• Embrace multitenancy from shared VMs to managed container platforms.

• Use efficient, high-scale, preoptimized cloud services and instance types (like burstable instances, managed databases, and serverless services). Or use equivalent open source products with a commitment to green or efficient practices, an energetic community to hold them to those commitments, and the scale to realistically deliver on them.

• Remember that spot instances on AWS or Azure (preemptible instances on GCP) are great—cheap, efficient, green, and a platform that encourages your systems to be resilient.

• None of this is easy, but the SRE principles can help: CI/CD, monitoring, and automation.

Unfortunately, none of this is work-free. Even running less or turning stuff off requires an investment of time and attention. However, the nice thing about going green is that it will at least save you money. So the first system to target from a greenness perspective should also be the easiest to convince your manager about: your most expensive one.

Having said that, anything that isn’t work-free, even if it saves a ton of money, is going to be a tough sell. It will be easier to get the investment if you can align your move to green operations with faster delivery or saving developer or ops time down the road because those ideas are attractive to businesses.

That means the most effective of the suggested steps are the last five. Look at SRE principles, multitenancy, managed services, green open source libraries, and spot instances. Those are all designed to save dev and ops time in the long run, and they happen to be cheap and green because they are commoditized and they scale. Don’t fight the machine. Going green without destroying developer productivity is about choosing green platforms.

To survive the energy transition, we reckon everything is going to have to become a thousand times more carbon efficient through a combination of, initially, operational efficiency and demand shifting and, eventually, code efficiency, all achieved using green platforms. Ambitious as it sounds, that should be doable. It is about releasing the increased hardware capacity we have used for developer productivity over the past 30 years, while at the same time keeping the developer productivity.

It might take a decade, but it will happen. Your job is to make sure all your platform suppliers, whether public cloud, open source, or closed source, have a believable strategy for achieving this kind of greenness. This is the question you need to constantly ask yourself: “Is this a green platform?”